Solved Slow/freezes even in safe mode, found obfuscator virus

Hello,
I downloaded a file yesterday and was alerted by MSE that it was a threat. I deemed it a false positive after scanning it with both malwarebytes and superantispyware and reading the comments of the download.
Everything was fine until today when out of the blue the computer restarts and has a problem rebooting, giving me a window about terminating a thread, which I did, not thinking too much about it. After this I got a BSOD and everything went wrong. Booting the pc normally, I get a gray screen that sometimes goes back to my normal desktop which is really slow and susceptible to freezes. I managed to get an instance that ran well enough to do full scans, which turned up showing a virus in the file I downloaded. MSE however couldn't delete it to I took matters into my own hands and manually found every instance of the file and deleting it. This didn't fix anything though and since then I've been working in safe mode (which sometimes hiccups for long periods of time), scanning with everything I've got, including TDSSkiller, which found things but didn't help the problems.
I am currently trying msconfig with diagnostic startup.

Really need help and some hard truths on how this can play out :/
Thanks!1

TomanMT welcome to SevenForums

Boot into Safe Mode with Networking

On or
Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
Right click on choose on your desktop
Check YES, I accept the Terms of Use.
Click the Start button.
Accept any security warnings from your browser.
Under scan settings, check "Scan Archives" and "Remove found threats"
Click Advanced settings and select the following:
° Scan potentially unwanted applications
° Scan for potentially unsafe applications
° Enable Anti-Stealth technology
ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
When the scan completes, click List Threats
Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
Click the Back button.
Click the Finish button.

Hello, thanks for responding.
I've uploaded the scan results

AdwCleaner

Click here AdwCleaner

:ar: Click on Download Now button

:ar: Save to the Desktop

:ar: Right-click on AdwCleaner.exe and choose

:ar: Click the Scan button

:ar: Upload the AdwCleaner[Rn].txt in your reply.

I've followed your instructions, but the scan has been at pending for over half an hour now

Can you close it and reopen it ?

Yes and I did, but it stays at the pending stage: "Pending. Please uncheck elements you don't want to remove"

Unless the scan just took a few seconds?

Edit: is this it?

Ok run the tool in Safe Mode .

Restart the PC tab on the F8 key when you see the BIOS SPLASH SCREEN with your arrow keys go to Safe Mode on the Advanced Boot Options screen and press Enter on Safe Mode

I'm already in safe mode (with networking).
I uploaded what might be the log file in my previous message.
Thank you for your time!

Thank You for the Scan log can you now click on the Clean button . If you already closed the app reopen it you would have to click on Scan and then click on Clean .

I did all that and booted normally. It took longer than usual and even though it seemed much better, I had to terminate two programs because they referenced memory that no longer existed. After this I got blue screens which my computer is still stuck on.

Farbar Recovery Scan Tool

Choose one that goes with your OS bit version . Save the file to a USB Flash drive

32-bit Version OS :ar: Farbar Recovery Scan Tool

64-Bit Version OS :ar: Farbar Recovery Scan Tool x64




Plug the flash drive into the infected PC.

Enter System Recovery Options.

:ar: To enter System Recovery Options from the Advanced Boot Options:
Restart the computer.
As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
Use the arrow keys to select Repair Your Computer menu item.
Select US as the keyboard language settings, and then click Next.
Select the operating system you want to repair, and then click Next.
Select your user account an click Next.


:ar: On the System Recovery Options menu you will get the following options:

• Startup Repair

• System Restore

• Windows Complete PC Restore

• Windows Memory Diagnostic Tool

• Command Prompt

Select Command Prompt

In the command window type X:\FRST.exe (for x64 bit version type X:\FRST64.exe) and press Enter





The tool will start to run.
When the tool opens click Yes to disclaimer.
Press Scan button.
FRST will let you know when the scan is complete and has written the FRST.txt to file

Upload the FRST.txt file

Ok, here it is!

Open Notepad. Inside notepad paste the highlighted text below


start
HKU\Thomas T\...\Run: [AdobeBridge] - [x]
HKU\Thomas T\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3671872 2012-04-17] (DT Soft Ltd)
HKU\Thomas T\...\RunOnce: [Report] - C:\AdwCleaner\AdwCleaner[S0].txt [4202 2013-08-22] ()
S3 Tcpz-x64; \??\C:\Users\THOMAS~1\AppData\Local\Temp\Tcpz-x64.sys [x]
S1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-05-26] (DT Soft Ltd)
end


Click on File > Save As

Location : USB Flash Drive

File Name : Fixlist.txt

Save as type : All Files

click on Save

Close Notepad

Open FRST again inside System Recovery and click on Fix button . Once done restart and try to login . Upload the new log it created called Fixlog.txt . It should be inside your Flash drive

Booted normally and the computer froze :/
Here's the fixlog

Reboot the PC . See if you could login to normal mode if not boot into Safe Mode with Networking

<==== Download Link <==== Download Link

:ar: Click on one of the links above that goes with your Windows 7 bit versions

:ar: Save to the Desktop.

:ar: Close all windows and browsers

:ar: Right click on and choose

:ar: Press: SCAN

:ar: provide the RKreport.txt (Mode: Scan) in your reply.

Won't work in normal mode but here's the one from safe mode

I'll follow up in a few hours, but thank you very much for your help!

TDSSKILLER

download link :ar: TDSSKiller

Save to the Desktop

Right-click the program and select


When the TDSSKiller console opens, click on: Change Parameters
Under Additional Options, place a check in the box next to: Detect TDLFS File System

Click: OK


Press: Start Scan


If a suspicious object is detected, the default action is Skip, leave it as is, and click on: Continue
If malicious objects are found, they show in the Scan results.
Ensure Cure (the default) is selected, then click: Continue > Reboot now, to finish the cleaning process.
(Note: If Cure is not available, select Skip, >>Do not select: Delete<<)


When done, the tool outputs its log to the disk with the Windows Operating System, normally C:\


Logs have a name like:
C:\TDSSKiller.X.X.X_12.04.2013_15.31.43_log.txt


Please post the TDSSKiller log in your reply.