Mac Trojan?

[Shrink]

I've been reading this thread and am amazed at the patience displayed by GGJstudios, Mal, and others in trying to inform someone whole will not be informed.

It's probably not my place to say this, but it is painful to read these sincere attempt to educate garnering such arrogant and ungrateful responses.

Give it up, guys. Your patience will continue to be unrewarded.

Just saying...

 

[cambookpro]

All the crap betatest posted

But he clearly says he's on a Mac...

Anyway, S-mac-k, as said by GGJStudios and Mal, read the malware FAQ and you'll find you're not infected. It may've been a piece of Windows malware, however I'm 99.99% sure it will have done nothing to your Mac. More than likely, you just opened a blank webpage, nothing more.

 

[betatest]

Basically, been reading this thread. I have sent a load of emails recently to companies requesting quotes for this & that. I then get an email from this company saying I've subscribed to a mailing list. Click this link to unsubscribe. Me being soft & it being late, I tried to press the button to unsubscribe thinking I've accidentally subscribed to something? The reason being, on some of the sites there were buttons to uncheck otherwise I'd automatically subscribe to their crap which I obviously don't want.

To cut a long story, I click link, blank page comes up & nothing happens? Nothing loads? I'm upstairs in the top of my house thinking its a poor connection? Nope. I thought ****. I've seen this before. This happened to me when I had a pc. I tried to open on my iphone. Same scenario.

What is going on? Do I now have an infected mac? Is this a trojan/malware programme for a pc? How do I check to see whether I've got a virus, trojan or any malicious software on my mac? No virus exist in wild etc, but what about keyloggers etc?

I followed most the steps in the guide provided earlier in the thread but I still can't help but feel I'm now infected & I want to find out if I am or not. If so, I want to throw petrol on whoever developed the programme & throw them a light.

Please help

Firstly check this link below from CNET if you have the same problems.

http://reviews.cnet.com/8301-13727_...ed-web-sites-after-os-x-update/?tag=txt;title


Check your internet billings. Or check with your ISP for any network outage.

Check the settings of your Wifi Router. Or connect directly to DSL or Cable modem. See if you can surf the web.

Isolate one by one.

If you have a windows pc. Goto thru the steps which I mentioned earlier.

On your Mac.

Go to terminal and check your /etc/resolv.conf

Type this command sudo cat /etc/resolv.conf in your Terminal. While connecting directly to your DSL or Cable modem. Not your Wifi router.

If you can surf the web from connecting to the DSL or Cable Modem. Then the problem must be the settings on your wifi router.

See what DNS is printed there. (Check the steps for your Mac option from my previous posting )

Call to check with your ISP whether you got the correct DNS settings.

From the terminal you can flush your DNS cache. By typing this on the terminal screen sudo dscacheutil -flushcache

In Lion and Mountain Lion

sudo killall -HUP mDNSResponder



In Leopard / Snow Leopard

sudo dscacheutil -flushcache



In Tiger

lookupd -flushcache

If you know Unix commands such as ping, traceroute, nslookup, dig. That will help a bit. Do a ping and traceroute on your Mac terminal screen.

There is DNS Changer Malware for the Mac too.

check the steps below:-
http://www.dcwg.org/detect/checking-osx-for-infections/

(goto the link which I posted before this post under us-cert.gov DNS Changer Malware.http://www.dcwg.org/fix/)

Make sure that your Mac OS X root account is disable.

"Wake Up!" Rage Against the Machine

 

[ohrightantlers]

Wow, I did not expect my post to get such responses! But really, thank you to everyone, and I mean everyone in this post for helping. I've disabled my java and I've upgraded to Snow Leopard. Thank you again

 

[GGJstudios]

I then get an email from this company saying I've subscribed to a mailing list. Click this link to unsubscribe. Me being soft & it being late, I tried to press the button to unsubscribe thinking I've accidentally subscribed to something?

Don't ever reply to spam, such as clicking "unsubscribe" or any other links in spam messages, as this could serve only to verify to the spammer that your email address is active and in use. They will then sell your verified email address to other spammers and the problem is exasperated.

To cut a long story, I click link, blank page comes up & nothing happens? Nothing loads?

Reset your browser, clearing your cache and cookies. That's probably all you need to do. If you haven't already done so, try changing your DNS servers on your Mac and your router to OpenDNS servers. This will show you how: Why am I being redirected to other sites?

What is going on? Do I now have an infected mac? Is this a trojan/malware programme for a pc? How do I check to see whether I've got a virus, trojan or any malicious software on my mac? No virus exist in wild etc, but what about keyloggers etc?

No, you didn't get malware on your Mac. The only way to get a keylogger is if you install it yourself, or give access to someone else to install it. Keyloggers cannot install themselves on your Mac without your permission.

I followed most the steps in the guide provided earlier in the thread but I still can't help but feel I'm now infected

What symptoms is your Mac displaying that makes you think your Mac is infected? Be aware that the average Mac user will likely never encounter malware, as it's quite rare.

First off, check your Windows PC is infected by this virus.

You really should stop posting such uninformed nonsense and spend some time educating yourself about the topic being discussed. Your long and uninformed posts are not helping anyone and sound much like advertisements for antivirus apps that are not needed and not appropriate to the issues being discussed. If anything, you're misleading and confusing those who come here seeking accurate answers and solutions. Stop posting this nonsense and spend some time learning before you post. It would also help if you took the time to read and understand the posts before you respond, as S-mac-k is clearly using a Mac and not Windows.

 

[betatest]

You really should stop posting such uninformed nonsense and spend some time educating yourself about the topic being discussed. Your long and uninformed posts are not helping anyone and sound much like advertisements for antivirus apps that are not needed and not appropriate to the issues being discussed. If anything, you're misleading and confusing those who come here seeking accurate answers and solutions. Stop posting this nonsense and spend some time learning before you post. It would also help if you took the time to read and understand the posts before you respond, as S-mac-k is clearly using a Mac and not Windows.

Am I getting any form of salary by advertising anti virus products? Did I get a free product from an Anti Virus company???

For goodness sake I did run ClamAV and ClamXav on mac.

No wonder Steve Jobs hates and ignores all the Mac Fanboys in the Apple Stores! It just that he's not telling. Before the stores open he would communicate among it's close friends.

Apple is a company that is sworn to secrecy. That is what I know about Apple from the very start.


Below is an excerpt from a well know Security Expert journalist Mr Brian Krebs!

READ THE APPLE STATEMENT BELOW as what Brian Krebs explains!

http://voices.washingtonpost.com/securityfix/2008/12/apple_mac_users_should_get_ant.html

Apple: Mac Users Should Get Antivirus Software

In a notable shift, Apple is now recommending that Mac users install anti-virus software to help users secure their systems.

In a technical note quietly published to its support site on Nov. 21, Apple issued the following advice:

"Apple encourages the widespread use of multiple anti-virus utilities so that virus programmers have more than one application to circumvent, thus making the whole virus writing process more difficult."

This is news to me. Just under three months ago, I asked an employee at our local Apple store whether I needed anti-virus for my MacBook, and was told not to bother, that it was not necessary. I wonder if this means Apple will stop running television ads saying Mac users don't have to worry about malicious software?

Security Fix hears from readers constantly wondering whether they should secure their Macs. I suspect this may be because more people are choosing to purchase Macs over PCs loaded with Vista. I always tell people that the best advice is to enable the built-in firewall, and to keep the machine updated with the latest patches from Cupertino - in addition to fixes for add-ons like Adobe Flash and Reader.

But more importantly, Mac users should be more cautious about the programs they choose to install on their systems. After all, the majority of all malicious software designed for Macs doesn't use security flaws to break into systems: It tricks the user into agreeing to download and install it. While anti-virus software is designed to flag programs that are known threats, no security program can protect a system from a file or software the user chooses to install.

If you are considering anti-virus for your Mac, Apple recommends a few options (below). I should note that there is also a free anti-virus program available for OS X, called ClamXav. In addition, SecureMac offers a free Trojan detection tool. For the record, I've had Symantec anti-virus installed on my MacBook for nearly two years now and it has never so much as made a peep.

From the remainder of the Apple support advisory:

Here are some available anti-virus utilities:

· Intego VirusBarrier X5, available from the Apple Online Store
License: commercial

· Symantec Norton Anti-Virus 11 for Macintosh, available from the Apple Online Store
License: commercial

· McAfee VirusScan for Mac
License: commercial

I'd like to hear from any Mac readers out there: Do you use anti-virus on your Mac? If so, which security program(s) do you use? If you don't use anti-virus software on your Mac, is Apple's recommendation likely to change your mind? Sound off in the comments below.

Update, 2:35 p.m., Dec. 3: As a number of readers have pointed out, Apple has since pulled the advisory that prompted this blog post. Try to visit the old link for the advisory, and you will see the following message: "We're sorry. We can't find the article you're looking for."

In a written statement sent security news site Securityfocus.com, Apple explained their decision to pull the document:

"We have removed the KnowledgeBase article because it was old and inaccurate," Apple said in a statement sent to SecurityFocus. "The Mac is designed with built-in technologies that provide protection against malicious software and security threats right out of the box. However, since no system can be 100 percent immune from every threat, running antivirus software may offer additional protection."

Yeah Mac have no viruses but 600,000 crap they get infected with Flashback virus.

That's why ClamAV and many anti virus companies issues detection for it.

The only OS that does not have infected viruses in the wild is OpenVMS, HPUX, AIX system.

Go ahead do a search via:- http://clamav-du.securesites.net/cg...cgifields=case-sensitivity&.cgifields=display


Quote: "I think U own warez!"

 

[GGJstudios]

Below is an excerpt from a well know Security Expert journalist Mr Brian Krebs!

That 4 year old article was already made irrelevant by Apple's withdrawal of their "old and inaccurate" statement. It's not necessary to post articles in their entirety. Posting a link will suffice, especially when posting such an outdated and irrelevant article. And Flashback is a trojan, not a virus. Not a single item on the ClamAV Virus Database is a Mac OS X virus, because none exist in the wild. How long will you persist in posting such false and misleading nonsense?

 

[betatest]

That 4 year old article was already made irrelevant by Apple's withdrawal of their "old and inaccurate" statement. It's not necessary to post articles in their entirety. Posting a link will suffice, especially when posting such an outdated and irrelevant article. And Flashback is a trojan, not a virus. Not a single item on the ClamAV Virus Database is a Mac OS X virus, because none exist in the wild. How long will you persist in posting such false and misleading nonsense?

That's because Apple issues Xprotect! Since Snow Leopard!

And Apple issues a detection of Flashback very very very late. Right before any Anti Virus companies did.

Apple have a long list of history of an unpatch updates.

Don't ever think that OS X is very "SUPERIOR"!

Apple cannot create their own UNIX OS, that's why they buy Steve Jobs NeXT computer.

Here's an excerpt from Steve Jobs wiki ..."After difficulties developing a new Mac operating system, Apple purchased NeXT in 1996 in order to use NeXTSTEP as the basis for what became Mac OS X."

Find the text... https://en.wikipedia.org/wiki/Steve_Jobs

I did not wrote any of those!

Quote:"Wait till you know that Mac OS X 10.8 gatekeeper will kill your warez!"

https://www.youtube.com/watch?v=ctoLEZQDAQM&feature=related

 

[GGJstudios]

That's because Apple issues Xprotect!

You don't need Xprotect or any antivirus app to keep a Mac malware free.

And they issues a detection of Flashback very very very late. Right before any Anti Virus companies did.

That's false. Many antivirus companies responded before Apple did. I don't care how late Apple responded to the Flashback trojan. I practice safe computing as described earlier, so my Macs cannot be affected by any malware that has ever existed in the wild.

Apple have a long list of history of an unpatch updates.

So does every OS. What's your point?

Don't ever think that OS X is very "SUPERIOR"!

I didn't say it was superior. I said if you practice safe computing, you can keep your Mac free of all malware that exists in the wild, without the use of antivirus apps.

OpenBSD is very secure! A top contender os.

No OS is completely secure, including OpenBSD.

Apple cannot create their own UNIX OS, that's why they buy Steve Jobs NeXT computer.

What does that have to do with anything? Many companies acquire technology by buying other companies. That has nothing to do with the topic at hand.

 

[betatest]

See the dates!

https://support.apple.com/kb/HT1222

Leopard Security Update 2012-003
Mac OS X v10.5 to 10.5.8 (Intel)
14 May 2012
Flashback Removal Security Update
Mac OS X v10.5 to 10.5.8 (Intel)
14 May 2012
Safari 5.1.7
Mac OS X v10.6.8, OS X Lion v10.7.4, Windows 7, Vista, XP SP2 or later
09 May 2012
OS X Lion v10.7.4 and Security Update 2012-002
Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lion v10.7 to v10.7.3, OS X Lion Server v10.7 to v10.7.3
09 May 2012
iOS 5.1.1 Software Update
iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and later, iPad (1st generation), iPad (2nd generation), iPad (3rd generation)
07 May 2012
Flashback malware removal tool
OS X Lion v10.7 or later
13 Apr 2012
Java for OS X Lion 2012-003 and Java for Mac OS X 10.6 Update 8
Mac OS X v10.6.8, OS X Lion v10.7.3
12 Apr 2012
Java for OS X Lion 2012-002 and Java for Mac OS X 10.6 Update 7
Mac OS X v10.6.8, OS X Lion v10.7.3
03 Apr 2012

On U.S HomeLand Security

Apple Releases Flashback Malware Security Updates
added Monday, April 16, 2012 at 3:11 pm | updated Tuesday, May 15, 2012 at 10:02 am

Apple has released security updates to address Flashback malware in the following products:

OS X Lion v10.7.3
OS X Lion Server v10.7.3
Mac OS X v10.6.8
Mac OS X Server v10.6.8

Apple has released a malware removal tool for the most common variant of the Flashback malware. If the malware is discovered, the tool will notify the user and remove it automatically. If the malware is not discovered, no indication will be given.

Update: On May 14, 2012 Apple has released security updates to address Flashback malware in the following product:

Mac OS X v10.5 to v10.5.8

US-CERT encourages users and administrators to review articles HT5247, HT5254, and HT5273 and apply any necessary updates to help mitigate the risk.

Xprotect have been implemented and embeded in the Mac OS X by Apple not you!

Since 10.6.7! Snow Leopard!

Yes! If you do it right you are not infected because you do safe computing!

Face the facts guys! Face the facts!

Like it or not!

This is not one of the J. Edgar Hoover questions to be answered guys!

That's why I hate about Mac FanBoys!

https://www.youtube.com/watch?v=ctoLEZQDAQM&feature=related

Steve Jobs is a rebel. And I like his style! I am one of his Apple cult followers in the 80s!

OpenBSD only had 2 exploits in the long run. Compared to MAC OS X!

Check the guys at SECUNIA!

Quote:"Mac can get hack in 2 minutes!" Dr C.Miller

 

[GGJstudios]

Xprotect have been implemented and embeded in the Mac OS X by Apple not you!

Since 10.6.7! Snow Leopard!

I know that. What's your point? You're not making any sense.

Face the facts guys! Face the facts!

Like it or not!

This is not one of the J. Edgar Hoover questions to be answered guys!

More off-topic nonsense. Are you sober?

That's why I hate about Mac FanBoys!

This doesn't make sense, either. Who are you calling a fanboy?

Steve Jobs is a rebel.

Was.

Mac can get hack in 2 minutes!

So can other OSes. So what? I said earlier no OS is completely secure. Hacking is very different than malware, and the average user will never, ever have their computer hacked.

 

[betatest]

I know that. What's your point? You're not making any sense.

More off-topic nonsense. Are you sober?

This doesn't make sense, either. Who are you calling a fanboy?

Was.

So can other OSes. So what? I said earlier no OS is completely secure. Hacking is very different than malware, and the average user will never, ever have their computer hacked.

Enough already!

Let You W-I-N!

But you did not want to face the reality facts!

 

[GGJstudios]

Enough already!

Let You W-I-N!

But you did not want to face the reality facts!

What "reality facts" are you talking about? You've posted mostly nonsense in this thread (as you have in others), or statements that have nothing to do with the topic of this thread. You've quoted years-old articles that don't apply and posted false and misleading statements. So what facts are you referring to that someone didn't want to face? Please try to make some sense.

 

[betatest]

So can other OSes. So what? I said earlier no OS is completely secure. Hacking is very different than malware, and the average user will never, ever have their computer hacked.

That will encourage people to take control of some one else computer!

Make changes to other people belongings and make changes to someone else computer to all his dirty work.

----------

What "reality facts" are you talking about? You've posted mostly nonsense in this thread (as you have in others), or statements that have nothing to do with the topic of this thread. You've quoted years-old articles that don't apply and posted false and misleading statements. So what facts are you referring to that someone didn't want to face? Please try to make some sense.

Well that's explain everything why you guys kick people out in the forum.

 

[GGJstudios]

That will encourage people to take control of some one else computer!

Make changes to other people belongings and make changes to someone else computer to all his dirty work.

There are very few people with the skills required to do that, and most users will never encounter them. If you think you can do it, go ahead and try.

 

[betatest]

There are very few people with the skills required to do that, and most users will never encounter them. If you think you can do it, go ahead and try.

Installing Spy CAM to innocent people is right you say.

 

[GGJstudios]

Installing Spy CAM to innocent people is right you say.

I'm guessing that English is not your first language, because your reading comprehension and posting skills are very much lacking. Again I ask, what are you talking about?

 

[betatest]

Oh that's the way you guys gang up in the forum and kick everyone out whom you don't like. Is it?

Okay I admit it.

Like I said before, I let you win everything.

But I will stand on my facts findings!

What I really don't understand is, what is so dead special about Apple Java apart from the rest.

Java comes from Sun Microsystem. (Now Oracle)

It is a cross platform. (Windows, Linux, Mac OS X, Unix, etc)

If there is no exploits in Apple Java, Apple will not release a version for it.

There wouldn't be any new releases of Apple updates in Java.

If Apple did not release a Java patch. Then I can say that Apple Mac OS X is "Superiority"!

Apple did not own Java in the first place.

So what's make you think,that Apple is so dead superior in terms of technology.

No doubt they are carbon copy of well known unixes in the industries.

Under the hood, Apple Mac OS X is running BSD!

Did you know that Apple have to liaise with the FreeBSD guys on security issues.

Excerpts from Apple site "Apple also works very closely with the FreeBSD Security team to analyze and release patches for security vulnerabilities."

From what I know Apple is very lazy to do update patches in the OS X! Period!

Apple ignore many people who are computer security experts, who are happen to be Mac OS X users themselves.

If Apple runs it's own Unix OS. Apart from System V and Berkley. Then I will believe Apple "Superiority" beings!

There is no such thing as "Superiority" beings in this world.

We are humans!

https://www.youtube.com/watch?v=Mn5yBU_vuCQ&feature=relmfu
https://www.youtube.com/watch?v=J4s_RhsV0XU

 

[cjmillsnun]

I'm guessing that English is not your first language, because your reading comprehension and posting skills are very much lacking. Again I ask, what are you talking about?

As you say with safe computing techniques you're generally fine. (even with Windows PCs - most vulnerabilities have been patched on them now).

A little intelligence and savvy and you can face the worst the net can throw at you.

 

[betatest]

Firstly check this link below from CNET if you have the same problems.

http://reviews.cnet.com/8301-13727_...ed-web-sites-after-os-x-update/?tag=txt;title


Check your internet billings. Or check with your ISP for any network outage.

Check the settings of your Wifi Router. Or connect directly to DSL or Cable modem. See if you can surf the web.

Isolate one by one.

If you have a windows pc. Goto thru the steps which I mentioned earlier.

On your Mac.

Go to terminal and check your /etc/resolv.conf

Type this command sudo cat /etc/resolv.conf in your Terminal. While connecting directly to your DSL or Cable modem. Not your Wifi router.

If you can surf the web from connecting to the DSL or Cable Modem. Then the problem must be the settings on your wifi router.

See what DNS is printed there. (Check the steps for your Mac option from my previous posting )

Call to check with your ISP whether you got the correct DNS settings.

From the terminal you can flush your DNS cache. By typing this on the terminal screen sudo dscacheutil -flushcache

In Lion and Mountain Lion

sudo killall -HUP mDNSResponder



In Leopard / Snow Leopard

sudo dscacheutil -flushcache



In Tiger

lookupd -flushcache

If you know Unix commands such as ping, traceroute, nslookup, dig. That will help a bit. Do a ping and traceroute on your Mac terminal screen.

There is DNS Changer Malware for the Mac too.

check the steps below:-
http://www.dcwg.org/detect/checking-osx-for-infections/

(goto the link which I posted before this post under us-cert.gov DNS Changer Malware.http://www.dcwg.org/fix/)

Make sure that your Mac OS X root account is disable.

"Wake Up!" Rage Against the Machine

S-Mac-K, if you run Lion 10.7.4 likelyhood you have the same problem.

Follow my link to CNET.

http://reviews.cnet.com/8301-13727_...ed-web-sites-after-os-x-update/?tag=txt;title

 

[maflynn]

Closing this thread. This thread has just turned into arguments back and forth

The OP is long gone and nothing else is being accomplished in this thread