Malware on Windows 7 (unicobrowser)

I have a Win7 laptop that has malware. I load MBAM (free version), run the scan. It finds 800+ PUPs. Unicobrowser is the item that is causing me fits. It has hijacked Chrome (maybe IE as well?). I quarantine the 800 + and reboot.  After reboot, I run MBAM again, and it finds 600+ PUPs (including unico browser). Help me get rid of this stuff - it looks like more than just unicobrowser, but that is the one that is on the top of my list.  Would the purchased MBAM do a better job of removal?
HenryWilfredAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

flubbsterCommented:
Boot into safe mode and then run system restore. Hopefully, restore is active and you have valid restore points. Restore to a date before you were infected. This will not remove the malware but will make it easier to remove because it will not get loaded at startup. Run mbam once the restore is complete and the saystem has rebooted.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
MikeIT ManagerCommented:
Run MBAM in Safe Mode.  Also, I'd suggest downloading HitmanPro and Avast Free and running those in safe mode as well.
0
HenryWilfredAuthor Commented:
Thanks. I'll try safe mode.  How many "checkers" do I need?  Hitman Pro and Avast free ??  I'll do it, but isn't MBAM good enuf to do the whole job.  Hitman Pro -- not free?
0
Discover the Answer to Productive IT

Discover app within WatchGuard's Wi-Fi Cloud helps you optimize W-Fi user experience with the most complete set of visibility, troubleshooting, and network health features. Quickly pinpointing network problems will lead to more happy users and most importantly, productive IT.

MikeIT ManagerCommented:
I use MBAM Premium and ESET NOD32 or Kaspersky Anti Virus as my standard level of protection.  When a machine is bombarded, and in your case it seems taken over, you need multiple tools.  In the past I've used MBAM in conjunction with HitmanPro and one of the many free anti-virus programs to clean machines up.  If a System Restore point is available prior to the infection date, that is always the go-to first step, if not then the tools I suggested are pretty good at getting the job done.

HitmanPro is either free or has a fully functional grace period, I don't remember off the top of my head.
0
flubbsterCommented:
Do as I suggested and try a system restore first to make sure the malware is not being loaded. It is much easier to remove when it is not active.
0
HenryWilfredAuthor Commented:
Thanks again. I am backing up the system right now.  Then I will do system restore.  It has a restore point back to 4-12-2015.  My guess is that is not far enough back,  We will see.
0
HenryWilfredAuthor Commented:
This is not my PC. I am trying to help a friend.
0
dbruntonQuid, Me Anxius Sum?  Illegitimi non carborundum.Commented:
Throw Adwcleaner against it as well

http://www.bleepingcomputer.com/download/adwcleaner/
0
Thomas Zucker-ScharffSolution GuideCommented:
You should NOT run MBAM in safe mode unless you absolutely have to (from MBAM website itself).  Use Chameleon from Malwarebytes.org (run svchost file from chameleon directory.  It will kill known rogue processes, update MBAM and run a scan - before running chameleon you should configure MBAM to scan for rootkits) and ESET online scanner.  When you are done run several more rootkit cleaners, including Rootkitrevealer - see my article on rootkits.
0
HenryWilfredAuthor Commented:
The first two responses did the trick. I used only MBAM pro.   I went back to a restore point of April 12. Then I  ran MBAM in Safe mode.  Rebooted and tested the PC for awhile - it looked clean and ran fast. Chrome was freed up.  I also uninstalled about 15 programs that looked suspicious. PC was 95% nonfunctional - now looks clean!

Thanks for the quick responses.  Much appreciated.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Anti-Spyware

From novice to tech pro — start learning today.