Pt 1: My last post wasn't posted. Need help with Globalroot System 32 MSIVX.....dll trojan.

Archive
1

Hi. I'm new to this group and hope I'm posting properly. I did this about a half hour ago but can't find any record of my posting? Anyway, my computer started behaving mysteriously slow yesterday and each time I opened a browser I would receive a message stating "firefox.exe - Bad Image" and then a warning that "globalroot\systemroot\system32\MSIVXmunjppphem....dll is either not designed to run on Windows..."

 

In Googling this problem, most roads lead me to this community where it appears QUADS has a good amount of experience in dealing with this. I am grateful that there are communities like this to help us less knowledgeable. 

I have tried running mbam and sas (after renaming them) countless times in normal and in safe mode. MBAM would spot the trojan and say it would eliminate it upon rebooting but it never could. I updated and reran and read through similar posts on this board.

 

As QUADS requested, here is my GMER log (from Devices to End).

 

---- Devices - GMER 1.0.15 ----

Device          \FileSystem\Ntfs \Ntfs                                                                                            856C11F8

AttachedDevice  \FileSystem\Ntfs \Ntfs                                                                                            TfFsMon.sys (ThreatFire Filesystem Monitor/PC Tools)
AttachedDevice  \Driver\kbdclass \Device\KeyboardClass0                                                                           Wdf01000.sys (WDF Dynamic/Microsoft Corporation)

Device          \Driver\volmgr \Device\VolMgrControl                                                                              84D2A1F8
Device          \Driver\usbohci \Device\USBPDO-0                                                                                  867FE1F8
Device          \Driver\usbehci \Device\USBPDO-1                                                                                  8682A1F8
Device          \Driver\usbohci \Device\USBPDO-2                                                                                  867FE1F8
Device          \Driver\usbehci \Device\USBPDO-3                                                                                  8682A1F8

AttachedDevice  \Driver\tdx \Device\Tcp                                                                                           pctfw2.sys

Device          \Driver\netbt \Device\NetBT_Tcpip_{51CA0C47-1DE6-4568-8272-B43B33FD9F7E}                                          87A571F8
Device          \Driver\volmgr \Device\HarddiskVolume1                                                                            84D2A1F8
Device          \Driver\volmgr \Device\HarddiskVolume2                                                                            84D2A1F8
Device          \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-0                                                                       84D2C1F8
Device          \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-4                                                                       84D2C1F8
Device          \Driver\atapi \Device\Ide\IdePort0                                                                                84D2C1F8
Device          \Driver\atapi \Device\Ide\IdePort1                                                                                84D2C1F8
Device          \Driver\atapi \Device\Ide\IdePort2                                                                                84D2C1F8
Device          \Driver\atapi \Device\Ide\IdePort3                                                                                84D2C1F8
Device          \Driver\netbt \Device\NetBT_Tcpip_{AA8D965E-08B9-4AF2-B60F-24C6CAD887AB}                                          87A571F8
Device          \Driver\netbt \Device\NetBt_Wins_Export                                                                           87A571F8
Device          \Driver\sptd \Device\839279537                                                                                    spkg.sys
Device          \Driver\Smb \Device\NetbiosSmb                                                                                    87A4D1F8
Device          \Driver\iScsiPrt \Device\RaidPort0                                                                                869501F8

AttachedDevice  \Driver\tdx \Device\Udp                                                                                           pctfw2.sys
AttachedDevice  \Driver\tdx \Device\RawIp                                                                                         pctfw2.sys

Device          \Driver\usbohci \Device\USBFDO-0                                                                                  867FE1F8
Device          \Driver\usbehci \Device\USBFDO-1                                                                                  8682A1F8
Device          \Driver\PCI_PNP1529 \Device\0000006e                                                                              spkg.sys
Device          \Driver\usbohci \Device\USBFDO-2                                                                                  867FE1F8
Device          \Driver\usbehci \Device\USBFDO-3                                                                                  8682A1F8
Device          \Driver\agziit6r \Device\Scsi\agziit6r1                                                                           868ED1F8
Device          \FileSystem\cdfs \Cdfs                                                                                            891231F8

 

                         (continued in next post due to too many characters)