Question Problem with a virus, still somehow on my pc after deletement with malwarebytes

Apr 2, 2021
1
0
10
0
Ive had a problem with msh.exe which is a bitcoin miner malware, so my malwarebytes detected it and deleted it, but still i have a problem, in registry editor it still shows a path to it even tho I have deleted it, i found it in registry editor because i have a problem where a blank pop up says explorer.EXE and i've searched on the internet, so it showed me to delete load to stop the popups from appearing, but same story, its still appearing.

View: https://imgur.com/a/0KUPPVf


This is a link on imgur for the screenshot of the occasion when the popup appears and of the problem on registry editor.
 

USAFRet

Titan
Moderator
Mar 16, 2013
140,267
7,655
174,040
21,601
If you're still seeing signs of it...full wipe and reinstall.
No question.

 

Johnwmel

Great
Jan 21, 2021
222
20
95
1
Run ESET Online Scanner, Copy and Paste the contents of the log in your reply please. This scan may take a very long while, so please be patient. Maybe start it before going to work or bed.
Make sure these options are checked/ticked in Advanced settings.
Remove found threats, Scan archives, Scan for potentially unsafe applications, Enable Anti-Stealth technology.
http://www.eset.com/home/products/online-scanner/f
How do I use the ESET Online Scanner?
https://support.eset.com/kb2921/#advancedsettings
How can I view the log file from ESET Online Scanner?
https://support.eset.com/en/kb405-online-scanner-faq
  1. The ESET Online Scanner saves a log file after it completes a scan. This log file can be reviewed or sent to ESET for further analysis. To save the log file, click Save scan log and select the save location. You can also click View scan details to see the information. To view the log after ESET Online Scanner has been closed, Show hidden files and folders must be enabled in File Explorer. New logs are appended to the existing log files when multiple scans are run. The path to the log file is the following: C:\Users\username\AppData\Local\Temp\log.txt
  2. Can I select the destination of the scan?
Yes, the new version of ESET Online Scanner provides an option to select the destination of the scan (scan targets). This option can be found under Advanced settings.
https://support.eset.com/kb405/?viewlocale=en_US
Configure ESET this way & disable your AV.
View: http://i.imgur.com/wZF1Ppi.gif

How to Temporarily Disable your Anti-virus
In Windows 10, go to Settings > Update & Security > Virus & threat protection settings, and turn off the “Real-time protection” option. Windows Defender is now called Microsoft Defender Antivirus.
https://www.minitool.com/news/disable-windows-defender-win10.html
https://www.computerhope.com/issues/ch000864.htm
 
Some forms of malware are quite crafty, changing filenames, respawning multiple processes, auto-deletion after startup, etc., which makes for them being pretty hard to track down...

(If one can ever be truly sure you got everything...)

Deleting partitions and reinstalling from a good backup image taken a week prior however, is foolproof, and quite snappy if the image was stored to an SSD, and, still reasonably fast even from external hard drive compared to the countless hours spent trying 32 different malware removal tools, and, even then not being 100% sure..
 

ASK THE COMMUNITY

TRENDING THREADS

Latest posts