web event logger - Dangerous
web event logger
Jeff's Story:
My PC had gotten a bad rootkit that my ISP antivirus software (powered by McAfee) could not detect, nor could fix.
I sought a solution on the Internet and discovered your product and tried out the trial.
You quickly found the rootkit and SAVED my PC!
I haven't had any problems since, and I'm extremely grateful.
Manual removal instructions:
1.Creates the following files:
%System%\[8 random characters].exe
%System%\[8 random characters].dll
2.Creates several randomly named copies of the following file:
%Temp%\[8 random characters].html
3.Adds the value:
"Web Event Logger"="{79FEACFF-FFCE-815E-A900-316290B5B738}"
to the registry entry:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\
ShellServiceObjectDelayLoad
4. Changes the IE security zone settings to low security.
5. Adds the value:
"GlobalUserOffline" = "0"
to the registry entry:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
Use RegRun Reanimator to remove Trojan from startup.
Delete its files.