2

Windows Defender should have provided you the file name and path to the file.  Visit https://www.virustotal.com/ and click Choose File.  Navigate to the folder containing the suspicious file, then click the file and click Open.  Click Scan It.



The multiple scan results should indicate more precisely what (if any) threat the file presents.



Open MalwareBytes Anti-Malware.  To the right of Real-Time Protection, click End Free Trial.  This should eliminate conflicts between MBAM and Windows Defender (or other installed antivirus).



Note that Windows Defender (named Microsoft Security Essentials prior to Windows 8) is an extremely poor antivirus.  In ongoing tests by multiple review firms, the product consistently places among the worst for protection.  You must install some other product for adequate safeguards against attack.



The best free antiviruses include BitDefender, Avira, and Qihoo 360.  BitDefender and Avira have an insignificant impact on computer performance.

Virtool.win32.obfuscator.xz

Try a different scanner and a different approach:



How to remove a virus - by Tumbleweed_Biff at Yahoo.com



Top free AV products

Qihoo 360 Internet (arguably the best), ZoneAlarm Free, Adaware Free, Commodo Free, Avast, Avira, AVG



Best Paid:

Kaspersky, eSET, and BitDefender are the top paid AV products.



(Links to four rescue disks are at the bottom, but there are many, many more out there. Most AV providers have one, usually free.)



I) The best solution is to back up your data and perform a factory restore. Install a reputable AV program after the restore and download the latest updates for Windows and your computer before restoring your data.



II) That not being practical for many, try either of the next two methods:

(Please note that it is important to use one of these two methods as you need to boot and scan knowing that no viruses are already in memory. If you try and install an AV product on a machine already infected then there is a decent chance that the virus will be able to hide/relocate from the scanner.)



A.

1) On a clean computer, download 1 or more free bootable AV products. Five I know of are Avira, AVG, Avast, Kaspersky, and G Data but most AV providers offer them, most of them for free. These are often referred to as a Rescue Disc.



(There is a handy product called sardu (www.sarducd.it) which will create a flash drive/Cd capable of having multiple AV products built into it. It isn't perfect yet, but it does do the job pretty well. I keep a copy on a flash drive for whenever I go to someone's house to help with computer problems and I have a number of other diagnostic tools included as well.)



2) Create the bootable media and include the latest virus definitions

3) Boot the infected/suspect computer by using the bootable media and run a full/complete/deep scan of the computer using preferably at least two different ones. No AV product gets them all, but 2 different products should find and remove just about anything.



B. Alternative method:

1) remove the hard drive from the infected computer

2) slave the drive to a clean computer which already has at least one AV product already installed with the most current definitions. You can do this by installing it into the case (for a desktop) or by putting the drive in an external drive case which you can get for the low teens $. These can come with USB (get at least USB 2.0), eSata, or Thunderbolt connections.



3) From the clean machine, run a full/complete scan of the slaved HDD. The computer should already be booted when you connect the external drive, with the AV product already resident in memory (it will have an icon down next to the clock). Then open the AV and run it on the drive. In an ideal world, you should really use two different AV products. MalwareBytes Free is an excellent choice (and my preferred) for on-demand scans like this.



III) If you are unable to do the above, then download and install an AV product and then run it at its deepest level scan. This is not the ideal method as many viruses can hide from AV products if they are already in memory and running before the AV software is executed. There are numerous free AV programs. I strongly recommend two different AV products and one Adware/Spyware product. For free AV, I would typically recommend Qihoo 360 Internet, ZoneAlarm Free, Avira, AVG, or Avast as the installed resident (always running) AV solution and Malwarebytes as a secondary, on demand AV product which I run on a weekly basis. For Spyware and Adware, the two top performers there are AdAware (Lavasoft.com) and Spybot Search and Destroy (safer-networking.org) Both offer a free and paid version. The free version is good, the paid version offers more bells and whistles, just like with the AV products.



Once the virus(es) is/are removed, change any and all passwords having to do with anything important like e-mail, financial-banking logins, etc. as those have probably been captured and sent to the author of the virus.



http://support.kaspersky.com/us/viruses/rescuedisk/

http://www.bitdefender.com/support/how-to-create-a-bitdefender-rescue-cd-627.html

https://www.zonealarm.com/forums/showthread.php/72117-boot-disc-zone-alarm-scan

http://www.lavasoft.com/mylavasoft/support/supportcenter/how-to-create-a-rescue-cd



Separate from the others I will offer to you is Kaspersky's TDSSKiller. Not an actual Rescue Disk by itself, it is at the very top of the list of root-kit finders/eliminators. You should run this in addition to at least one of the others:

http://usa.kaspersky.com/downloads/TDSSKiller