Error message and globalroot\systemroot\system32\MSIVX

Meg2009 · ‎07-06-2009

I have the same problem as lindsaytuckwood with the error message when opening internet explorer and Norton Internet Security failing to scan. I have already removed and reinstalled Internet Security but it still will not scan. I have downloaded and scanned my computer with GMER as per your instructions and attached the log. I have Intenet Security 2009 version 16.5.0.135. Any help would be greatly appreciated!

[edit: Renamed thread for clarity.]

Message Edited by shannons on 07-06-2009 10:46 PM

delphinium · ‎11-21-2008

Meg2009:

I am going to ask that your post be separated onto a thread of its own. Your issue may take more time that the original poster and we don't want to lose track of you.

Message Edited by delphinium on 07-07-2009 05:15 PM

Under certain circumstances profanity provides relief denied even to prayer.
Mark Twain

dbrisendine · ‎10-06-2008

Meg2009,

Did you try to scan with NIS2009 in Safe Mode? If not, try that first before we go further. Also, I have asked that these posts be moved to their own thread on the Board so we can concentrate on your problem alone.

Please run Live Update until it says there are no more updates for NIS2009.

Next restart your system and when the system starts loading, tap the F8 key until the Advanced Options menu appears. Use the arrow keys to highlight and select Safe Mode (without networking or command prompt) and press Enter. Once logged in, double click on the NIS2009 desktop icon. A message will appear about not running in Safe Mode; select yes to run the full scan. Post the results of this back here. Thanks.

ialexandra73 · ‎10-29-2008

try

download the icesword open -file -go to- c-windows -system32 - and delete all the MSIVX...file - and c-windows-system32- drivers -delete the MSIVX...sys

go to registry -HKLM - SYSTEM- CURRENTCONTROLSET AND ALL THE CONTTROL SET 0.. AND SEARCH FOR MSIVX... ---delete it .

-deactivate system restore -

all scan with norton , must be clean

[edit: removed link to download per the Participation Guidelines and Terms of Service.]

Message Edited by Tony_Weiss on 07-07-2009 04:48 PM

Quads · ‎07-21-2008

Hi

Now (read carefully) If you have Spybot S&D uninstall it.

1. Download Avenger to your desktop,

Unzipped version http://homepages.slingshot.co.nz/~crutches/Avenger/

Creators website http://swandog46.geekstogo.com/avenger2/avenger2.html with zipped version to the unzip to desktop

2. Click to run "Avenger.exe" (right click "Run as Administrator" if using Vista)

3. In the "Input script here:" copy and paste the script between the lines

Drivers to disable:

MSIVXserv.sys

Drivers to delete:

MSIVXserv.sys

Files to delete:

C:\Autorun.inf

D:\Autorun.inf

C:\Windows\System32\drivers\MSIVXmyedemfooxdoqibkvbfjxhtvtpvtvaxc.sys

C:\Windows\System32\MSIVXdwpsxraicutgtvcyipcmqnpwqobuiomy.dll

C:\Windows\System32\MSIVXexgsyoicbvxqrdhnlsputexeetsctbqo.dll

C:\Windows\System32\MSIVXcount

Registry keys to delete:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSIVXserv.sys

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\MSIVXserv.sys

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\MSIVXserv.sys

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\MSIVXserv.sys

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\MSIVXserv.sys

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\MSIVXserv.sys

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\MSIVXserv.sys

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\MSIVXserv.sys

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\MSIVXserv.sys

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\MSIVXserv.sys

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\MSIVXserv.sys

HKEY_LOCAL_MACHINE\SOFTWARE\MSIVX

Here is a screenshot (script updated since shot)

Make sure the "Automatically disable any rootkits found" is NOT selected

4. Click "Execute"

You will be asked to restart the PC click "Yes", when the PC restarts the load screen will takes slightly longer, then when it looks as though windows is loading the PC will restart again.

Then when Windows fully loads the Avenger log will be loaded, showing files it could or could not find.

Quads

Meg2009 · ‎07-06-2009

Dbrisendine

Yes I ran LiveUpdate then rebooted in safe mode and ran a scan. The scan found no problems.

Meg2009 · ‎07-06-2009

Quads

I downloaded Avenger and followed your instructions. The log is attached. The error message has stopped appearing when I start Internet Explorer and NIS2009 is scanning again. Thankyou so much...it seems the problem is fixed. Will I need to do anything else now?

Quads · ‎07-21-2008

Did you run like Malwarebytes to see if there was any left overs like a DNS Changer??

Quads

Meg2009 · ‎07-06-2009

Quads

I ran a Malarebytes' Scan and found 4 things which I removed. The log is attached. Now is this issue resolved?

Thanks

Voyager10 · ‎05-03-2008

Please update MBAM befor Scan , Tab 3 on MBAM Main Windows.

Norton Internet Security / Norton AntiVirus

Error message and globalroot\systemroot\system32\MSIVX

Re: Need Help removing globalroot\systemroot\system32\MSIVX

Re: Need Help removing globalroot\systemroot\system32\MSIVX

Re: Error message and globalroot\systemroot\system32\MSIVX

Re: Error message and globalroot\systemroot\system32\MSIVX

Re: Need Help removing globalroot\systemroot\system32\MSIVX

Re: Error message and globalroot\systemroot\system32\MSIVX

Re: Error message and globalroot\systemroot\system32\MSIVX

Re: Error message and globalroot\systemroot\system32\MSIVX

Re: Error message and globalroot\systemroot\system32\MSIVX

Products

Services

Support