Potential Virus on C:/Windows/SysWOW64/msiexec.exe

  • This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

Alt-L

New Member
Jul 8, 2017
4
Operating System
Windows 7
Installed Antivirus
Avast
#1
Hello there.

My Malwarebytes application sent me a notice of a potential virus on C:/Windows/SysWOW64/msiexec.exe from the location:

qibrasop . ru


I'm worried about what can happen to my computer with the virus and such and if it's just a false positive.

Below are the scans from FRST and Malwarebytes
 

Attachments

Likes: Sunshine-boy

TwinHeadedEagle

Removal Expert
Staff member
Mar 8, 2013
22,018
Operating System
Windows 10
Installed Antivirus
ESET
#2
Hello,


Fix with Farbar Recovery Scan Tool

This fix was created for this user for use on that particular machine.

Running it on another one may cause damage and render the system unstable.

Download attached fixlist.txt file and save it to the Desktop:

Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

  • Right-click on
    icon and select
    Run as Administrator to start the tool.
    (XP users click run after receipt of Windows Security Warning - Open File).
  • Press the Fix button just once and wait.
  • If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
  • When finishes FRST will generate a log on the Desktop, called Fixlog.txt.

Please attach it to your reply.


After the fix, please upload regexport.reg from your Desktop.
 

Attachments

Alt-L

New Member
Jul 8, 2017
4
Operating System
Windows 7
Installed Antivirus
Avast
#5
As of now, the virus has stopped appearing for a day or so.
 

TwinHeadedEagle

Removal Expert
Staff member
Mar 8, 2013
22,018
Operating System
Windows 10
Installed Antivirus
ESET
#6
Scan with Farbar Recovery Scan Tool

Please re-run Farbar Recovery Scan Tool to give me a fresh look at your system.
  • Right-click on
    icon and select
    Run as Administrator to start the tool.
    (XP users click run after receipt of Windows Security Warning - Open File).
  • Make sure that Addition.txt option is checked.


  • Press Scan button and wait.
  • The tool will produce two logfiles on your desktop: FRST.txt and Addition.txt.
Please attach report into your next reply.