Trojan.ClipBanker Removal Report

Table of Contents

SpyHunter Detects & Remove Trojan.ClipBanker

File System Details

Trojan.ClipBanker may create the following file(s):

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	srvrtl.exe	9779b9378ca6173462b89c9521177764	1,733
Name: srvrtl.exe MD5: 9779b9378ca6173462b89c9521177764 Size: 186.88 KB (186880 bytes) Detections: 1,733 Type: Executable File Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\windows rtl handler\srvrtl.exe Group: Malware file Last Updated: February 27, 2025
2.	winmsvc.exe	90c83cc7c56c0eb8f27a2226c27191ea	1,185
Name: winmsvc.exe MD5: 90c83cc7c56c0eb8f27a2226c27191ea Size: 86.52 KB (86528 bytes) Detections: 1,185 Type: Executable File Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\windows maintenance service\winmsvc.exe Group: Malware file Last Updated: August 6, 2021
3.	eyT97uo9.exe	89f7111c4e38e1b15d34cd9c294e410f	345
Name: eyT97uo9.exe MD5: 89f7111c4e38e1b15d34cd9c294e410f Size: 8.22 MB (8228352 bytes) Detections: 345 Type: Executable File Path: %SYSTEMDRIVE%\Users\<username>\AppData\Roaming\eyT97uo9.exe Group: Malware file Last Updated: December 27, 2024
4.	ntredirect.dll	61131c939b98075c07e189830ff2879d	328
Name: ntredirect.dll MD5: 61131c939b98075c07e189830ff2879d Size: 19.92 MB (19922432 bytes) Detections: 328 Type: Dynamic link library Path: c:\Users\<username>\appdata\roaming\1000107060 Group: Malware file Last Updated: February 18, 2025
5.	ndproxy.dll	a5141201690835a00d4ae138358c36c2	290
Name: ndproxy.dll MD5: a5141201690835a00d4ae138358c36c2 Size: 761.97 KB (761976 bytes) Detections: 290 Type: Dynamic link library Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\1000098060\ndproxy.dll Group: Malware file Last Updated: February 1, 2025
6.	avicapn32.dll	5e95d4d1f6b6398a9bd43714fb382f94	195
Name: avicapn32.dll MD5: 5e95d4d1f6b6398a9bd43714fb382f94 Size: 1.54 MB (1543168 bytes) Detections: 195 Type: Dynamic link library Path: C:\Users\<username>\1000011062\avicapn32.dll Group: Malware file Last Updated: June 11, 2025
7.	dllhost.exe	ef41c74b3376c412f33bebf9bb2a1cbe	141
Name: dllhost.exe MD5: ef41c74b3376c412f33bebf9bb2a1cbe Size: 380.41 KB (380416 bytes) Detections: 141 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\NVIDIA\dllhost.exe Group: Malware file Last Updated: November 7, 2022
8.	clip.exe	8d3942d2bfaf962a1177aee8d08ca079	135
Name: clip.exe MD5: 8d3942d2bfaf962a1177aee8d08ca079 Size: 4.38 MB (4386304 bytes) Detections: 135 Type: Executable File Path: C:\Users\<username>\AppData\Local\Temp\1000123001\clip.exe Group: Malware file Last Updated: September 30, 2024
9.	G54IJEBFCA80M8H.exe	d23dba81354832b3ebee6ff8e79ac839	81
Name: G54IJEBFCA80M8H.exe MD5: d23dba81354832b3ebee6ff8e79ac839 Size: 187.39 KB (187392 bytes) Detections: 81 Type: Executable File Path: C:\Users\<username>\AppData\Local\Temp\G54IJEBFCA80M8H.exe Group: Malware file Last Updated: February 11, 2023
10.	crashreporter.exe	3bb940f619750cbe0bcfc244830077e2	57
Name: crashreporter.exe MD5: 3bb940f619750cbe0bcfc244830077e2 Size: 187.83 KB (187832 bytes) Detections: 57 Type: Executable File Path: C:\Program Files (x86)\Google\CrashReports\crashreporter.exe Group: Malware file Last Updated: December 27, 2024
11.	KThX19g6.exe	e67794445d4082a91b6918d8966bd0f9	27
Name: KThX19g6.exe MD5: e67794445d4082a91b6918d8966bd0f9 Size: 8.07 MB (8075776 bytes) Detections: 27 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\KThX19g6.exe Group: Malware file Last Updated: November 28, 2024
12.	VTubF269.exe	78082230153a2a96641cef68d3afab04	27
Name: VTubF269.exe MD5: 78082230153a2a96641cef68d3afab04 Size: 8.47 MB (8478208 bytes) Detections: 27 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\VTubF269.exe Group: Malware file Last Updated: November 28, 2024
13.	5Ieg5J6t.exe	75032ec6fc183cd80008b1cd4799e7dc	11
Name: 5Ieg5J6t.exe MD5: 75032ec6fc183cd80008b1cd4799e7dc Size: 8.86 MB (8866816 bytes) Detections: 11 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\5Ieg5J6t.exe Group: Malware file Last Updated: March 7, 2025
14.	38cCDuZM.exe	cd18e484f6d852e0bcb8a58b9ce25de7	6
Name: 38cCDuZM.exe MD5: cd18e484f6d852e0bcb8a58b9ce25de7 Size: 4.78 MB (4786688 bytes) Detections: 6 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\38cCDuZM.exe Group: Malware file Last Updated: November 28, 2024
15.	a6f97da1bbd5fbff3bb5496489c33f1f	a6f97da1bbd5fbff3bb5496489c33f1f	0
Name: a6f97da1bbd5fbff3bb5496489c33f1f MD5: a6f97da1bbd5fbff3bb5496489c33f1f Size: 256 KB (256000 bytes) Detections: 0 Group: Malware file

More files

Registry Details

Trojan.ClipBanker may create the following registry entry or registry entries:

Regexp file mask

%ALLUSERSPROFILE%\windowsnetwork\networkfix.exe

%ALLUSERSPROFILE%\xun.exe

%APPDATA%\check.exe

%APPDATA%\Microsoft\Windows\updlive.exe

%APPDATA%\Sound Volume Control\sndvol.exe

%LOCALAPPDATA%\winhost.exe

%TEMP%\conshost.exe

Directories

Trojan.ClipBanker may create the following directory or directories:

%ALLUSERSPROFILE%\Bonjour\2020

%ALLUSERSPROFILE%\HP\2020

%ALLUSERSPROFILE%\Java\2020

%ALLUSERSPROFILE%\ProductData\2020

%APPDATA%\Windows RTL Handler

%APPDATA%\sata monitor

%APPDATA%\windows maintenance service

%LOCALAPPDATA%\AptLnchb

%LOCALAPPDATA%\mscboard

%UserProfile%\Local Settings\Application Data\mscboard

Ranking:	1,359
Threat Level:	80 % (High)
Infected Computers:	47,134

First Seen:	February 26, 2016
Last Seen:	June 11, 2025
OS(es) Affected:	Windows

EnigmaSoft’s Payment Processor Digital River GmbH Filing for Bankruptcy Does Not Impact SpyHunter Customers’ Anti-Malware Protection

Search

Change Region

Trojan.ClipBanker

Threat Scorecard

EnigmaSoft Threat Scorecard

SpyHunter Detects & Remove Trojan.ClipBanker

File System Details

Registry Details

Directories

Submit Comment

Related Posts

Trojan.ClipBanker.C

Trending

'Dance of the Hillary' Malware

Deadglyph Backdoor

Bionom Query Utils

Most Viewed

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen

Discord Is Stuck on Gray Screen