Click on screenshot to zoom
Danger level 6
Type: Trojans
Common infection symptoms:
  • Annoying Pop-up's
  • Block exe files from running
  • Connects to the internet without permission
  • Installs itself without permissions
  • Slow Computer
  • Slow internet connection
  • System crashes


PWS:Win64/Lageliz.A is an upgraded version of PWSteal.Lageliz.A and this newly released Trojan is now capable of attacking Windows systems running on 64-bit version. The devious program may also be recognized by TrojanSpy:Win64/Ursnif.B name and its main purpose is to steal passwords, which is why the activity of keystroke recording applications is virtually guaranteed. It is tremendously important to keep your system clear of such underhand tools as they could easily allow cyber criminals to obtain such highly sensitive data as passwords, user names or secret question answers. Once schemers get a hold of this type of data, your online banking, email and other personal accounts could be breached and used for Trojan’s propagation or highly illegal financial profiting. If your system is not guarded by automatic malware detection and removal software, you will have no assistance in having PWS:Win64/Lageliz.A deleted. And as this happens, you may experience certain Windows dysfunctions that will not only disturb its running but will also create perfect conditions for other malware to enter.

PWS:Win64/Lageliz.A may be followed by numerous dynamic link library files, including replhost64.dll, logmtugc.dll, findasrv.dll, cacll386.dll, windowsinstaller.dll and cmdalua.dll. These devious components are responsible for creating the perfect setting for all other Trojan’s components, and if you want to stay clear of trouble you will need to be most cautious about few dangerous executables. Reader_s.exe is capable of adding registry keys to startup programs, hijacking processes, stealing contact data from email accounts, initiating spam email attacks, creating unauthorized communications to remote servers and employing rootkits to disguise PWS:Win64/Lageliz.A from removal. 17.exe is another dangerous component that is the one responsible for illicit mouse clicks and keystrokes recording and employing Multipurpose Internet Mail Extensions for malicious components’ dispersal to other Windows systems. Even thought these two files are protected from removal by rootkit functionality, the treacherous setup.exe could also come alongside the Trojan with capabilities to remove your access to the Windows Security Center, Registry Editor and Task Manager tools to make it impossible to delete the dangerous components of the latent Trojan.

Since rootkits will be protecting the infection you might not even know that it is running inside your system; however, once you notice any of the aforementioned symptoms, you should not hesitate and implement a legal computer scanner to check whether your system is not under the attack of dangerous infections. Once that is done, our advice for you is to install automatic removal tools to delete PWS:Win64/Lageliz.A, because manual removal is a task too risky in this situation.

Download Spyware Removal Tool to Remove* PWS:Win64/Lageliz.A
  • Quick & tested solution for PWS:Win64/Lageliz.A removal.
  • 100% Free Scan for Windows

How to manually remove PWS:Win64/Lageliz.A

Files associated with PWS:Win64/Lageliz.A infection:


PWS:Win64/Lageliz.A DLL's to remove:


Post comment — WE NEED YOUR OPINION!

Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.