HenryWilfred
asked on
Malware on Windows 7 (unicobrowser)
I have a Win7 laptop that has malware. I load MBAM (free version), run the scan. It finds 800+ PUPs. Unicobrowser is the item that is causing me fits. It has hijacked Chrome (maybe IE as well?). I quarantine the 800 + and reboot. After reboot, I run MBAM again, and it finds 600+ PUPs (including unico browser). Help me get rid of this stuff - it looks like more than just unicobrowser, but that is the one that is on the top of my list. Would the purchased MBAM do a better job of removal?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I use MBAM Premium and ESET NOD32 or Kaspersky Anti Virus as my standard level of protection. When a machine is bombarded, and in your case it seems taken over, you need multiple tools. In the past I've used MBAM in conjunction with HitmanPro and one of the many free anti-virus programs to clean machines up. If a System Restore point is available prior to the infection date, that is always the go-to first step, if not then the tools I suggested are pretty good at getting the job done.
HitmanPro is either free or has a fully functional grace period, I don't remember off the top of my head.
HitmanPro is either free or has a fully functional grace period, I don't remember off the top of my head.
Do as I suggested and try a system restore first to make sure the malware is not being loaded. It is much easier to remove when it is not active.
ASKER
Thanks again. I am backing up the system right now. Then I will do system restore. It has a restore point back to 4-12-2015. My guess is that is not far enough back, We will see.
ASKER
This is not my PC. I am trying to help a friend.
You should NOT run MBAM in safe mode unless you absolutely have to (from MBAM website itself). Use Chameleon from Malwarebytes.org (run svchost file from chameleon directory. It will kill known rogue processes, update MBAM and run a scan - before running chameleon you should configure MBAM to scan for rootkits) and ESET online scanner. When you are done run several more rootkit cleaners, including Rootkitrevealer - see my article on rootkits.
ASKER
The first two responses did the trick. I used only MBAM pro. I went back to a restore point of April 12. Then I ran MBAM in Safe mode. Rebooted and tested the PC for awhile - it looked clean and ran fast. Chrome was freed up. I also uninstalled about 15 programs that looked suspicious. PC was 95% nonfunctional - now looks clean!
Thanks for the quick responses. Much appreciated.
Thanks for the quick responses. Much appreciated.
ASKER