HolidayBuyer's Guide

Spyware, Viruses, & Security forum

General discussion

OBFUSCAT variant & Houscall scan

by dzdon / March 14, 2007 1:29 PM PDT

Ok, I'm back, this time with another threat found using TrendMicro House call.
I thought I'd try it since it's been mentioned to help find unwanted things...
The results said it was a possible OBFUS..."suspicious file that manifest behavior and characteristics similar to known OBFUSCAT variants"

I couldn't remove it automatically. It gave me two choices to try and neither could remove it completely. It also gave the option to remove it manually...which I had to re-read a few times to understand, and I'm still not totally clear on manual removal of malware.

I guess my question is what to do now that the scan is over and it cannot remove it completely?? and I just closed the site?? Not really sure if it was completely finished.
I'm not familiar with that online scan and it would just read "idle" in step #3 and give the same two options for what to do next (auto remove or select parts--I think were the choices, then click next/fix)...nothing changed in the results... The only option was to try to fix the threat...which just came back saying it couldn't be removed and go back to the auto remove or select parts then next.

Did I miss something in the scan?? Not wait long enough?? Is there a end screen that let's you know when it's complete??

Sorry my description is a little lame and not very specific. I can try the scan again and write more specifics down if needed.

I'm just not familiar with dealing with trying to fix threats found...actually the whole self scanning and checks is new to me as I previously relied on my all-in-one-Earthlink so I never saw so much information on these threats or computer talk for that matter! I'm learning as I go!

Any more help/advice is always appreciated!
dz

Discussion is locked
You are posting a reply to: OBFUSCAT variant & Houscall scan
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: OBFUSCAT variant & Houscall scan
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
POSSIBLE_OBFUS
by Donna Buenaventura / March 14, 2007 2:09 PM PDT

Malware type: Trojan
Aliases: No Alias Found
In the wild: No
This is the Trend Micro detection for suspicious files that manifest behavior and characteristics similar to known OBFUSCAT variants.

To view sample detailed analyses of OBFUSCAT variants, refer to the following links:
TROJ_OBFUSCAT.CM
TROJ_OBFUSCAT.CC
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=POSSIBLE_OBFUS

http://www.trendmicro.com/vinfo/virusencyclo/default2.asp?m=q&virus=TROJ%5FOBFUSCAT&alt=OBFUSCAT&Sect=SA

dzdon,
I suggest you run the following scan to see if you really have the said trojan:

Downlad AVG Antispyware (freeware) from http://free.grisoft.com/doc/5390/lng/us/tpl/v5#avg-anti-spyware-free (scroll down the page and look for avgas-setup-7.5.0.50.exe to download the free version)

After installation, update the program then run a full system scan.

See if it find and fix any malware (trojan, spyware etc) then let us know how it goes.

"I guess my question is what to do now that the scan is over and it cannot remove it completely"
Housecall should show you a page that says it has finished cleaning the computer. If not, there must be a glitch in the server that halts the cleaning process or the trojan is maybe actively running that maybe blocking the cleaning.

You can try first scanning using AVG antispyware. If you want to try Housecall again, try another Housecall server or link:
http://uk.trendmicro-europe.com/enterprise/products/housecall_launch.php
http://nl.trendmicro-europe.com/consumer/housecall/housecall_launch.php
http://pl.trendmicro-europe.com/consumer/housecall/housecall_launch.php
http://www.housecall.com.sg/
http://www.housecall.co.uk/

Collapse -
Thanks, Donna!
by dzdon / March 14, 2007 11:24 PM PDT
In reply to: POSSIBLE_OBFUS

I do have the AVG antispyware and have been keeping that updated and used for scans...their scan has not found this malware...I will update and scan agian with the AVG antispyware.

Depending on what that may find or not find, I will try another link to Housecall and try it again.

Thanks again for your help!
dz

Collapse -
Hope you'll succeed in running it without issue
by Donna Buenaventura / March 15, 2007 9:13 AM PDT
In reply to: Thanks, Donna!
Popular Forums
icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

HOLIDAY GIFT GUIDE 2017

Cameras that make great holiday gifts

Let them start the new year with a step up in photo and video quality from a phone.