Hi, I hope that this is in the correct forum. I cannot completely remove FindWilde frm my laptop, I have Kasperky Internet Security 2015 installed, it found 11 threats and successfully removed them. I then scanned with Malwarebytes (free version) and it found a bunch of PUPs with was removed after a reboot. I then scanned again with MBAM with a clean result. I then scanned with Hitman pro (paid version) and on the end stage of scanning (Malware Remnants), it found a lot of FindWilde items. I then pressed Next, but Hitman pro will not delete them, it just freezes up, and after 40 minutes, Hitman pro still hasn't progressed in deleting it. I have to go to Task Manager and End the process to exit Hitman pro. I then downloaded Emisoft Emergency Toolkit and scanned, but t did not detect FindWilde. I have used Adwcleaner and it found some entrires, they were removed after a reboot. I have used Junkware Removal Tool, it found a couple processes, and were removed after a reboot. I ran these 2 tools again and they showed up clean. I have run %TEMP% and deleted the temp files,. My Recycle Bin is empty. I ran ccleaner and deleted items in Clean and also Registry. I reset Firefox to its default status The only scanner that still picks up FindWilde is Hitman pro, what other means of deleting it is there?? I have attached Hitman pro's result Thanks for your help! http://i.imgur.com/zBbNyF7.png
I am thinking you actually mean FindWide and not FindWilde ? http://malwaretips.com/blogs/remove-findwide-search-virus/
Can you see if compatible disk access (Settings>Advanced) solves the problem? Screenshot shows FindWide clearly, I think the op made a typo. BTW, in the malwaretips article, download link seems to be a cleverbridge affiliate link redirecting to hitman?
The link to Malwarebytes is an affiliiate link as well. In this case, it seems the included uninstaller does not properly remove FindWide. However, MalwareTips is a scam website in my opinion, trying to make money as an affiliate from highly misleading removal guides which portray harmless unwanted software as being unsafe, in order to try to get people to purchase MBAM or HMP so they can make money as an affiliate.
"I am thinking you actually mean FindWide and not FindWilde ?" That was a typo! I tried all the the scanners in my first post in Safe Mode / with networking with no luck. Hitman pro will not work in Safe Mode with Networking. Should it run in Safe Mode with Networking?? I also tried Trend Micro Housecall. In the link on Kaspersky Rescue Disk, it says that it should only be used if you cannot boot your pc. ( I have a laptop btw) What is the difference between Kaspersky Rescue Disk and using KIS?? "Can you see if compatible disk access (Settings>Advanced) solves the problem?" That did not make any difference unfortunately. Any other suggestions?
It could be an issue with registry permissions. You colud try running Windows Repair (All in One) from tweaking.com, and running just the first repair - Reset Registry Permissions, then doing the requested reboot, and then try running Hitman again.
Since there are only registry entries from HKCU shown in your printscreen, you can check if there any actual file detected. If not you can create new user account, migrate everything to new account and delete old account. EDIT: all 71 detections from your printscreen are categorized as "Traces", so you can assume that infection is not active any more, there are only leftovers detected.
"It could be an issue with registry permissions. You colud try running Windows Repair (All in One) from tweaking.com, and running just the first repair - Reset Registry Permissions, then doing the requested reboot, and then try running Hitman again." I ran the scan as you suggested, but still no luck!
Other that what has been suggested already - some key points to consider with an infected system. https://www.wilderssecurity.com/threads/securing-your-pc-and-data.252253/#post-1533481 Use ESET's online scanner - http://www.eset.com/us/online-scanner/ Run MalwareBytes - https://www.malwarebytes.org/mwb-download/ Note that Wilders does not support malware removal, that said, the best of luck in your quest.
I just completed a scan withe Eset Online Scanner and it did not detect anything. Detect potential unwanted modifications/programs was selected.
Fix the Windows Registry from a Linux Thumb Drive http://lifehacker.com/5584762/edit-the-windows-registry-from-a-linux-thumb-drive
Or 4 Ways to Edit Registry Key Values Without Booting into Windows https://www.raymond.cc/blog/how-to-edit-windows-registry-key-values-without-booting-in-windows/
Try ESET's Rogue Apps Remover as well in your troubleshooting process. (requires admin rights to run successfully) http://kb.eset.com/esetkb/index?page=content&id=SOLN3035
CyberDrone is this the key at the bottom of the screenshot? http://msdn.microsoft.com/en-us/library/bb250462(v=vs.85).aspx#wpm_addya
If you wish - any of the Forums listed below fully support malware removal. http://asap.maddoktor2.com/ You may also call Microsoft at no charge: This would be MS PC Safety. 1 - 866 - 727 - 2338