Link to home
Start Free TrialLog in
Avatar of HenryWilfred
HenryWilfredFlag for United States of America

asked on

Malware on Windows 7 (unicobrowser)

I have a Win7 laptop that has malware. I load MBAM (free version), run the scan. It finds 800+ PUPs. Unicobrowser is the item that is causing me fits. It has hijacked Chrome (maybe IE as well?). I quarantine the 800 + and reboot.  After reboot, I run MBAM again, and it finds 600+ PUPs (including unico browser). Help me get rid of this stuff - it looks like more than just unicobrowser, but that is the one that is on the top of my list.  Would the purchased MBAM do a better job of removal?
ASKER CERTIFIED SOLUTION
Avatar of flubbster
flubbster
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Avatar of Mike
Mike
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of HenryWilfred

ASKER

Thanks. I'll try safe mode.  How many "checkers" do I need?  Hitman Pro and Avast free ??  I'll do it, but isn't MBAM good enuf to do the whole job.  Hitman Pro -- not free?
I use MBAM Premium and ESET NOD32 or Kaspersky Anti Virus as my standard level of protection.  When a machine is bombarded, and in your case it seems taken over, you need multiple tools.  In the past I've used MBAM in conjunction with HitmanPro and one of the many free anti-virus programs to clean machines up.  If a System Restore point is available prior to the infection date, that is always the go-to first step, if not then the tools I suggested are pretty good at getting the job done.

HitmanPro is either free or has a fully functional grace period, I don't remember off the top of my head.
Do as I suggested and try a system restore first to make sure the malware is not being loaded. It is much easier to remove when it is not active.
Thanks again. I am backing up the system right now.  Then I will do system restore.  It has a restore point back to 4-12-2015.  My guess is that is not far enough back,  We will see.
This is not my PC. I am trying to help a friend.
You should NOT run MBAM in safe mode unless you absolutely have to (from MBAM website itself).  Use Chameleon from Malwarebytes.org (run svchost file from chameleon directory.  It will kill known rogue processes, update MBAM and run a scan - before running chameleon you should configure MBAM to scan for rootkits) and ESET online scanner.  When you are done run several more rootkit cleaners, including Rootkitrevealer - see my article on rootkits.
The first two responses did the trick. I used only MBAM pro.   I went back to a restore point of April 12. Then I  ran MBAM in Safe mode.  Rebooted and tested the PC for awhile - it looked clean and ran fast. Chrome was freed up.  I also uninstalled about 15 programs that looked suspicious. PC was 95% nonfunctional - now looks clean!

Thanks for the quick responses.  Much appreciated.