Question Problem with a virus, still somehow on my pc after deletement with malwarebytes

Apr 2, 2021
Ive had a problem with msh.exe which is a bitcoin miner malware, so my malwarebytes detected it and deleted it, but still i have a problem, in registry editor it still shows a path to it even tho I have deleted it, i found it in registry editor because i have a problem where a blank pop up says explorer.EXE and i've searched on the internet, so it showed me to delete load to stop the popups from appearing, but same story, its still appearing.


This is a link on imgur for the screenshot of the occasion when the popup appears and of the problem on registry editor.


Mar 16, 2013
If you're still seeing signs of it...full wipe and reinstall.
No question.



Jan 21, 2021
Run ESET Online Scanner, Copy and Paste the contents of the log in your reply please. This scan may take a very long while, so please be patient. Maybe start it before going to work or bed.
Make sure these options are checked/ticked in Advanced settings.
Remove found threats, Scan archives, Scan for potentially unsafe applications, Enable Anti-Stealth technology.
How do I use the ESET Online Scanner?
How can I view the log file from ESET Online Scanner?
  1. The ESET Online Scanner saves a log file after it completes a scan. This log file can be reviewed or sent to ESET for further analysis. To save the log file, click Save scan log and select the save location. You can also click View scan details to see the information. To view the log after ESET Online Scanner has been closed, Show hidden files and folders must be enabled in File Explorer. New logs are appended to the existing log files when multiple scans are run. The path to the log file is the following: C:\Users\username\AppData\Local\Temp\log.txt
  2. Can I select the destination of the scan?
Yes, the new version of ESET Online Scanner provides an option to select the destination of the scan (scan targets). This option can be found under Advanced settings.
Configure ESET this way & disable your AV.

How to Temporarily Disable your Anti-virus
In Windows 10, go to Settings > Update & Security > Virus & threat protection settings, and turn off the “Real-time protection” option. Windows Defender is now called Microsoft Defender Antivirus.
Some forms of malware are quite crafty, changing filenames, respawning multiple processes, auto-deletion after startup, etc., which makes for them being pretty hard to track down...

(If one can ever be truly sure you got everything...)

Deleting partitions and reinstalling from a good backup image taken a week prior however, is foolproof, and quite snappy if the image was stored to an SSD, and, still reasonably fast even from external hard drive compared to the countless hours spent trying 32 different malware removal tools, and, even then not being 100% sure..



Latest posts