Register FAQ / Rules Forum Spy Search Today's Posts Mark Forums Read
Go Back   MacRumors Forums > Apple Systems and Services > Windows, Linux & Others on the Mac

Reply
 
Thread Tools Search this Thread Display Modes
Old Mar 27, 2011, 04:13 AM   #26
IntelliUser
Banned
 
Join Date: Nov 2009
Location: Why does it matter?
Quote:
Originally Posted by RollTide View Post
You can always try:

Any porn site.
You don't get malware from porn sites.
IntelliUser is offline   0 Reply With Quote
Old Mar 27, 2011, 04:33 AM   #27
Kaulitz
macrumors member
 
Join Date: Dec 2010
Location: Bromsgrove
Send a message via Skype™ to Kaulitz
Try looking for "System Tools" it's a fake anti virus but unlike many it will cripple the os. I've had a few clients with this same infection since Christmas, it's pretty nasty.
Otherwise install some kind of peer2peer software usually they throw up a lot of fake files wi every search.
Kaulitz is offline   0 Reply With Quote
Old Mar 27, 2011, 04:37 AM   #28
Ivan P
macrumors 68030
 
Ivan P's Avatar
 
Join Date: Jan 2008
Location: Home
Send a message via AIM to Ivan P
Quote:
Originally Posted by GGJstudios View Post
Since you asked in a Mac forum and your signature indicates you're running a Mac and you didn't specify otherwise in your post, it was only reasonable to let you know that you can't run Windows viruses on a Mac.
I would've thought the fact they posted it in the Windows on the Mac section would've been obvious enough for you.
__________________
Black 64GB iPhone 5 / Black 3rd-gen iPad, 64GB Wi-Fi
17" 2011 MacBook Pro, 2.4GHz Core i7, 750GB HDD, 6GB RAM
11" 2010 MacBook Air, 1.4GHz, 128GB SSD, 2GB RAM
Ivan P is offline   0 Reply With Quote
Old Mar 27, 2011, 10:42 AM   #29
GGJstudios
macrumors Westmere
 
Join Date: May 2008
Quote:
Originally Posted by Ivan P View Post
I would've thought the fact they posted it in the Windows on the Mac section would've been obvious enough for you.
It helps if you read the thread. Read post #19.
GGJstudios is offline   0 Reply With Quote
Old Mar 27, 2011, 11:15 AM   #30
velocityg4
macrumors 68040
 
velocityg4's Avatar
 
Join Date: Dec 2004
Location: Georgia
Quote:
Originally Posted by Cyberheart View Post
if i really wanted to mess up someones computer i dont need a viruses to do it.

i have a customer who has a system tool virus and i want to practice on removing it before i go to his house.
Though I don't know where to download the virus. For those fake malware programs I just Google the removal instructions. My preferred source for the removal is www.bleepingcomputer.com. Which will usually be in the top three results for any fake malware program.

Generally the procedure for most of these is to open Internet Explorer and go to Tools > Internet Options > Connections > LAN Settings. Then make sure "Use a proxy server for your LAN" is unchecked. Then download one of the renamed "RKill.exe" such as iExplorer.exe or eXplorer.exe. Run the renamed RKill. Then run CCleaner to reduce scanning time (removing Hotfix uninstaller in XP). Turn off and clear System Restore points to reduce scan time and prevent reinstalling the virus. Then finish things off my downloading, installing and running Malwarebytes. On the rare occasion Malwarebytes does not find everything a further scan is run with the slower Superantispyware.

Running RKill and Malwarebytes is always in the list of procedures for removing these fake scanners. However, sometimes there are a few registry entries or manual deletes needed which is why I try to find the procedure before beginning removal. I always add the CCleaner step and restore point removal since it dramatically reduces scanning time saving my customers money and reducing my sheer boredom of watching a scan.

Edit: By the way here are the removal instructions for "System Tool 2011". It requires an extra step of replacing and repairing infected Windows Host files so read up on steps 22 and 23. I think I have removed this particular one before. I just come across so many of these fake scanners I can't remember their names.
__________________
Quadra 650 040 33MHz 72MB RAM, 2GB HD, 2x CD
Macbook C2D 2.0Ghz; 3GB RAM, 500GB HD
Home Made i5 4.0Ghz, GeForce 560 Ti, 16GB RAM, 256GB SSD RAID 0, 3TB HD RAID 0 in a G5 Case.

Last edited by velocityg4; Mar 27, 2011 at 11:20 AM. Reason: Other thought
velocityg4 is offline   0 Reply With Quote
Old Mar 27, 2011, 09:48 PM   #31
4JNA
macrumors 68000
 
4JNA's Avatar
 
Join Date: Feb 2006
Location: looking for trash files
go to the source neo.

Machine City

1. install (update, or not)
2. browse (or just connect the network cable)
3. ???
4. profit!
__________________
KATE: RISC architecture is gonna change everything. DADE: Yeah. RISC is good.
4JNA is offline   0 Reply With Quote
Old Mar 30, 2011, 03:12 PM   #32
RollTide
macrumors 6502
 
Join Date: Mar 2006
Location: Alabama
Quote:
Originally Posted by IntelliUser View Post
You don't get malware from porn sites.
And you would know how?
__________________
Peter: Fox has one of those new reality shows at eight, "Fast animals, slow children"
RollTide is offline   0 Reply With Quote
Old Mar 30, 2011, 03:24 PM   #33
GGJstudios
macrumors Westmere
 
Join Date: May 2008
Quote:
Originally Posted by IntelliUser View Post
You don't get malware from porn sites.
Some can get malware by downloading "codecs" and "video players" from porn sites, embedded with trojans. There are reports of this all over the web.
GGJstudios is offline   0 Reply With Quote
Old Mar 30, 2011, 03:31 PM   #34
Hastings101
macrumors 68000
 
Hastings101's Avatar
 
Join Date: Jun 2010
Location: blargh
Quote:
Originally Posted by OllyW View Post
Some of the nutters on the MacRumors forums seem to think all you need to do is connect a PC to the internet and you'll be infested with them.
I'd say most of the people here believe that
__________________
Candy canes are delicious!
Hastings101 is offline   0 Reply With Quote
Old Mar 30, 2011, 03:38 PM   #35
munkery
macrumors 68020
 
munkery's Avatar
 
Join Date: Dec 2006
Quote:
Originally Posted by Hastings101 View Post
I'd say most of the people here believe that
I would like to perpetuate that stereotype.

How do you know you don't have a virus?

http://www.exploit-db.com/download_pdf/17066 -> shows how to bypass AV scanners.

Especially, given the fact that UAC is not reliable at preventing privilege escalation because of the design of the Windows registry.

http://www.exploit-db.com/bypassing-...vista7-mirror/ -> outlines how to exploit win32k.sys vulnerabilities by manipulating registry values.

http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=win32k -> list of win32k.sys vulnerabilities.

And, UAC is being bypassed by malware in the wild.

http://www.eset.com/resources/white-...Microscope.pdf

http://www.theregister.co.uk/2010/11...4_bit_windows/

Name one Mac malware in the wild that achieves privilege escalation via exploitation of the system?
__________________
Mac Security Suggestions
munkery is offline   0 Reply With Quote
Old Mar 30, 2011, 03:41 PM   #36
Hastings101
macrumors 68000
 
Hastings101's Avatar
 
Join Date: Jun 2010
Location: blargh
Quote:
Originally Posted by munkery View Post
Random links + information
I think you went off on some other topic because none of that is going to happen if you simply connect a PC to the internet. Now if you browse the internet that could be a different story.
__________________
Candy canes are delicious!
Hastings101 is offline   0 Reply With Quote
Old Mar 30, 2011, 03:52 PM   #37
munkery
macrumors 68020
 
munkery's Avatar
 
Join Date: Dec 2006
Quote:
Originally Posted by Hastings101 View Post
I think you went off on some other topic because none of that is going to happen if you simply connect a PC to the internet. Now if you browse the internet that could be a different story.
It was meant to be an obvious troll for the sake of humour.

But if you want a link to a public and unpatched remote root vulnerability with a proof of concept exploit that could be used to make that kind of worm, here you go:

http://www.vupen.com/english/advisories/2011/0394
__________________
Mac Security Suggestions

Last edited by munkery; Mar 30, 2011 at 04:15 PM.
munkery is offline   0 Reply With Quote
Old Mar 30, 2011, 03:55 PM   #38
Hastings101
macrumors 68000
 
Hastings101's Avatar
 
Join Date: Jun 2010
Location: blargh
Quote:
Originally Posted by munkery View Post
I was meant to be an obvious troll for the sake of humour.

But if you want a link to a public and unpatched remote root vulnerability with a proof of concept exploit that could be used to make that kind of worm, here you go:

http://www.vupen.com/english/advisories/2011/0394
I just assume everyone is 100% serious here, it helps me get my post count up
__________________
Candy canes are delicious!
Hastings101 is offline   0 Reply With Quote
Old Apr 8, 2011, 04:43 AM   #39
Cyberheart
Thread Starter
macrumors member
 
Join Date: Mar 2011
Location: Cyberspace
Send a message via MSN to Cyberheart Send a message via Skype™ to Cyberheart
Quote:
Originally Posted by IntelliUser View Post
hxxp://www.malwareurl.com/listing-urls.php?urls=on
hxxp://www.malwaredomains.com/
what is hxxp?
__________________
*Macbook Pro 15", 2.4 GHz 6 GB RAM 500 GB HD
*AirPort Extreme 802.11n
http://www.speedtest.net/result/1220630883.png
Cyberheart is offline   0 Reply With Quote
Old Apr 8, 2011, 04:45 AM   #40
simsaladimbamba
macrumors Core
 
simsaladimbamba's Avatar
 
Join Date: Nov 2010
Location: located
Quote:
Originally Posted by Cyberheart View Post
what is hxxp?
http://en.wikipedia.org/wiki/Hxxp

via "hxxp" and some www search engine
__________________
FREEdomly passports. Circumwent bürocrazy.
simsaladimbamba is offline   0 Reply With Quote
Old Apr 8, 2011, 04:53 AM   #41
Cyberheart
Thread Starter
macrumors member
 
Join Date: Mar 2011
Location: Cyberspace
Send a message via MSN to Cyberheart Send a message via Skype™ to Cyberheart
Quote:
Originally Posted by munkery View Post
I would like to perpetuate that stereotype.

How do you know you don't have a virus?

http://www.exploit-db.com/download_pdf/17066 -> shows how to bypass AV scanners.

Especially, given the fact that UAC is not reliable at preventing privilege escalation because of the design of the Windows registry.

http://www.exploit-db.com/bypassing-...vista7-mirror/ -> outlines how to exploit win32k.sys vulnerabilities by manipulating registry values.

http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=win32k -> list of win32k.sys vulnerabilities.

And, UAC is being bypassed by malware in the wild.

http://www.eset.com/resources/white-...Microscope.pdf

http://www.theregister.co.uk/2010/11...4_bit_windows/

Name one Mac malware in the wild that achieves privilege escalation via exploitation of the system?
thanks man i downloaded some pdfs im going to read into this good stuff thank you
__________________
*Macbook Pro 15", 2.4 GHz 6 GB RAM 500 GB HD
*AirPort Extreme 802.11n
http://www.speedtest.net/result/1220630883.png
Cyberheart is offline   0 Reply With Quote
Old Apr 8, 2011, 03:53 PM   #42
IntelliUser
Banned
 
Join Date: Nov 2009
Location: Why does it matter?
Quote:
Originally Posted by RollTide View Post
And you would know how?
Because I watch porn every day?

Quote:
Originally Posted by GGJstudios View Post
Some can get malware by downloading "codecs" and "video players" from porn sites, embedded with trojans. There are reports of this all over the web.
Sorry but if you don't even know how to search for porn there's no protection that'll hold up.
IntelliUser is offline   0 Reply With Quote
Old Nov 4, 2012, 07:49 PM   #43
ian.maffett
macrumors regular
 
Join Date: Aug 2008
Location: Florida
Send a message via AIM to ian.maffett Send a message via Yahoo to ian.maffett
The answer

Well, apparently everyone got sidetracked by the Mac/PC argument, which is normal... lol
However, the answer to this riddle is
http://www.offensivecomputing.net
as they have the most comprehensive list of malware and virus software around with all the data to back it up.

This answer is more for people searching ...
__________________
Regards,
Ian http://www.CFTechs.com
15" MBP, 2.66, 4G, 250G; | MINI Server, 2.0DC, 4G, 320G+4T ext.; | 64G iPad2 | 16 GB G2 iPod Touch; | 16 GB iPhone 4
ian.maffett is offline   0 Reply With Quote
Old Nov 7, 2012, 07:12 AM   #44
reery
macrumors member
 
Join Date: Sep 2012
Quote:
Originally Posted by OllyW View Post
Some of the nutters on the MacRumors forums seem to think all you need to do is connect a PC to the internet and you'll be infested with them.
This happened to me when I plugged in a WinME PC to my first broadband connection in 2001 when I was 17. 1 minute after I plugged in the network cable the system ran slow and froze. After the reboot it was full of **** and I had to reinstall Windows and add a firewall and anti virus.
reery is offline   1 Reply With Quote

Reply
MacRumors Forums > Apple Systems and Services > Windows, Linux & Others on the Mac

Tags
virus

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Similar Threads
thread Thread Starter Forum Replies Last Post
iTunes not letting me download music states can not download for 90 Days Wicked1 iCloud and Apple Services 7 May 8, 2013 02:46 PM
[Youtube Download]Hi Download Pro iPhone App Review smallstep iPhone and iPod touch Apps 15 Feb 27, 2013 04:43 AM
MacBook Air 2010 download speed drop sharply after download starts shrbjx MacBook Air 1 Sep 30, 2012 01:19 PM
iPad malware/virus Download Sms4178 iPad 10 Sep 24, 2012 11:48 AM
Resolved: MS Office Download Problem-Download Won't Stay Deleted tauntthemoon Mac Applications and Mac App Store 3 Aug 13, 2012 04:20 PM

Forum Jump

All times are GMT -5. The time now is 05:30 AM.

Mac Rumors | Mac | iPhone | iPhone Game Reviews | iPhone Apps

Mobile Version | Fixed | Fluid | Fluid HD
Copyright 2002-2013, MacRumors.com, LLC