Severity scale:  

HSBC virus. How to remove? (Uninstall guide)

removal by Ugnius Kiguolis - - | Type: Trojans

HSBC virus is a trojan horse, which is spread via misleading email messages that claim to be from HSBC Bank. In most of the cases, the subject of this phishing email says “Payment Advice – Advice Ref:[XXXXXXXX]“ and has an attachment of 96 kB, which is named as “”. If you fall for this trickery and download the file, your PC gets infected with the trojan horse, which is detected as W32/Trojan.IWRE-9169, PWS.Win32.Fareit.AMN (A) or W32/Yakes.B!tr, depending on the security software you use. It's dangerous to keep this trojan on your computer because it can be easily used for stealing banking data by recording the keyboard clicks. Besides, it can also be set to download more dangerous viruses on your computer or initiate other malicious activities. If you think that your PC has been infected with HSBC virus, you must run a full system scan with updated anti-spyware ASAP.


This phishing email, which is usually involved to the distribution of HSBC virus, can easily reach almost every PC user, no matter he/she is the client of HSBC or not. Typically, this letter claims that it seeks to validate the personal information of HSBC customers. The latest version on this virus spreads via such fake email:

Upon your request, attached please find payment e-Advice for your reference.
Yours faithfully
We maintain strict security standards and procedures to prevent unauthorised access to information about you. HSBC will never contact you by e-mail or otherwise to ask you to validate personal information such as your user ID, password, or account numbers. If you receive such a request, please call our Direct Financial Services hotline.
Please do not reply to this e-mail. Should you wish to contact us, please send your e-mail to and we will respond to you.
Note: it is important that you do not provide your account or credit card numbers, or convey any confidential information or banking instructions, in your reply mail.

Please, keep in mind that HSBC bank has never been sending e-mails for asking its clients to validate their personal data, so you should never provide your personal information even if you are HSBC's client. Ignore this e-mail and delete the message as soon as it reaches you. Note that scammers can easily alter the subject name or other things of their fraudulent mail in order to trick more PC users.


If you have been tricked into downloading HSBC virus on your computer, you should run a full system scan with updated anti-spyware without any delay. In order to remove infected files from the system and avoid the loss of your personal information and money, use Reimage.

do it now!
Reimage (remover) Happiness
Reimage (remover) Happiness
Compatible with Microsoft Windows Supported versions Compatible with OS X Supported versions
What to do if failed?
If you failed to remove virus damage using Reimage, submit a question to our support team and provide as much details as possible.
Reimage is recommended to remove virus damage. Free scanner allows you to check whether your PC is infected or not. If you need to remove malware, you have to purchase the licensed version of Reimage malware removal tool.
Alternative Software
Different security software includes different virus database. If you didn’t succeed in finding malware with Reimage, try running alternative scan with Malwarebytes.
Alternative Software
Different security software includes different virus database. If you didn’t succeed in finding malware with Reimage, try running alternative scan with Combo Cleaner.

About the author

Ugnius Kiguolis
Ugnius Kiguolis - The mastermind

If this free removal guide helped you and you are satisfied with our service, please consider making a donation to keep this service alive. Even a smallest amount will be appreciated.

Contact Ugnius Kiguolis
About the company Esolutions