Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Dialer.btc


  • Please log in to reply
3 replies to this topic

#1 Malenko

Malenko

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:03:24 PM

Posted 09 June 2006 - 09:35 AM

After a miserable afternoon of trying to rid myself of Spywarequake yesterday, I believe I finally got rid of the blasted thing using instruction similiar to what are posted on this site. Well, imagine my short-lived relief when my AVG started identifying a "Trojan horse Dialer.BTC". This item is "identified" by AVG (free) two times about every 10 minutes or so.
One path is in WINDOWS/Temp/win(random number).tmp, and the other is in Documents and Setting/Owner/Local Settings/Temporary Internet Files/Content IE5/srvzf(random number).exe. Are these Trojans related to SpywareQuake, and do you have ANY idea how to get rid of them.
I Googled "Dialer.BTC" and there was only TWO hits, one of them is here on this site. Anyway, any help would be MUCH appreciated.
Posted Image


BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,281 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:24 PM

Posted 09 June 2006 - 12:32 PM

Please download and install Ewido Anti-Malware v3.5. DO NOT perform a scan yet..
Print out the Ewido Install and Scan Instructions.

Please download ATF Cleaner by Atribune. DO NOT use yet..

Reboot in "SAFE MODE".

Double-click ATF-Cleaner.exe to run the program.
Under Main "Select Files to Delete" choose: Select All.
Click the Empty Selected button.
[/list]If you use Firefox browserClick Firefox at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
If you use Opera browserClick Opera at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
Click Exit on the Main menu to close the program.

Then perform a scan with Ewido and reboot back to normal mode.

Perform these online Virus scans:
[Watch the Address bar in IE. You may receive alerts that "This site might require the following ActiveX control...Click here to install...". Click on that alert and then Click Install ActiveX component.]
Trend Micro Housecall Scan
Panda ActiveScan
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 Malenko

Malenko
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:03:24 PM

Posted 09 June 2006 - 05:52 PM

:thumbsup: ZOMG!!! :flowers: YOU rock!!! It appears that this fixed my problem, I have not gotten the virus notification since I ran those programs. I am ETERNALLY greatful!! :trumpet:
THANK YOU!!!

#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,281 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:24 PM

Posted 10 June 2006 - 04:03 AM

Good job. The last thing to do is to SET A NEW RESTORE POINT to prevent reinfection from an old restore point. Any malware you picked up could have been saved in System Restore. Since System Restore is a protected directory, your tools can not access it to delete these bad files which can reinfect your system. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.

The easiest and safest way to set a new RESTORE POINT:
1. Go to Start > Programs > Accessories > System Tools and click "System Restore".
2. Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
3. Then go to Start > Run and type: Cleanmgr
4. Click "OK".
5. Click the "More Options" Tab.
6. Click "Clean Up" in the System Restore section to remove all previous restore points except the newly created one.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users