Dialer.Dialpass Description
Dialer.Dialpass is not necessarily a computer virus however it can be used for malicious activities. Criminals can use Dialer.Dialpass to hijack a computer's modem and use it to access different websites by dialing high-cost phone numbers. Criminals often access porn related websites via Dialer.Dialpass. Dialer.Dialpass targets computer systems with dialup internet services however; users with broadband connection are not affected by it. Uninstall Dialer.Dialpass from your PC as soon as possible to avoid a huge debt on your hands.
Aliases
4 security vendors flagged this file as malicious.
Anti-Virus Software
Detection
Win-Trojan/Skintrim.178152
Trojan:Win32/Skintrim.N
Mal/SkimTrim-B
Skintrim.gen.f
Technical Information
File System Details
Dialer.Dialpass creates the following file(s):
| # | File Name | Detection Count |
|---|---|---|
| 1 | %ProgramFiles%\Instant Access\Multi\20100630070627\instant access.exe | N/A |
| 2 | %System%\nsinet.exe | N/A |
| 3 | %ProgramFiles%\Instant Access\Multi\20100630070627\medias\button3.gif | N/A |
| 4 | %ProgramFiles%\Instant Access\Multi\20100630070627\js\js_api_dialer.php | N/A |
| 5 | %ProgramFiles%\Instant Access\Multi\20100630070627\Common\module.php | N/A |
| 6 | CommonDesktopDir%\SuperBabes.lnk | N/A |
| 7 | %ProgramFiles%\Instant Access\Multi\20100630070627\medias\button4.gif | N/A |
| 8 | %ProgramFiles%\Instant Access\Multi\20100630070627\medias\button1.gif | N/A |
| 9 | %Windir%\dialerexe.ini | N/A |
| 10 | %ProgramFiles%\Instant Access\Center\SuperBabes.lnk | N/A |
| 11 | %ProgramFiles%\Instant Access\Multi\20100630070627\medias\dialer.ico | N/A |
| 12 | %ProgramFiles%\Instant Access\Multi\20100630070627\medias\button2.gif | N/A |
| 13 | %ProgramFiles%\Instant Access\Multi\20100630070627\dialerexe.ini | N/A |
| 14 | %StartMenu%\SuperBabes.lnk | N/A |
| 15 | %ProgramFiles%\Instant Access\DesktopIcons\SuperBabes.lnk | N/A |
Registry Details
Dialer.Dialpass creates the following registry entry or registry entries:
Registry key
[HKEY_CURRENT_USER\Software\egdhtml]
(Default) = "%System%\nsinet.exe /run"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DF1C8E21-4045-4D67-B528-335F1A4F0DE9}\LocalServer32]
ExeStartFile = "%ProgramFiles%\Instant Access\Multi\20100630070627\Common\module.php"