Thread: How can I Remove Generic Rootkit.d trojan
View Single Post
Join Date: Jul 2008
Posts: 173
Reputation: Cyber Punk is an unknown quantity at this point 
Solved Threads: 8
Cyber Punk's Avatar
Cyber Punk Cyber Punk is offline Offline
Junior Poster

Re: How can I Remove Generic Rootkit.d trojan

 
0
  #2
Aug 22nd, 2008
Hi, looks like we missed your thread.
Please go through this fix exactly in the order it has been posted in.

Please download Malwarebytes' Anti-Malware to your desktop.
  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to
    • Update Malwarebytes' Anti-Malware
    • and Launch Malwarebytes' Anti-Malware
  • then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When MBA-M finishes, Notepad will open with the log. Please save it where you can find it easily. The log can also be opened by going to Start > All Programs > Malwarebytes' Anti-Malware > Logs > log-date.txt.
Please post the above log in your next reply.

Please re-open HijackThis and click on [u]Do a system scan only[/b].
Place a check againt the following lines(if they are still present) :


F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe
O4 - HKLM\..\Run: [Glock Suite 1.1] C:\WINDOWS\system32\glock32.exe
O4 - HKCU\..\Run: [License Manager] "C:\License_Manager\license_manager.exe " /silent
O15 - Trusted Zone: *.musicmatch.com (HKLM)
O20 - Winlogon Notify: afjzptil - C:\WINDOWS\SYSTEM32\afjzptil.dll

Close all windows excluding HijackThis and click Fix Checked.
Close HijackThis.
Reply With Quote