| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 69245 | 2006-05-26 18:46:00 | iopus, Where Does It Come From? | SurferJoe46 (51) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 458014 | 2006-05-26 18:46:00 | Found iopus in a Spybot scan...can this come in from the internet? I got a funny feeling that someone opened this puter in Safe Mode, using Administrator's properties and stuck it in on me. Any thoughts? |
SurferJoe46 (51) | ||
| 458015 | 2006-05-26 19:07:00 | It looks like Iopus make internet and computer monitoring software, for networks or something & password recovery s/w. According to google. Look in add/remove programs, see if there's an entry for Iopus Password recovery, or Iopus Starr Pro, which is the monitoring software. |
Speedy Gonzales (78) | ||
| 458016 | 2006-05-26 22:50:00 | It's not in the programs area...but Spybot keeps on coughing it up for me to kill the process.......hmmmmmmm.. I am gonna go into Safe/ADMIN mode and scan again... |
SurferJoe46 (51) | ||
| 458017 | 2006-05-26 23:03:00 | Hi Joe. I thought you needed its own password to uninstall this beast. | Scouse (83) | ||
| 458018 | 2006-05-26 23:18:00 | OK...now I am concerned! It's password? Is this gonna show in Add/Delete?...I don't see it there...but now Spybot cannot find it...Hm..what's going on here? Is this thing adaptive and can it hide where it wants when it feels threatened? :badpc: |
SurferJoe46 (51) | ||
| 458019 | 2006-05-26 23:21:00 | What did Spybot say exactly?? It was a minimal threat? A threat? A cookie? or what? |
Speedy Gonzales (78) | ||
| 458020 | 2006-05-26 23:32:00 | Well....a little more research reveals this stuff about IOpus: Name: IOpus Password Recovery XP Category: Password Cracker Date: 2004-02-24 Dangerous: Yes IOpus Password Recovery XP belongs to Password Cracker spyware category. iOpus Password Recovery XP allows you to decrypt & display password stored behind the asterisks. It is the first tool of its kind that works automatically on Web pages, Windows 9x/NT & Windows 2000/XP platforms. It's presense means that your computer is infected with malicious software and is insecure. I hope this killed it once and for all: 1. Click Start > Run. 2. Type regedit Then click OK. 3. Navigate to the key: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Int ernet Settings\User Agent\Post Platform 4. In the right pane, delete the value: "iOpus-I-M" = "[empty string]" 5. Delete the following registry subkeys: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Uninstall\iOpus Password Recovery XP HKEY_LOCAL_MACHINE\SOFTWARE\iOpusPasswordRecovery 6. Exit the Registry Editor BTW: this is one of the first in two years that got by my security stuff...but SpyBot found it anyway... |
SurferJoe46 (51) | ||
| 458021 | 2006-05-26 23:38:00 | Hmm, This (www.symantec.com) I think, is what Symantec calls it, and how to fix it. btw, a new detection update has just come out, if u havent updated Spybot yet. |
Speedy Gonzales (78) | ||
| 458022 | 2006-05-26 23:42:00 | What did Spybot say exactly?? It was a minimal threat? A threat? A cookie? or what? SpyBot reported it as a Beta .sbi whatever that is....in the front sheet of the products, iopus is listed as a keylogger too.... |
SurferJoe46 (51) | ||
| 1 | |||||