Trojan.Win32.Lebag.dcc
Trojan.Win32.Lebag.dcc is a Trojan that may represent security risk for the infected PC system and its network environment. Trojan.Win32.Lebag.dcc creates security vulnerabilities to enable cyber-criminals monitor your computer and make your PC system almost unusable by proliferating itself. Once Trojan.Win32.Lebag.dcc infiltrates into the affected machine, it changes your desktop background and illustrates various fake warning messages. Trojan.Win32.Lebag.dcc can use a large amount of your system resources to trace your computer activities or show pop-up ads that may notably slow down the PC work or even make it crash randomly. You need to delete Trojan.Win32.Lebag.dcc as soon as possible once you detect it.
Aliases
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:%ProgramFiles%\Common Files\designer\MSHTMPGD.DLL
File name: %ProgramFiles%\Common Files\designer\MSHTMPGD.DLLFile type: Dynamic link library
Mime Type: unknown/DLL
%ProgramFiles%\Common Files\designer\MSADDNDR.DLL
File name: %ProgramFiles%\Common Files\designer\MSADDNDR.DLLFile type: Dynamic link library
Mime Type: unknown/DLL
%ProgramFiles%\Common Files\designer\MSHTMPGR.DLL
File name: %ProgramFiles%\Common Files\designer\MSHTMPGR.DLLFile type: Dynamic link library
Mime Type: unknown/DLL
c:\Inetpub\wwwroot\index.html
File name: c:\Inetpub\wwwroot\index.htmlMime Type: unknown/html
c:\contacts.html
File name: c:\contacts.htmlMime Type: unknown/html
%AppData%\attpoxfl.log
File name: %AppData%\attpoxfl.logMime Type: unknown/log
Registry Modifications
HKEY..\..\..\..{Subkeys}HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal\Boot file systemHKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal\Boot Bus ExtenderHKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal\BaseHKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal\AppMgmtHKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\MinimalHKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal\dmboot.sysHKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal\dmadminHKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal\DcomLaunchHKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal\CryptSvc
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.