ClipBanker.215 (B) removal guide

The ClipBanker.215 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What ClipBanker.215 (B) virus can do?

Executable code extraction
Creates RWX memory
Unconventionial binary language: Russian
Unconventionial language used in binary resources: Russian
The binary likely contains encrypted or compressed data.
Anomalous binary characteristics

Related domains:

when.legtest.bid

wake.tendencyrhythm.bid

How to determine ClipBanker.215 (B)?


File Info:
crc32: 48E04C99
md5: a4ca362f85a4819726045e56f0c09ded
name: A4CA362F85A4819726045E56F0C09DED.mlw
sha1: 02e8aa1fbcb2d351dd2d6198dd8e9e5fdec96905
sha256: 50fca792555d5740a53d550c08842cb1c4b164aa6049eab089242781c57f5dba
sha512: 28145d2c1cea509326936b2a49011631cec135463b5e958ce0ef3c98925690048f6c3de8809834f767164b384f0ab07ea31df188d7c085215452713c4ac75efb
ssdeep: 12288:YtENWEYjyWPnOsoja6S7oSEMwDgIJ3745Oa:6EYjyWPnojhSM4wDgQ3745O
type: PE32 executable (console) Intel 80386, for MS Windows

Version Info:
LegalCopyright: Copyright (C) 2017
InternalName: TemplatelExeFile.rc
FileVersion: 1.0.0.1
CompanyName: TODO: 
ProductName: TODO: 
ProductVersion: 1.0.0.1
FileDescription: TODO: 
OriginalFilename: TemplatelExeFile.rc
Translation: 0x0419 0x04b0

ClipBanker.215 (B) also known as:

Bkav	W32.AIDetect.malware1
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.ClipBanker.215
FireEye	Generic.mg.a4ca362f85a48197
CAT-QuickHeal	SwBundler.Prepscram.EMU.Y7
ALYac	Gen:Variant.ClipBanker.215
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
AegisLab	Adware.Win32.Generic.2!c
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Trojan ( 00528e801 )
BitDefender	Gen:Variant.ClipBanker.215
K7GW	Trojan ( 0050eca01 )
Cybereason	malicious.f85a48
Cyren	W32/S-4ce797cb!Eldorado
Symantec	Trojan.Gen.2
APEX	Malicious
Avast	Win32:Evo-gen [Susp]
Cynet	Malicious (score: 100)
Kaspersky	not-a-virus:HEUR:AdWare.Win32.StartSurf.gen
Alibaba	Trojan:Win32/Kryptik.d267df5c
NANO-Antivirus	Riskware.Win32.StartSurf.ephkxd
Rising	Trojan.Kryptik!1.AB1C (CLASSIC)
Ad-Aware	Gen:Variant.ClipBanker.215
Emsisoft	Gen:Variant.ClipBanker.215 (B)
Comodo	Application.Win32.IStartSurf.BS@7lng48
F-Secure	Heuristic.HEUR/AGEN.1103317
Zillya	Adware.StartSurf.Win32.11782
McAfee-GW-Edition	BehavesLike.Win32.Generic.hc
Sophos	Generic PUA AC (PUA)
SentinelOne	Static AI – Malicious PE
Jiangmin	AdWare.Generic.fzpr
Avira	HEUR/AGEN.1103317
eGambit	Unsafe.AI_Score_99%
Antiy-AVL	GrayWare[AdWare]/Win32.AGeneric
Microsoft	SoftwareBundler:Win32/Prepscram
Arcabit	Trojan.ClipBanker.215
SUPERAntiSpyware	PUP.Bundler/Variant
ZoneAlarm	not-a-virus:HEUR:AdWare.Win32.StartSurf.gen
GData	Gen:Variant.ClipBanker.215
AhnLab-V3	PUP/Win32.StartSurf.R201639
Acronis	suspicious
McAfee	PUP-XBQ-UU
MAX	malware (ai score=88)
VBA32	BScope.AdWare.StartSurf
Malwarebytes	Generic.Trojan.Bundler.DDS
Panda	Trj/Genetic.gen
ESET-NOD32	a variant of Win32/Kryptik.FSSN
Tencent	Malware.Win32.Gencirc.10b3a151
Yandex	Trojan.GenAsa!Oktj2z3Be/Q
Ikarus	AdWare.ICLoader
MaxSecure	Trojan.Malware.3771246.susgen
Fortinet	W32/Kryptik.FTMV!tr
BitDefenderTheta	Gen:NN.ZexaF.34590.Gy0@amzDGVak
AVG	Win32:Evo-gen [Susp]
Paloalto	generic.ml
Qihoo-360	Win32/Adware.Generic.HgIASOYA

How to remove ClipBanker.215 (B)?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

ClipBanker.215 (B) removal guide