Lokkest spyware or virus on your computer and how to remove Lokkest or fix it.
Please make sure you know what you are doing before performing any of the instructions on this site. You maybe better off downloading a proven spyware scanner and let the program do the cleaning. You may need anti-virus software as well and please allow up to 10 hours to get your system back on its feet again. Please feel free to ask questions, tell us the problem and we will help for FREE. We also have a great selection of SPYWARE and VIRUS prevention software available to try.
Removal instructions for lokkest:
Lokkest is a complex Internet worm that spreads by e-mail through messages with infected attachments that can be screensavers, archives, images or text documents. Once the user opens such an attachment, the parasite secretly installs itself to the system and runs a spreading routine.
The worm uses own mail engine to send bogus e-mails to addresses it gathers from local program, text and web files. Lokkest can also propagate through instant messages using Yahoo! Messenger, ICQ, AIM and MSN Messenger programs. Furthermore, it is able to spread to computers running MS SQL Server and network shares protected by weak passwords. The parasite can infect computers running unpatched Symantec, Microsoft and RealVNC software.
Lokkest carries a dangerous payload. It terminates running antiviruses, firewalls and anti-spyware programs. It attempts to open a back door providing the attacker with unauthorized remote access to the compromised computer. The intruder can download and execute files, log user keystrokes, steal MSN Messenger passwords, intercept network traffic and run a hidden proxy server. The worm is able to change some system settings and modify essential system files.
Lokkest runs as a service on every Windows startup.
Protect yourself from spyware and virus attacks PDF
Notes:
Stop processes:mutex.exe
Remove Registry values:
HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesWindows Mutex Object
HKEY_LOCAL_MACHINESYSTEMCurrentControlSetEnumRootLEGACY_WINDOWS_MUTEX_OBJECT
HKEY_LOCAL_MACHINESYSTEMControlSet001ServicesWindows Mutex Object
HKEY_LOCAL_MACHINESYSTEMControlSet001EnumRootLEGACY_WINDOWS_MUTEX_OBJECT
HKEY_LOCAL_MACHINESOFTWAREMicrosoftOleEnableDCOM=n
Remove files:
mutex.exeAdditional:The mutex.exe file can be found in C:WINDOWSSystem32dllcache or C:WINNTSystem32dllcache folder.Lokkest can modify the system file tcpip.sys that resides in the following directories: C:WINDOWSSystem32drivers, C:WINDOWSSystem32dllcache, C:WINDOWSServicePackFilesi386. Lokkest:
SpyLocked removed but system tray icon system alert popup
- Longvi
- Loader E-evil Trojan
- Loader Iggy Trojan
- Loader SAD Trojan
- LoadFile
- LoadKey
- Loadwin_exe
- Lobo 1_2
- Local _ Remote GET Buffer Overflow Vulnerability in AnalogX
- Local Denial of Service for any linux box running APCUPSD v3_7_2
- Local exploit for Debian (2_1) splitvt 1_6_3-4
- Local exploit for suid root programs linked to libtermcap
- Local Promotion Vulnerability in Windows NT 4
- Local root compromise in PGX Config Sun Sparc Solaris
- Local root compromise through Lexmark MarkVision printer drivers
- Local root exploit in LBNL traceroute
- Local XFree 3_3_3-symlink root-compromise
- Local_nonexec_sun_c
- Local_remote exploit for SCO UNIX
- Localscan
- LocalSmartBar
- Locatedb_c
- Location_replace() overflow exploit
- Lock Down Pro 1_0
- Lock Down Pro 1_344
- Lock Down Pro
- Lock MBR
- Lockdown Killer
- Lockdown Trojan
- Locker
- Lockless Mailbomber 1_2
- Lockless Viewer
- Lockout 1_00
- Locks and stinkas room spy ver 1_1
- Locktcp
- Log Arp
- Log killer
- Logg!PWS!Trojan
- Logged 1_0
- Logger Buddy
- Login(1)
- Login
- Login_Trojan
- Login2_c
- Loginserversocket
- Loginw32
- Logol2 1_06
- Logon Audit 1_02
- Logwedit_c
- Loho Boyshik 1_0
- Lolitas
- Long filename extension exploit for Win 98
- Long URL Stack Overflow Exploit
- Look Spy
- LookQuick
- LookSmart
- LookThru Cool Search Bar
- Loophole
- Loopmail_c
- looxee
- Lord Julus Virus Tutorial
- Loser Trojan
- Lotus Domino 1_5 vulnerability
- Lotus Domino ESMTP Service Buffer overflow
- Lotus Domino
- LoudPC
- Lousy password handling in BreezeCOM
- LoveBeads
- LoveChild_488
- Low Kill
- LowerMyBills_com
- Lohocla
- Lomdoor
- Loobot_a
- LookSpy
- Loony_g
- Loony
- Loops
- Local _ Remote D_o_S Attack in Serv-U FTP-Server v2_5b for Win9x_WinNT Vulnerability_
- Local _ Remote DoS Attack in Super Mail Transfer Package Server
- Local MEM Alloc DoS Util
- LocalNRD
- Locators Toolbar
- Lock Doc
- Lop_com
- Lop_com_Active
- Lop_com_AYB
- Lop_com_Dialer
- Lop_com_IMZ
- Lop_com_Loader
- Lop_com_RND
- Lop_com_Toolbar
- Lop_com_Trinity
- Lop_com_WinActive
- Lop_com_WinActiveJ
- Lorexp
- LoudMarketing
- LoudMarketing_Bridge
- LoudMarketing_WinFavorites
- LoveTester
- Looksky_g
- Looksky_h
- LorSpy
- Loxbot_f
- Look2Me Adware
- LookNSearch
- Lo thuong
- Loader Trojan
- Localhost2000
- Lockjaw_499_A
- LoveBink
- LoveChild!Trojan
- LogMeIn
- LocatorsToolbar
- Looking-For_Home Search Assistant
- LoadFonts
- Look2Me
- Lolaweb_winhost
- Lop
- Lop plus 2
- LoadEWXD
- Loksky
- LoudMarketing_Casino
- Lovena
- Lokkest
