Tojan Dropper

[OscarLopez]

Hi, I'm use the Virus removal Tools for scan and desifected my computer , how ever when finished to scan, that tools send me a report. In this report apper information about virus named Trojan-Dropper.Win32.Flystud.yo which wasn't removed.

I hope so you help me to rosolve this problem. Iwants to Know tha procedure to remove that vrirus

[olejah]

Close/unload all the programs

Switch off:
- Antivirus and, if you have - Firewall.

- Execute following script in Manual Healing

Код:

begin
 SearchRootkit(true, true);
 SetAVZGuardStatus(true);
 QuarantineFile('C:\WINDOWS\KesenjanganSosial.exe','');
 QuarantineFile('C:\Documents and Settings\Administrador\Configuraciуn local\Datos de programa\br7449on.exe','');
 QuarantineFile('C:\RECYCLER\S-1-5-21-5360305518-1610692645-817970639-6061\bfrss.exe','');
 QuarantineFile('C:\WINDOWS\system32\279035\B23F9B.EXE','');
 QuarantineFile('C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\winde32.exe','');
 DeleteFile('C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\winde32.exe');
 DeleteFile('C:\WINDOWS\system32\279035\B23F9B.EXE');
 DeleteFile('C:\RECYCLER\S-1-5-21-5360305518-1610692645-817970639-6061\bfrss.exe');  
 DeleteFile('C:\WINDOWS\KesenjanganSosial.exe');   
 DelCLSID('28ABC5C0-4FCB-11CF-AAX5-81CX1C735612');     
 RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows NT\CurrentVersion\Winlogon','Taskman');
 BC_ImportAll;
 ExecuteSysClean;
 ExecuteWizard('TSW',2,2,true);
 ExecuteRepair(17);
 ExecuteRepair(16);
 ExecuteRepair(8);
 BC_Activate;
 RebootWindows(true);
end.

After reboot:
- Execute following script in Manual Healing

Код:

begin
CreateQurantineArchive('C:\quarantine.zip');    
end.

- Upload the C:\quarantine.zip here: upload_virus_eng.
- Make a new log file and Attach a new log to your new post..