iSight randomly turned on

Discussion in 'MacBook Pro' started by Intelligent, Feb 20, 2014.

  1. Intelligent, Feb 20, 2014
    Last edited: Feb 20, 2014

    Intelligent macrumors 6502a

    Intelligent

    Joined:
    Aug 7, 2013
    #1
    Okay, so my MacBook Pro iSight randomly turned for a very brief moment and i had no camera apps running i checked under processes to find "a5" which i closed, call me paranoid, but I'm scared and i want to know what it was ? :eek:

    Did a clamxav scan and found something unix file cracker and the "virus" was osx.backdoor.wirenet-3 something? Now i found 2 geneio trojans?
     
  2. Intelligent, Feb 20, 2014
    Last edited: Mar 4, 2014

    Intelligent thread starter macrumors 6502a

    Intelligent

    Joined:
    Aug 7, 2013
    #2
    delete

    Any of these that are not normal,? i hope i this doesn't hurt my personal information..
     
  3. Intelligent thread starter macrumors 6502a

    Intelligent

    Joined:
    Aug 7, 2013
    #3
    Now 150GB of space got taken up in half of a second. And everything is weird.
     
  4. RMXO macrumors 6502a

    Joined:
    Sep 1, 2009
    #4
    someone is spying on you. Are you in the US cause it might be the NSA. :D
     
  5. Intelligent thread starter macrumors 6502a

    Intelligent

    Joined:
    Aug 7, 2013
    #5
    How do you know someone is spying on me, what gave you the proof? and I'm not in the us.
     
  6. Intelligent thread starter macrumors 6502a

    Intelligent

    Joined:
    Aug 7, 2013
  7. Cristian .b macrumors member

    Joined:
    Aug 16, 2013
    Location:
    Apple walled garden
    #7
    maybe this will help; https://discussions.apple.com/thread/5875133?tstart=0

    i would start with at least taping the webcam, im paranoid too. but one question, what do you mean with weird?
     
  8. Intelligent thread starter macrumors 6502a

    Intelligent

    Joined:
    Aug 7, 2013
    #8

    Everything acted slow. certain apps wouldn't show up in spotlight and finder would display wrong size numbers.
     
  9. DeltaMac macrumors 604

    DeltaMac

    Joined:
    Jul 30, 2003
    Location:
    Delaware
    #9
  10. Cristian .b macrumors member

    Joined:
    Aug 16, 2013
    Location:
    Apple walled garden
    #10
    it suddenly filled 150gb space? the wirenet thingy somewhat installs lots of things. one thing to see for, is there a .install folder in your home folder? if it is, whats the contents?
     
  11. Intelligent thread starter macrumors 6502a

    Intelligent

    Joined:
    Aug 7, 2013
    #11
    It was a jar file that i deleted and the a5 process won't appear anymore..
     
  12. Cristian .b macrumors member

    Joined:
    Aug 16, 2013
    Location:
    Apple walled garden
    #12
    a jar file? then it uses java. is there some processes using excess cpu in the activity monitor?
     
  13. blueroom macrumors 603

    blueroom

    Joined:
    Feb 15, 2009
    Location:
    Toronto, Canada
  14. Intelligent thread starter macrumors 6502a

    Intelligent

    Joined:
    Aug 7, 2013
    #14

    Nope.
     
  15. Cristian .b macrumors member

    Joined:
    Aug 16, 2013
    Location:
    Apple walled garden
    #15
    do you have any backups? as mentioned before you should reinstall os x. that is the most secure to do.
     
  16. Intelligent thread starter macrumors 6502a

    Intelligent

    Joined:
    Aug 7, 2013
    #16

    I definentaly have backups, but reinstalling os x would be a pain, isn't there any way to find out which files contain the virus and just delete them?

    ----------



    But if i reinstall osx and then restore from backup won't i get the same virus, isn't virus in files?
     
  17. Cristian .b macrumors member

    Joined:
    Aug 16, 2013
    Location:
    Apple walled garden
    #17
    that is certainly possible, but the wirenet malware is able to install its own components by itself. you should look inside both library folders for suspicious stuff. has the webcam turned on itself again?

    EDIT: reinstalling os x and then restoring will not reinfect you, except if the backup was made after you were infected.
     
  18. Intelligent thread starter macrumors 6502a

    Intelligent

    Joined:
    Aug 7, 2013
    #18

    Oops, i don't know how long I've had the virus for, i think more than a month but that was the first time and it has not happened again.
     
  19. Cristian .b macrumors member

    Joined:
    Aug 16, 2013
    Location:
    Apple walled garden
    #19
    oh. i found out that the earlier wirenet malware 1 and 2 was made to steal passwords from web browsers and email clients, and sending the info to the host. i guess your out of luck, but nothing is impossible. seeing suspicious activity from email?
     
  20. Intelligent thread starter macrumors 6502a

    Intelligent

    Joined:
    Aug 7, 2013
    #20
    How do i see that? You mean that my account has sent mails etc?
     
  21. Cristian .b macrumors member

    Joined:
    Aug 16, 2013
    Location:
    Apple walled garden
    #21
    yep. if you find something that isn't normal i would go to another device and change email passwords, as changing passwords on a infected machine isn't safe. hope for the best.
     
  22. iphone1105 macrumors 68020

    iphone1105

    Joined:
    Oct 8, 2009
    #22
    What could you possibly be doing to create these issues on your computer, seriously.....
     
  23. simonsi macrumors 601

    simonsi

    Joined:
    Jan 3, 2014
    Location:
    Auckland
    #23
    He installed a Trojan and thinks the minimal-effort route is the one to go.....
     
  24. Intelligent thread starter macrumors 6502a

    Intelligent

    Joined:
    Aug 7, 2013
    #24
    ¨

    is use it pretty much 24/7.
     
  25. simonsi macrumors 601

    simonsi

    Joined:
    Jan 3, 2014
    Location:
    Auckland
    #25
    Nope, you must have installed it, you need to practice safer computing, just <using> your mac doesn't expose you to this, installing files from dubious sources does.
     

Share This Page