Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: having possible issues related to VirTool:Win32\Obfuscator.XZ

14 Jul 2013   #1

Windows 7 Home Premium 64bit
 
 
having possible issues related to VirTool:Win32\Obfuscator.XZ

hi, so about 2 weeks ago i dled a cracked version of the crysis series and it turned out that the cracked had contained the VirTool:Win32\Obfuscator.XZ malware (picked up by MSE) and subsequently steam stopped working properly (not sure if related). i removed the files that MSE said contained the obfuscator.XZ and things started working better again, but recently the same issues arose again, but MSE doesn't pick up anything when i run a full scan. is there a way to properly scan for and remove it?

My System SpecsSystem Spec
.

14 Jul 2013   #2

Windows 7 Home Premium
 
 

FishChicken,

Besides being illegal, cracked software is a prime source for infecting your system.

This forum, as well as other reputable malware removal forums, do not support the use of illegal software, otherwise it is construed as aiding and abetting theft.

If you wish to receive help, then you must remove all cracked software and any cracking tools from the computer.

When done, download CKScanner:
http://downloads.malwareremoval.com/CKScanner.exe

Important: - Save it to your Desktop

Double-click CKScanner.exe, then, click: Search For Files
When a list appears, click: Save List To File
A message box verifies the file saved.

Double-click the CKFiles.txt on your Desktop, and copy/paste the contents in your reply.
My System SpecsSystem Spec
14 Jul 2013   #3

Windows 7 Home Premium 64bit
 
 

hi, thanks for the reply
yeah i removed any of the cracked software etc from my comp and i ran the scanner, but this is all it came up with


Attached Files
File Type: txt ckfiles.txt (127 Bytes, 10 views)
My System SpecsSystem Spec
.


14 Jul 2013   #4

Windows 7 Home Premium
 
 

Please run the following online scanner...

This may take a while, so run the following when you can be home.

The ESET Scanner is implemented as an ActiveX control, so it is best run on Internet Explorer.
Right click the IE shortcut and select: Run as Administrator

Next, download: Free Online Virus Scanner | ESET

On the ESET website, click on: Run ESET Online Scanner
Click: Start

When asked, allow the add-on to be installed
Click: Start again

On the next prompt, Computer Scan Settings, uncheck: Remove found threats
Next, click on: Advanced Settings


Make sure these options are checked:
  • Scan for potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth Technology
Click: Scan


When the scan is completed, if threats are found, in the Scan Results prompt:
  • Click on: List of threats found
  • Click on: Export to text file
  • Save to the Desktop and name it ESET Scan Results
  • Click on: Back
  • Place a check on: Uninstall application on close
  • Click on: Finish, and close the program.
Please provide the ESET report in your reply to determine if any further action is necessary.
My System SpecsSystem Spec
15 Jul 2013   #5

Windows 7 Home Premium 64bit
 
 

here's the list


Attached Files
File Type: txt ESETlist.txt (854 Bytes, 9 views)
My System SpecsSystem Spec
15 Jul 2013   #6

Windows 7 Home Premium
 
 

ESET is showing some adware/junkware in the system, so, please do the following:

Download AdwCleaner:

http://www.bleepingcomputer.com/download/adwcleaner/
  • Save the program to the Desktop
  • Close all open programs and internet browsers.
  • Right-click on adwcleaner.exe and select: Run As Administrator
  • At the program console, click on: Delete
  • When the program is done, the computer is rebooted automatically, and a text file opens after the restart.
Please post the AdwCleaner report in your reply. <<<---




Also use the Junkware Removal Tool Download
Save to the Desktop.

Make sure you temporarily disable your AntiVirus, Firewall, and any other AntiSpyware applications.
These programs may interfere with the running of JRT.
Info: How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs - Security Mini-Guides

Right-click JRT.exe and select: Run as Administrator
The tool opens and starts scanning the system. Please be patient as this can take a while...

When done, a report, JRT.txt is saved on the Desktop.

Please post the contents of JRT.txt in your reply.
My System SpecsSystem Spec
16 Jul 2013   #7

Windows 7 Home Premium 64bit
 
 

here are the reports:


Attached Files
File Type: txt JRT.txt (2.3 KB, 2 views)
File Type: txt AdwCleaner[S2].txt (1.7 KB, 2 views)
My System SpecsSystem Spec
16 Jul 2013   #8

Windows 7 Home Premium
 
 

Please do the following...this tool normally detects hard to find malware.

Download the Farbar Recovery Scan Tool
Select the 64-bit version.
Save to the Desktop.
  • Double-click the downloaded file to run it.
  • When the tool opens click Yes to disclaimer.
  • Press the Scan button.
  • FRST64 makes a log (FRST.txt) in the same directory from which the tool is run (Desktop).
Please provide the FRST.txt in your reply. <<---


The first time the tool is run, it also makes another log: Addition.txt
Also post the Addition.txt in your reply. <<---
My System SpecsSystem Spec
16 Jul 2013   #9

Windows 7 Home Premium 64bit
 
 

here you go


Attached Files
File Type: txt FRST.txt (49.7 KB, 4 views)
File Type: txt Addition.txt (24.1 KB, 3 views)
My System SpecsSystem Spec
17 Jul 2013   #10

Windows 7 Home Premium
 
 

Are you still having issues possibly related to VirTool:Win32\Obfuscator.XZ?

VirTool:Win32/Obfuscator detections are programs/files modified to prevent detection by AntiVirus scanners.

From working on a few cases where VirTool:Win32/Obfuscator was detected, noticed that cracks, keygens and serials were used.
My System SpecsSystem Spec
Reply

 having possible issues related to VirTool:Win32\Obfuscator.XZ




Thread Tools



Similar help and support threads for2: having possible issues related to VirTool:Win32\Obfuscator.XZ
Thread Forum
Trying to get rid of virtool:win32/obfuscator.xz System Security
Unable to get rid of virtool.win32/obfuscator.XZ System Security
Solved Virtool win32 Obfuscator.xz detected w/ MSE System Security
Solved MSE found virtool.win32/obfuscator.XZ but couldn't get rid of it. System Security
Infected by virtool.win32/obfuscator.XZ System Security
Solved Virtool win32 Obfuscator.xz detected System Security
Infected by virtool.win32/obfuscator.XZ on Windows 7 System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 11:05 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33