Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: MSE found virtool.win32/obfuscator.XZ but couldn't get rid of it.

20 Mar 2013   #61
VistaKing

Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
 
 

Thanks for KoolKat to run the BSOD for me. I tried to see if your Mushkin SSD had any firmware updates but it doesn't couldn't locate any on their website.
The F4 BSOD has to do with hard drive issues.


Code:
Loading Dump File [C:\Users\Yusra\Downloads\SF_19-03-2013\031913-72150-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: SRV*c:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is: 
Windows 7 Kernel Version 7601 (Service Pack 1) MP (4 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS Personal
Built by: 7601.18044.amd64fre.win7sp1_gdr.130104-1431
Machine Name:
Kernel base = 0xfffff800`03009000 PsLoadedModuleList = 0xfffff800`0324d670
Debug session time: Wed Mar 20 03:36:53.674 2013 (UTC + 6:00)
System Uptime: 0 days 1:06:56.001
Loading Kernel Symbols
...............................................................
................................................................
..................................
Loading User Symbols
Loading unloaded module list
..........
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck F4, {3, fffffa800d1c29e0, fffffa800d1c2cc0, fffff80003386470}

----- ETW minidump data unavailable-----
Probably caused by : csrss.exe

Followup: MachineOwner
---------



Code:
Loading Dump File [C:\Users\Yusra\Downloads\SF_19-03-2013\031913-28220-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: SRV*c:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is: 
Windows 7 Kernel Version 7601 (Service Pack 1) MP (4 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS Personal
Built by: 7601.18044.amd64fre.win7sp1_gdr.130104-1431
Machine Name:
Kernel base = 0xfffff800`0305b000 PsLoadedModuleList = 0xfffff800`0329f670
Debug session time: Tue Mar 19 08:03:14.062 2013 (UTC + 6:00)
System Uptime: 0 days 3:07:16.015
Loading Kernel Symbols
...............................................................
................................................................
..................................
Loading User Symbols
Loading unloaded module list
....
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck F4, {3, fffffa800d3f9b30, fffffa800d3f9e10, fffff800033d8470}

----- ETW minidump data unavailable-----
Probably caused by : csrss.exe

Followup: MachineOwner
---------


Code:
Loading Dump File [C:\Users\Yusra\Downloads\SF_19-03-2013\031913-26332-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: SRV*c:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is: 
Windows 7 Kernel Version 7601 (Service Pack 1) MP (4 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS Personal
Built by: 7601.18044.amd64fre.win7sp1_gdr.130104-1431
Machine Name:
Kernel base = 0xfffff800`0305d000 PsLoadedModuleList = 0xfffff800`032a1670
Debug session time: Wed Mar 20 01:58:39.730 2013 (UTC + 6:00)
System Uptime: 0 days 0:53:41.057
Loading Kernel Symbols
...............................................................
................................................................
..................................
Loading User Symbols
Loading unloaded module list
.....
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck F4, {3, fffffa800d881750, fffffa800d881a30, fffff800033da470}

----- ETW minidump data unavailable-----
Probably caused by : wininit.exe

Followup: MachineOwner
---------

Code:
Loading Dump File [C:\Users\Yusra\Downloads\SF_19-03-2013\031813-30529-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: SRV*c:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is: 
Windows 7 Kernel Version 7601 (Service Pack 1) MP (4 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS Personal
Built by: 7601.18044.amd64fre.win7sp1_gdr.130104-1431
Machine Name:
Kernel base = 0xfffff800`03018000 PsLoadedModuleList = 0xfffff800`0325c670
Debug session time: Tue Mar 19 00:22:09.117 2013 (UTC + 6:00)
System Uptime: 0 days 0:34:29.070
Loading Kernel Symbols
...............................................................
................................................................
.............................
Loading User Symbols
Loading unloaded module list
.....
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck F4, {3, fffffa800dddc060, fffffa800dddc340, fffff80003395470}

----- ETW minidump data unavailable-----
Probably caused by : csrss.exe

Followup: MachineOwner
---------
Code:
Loading Dump File [C:\Users\Yusra\Downloads\SF_19-03-2013\031813-29874-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: SRV*c:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is: 
Windows 7 Kernel Version 7601 (Service Pack 1) MP (4 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS Personal
Built by: 7601.18044.amd64fre.win7sp1_gdr.130104-1431
Machine Name:
Kernel base = 0xfffff800`03007000 PsLoadedModuleList = 0xfffff800`0324b670
Debug session time: Mon Mar 18 22:56:54.684 2013 (UTC + 6:00)
System Uptime: 0 days 0:46:53.011
Loading Kernel Symbols
...............................................................
................................................................
..............................
Loading User Symbols
Loading unloaded module list
....
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck F4, {3, fffffa800d21fb30, fffffa800d21fe10, fffff80003384470}

----- ETW minidump data unavailable-----
Probably caused by : csrss.exe

Followup: MachineOwner
---------

My System SpecsSystem Spec



My System SpecsSystem Spec
.
20 Mar 2013   #62
Zibeltor

Windows 7 Home Premium 64bit
 
 

I checked the website myself and found this link:
SSD Firmware Updates

It didn't really say which models of hard drives that update is meant for though, so I was pretty nervous about just unzipping and running it.

Okay, again, I'm afraid I don't really know what that code means, but I'm pretty sure my hard drives are fine. I've run several CHKDSKs on my C drive, and they've never shown a problem. But again, I am the lowly noob here, so I will default to whatever you recommend.
My System SpecsSystem Spec
20 Mar 2013   #63
VistaKing

Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
 
 

Run chkdsk once more then after run sfc /scannow

CHKDSK tutorial
Disk Check

SFC /SCANNOW tutorial
SFC /SCANNOW Command - System File Checker

The firmware is not for your model of an SSD.

Added:

Here is Mushkin's tech number 1 (800) 569-1868 and press 1
* * Telephone customer support is available M-F, 8AM-6PM CST * *
My System SpecsSystem Spec
.

20 Mar 2013   #64
Zibeltor

Windows 7 Home Premium 64bit
 
 

Alrighty, I just scheduled a disk check and am going to run it. I don't know if/where it would put a log, but I'll try and upload it when it's done; then I'll run the other program you recommended. Edit: Yeah, the CHKDSK finished. It went so fast I didn't even see the results or anything. If you know where I can find that log I'd be happy to upload it here.

I'm going to start running the other program now, the SFC one.
My System SpecsSystem Spec
20 Mar 2013   #65
VistaKing

Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
 
 

To get the log for ChkDsk take a look at the link below

Check Disk (chkdsk) - Read Event Viewer Log

The log for SFC will be in the folder below
C:\Windows\Logs\CBS\CBS.log
My System SpecsSystem Spec
20 Mar 2013   #66
Zibeltor

Windows 7 Home Premium 64bit
 
 

Okay. I still wasn't exactly sure how you wanted the info, but here you go. I'll start that other sfc program now.

Edit: oh yeah, after looking at the tutorial, one of the Microsoft tech guys already did it. I included the latest logs from that too. It was too big for a text document, so I had to rar it.


Attached Thumbnails
MSE found virtool.win32/obfuscator.XZ but couldn't get rid of it.-chk1.jpg  
Attached Files
File Type: txt CHKDSK log.txt (2.4 KB, 3 views)
My System SpecsSystem Spec
20 Mar 2013   #67
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

Is the date and time correct on your computer?
My System SpecsSystem Spec
20 Mar 2013   #68
VistaKing

Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
 
 

Quote   Quote: Originally Posted by Zibeltor View Post
Okay. I still wasn't exactly sure how you wanted the info, but here you go. I'll start that other sfc program now.

Edit: oh yeah, after looking at the tutorial, one of the Microsoft tech guys already did it. I included the latest logs from that too. It was too big for a text document, so I had to rar it.

What Microsoft tech guys?

Added:

I just had Brink take a look at your logs . We both didn't find any issues on the logs.
My System SpecsSystem Spec
20 Mar 2013   #69
Zibeltor

Windows 7 Home Premium 64bit
 
 

@ Jacee: Yes, the date and time are correct.

@ KingVista: Before I came to this forum, I paid $99 for Microsoft tech support. >.< They did some basic maintenance (taking care of the malware problem, along with you guys mostly), and now my computer seems to only crash in one isolated set of circumstances (where I leave it on and walk away; when I come back the screen is just black and totally nonresponsive so I have to hard shut it down and reboot). Yeah, I was pretty confident my hard drives aren't really the issue. I thought things were going so well, but it it had just crashed now when I came back. :/ I was going to try and upload the latest minidump, but that's not a supported file...
My System SpecsSystem Spec
20 Mar 2013   #70
VistaKing

Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
 
 

The logs have to do with the Windows files itself. I do not think its has anything to do with the actual SSD drive itself. You may call the manufacture of the drive which is Mushkin and ask them if they have a firmware for your drive. If the drive is bad you do have warranty on the drive from the manufacture.

Edit:

The chkdsk log came out good. Id still go with trying to update the firmware though.
My System SpecsSystem Spec
Reply

 MSE found virtool.win32/obfuscator.XZ but couldn't get rid of it.




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Trying to get rid of virtool:win32/obfuscator.xz
Read a couple threads and got a little head start. I ran Adwcleaner and am attaching the log from that and currently running TFC. I want to make sure its 100% gone and any other malware too. Would the next step be running an ESET scan?
System Security
Unable to get rid of virtool.win32/obfuscator.XZ
Hello, I'm a new member. I've got this nasty virus and I cannot get rid of it. Microsoft security essentials keeps detecting it every time I run a complete scan even though it says it is in quarentine. It does not detect it in safe mode. Maybe it is a rootkit? Avira detects it as a hidden...
System Security
Virtool win32 Obfuscator.xz detected w/ MSE
Hello, I realize there's a similar thread on the front page but have come to the understanding I should create my own thread. I recently ran a scan w/ MSE and came back w/ a hit for Virtool win32 Obfuscator.xz. MSE was unable to quarantine or remove it. I found what I think were the...
System Security
Infected by virtool.win32/obfuscator.XZ
Hi Got up this morning to a message that I had a problem. I scanned with MSE and it found virtool.win32/obfuscator.XZ but when I tried to 'clean' the system it seemed to fail. I found a similar post in this forum and so I ran F-secure and here is the report (I think this is what you...
System Security
Virtool win32 Obfuscator.xz detected
i have had this virus for some time now and then one day my mse stared popping up in my Google chrome saying virus and to clean my pc i said no a few time and then i hit yes it download win 7 clean pro which i remove in like 3 seconds but then the file Virtool win32 Obfuscator.xz stayed i got the...
System Security
Infected by virtool.win32/obfuscator.XZ on Windows 7
Hi All, My last MSE scan was in October of 2012, did a scan last night and found that I'm infected with virtool.win32/obfuscator.XZ. I tried to do some research before posting and found these two threads that are relatively recent: 1. Solved: Please help removing virtool:win32/obfuscator.XZ...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 08:16.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App