Malware

What is “Exploit:O97M/CVE-2017-0199.RBS!MTB”?

Malware Removal

The Exploit:O97M/CVE-2017-0199.RBS!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Exploit:O97M/CVE-2017-0199.RBS!MTB virus can do?

    Related domains:

    z.whorecord.xyz
    a.tomx.xyz

    How to determine Exploit:O97M/CVE-2017-0199.RBS!MTB?

    

    File Info:
    
crc32: 80E677A5
    md5: 20e8f3b8b542c20ec2ead8fcfa7dad22
    name: upload_file
    sha1: 072f1ba3443ee99a88f91ab1280d4c39c41b10ab
    sha256: d21af67a9556d136d8ae6985a9492d47ee5ce2261658af2e5e7a30971b0c3372
    sha512: e5c09515083c719f1e2ae8d9642302911bd586df610570690f0c315d330d3aa11d2936436a5549e830efa51c7e836326a9111712caffbdf501a7f83963c267a8
    ssdeep: 768:1rjgPn0aj+CZm33onEAuwH7B1M9TlGEMJ++qc:1rjQ0ao3OfuwHl1M9EEiqc
    type: Microsoft Word 2007+
    

    Version Info:
    
0: [No Data]

    Exploit:O97M/CVE-2017-0199.RBS!MTB also known as:

    MicroWorld-eScanTrojan.GenericKD.34642113
    FireEyeTrojan.GenericKD.34642113
    CAT-QuickHealXML.APT.39323
    McAfeeW97M/Downloader.bjz
    AegisLabTrojan.MSOffice.Alien.4!c
    BitDefenderTrojan.GenericKD.34642113
    TrendMicroTROJ_FRS.0NA103J220
    SymantecTrojan.Gen.NPE
    TrendMicro-HouseCallTROJ_FRS.0NA103J220
    AvastOther:Malware-gen [Trj]
    KasperskyHEUR:Trojan.MSOffice.Alien.gen
    AlibabaExploit:Office97/CVE-2017-0199.99191a4c
    NANO-AntivirusExploit.Xml.CVE-2017-0199.equmby
    ViRobotDOC.Z.CVE-2017-0199.40313
    Ad-AwareTrojan.GenericKD.34642113
    EmsisoftTrojan.GenericKD.34642113 (B)
    F-SecureMalware.W97M/Dldr.Agent.mlhzf
    DrWebExploit.Ole2link.24
    McAfee-GW-EditionW97M/Downloader.bjz
    IkarusTrojan-Downloader.DOC.Agent
    GDataXML.Trojan.Agent.44MYB5
    AviraW97M/Dldr.Agent.mlhzf
    MAXmalware (ai score=100)
    MicrosoftExploit:O97M/CVE-2017-0199.RBS!MTB
    ArcabitTrojan.Generic.D21098C1
    ZoneAlarmHEUR:Trojan.MSOffice.Alien.gen
    CynetMalicious (score: 85)
    ALYacExploit.CVE-2017-0199
    ZonerProbably Heur.W97OleLink
    ESET-NOD32DOC/TrojanDownloader.Agent.CDE
    RisingExploit.ExtLink/OFFICE!1.CC29 (CLASSIC)
    FortinetHTML/Agent.BZM!tr
    AVGOther:Malware-gen [Trj]
    Qihoo-360Generic/Trojan.0ab

    How to remove Exploit:O97M/CVE-2017-0199.RBS!MTB?

    Exploit:O97M/CVE-2017-0199.RBS!MTB removal tool
    • Download and install GridinSoft Anti-Malware.
    • Open GridinSoft Anti-Malware and perform a “Standard scan“.
    • Move to quarantine” all items.
    • Open “Tools” tab – Press “Reset Browser Settings“.
    • Select proper browser and options – Click “Reset”.
    • Restart your computer.

    You may also like

    About the author

    Paul Valéry

    I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

    View all posts

    Leave a Comment