Should I remove “TrojanDownloader:O97M/Obfuse.RSS!MTB”?

The TrojanDownloader:O97M/Obfuse.RSS!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What TrojanDownloader:O97M/Obfuse.RSS!MTB virus can do?

• Injection (inter-process)
• Uses Windows utilities for basic functionality
• Attempts to repeatedly call a single API many times in order to delay analysis time
• A potential decoy document was displayed to the user
• Network activity detected but not expressed in API logs

Related domains:

How to determine TrojanDownloader:O97M/Obfuse.RSS!MTB?

File Info:
crc32: A36C20B9
md5: 27665956770e57f18afdc4390b614cd6
name: upload_file
sha1: cb86e4d2be66b9e969cb6474f3c50d452bed0429
sha256: d0a60b03804b8bd8b237ca18c46d628f69a683c3671450d959f8d48e9c412b33
sha512: 72bdad697b87e77b35576be8c114a420ad5c1be8dc3a6a1bd6baad385fa79710b2597400fed16485ac38552a25fbc55a94858e68a84f055ee109ce45437cdf32
ssdeep: 6144:CmVI/9i/E6yk2R9jDRu6VvCqHimnTHWce7h3B:CmVUi8Kywi9Hi21Ghx
type: Composite Document File V2 Document, No summary info

Version Info:
0: [No Data]

TrojanDownloader:O97M/Obfuse.RSS!MTB also known as:

How to remove TrojanDownloader:O97M/Obfuse.RSS!MTB?

• Download and install GridinSoft Anti-Malware.
• Open GridinSoft Anti-Malware and perform a “Standard scan“.
• “Move to quarantine” all items.
• Open “Tools” tab – Press “Reset Browser Settings“.
• Select proper browser and options – Click “Reset”.
• Restart your computer.