pesistant attack on my computer

**T_G** · 19-07-2003

Well, every time I go online I get a popup with a note that my computer needs to get security updates and anti virus software.
I got Norton internet security and also Zone alarm installed, set up on all the correct settings but still this f***er comes up. Any ideas?

**rolfw** · 19-07-2003

This isn't one of the popups from Windows messenger is it T_G? They also send one out which tells you that you need a popup stopper.

**T_G** · 19-07-2003

Well, if you look carefully at the screenshot, you can see on the taskbar the following programs open: ICQ, Network status, Modem, Zone Alarm, Volume control, Norton anti virus auto protect and finnaly norton internet security.
The messenger is only on when I switch it on. I don't think it is the ICQ as the pop up comes when it is off as well...

**jimbo** · 19-07-2003

Win32 opaserv is a worm virus. Have you seen this link T_G http://securityresponse1.symantec.co...serv.worm.html. Any help?

**T_G** · 19-07-2003

I got Norton to make a full check every night, and I also got the latest virus updates automatically, so I don't think it is a virus. it seems to be some sort of open port. According to a security check I made my computer is save, I got the Norton internet security which is some sort of firewall...

**jimbo** · 19-07-2003

Ok, so if it's just a pop up it will be triggered by a some small exe file or registry call on your computer. A neighbour had something like that and I first of all used find/search for anything to do with it and deleted that. Then searched the registry and found the trigger in there. Once I'd removed the bits from the registry that was it, all clear.

oldgit · 19-07-2003

Hi Guys, Another thought, it might be a spybot, antivirus progs won't find it. Try Spybot Search and Destroy, it's free.
Sincerely,
Richard.

**rolfw** · 19-07-2003

Have a look here T_G http://www.bitdefender.com/virusi/vi...p?virus_id=101

Go here for a system cleaner http://www.trendmicro.com/download/tsc.asp

**Channel Hopper** · 19-07-2003

It could be that T_G might be hallucinating as well

He may not even have a PC, but is posting through some other means

***drag0nfly_69uk*** · 20-07-2003

it is definitely a worm virus, even norton saying the pc is cleaned but the worm is loaded everytime the pc is switched on, refer to jimbo's link, do a manual removal.

**T_G** · 20-07-2003

OK, I am going to do the system cleaner, why not. The thing is: That thing has nothing to do with the opaservA virus. What the text is saying that my computer is suspected of having this virus. They recommendI go to the update2000.dr.ag (funny URL...) website to get help. What happens then is that once you are on this site and download whatever is on for "Free", you are also downloading a 0190 dialer, I.E. it changes settings on your modem. The moderm then shuts down and then reconnects, but this time you are paying 10 Euro a minut. The thing sometimes changes the text, so it would be all sorts of "Alarming" messages, and sometimes the webaddress changes. This is because I think the webaddresses are being shut down. It seems to be a German thing, I never had a message in English.

P.S just as I was writing this I got another one, see picture

**T_G** · 20-07-2003

Originally Posted by Channel Hopper

It could be that T_G might be hallucinating as well

He may not even have a PC, but is posting through some other means

I can take the hallucinations and posting through other means, BUT NOT HAVE A COMPUTER?? This is personal!!

**jimbo** · 20-07-2003

The IP address on that last pop up is in Dusseldorf. You can report abuse to the following: abuse@pppool.de

**rolfw** · 23-07-2003

Try this T_G, the messenger doesn't have to be switched on to provide you with an interesting selection of popups.

Goto start then click on run

type msconfig and press enter

Click on the services tab

Scroll down to messenger and un-tick

press ok and reboot your PC as prompted

When windows has reloaded click the tick box on the pop-up and press ok

This may stop your messages.

**T_G** · 24-07-2003

Originally Posted by rolfw

Try this T_G, the messenger doesn't have to be switched on to provide you with an interesting selection of popups.

I tried to, but I did not see the messenger there. I think that when I installed it first I did use the option that it won't load automatically with windows...

**rolfw** · 24-07-2003

Oh well, worth a try, are you still getting the messages?

**T_G** · 26-07-2003

Yes, I got them all the time... not that they are doing anything, it is just anoying knowing I have been violated....

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Spare 80cm fixed dish and a computer !!	redrooster	DISH SETUP: Single sat, Multi-Sat & Motorised systems	6	02-03-2004 10:00 PM
Guard your computer -- or else...	net1	Computer Discussion	7	06-01-2004 03:15 PM
Hacker 'attacked port in revenge bid'	net1	The Meeting Place	0	06-10-2003 07:31 PM
BBC counters Ball's licence fee attack	net1	Daily Satellite and Broadcast industry News	0	22-08-2003 10:22 PM
BSkyB chief launches attack on licence fee	net1	Daily Satellite and Broadcast industry News	0	22-08-2003 07:39 PM

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)