Worm

Worm:Win32/Lefgroo.A removal tips

Malware Removal

The Worm:Win32/Lefgroo.A is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Worm:Win32/Lefgroo.A virus can do?

    How to determine Worm:Win32/Lefgroo.A?

    

    File Info:
    
crc32: 6B1C358F
    md5: 85e05839fcf8a5f286adf6ad0dae7a85
    name: 85E05839FCF8A5F286ADF6AD0DAE7A85.mlw
    sha1: 75c709a78783f2bd7205e23e2d3593e25c9a0897
    sha256: dd2fa0c095e1edd19eb633c1826dca1574b6ce65a8edc3c6a503caea6344d7cd
    sha512: 9bc61a3c4b40e1cefc2ee020e22eaa1b393ff1d5d4c285ee1c49a483e6951fd04d8c2c0545212166079579a878076e891eb77584435de4aa2f07006bf7eaed9e
    ssdeep: 1536:/JTf1zwQVg3EIQCFM/fQQ8dv+7CMYjaLFH/GQoZL:h71zwL3EIO3YjaxfGQe
    type: PE32 executable (GUI) Intel 80386, for MS Windows
    

    Version Info:
    
0: [No Data]

    Worm:Win32/Lefgroo.A also known as:

    BkavW32.AIDetectVM.malware1
    Elasticmalicious (high confidence)
    DrWebTrojan.PWS.Banker.26728
    MicroWorld-eScanGen:Trojan.Heur.hmW@f96eDUfG
    FireEyeGeneric.mg.85e05839fcf8a5f2
    ALYacGen:Trojan.Heur.hmW@f96eDUfG
    CylanceUnsafe
    VIPRETrojan.Win32.Generic!BT
    SangforMalware
    K7AntiVirusRiskware ( 0040eff71 )
    BitDefenderGen:Trojan.Heur.hmW@f96eDUfG
    K7GWRiskware ( 0040eff71 )
    Cybereasonmalicious.9fcf8a
    BitDefenderThetaAI:Packer.D6DD2A101C
    CyrenW32/Banload.DL.gen!Eldorado
    SymantecTrojan.Gen.2
    TotalDefenseWin32/Lefgroo.B
    APEXMalicious
    AvastWin32:VB-AEUN [Trj]
    ClamAVWin.Trojan.VB-1518
    KasperskyTrojan.Win32.Hesv.ciwv
    NANO-AntivirusTrojan.Win32.Banload.bkcaq
    ViRobotTrojan.Win32.Downloader.118784.I
    TencentWin32.Trojan.Hesv.Ecua
    Ad-AwareGen:Trojan.Heur.hmW@f96eDUfG
    EmsisoftGen:Trojan.Heur.hmW@f96eDUfG (B)
    ComodoWorm.Win32.Sexyono.~A@96eli
    F-SecureTrojan.TR/Patched.Ren.Gen
    BaiduWin32.Worm.VB.rv
    McAfee-GW-EditionBehavesLike.Win32.Generic.ct
    SophosML/PE-A + Mal/Generic-G
    IkarusWorm.Win32.Lefgroo
    JiangminTrojanDownloader.Banload.bfdc
    AviraTR/Patched.Ren.Gen
    Antiy-AVLTrojan[Downloader]/Win32.Banload
    MicrosoftWorm:Win32/Lefgroo.A
    ArcabitTrojan.Heur.EBD1FD
    ZoneAlarmTrojan.Win32.Hesv.ciwv
    GDataGen:Trojan.Heur.hmW@f96eDUfG
    CynetMalicious (score: 100)
    Acronissuspicious
    McAfeeGeneric VB.do
    MAXmalware (ai score=99)
    VBA32Trojan.Hesv
    MalwarebytesMalware.AI.3761583523
    PandaTrj/GdSda.A
    ESET-NOD32a variant of Generik.KIPFZSD
    RisingWorm.Lefgroo!8.124B (TFE:3:93apqUCXD5R)
    SentinelOneStatic AI – Malicious PE
    eGambitUnsafe.AI_Score_100%
    FortinetVB.B!tr
    AVGWin32:VB-AEUN [Trj]
    Paloaltogeneric.ml
    CrowdStrikewin/malicious_confidence_100% (D)
    Qihoo-360Win32/Trojan.4ed

    How to remove Worm:Win32/Lefgroo.A?

    Worm:Win32/Lefgroo.A removal tool
    • Download and install GridinSoft Anti-Malware.
    • Open GridinSoft Anti-Malware and perform a “Standard scan“.
    • Move to quarantine” all items.
    • Open “Tools” tab – Press “Reset Browser Settings“.
    • Select proper browser and options – Click “Reset”.
    • Restart your computer.

    You may also like

    About the author

    Paul Valéry

    I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

    View all posts

    Leave a Comment