Dialer.Dialpass

Dialer.Dialpass Description

Dialer.Dialpass is not necessarily a computer virus however it can be used for malicious activities. Criminals can use Dialer.Dialpass to hijack a computer's modem and use it to access different websites by dialing high-cost phone numbers. Criminals often access porn related websites via Dialer.Dialpass. Dialer.Dialpass targets computer systems with dialup internet services however; users with broadband connection are not affected by it. Uninstall Dialer.Dialpass from your PC as soon as possible to avoid a huge debt on your hands.

Aliases

4 security vendors flagged this file as malicious.

Anti-Virus Software Detection
Win-Trojan/Skintrim.178152
Trojan:Win32/Skintrim.N
Mal/SkimTrim-B
Skintrim.gen.f

Technical Information

File System Details

Dialer.Dialpass creates the following file(s):
# File Name Detection Count
1 %ProgramFiles%\Instant Access\Multi\20100630070627\instant access.exe N/A
2 %System%\nsinet.exe N/A
3 %ProgramFiles%\Instant Access\Multi\20100630070627\medias\button3.gif N/A
4 %ProgramFiles%\Instant Access\Multi\20100630070627\js\js_api_dialer.php N/A
5 %ProgramFiles%\Instant Access\Multi\20100630070627\Common\module.php N/A
6 CommonDesktopDir%\SuperBabes.lnk N/A
7 %ProgramFiles%\Instant Access\Multi\20100630070627\medias\button4.gif N/A
8 %ProgramFiles%\Instant Access\Multi\20100630070627\medias\button1.gif N/A
9 %Windir%\dialerexe.ini N/A
10 %ProgramFiles%\Instant Access\Center\SuperBabes.lnk N/A
11 %ProgramFiles%\Instant Access\Multi\20100630070627\medias\dialer.ico N/A
12 %ProgramFiles%\Instant Access\Multi\20100630070627\medias\button2.gif N/A
13 %ProgramFiles%\Instant Access\Multi\20100630070627\dialerexe.ini N/A
14 %StartMenu%\SuperBabes.lnk N/A
15 %ProgramFiles%\Instant Access\DesktopIcons\SuperBabes.lnk N/A

Registry Details

Dialer.Dialpass creates the following registry entry or registry entries:
Registry key
[HKEY_CURRENT_USER\Software\egdhtml]
(Default) = "%System%\nsinet.exe /run"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DF1C8E21-4045-4D67-B528-335F1A4F0DE9}\LocalServer32]
ExeStartFile = "%ProgramFiles%\Instant Access\Multi\20100630070627\Common\module.php"