Follow:

You have been re-routed to the VirTool:Win32/Obfuscator.GZ write up because VirTool%3aWin32%2fObfuscator.GZ has been renamed to VirTool:Win32/Obfuscator.GZ
 

VirTool:Win32/Obfuscator.GZ


VirTool:Win32/Obfuscator are detections for programs that have had their purpose obfuscated to hinder analysis or detection by anti-virus scanners. They commonly employ a combination of methods including encryption, compression, anti-debugging and anti-emulation techniques.


What to do now

Manual removal is not recommended for this threat. To detect and remove this threat and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as the Microsoft Safety Scanner (http://go.microsoft.com/fwlink/?LinkId=212742). For more information, see http://www.microsoft.com/protect/computer/viruses/vista.mspx.
 
For information on additional support options worldwide, see http://www.microsoft.com/protect/support/default.mspx.

Threat behavior

VirTool:Win32/Obfuscator are detections for programs that have had their purpose obfuscated to hinder analysis or detection by anti-virus scanners. They commonly employ a combination of methods including encryption, compression, anti-debugging and anti-emulation techniques.
 
These obfuscation techniques are used on various kinds of malware. The malware that lies "underneath" may have virtually any purpose.

Symptoms

VirTool:Win32/Obfuscator are detections for programs that have had their purpose obfuscated to hinder analysis or  detection by anti-virus scanners. They commonly employ a combination of methods including encryption, compression, anti-debugging and anti-emulation techniques.
 
These obfuscation techniques are used on various kinds of malware. The malware that lies "underneath" may have virtually any purpose. Hence, there are no obvious symptoms that indicate the presence of this malware on an affected machine.

Prevention


Alert level: Severe
First detected by definition: 1.67.698.0
Latest detected by definition: 1.173.2181.0 and higher
First detected on: Oct 12, 2009
This entry was first published on: Nov 17, 2009
This entry was updated on: Apr 17, 2011

This threat is also detected as:
No known aliases