About “Ursu.815242” infection

The Ursu.815242 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Ursu.815242 virus can do?

• Network activity detected but not expressed in API logs
• Anomalous binary characteristics

How to determine Ursu.815242?

File Info:
crc32: 61ACF081
md5: f5e22c6f44522a036ac33d2512b326ba
name: args2clp.exe
sha1: 1c6b6f13517eea86d20d0cb712fffb6e5e912046
sha256: dd210478bfc3e2fe2afa92fc26c799ee7bdaa6478ac2bb8e9dcf5ec8287a9917
sha512: 0f4faa4d2918a397916f2c87cc31fd58133ea0c85e79bd2cf2024cf0b7e9048682f02598cbbc6aed3b4c3b463c5a7af9ade88b6cc6a168da8049c5a8460f1465
ssdeep: 1536:2p/bpnt0YBTwwYSeB+V8Zhm65U4lBG8GIPXJ:25v0O4HmIU4NP5
type: PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows

Version Info:
LegalCopyright: xa9 2011, 2020 Erhard Riedel (ERCC)
InternalName: args2clp
FileVersion: 1.2
CompanyName: Erhard Riedel Computer Consulting (ERCC)
ProductName: Arguments-to-Clipboard
ProductVersion: 1.2
FileDescription: Copy arguments to the clipboard
OriginalFilename: args2clp.exe
Translation: 0x0409 0x04b0

Ursu.815242 also known as:

How to remove Ursu.815242?

• Download and install GridinSoft Anti-Malware.
• Open GridinSoft Anti-Malware and perform a “Standard scan“.
• “Move to quarantine” all items.
• Open “Tools” tab – Press “Reset Browser Settings“.
• Select proper browser and options – Click “Reset”.
• Restart your computer.