Trojan:MSIL/RelineStealer.D!MTB removal instruction

Malware Removal

The Trojan:MSIL/RelineStealer.D!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Trojan:MSIL/RelineStealer.D!MTB virus can do?

  • Presents an Authenticode digital signature
  • Network activity detected but not expressed in API logs

How to determine Trojan:MSIL/RelineStealer.D!MTB?


File Info:

crc32: DFFF1B57
md5: 361f38a55dc9cac34d8d273d1da55a10
name: 361F38A55DC9CAC34D8D273D1DA55A10.mlw
sha1: 4530e6ad5b2f5fe93d2293888db3e4b9cd12c55f
sha256: 34d439292fb89af5799e3659aa8b455a3c69699582ddb442049d10a6b068ebbf
sha512: 238ef397f5260052bcca3337d1ee991d855e4280db54be097f7676e0c822e806313511ed4dfadbfcaa1a196e2c947113dc9bafdfb9c76a5c2fdef294e031f0b1
ssdeep: 1536:pe16rb12ylclizKFez601ajbuRGd3nhuyq/dRVndbknE/G6qTaoigZz5h:kZsrz601Yv3nYyOdR/kEqJz5h
type: PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:

Translation: 0x0000 0x04b0
LegalCopyright:
Assembly Version: 0.0.0.0
InternalName: Loitering.exe
FileVersion: 0.0.0.0
ProductVersion: 0.0.0.0
FileDescription:
OriginalFilename: Loitering.exe

Trojan:MSIL/RelineStealer.D!MTB also known as:

K7AntiVirusSpyware ( 0057a4861 )
LionicTrojan.MSIL.Reline.i!c
Elasticmalicious (high confidence)
DrWebTrojan.PWS.Siggen3.2580
CynetMalicious (score: 100)
ALYacGen:Variant.Ser.Bulz.305
CylanceUnsafe
K7GWSpyware ( 0057a4861 )
CyrenW32/MSIL_Agent.BJO.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Spy.Agent.DFY
APEXMalicious
AvastWin32:DangerousSig [Trj]
ClamAVWin.Packed.Generickdz-9879553-0
KasperskyHEUR:Trojan-PSW.MSIL.Reline.gen
BitDefenderGen:Variant.Ser.Bulz.305
MicroWorld-eScanGen:Variant.Ser.Bulz.305
TencentMsil.Trojan-qqpass.Qqrob.Lhnj
Ad-AwareGen:Variant.Ser.Bulz.305
SophosMal/Generic-S
McAfee-GW-EditionArtemis!Trojan
FireEyeGen:Variant.Ser.Bulz.305
EmsisoftMalCert-S.LA (A)
SentinelOneStatic AI – Suspicious PE
AviraHEUR/AGEN.1144480
Antiy-AVLTrojan/Generic.ASMalwS.348DFC1
MicrosoftTrojan:MSIL/RelineStealer.D!MTB
GridinsoftTrojan.Kryptik.dd!c
ArcabitTrojan.Ser.Bulz.305
GDataGen:Variant.Ser.Bulz.305
AhnLab-V3Infostealer/Win.RedLine.C4566112
McAfeeGenericRXQA-AF!361F38A55DC9
MAXmalware (ai score=86)
VBA32TScope.Trojan.MSIL
MalwarebytesSpyware.PasswordStealer
PandaTrj/CI.A
RisingStealer.Agent!1.D483 (CLASSIC)
IkarusTrojan.MSIL.Spy
MaxSecureTrojan.Malware.121218.susgen
FortinetMSIL/Agent.DFY!tr.spy
AVGWin32:DangerousSig [Trj]
Paloaltogeneric.ml

How to remove Trojan:MSIL/RelineStealer.D!MTB?

Trojan:MSIL/RelineStealer.D!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment