Wednesday, January 09, 2008

Removing Wink 1.3

Follow the below steps to completely remove Wink 1.3 keylogger:

1- Goto http://www.geocities.com/xeus_man/systools.htm and download and run the approprate system tool to enable Task Manager and Registry Editor.
2- Open regedit and goto
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
3- Note down the names of random-seven-character exes against random-five-character keys. (There will be two of them)
4- Open Task Manager and terminate any of these processes running
5- Remove these exes from their locations
6- Delete the obove random regkeys
7- Delete the uks.log file from the system32 directory