How to remove Laqma Spyware from PC?

In this post, I am going to tell you about the indicators of Laqma spyware presence, and how to erase Laqma spyware virus from your computer system.

GridinSoft Anti-Malware
Editor's choice
GridinSoft Anti-Malware
Manual Laqma removal might be a lengthy and complicated process that requires expert skills. GridinSoft Anti-Malware is a professional antivirus tool that is recommended to get rid of this Laqma spyware trojan.
By downloading any software listed on this website you agree to our Privacy Policy and Terms of Use. To use full-featured product, you have to purchase a license for GridinSoft Anti-Malware. 6 days free trial available.

Describing Laqma spyware

Laqma TrojanSpy as the computer virus is not a solitary application, but a component of considerably more expansive as well as complex malware – trojan-stealer. It’s a form of trojan, which is targeted on your individual information, and accumulates actually every little thing regarding you and your computer. Typically, stealers have keylogger functionalities1, which empower them to capture your keystrokes. Besides that, Laqma virus can accumulate your cookie files, your phone number, location; it likewise can take all your passwords from the keychain within the web browser.

Name Laqma
Infection Type Spyware
  • Yara rule detections observed from a process memory dump/dropped files/CAPE;
  • Dynamic (imported) function loading detected;
  • Reads data out of its own binary image;
  • The binary contains an unknown PE section name indicative of packing;
  • The binary likely contains encrypted or compressed data.;
  • The executable is compressed using UPX;
  • Authenticode signature is invalid;
  • Creates a copy of itself;
Similar behavior Blanajog, Fitin, Banload
Fix Tool

See If Your System Has Been Affected by Laqma spyware

Nonetheless, the significant share of Laqma spy are seeking for your banking data: credit card number, safety codes and expiration date. For instance, if you utilize online banking, the Laqma stealer is able to compromise your login and password, so the thugs will certainly get access to your bank account. Many different company data may also be an object of attention of Laqma virus distributors, and an instance of huge firms such information leak can result in harmful effects.

Statistics of spyware activity in 2020
TrojanSpy activity in 2020, compared to backdoor viruses activity

The main distribution manners of Laqma spyware are very similar to other trojans. Nowadays, the majority of such programs are dispersed via email additions. These attachments (. docx,. pdf files) include infected macroses, that are used by Laqma spy to contaminate your computer. In some cases, these letters have links to the phishing clones of familiar sites, like Facebook, Twitter, LinkedIn or so.

Related Articles
Rating of different spyware activity

Most popular spyware in 20202

It’s important to state that there is a separate type of spyware – for Android operating system. Such apps have similar functionalities as the PC edition does, however, mobile virus is distributed as a legitimate application for keeping track of the spouse’s or children’s area. Nevertheless, besides taking different private information, it can also reveal you a completely wrong location of the gadget you are attempting to track. Such scenarios may create quarrels out of the blue.

How can I understand that my computer is infected with Laqma spyware?

Laqma spy is a very stealth malware, simply because its performance depends upon for how long it will operate before being spotted. So, Laqma spyware developers made everything to make their malware existence as imperceptible as feasible. Naturally, you will realize that your accounts in social networks are swiped, and cash from your bank account is flowing away, however it is far too late.

Laqma also known as

Bkav W32.AIDetect.malware1
Lionic Trojan.Win32.Agent.tpic
Elastic malicious (high confidence)
DrWeb Trojan.DownLoader.52965
MicroWorld-eScan Dropped:Trojan.Gunex.A
FireEye Generic.mg.1912b451648c33af
CAT-QuickHeal Trojan.Mauvaise.SL1
McAfee generic!bg.eox
Cylance Unsafe
VIPRE Trojan.Win32.Generic!BT
Sangfor Suspicious.Win32.Save.a
K7AntiVirus RootKit ( 0055e3fe1 )
K7GW RootKit ( 0055e3fe1 )
Cybereason malicious.1648c3
BitDefenderTheta AI:Packer.E90A6F621B
Cyren W32/Backdoor.RFQT-6265
Symantec Downloader
ESET-NOD32 a variant of Win32/Rootkit.Agent.NWA
APEX Malicious
Paloalto generic.ml
ClamAV Win.Trojan.Generic-6323519-0
Kaspersky Trojan-Dropper.Win32.Agent.cdp
BitDefender Dropped:Trojan.Gunex.A
NANO-Antivirus Trojan.Win32.Agent.lidi
Avast Win32:Malware-gen
Tencent Malware.Win32.Gencirc.10b3dea1
Ad-Aware Dropped:Trojan.Gunex.A
Emsisoft Dropped:Trojan.Gunex.A (B)
Comodo [email protected]
Baidu Win32.Rootkit.Agent.au
Zillya Dropper.Agent.Win32.109125
McAfee-GW-Edition BehavesLike.Win32.Generic.lc
Sophos ML/PE-A + Troj/LdPinch-QX
Ikarus Trojan-Dropper.Agent
GData Dropped:Trojan.Gunex.A
Jiangmin TrojanDownloader.Agent.mcp
MaxSecure Trojan.Malware.300983.susgen
Avira TR/Spy.Agent.nkc.2
MAX malware (ai score=89)
Antiy-AVL Trojan/Generic.ASBOL.C578
Microsoft TrojanSpy:Win32/Laqma.C
Cynet Malicious (score: 100)
AhnLab-V3 Trojan/Win32.Zlob.R36761
Acronis suspicious
VBA32 BScope.Trojan.Agent
ALYac Dropped:Trojan.Gunex.A
Malwarebytes Malware.AI.1623992238
TrendMicro-HouseCall TSPY_LAQMA.SMI
Rising Trojan.Rootkit!1.AEDA (CLASSIC)
Yandex Trojan.GenAsa!h96gzF8YkWE
SentinelOne Static AI – Malicious PE
eGambit Unsafe.AI_Score_99%
Fortinet W32/Dloader.BDS!tr
AVG Win32:Malware-gen
CrowdStrike win/malicious_confidence_90% (W)

Domains that associated with Laqma:

What are the symptoms of Laqma trojan?

  • Yara rule detections observed from a process memory dump/dropped files/CAPE;
  • Dynamic (imported) function loading detected;
  • Reads data out of its own binary image;
  • The binary contains an unknown PE section name indicative of packing;
  • The binary likely contains encrypted or compressed data.;
  • The executable is compressed using UPX;
  • Authenticode signature is invalid;
  • Creates a copy of itself;

To prevent infiltration of Laqma spyware, stay away from releasing any type of additions to the emails from dubious addresses. Nowadays, during quarantine, email-distributed malware gets even more active. Users (especially ones who started ordering all the things on online-marketplaces) do not focus to the strange e-mail addresses, and open everything that gets to their e-mail. And Laqma stealer is right in it.

How to remove Laqma spyware?

  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • “Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You can try to do it by hand, nonetheless, like any other trojan, Laqma TrojanSpy executes the modifications really deep within the system. Hence, it’s incredibly hard to find all these changes, and maybe even tougher to clean up them out. To take care of this dangerous malware completely, I can advise you to use GridinSoft Anti-Malware.


To detect and eliminate all unwanted programs on your computer with GridinSoft Anti-Malware, it’s better to utilize Standard or Full scan. Quick Scan is not able to find all malicious items, because it checks only the most popular registry entries and folders.

Scan types in Gridinsoft Anti-Malware

You can see the detected malicious items sorted by their possible harm during the scan process. But to perform any actions against malicious programs, you need to wait until the scan is finished, or to stop the scan.

GridinSoft Anti-Malware during the scan

To set the action for every detected virus or unwanted program, click the arrow in front of the name of detected virus. By default, all the viruses will be removed to quarantine.

List of detected malware after the scan

How to remove Laqma Spyware?

Name: Laqma

Description: Laqma TrojanSpy is classified as a type of malware — malicious software designed to gain access to or damage your computer, often without your knowledge. The Laqma gathers your personal information and relays it to advertisers, data firms, or external users. The Laqma can install additional software and change the security settings on your PC.

Operating System: Windows

Application Category: Spyware

User Review
3.88 (8 votes)
Comments Rating 0 (0 reviews)
  1. What is Spyware: https://en.wikipedia.org/wiki/Spyware
  2. ESET quaterly report: ESET_Threat_Report_Q22020.pdf

William Reddy

I am from Ireland. My parents bought me a computer when I was 11, and several month after I have got a virus on this PC. I decided to enter the INSA Centre Val de Loire university after being graduated from the school. This French educational institution was offering a brand-new cybersecurity course. After getting the master degree in cybersecurity, I've started working in as virus analyst in a little anti-malware vendor. In 2018, I've decided to start Virus Removal project. The main target of this site is to help people to deal with PC viruses of any kind.

Leave a Reply

Your email address will not be published.


Back to top button