Win32:Dialer-670 ?

Hi,

Ran a full virus check this morning (AV personal) and got a Mal warning on Win32:Dialer-670 - I chose to move it to the chest (it was in a system restore point by the looks of it).

I’ve only had the computer a few weeks so I’m interested to know a) what it is! b) is moving to chest sufficient and c) did it do any damange?

Any help greatly appreciated.

[EDIT], AV failed to move it to the chest, it also told me it came from btwebcontrol.dll - so its possible this is not a virus afterall, its just classed as that as its a dialler of sorts?

Cheers :slight_smile:

Hi LamptonWorm,

It seems it’s the btyahoo HPPre05 installation file that is 18mb not the directory/folder. Looks like it’s frequently seen as a virus in error. So update it to Jotti or Virustotal, because it seems to be a False Positive.

polonus

  1. If it is in the c:\System Volume Information folder it has already been removed from your system once and a copy saved to that folder by system restore. Since that folder is a part of the system restore function and as such is protected by windows, the only way to clean infected _restore points is to disable system restore and reboot. This will clear ALL _restore points. Once you have disabled system restore, reboot, scan your PC again and if clear enable system restore.

Win XP-ME - How to disable System Restore

  1. As polonus said this file could be quite large and would exceed the file size setting for the chest, Program Settings, Chest.

Either of the above could cause the move to the chest to fail, but avast should also give an error message ?
Check the avast Log Viewer (right click the avast icon), Warning section, that records details of the alerts that you see, file name, location, malware name, etc.

Hi,

Thanks for the replies both, sounds like its nothing to worry about too much. Yup I did have quite a small size set on the chest, ta for pointing that out, and also yes the file is under System Volume Information.

Still a bit torn between do-nothing, and re-do the restore points as suggested as it doesn’t sound like a virus.

Cheers :slight_smile:

:slight_smile: Hi :

 A "Dialer" is NOT a "virus"; would recommend getting a "2nd Opinion" by running a "Full Scan" of
 an antiSPYWARE/antiTROJAN program. Do you have any such program(s) on your computer ?
 I recommend the FREE version of "SUPERantispyware" from www.superantispyware.com .

I don’t believe do nothing is an option as you can’t be certain, any time in the future that you use system restore you could be restoring this file, not to mention avast will continue to detect it.

Whilst as spirit says it isn’t a virus as such and if you are on broadband a dialler even if the detection were good shouldn’t present a problem to you directly. It may simply be a tool used when setting up your btyahoo (?) broadband connection, unfortunatelt avast can’t tell how that tool is to be used.

Personally I would have a clean start on system restore, but then again I don’t have it enabled at all. I much prefer to look after my system than rely on system restore.

Welcome to the forums.

Even with broadband fax modems are fairly common. If you have one connected to a phone line there could be some risk.

Thanks for your advice everyone, I’ll go for clearing the restore points and look into some additional software (used to use Ad-Aware on the old machine so may put that back on).

Cheers :slight_smile:

If you haven’t already got this software (freeware), download, install.

  1. Ewido, a.k.a. avg anti-spyware If using winXP. or a-Squared free if using win98/ME.
  2. Ad-Aware SE Personal Edition
  3. Spybot Search and Destroy
  4. Spywareblaster Don’t install this until you are clean.

Thanks again,
LW.

Your welcome.