Ehks. How to remove? (Uninstall guide)

removal by Ugnius Kiguolis - - | Type: Keyloggers
12

Variants: Ehks 2.0, Ehks 2.1, Ehks 2.2

From the publisher:
-= ev0luti0n HTTP keylogger 2.0 beta =-
~ expl0it_shad0w ~
Introduction
Hey again all, im back with ehks v2beta. Ive changed this version alot. It seems by the feedback you guys gave me last time, that v1 wasent good. Most of the feedback was negative and it didnt work. And alot of you infected your selfs and asked me about where to find the missing (.dll). There was never a missing (.dll), it was a fake error meesage, like I stated in the readme file. Anyway Ive took out the fake error message this time, so you might have to bind it with another application/jpeg or whatever.
NOTE: DONT OPEN SERVER.EXE unless you want to infect your self….
Instructions
Follow these instructions.
1. Rename ‘Sever.exe’ to what ever you want, make it convincing, not like ‘TROJAN.exe’ or ‘KEYLOGGER.exe’.
2. Send it to them and tell them its a new hacking tool, NOTE: Try binding it with a real one. If you know how.
( Once the victim opens it, it hides in memory and records all the key stokes on the computer, so you can view them with an Internet Browser like MSIE. )
3> Connect to there machine on port 80 with an Internet browser, as stated above. Type in there IP address into it and just hit Enter. For example if the victims IP address was 127.0.0.1 you type in http://127.0.0.1 or just 127.0.0.1. There IP WONT be 127.0.0.1.
(or)
If you have Physical Machine Access, rather than remote, you can just opne up an internet browser on there machine and type in http://127.0.0.1 and this should bring it up.
Features/Misc
Heres whats been added in version 2beta.
* Better Stealthing code – hopefully wont crash.
* Better Keylogging code – you can now see the windows handle and what they are typing in it.
* Better HTML log file – much more user friendly.
* Added Anti-firewall/Anti-AntiVirus – this will hopefully stop most firewalls and anti-viruses.
expl0it_shad0w

ehks v2.1 is simply a keylogger which lets you check the log files remotely via a web browser (e.g, Internet Explorer) Connect to there machine on port 80 with an Internet browser. This version is 100% Different, ive completely re-built it.
Supported Version of Windows, * win9x – Ive only tested on a 9x box, so if you guys are gonna test on a different machine, let me know im uncertain as to weather or nto it works win XP, some beta testers say yes, some say no, im looking, into this for the next version. The keylogger doesnt run under NT, I have tried, but feel free to try for your selfs, and give me feedback on the result.
Features/Misc
Ehks has been 100% re-built. Heres whats been added/changed in version 2.1.
* Better Stealthing code – hopefully wont crash.
* Changed Keylogging code – you can now see the windows handle.
* Changed HTML log file – alot better, so people have said anyway.
* Added Anti-firewall/Anti-AntiVirus – this will stop most firewalls and AVS’s
* Added Function to get dialup, share, and other chached passwords.
* Added Function to get Machine Info
* Multi-Log File Support – all log files have there own unique filename
* Added Mutex usegae, to stop cant write to file error’s hopefully
expl0it_shad0w’

do it now!
Download
Reimage (remover) Happiness
Guarantee
Download
Reimage (remover) Happiness
Guarantee
Compatible with Microsoft Windows Compatible with OS X
What to do if failed?
If you failed to remove infection using Reimage, submit a question to our support team and provide as much details as possible.
We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use. By Downloading any provided Anti-spyware software to remove Ehks you agree to our privacy policy and agreement of use.
Reimage is recommended to uninstall Ehks. Free scanner allows you to check whether your PC is infected or not. If you need to remove malware, you have to purchase the licensed version of Reimage malware removal tool.

Note: Manual assistance required means that one or all of removers were unable to remove parasite without some manual intervention, please read manual removal instructions below.

More information about this program can be found in Reimage review.

More information about this program can be found in Reimage review.
Alternate Software
Plumbytes Anti-Malware
We have tested Plumbytes Anti-Malware's efficiency in removing Ehks (2015-05-30)
Malwarebytes Anti Malware
We have tested Malwarebytes Anti Malware's efficiency in removing Ehks (2015-05-30)
Hitman Pro
We have tested Hitman Pro's efficiency in removing Ehks (2015-05-30)
Webroot SecureAnywhere AntiVirus
We have tested Webroot SecureAnywhere AntiVirus's efficiency in removing Ehks (2015-05-30)

Ehks manual removal:

Kill processes:
client.exe, ehks21.exe, server.exe, spooi32.exe, ymupdater.exe

Delete registry values:
HKEY_LOCAL_MACHINE software microsoft windows currentversion run spoolersubsystemprocess

HKEY_LOCAL_MACHINE software microsoft windows currentversion run ymupdater

Delete files:
client.exe, ehks21.exe, server.exe, evlog.dat, evo_12-11-22_11-20.html, smsg.html, spooi32.exe, ymupdater.exe

About the author

Ugnius Kiguolis
Ugnius Kiguolis - The mastermind

If this free removal guide helped you and you are satisfied with our service, please consider making a donation to keep this service alive. Even a smallest amount will be appreciated.

More information about the author