Malware

MSIL/ClipBanker.ML removal guide

Malware Removal

The MSIL/ClipBanker.ML is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/ClipBanker.ML virus can do?

  • Network activity detected but not expressed in API logs

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine MSIL/ClipBanker.ML?



File Info:

crc32: 3FC35FA8
md5: 5f669232f64d4730a5a72f5d2fe870ed
name: Whatsminer-M3-Overclock.0.5.exe
sha1: 502e0aa0df89e1741264054b77b3e6abbef416b4
sha256: 8a5b7e5061ac5fa3a3122da4e6382b5d14be9c9e35be03cc7c1e741e7537a118
sha512: 74c827730c54a03f58f43a3aedbf0b90a66da0cb5bd0b39b36dc824b9b9c6644487a8b579530d7253e4b9aa81818bc2b94f490532913dca8b8fbc5eb6f3f8569
ssdeep: 196608:rFw9S6WrG+LILAWzMrHkEI3GI4QfjJABCHUUB8TJHe1rcf95:xKS6YCzMrHkEIWIJjSoULc1wf/
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright:                                                                                                     
FileVersion:                     
CompanyName: Pangolinminer Company                                       
Comments: This installation was built with Inno Setup.
ProductName: Whatsminer-M3-Overclock                                     
ProductVersion: 0.5                                               
FileDescription: Whatsminer-M3-Overclock Setup                               
OriginalFileName:                                                   
Translation: 0x0000 0x04b0

MSIL/ClipBanker.ML also known as:

SangforMalware
K7AntiVirusTrojan ( 0055a5331 )
K7GWTrojan ( 0055a5331 )
SymantecTrojan.Gen.2
AvastWin32:Trojan-gen
GDataWin32.Trojan.Agent.12B2KD
KasperskyHEUR:Trojan.MSIL.Agent.gen
AlibabaTrojan:Linux/Miners.013db5b8
AegisLabTrojan.Win32.Generic.4!c
SophosMal/Generic-S
F-SecureMalware.LINUX/BitCoinMiner.xiiay
McAfee-GW-EditionBehavesLike.Win32.FakeAlert.wc
AviraLINUX/BitCoinMiner.xiiay
ZoneAlarmHEUR:Trojan.MSIL.Agent.gen
MicrosoftProgram:Win32/Wacapew.B!ml
McAfeeArtemis!5F669232F64D
PandaTrj/CI.A
ESET-NOD32a variant of MSIL/ClipBanker.ML
YandexTrojan.Agent!bU7ulkQVhiE
AVGWin32:Trojan-gen
CrowdStrikewin/malicious_confidence_60% (W)
Qihoo-360Win32/Trojan.656

How to remove MSIL/ClipBanker.ML?

MSIL/ClipBanker.ML removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment