Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
MacBook virus: Question authority, think for yourself?
- Thread starter edrewes
- Start date
- Sort by reaction score
Well... Doesn't seem like its a virus. I believe, actually, that it is a script that plays a .wav file. I have read of people doing stuff like this on other systems as well.
So yea... Not a virus... don't fret 🙂 It's just a dumb joke
Probably did get it while using a random WiFi spot... I personall don't trust any un-encrypted WiFi so yea... be a lil more careful 😉
So yea... Not a virus... don't fret 🙂 It's just a dumb joke
Probably did get it while using a random WiFi spot... I personall don't trust any un-encrypted WiFi so yea... be a lil more careful 😉
Its a looped audio file.
I didn't even have to hear it to know what it was....but checked to make sure I was right 😀
Its from TOOLs album AEnima. Its the last track "Third Eye."
Check it out. Bad a** track at that! 😎
I didn't even have to hear it to know what it was....but checked to make sure I was right 😀
Its from TOOLs album AEnima. Its the last track "Third Eye."
Check it out. Bad a** track at that! 😎
DaftUnion
macrumors 6502a
gnasher729
Suspended
Go to System Preferences, click on Accounts, then check what is in "Login Items". Anything in "Login Items" will be started automatically when your Mac is started. If there is anything unusual that you think shouldn't be there (I have iTunesHelper and some Microsoft thing in there), then remove it.
Tips for OSX security when using public WiFi.
[1] Setup & configure a separate user account named "wifi", heavily restrict this users access rights in the user accounts panel. Restrict every application apart from the ones likely to be used on the wifi, e.g. Mail.app / Thunderbird etc.
[2] Use an alternative Browser; Opera, Camino, FireFox etc.
[3] Turn the Firewall on, with max settings, with everything restricted, and allow connections were appropriate. also enter the advance pane and check settings like "Stealth Mode" etc.
Taking such steps when using public open WiFi we greatly limit risk of infection from malware / worms / Viruses etc.
Being in the field of OSX security, i can also confirm that some form of physical access to your computer would have been needed, or input from your self, file downloads, root prompts etc. if you haven’t already done so configure all browsers on your computer NOT to automatically download "safe files" as this can cause grave security issues which could lead to infections such as the one you have mentioned.
My guess is that you were browsing public, open WiFi on your root account using Safari or FF with auto downloads left on, and your firewall turned off. I could be wrong...
Also a little side-note, you sould use these tips for you root account aswell, accept for the first one! and also make sure you have checked the box "Require Password to unlock each secure system preference" from the sercuity pane, Via system preferences.
Kind Regards,
Mark.
🙂
[1] Setup & configure a separate user account named "wifi", heavily restrict this users access rights in the user accounts panel. Restrict every application apart from the ones likely to be used on the wifi, e.g. Mail.app / Thunderbird etc.
[2] Use an alternative Browser; Opera, Camino, FireFox etc.
[3] Turn the Firewall on, with max settings, with everything restricted, and allow connections were appropriate. also enter the advance pane and check settings like "Stealth Mode" etc.
Taking such steps when using public open WiFi we greatly limit risk of infection from malware / worms / Viruses etc.
Being in the field of OSX security, i can also confirm that some form of physical access to your computer would have been needed, or input from your self, file downloads, root prompts etc. if you haven’t already done so configure all browsers on your computer NOT to automatically download "safe files" as this can cause grave security issues which could lead to infections such as the one you have mentioned.
My guess is that you were browsing public, open WiFi on your root account using Safari or FF with auto downloads left on, and your firewall turned off. I could be wrong...
Also a little side-note, you sould use these tips for you root account aswell, accept for the first one! and also make sure you have checked the box "Require Password to unlock each secure system preference" from the sercuity pane, Via system preferences.
Kind Regards,
Mark.
🙂
Thanks everyone! That's really helpful, I don't want this to happen again...
I've been trying to find more info on what the loop is, but I haven't been able to get it to play for a couple of days. When I check the login items, nothing really looks odd...there is iTunes helper, I'm not really sure what that is--normal? It was running in the activity monitor along with some other stuff...my problem is not really knowing what I should expect to see there i guess.
Also, this is probably something different but I noticed that even after turning OFF the airport I could see a lot of network activity going on in the activity monitor, data being received & sent; one of the activity items was a server, which I hadn't connected to. Does that mean someone's connecting to me?
I've been trying to find more info on what the loop is, but I haven't been able to get it to play for a couple of days. When I check the login items, nothing really looks odd...there is iTunes helper, I'm not really sure what that is--normal? It was running in the activity monitor along with some other stuff...my problem is not really knowing what I should expect to see there i guess.
Also, this is probably something different but I noticed that even after turning OFF the airport I could see a lot of network activity going on in the activity monitor, data being received & sent; one of the activity items was a server, which I hadn't connected to. Does that mean someone's connecting to me?
Actually, Bill Hicks, the famous american comedian, is on the album version of Third Eye.
This sound clip of Timothy Leary was used as an entrance by Tool on their live album 'Salival'.
(First post - might be new to macs, but I know my Tool!😀)
not alone
if you think edrewes post is funny, I was at the Genius Bar because my MacBook pro was frozen. They hooked me up to their computer so I could backup. 10 minutes later, my computer starts loudly telling everyone in the store to "Question Authority, Think for yourself." Everyone just stared at my computer. It was sent to the repair service center, with one of the notes being that it was talking. Supposively they reloaded all the software. That was 3 weeks ago. My computer just started doing it again. I logged onto YouTube last night. Maybe that is the connection. I had logged onto the british opera singer before. I found this forum on a google on the quote. Has anyone successfully gotten rid of it?
if you think edrewes post is funny, I was at the Genius Bar because my MacBook pro was frozen. They hooked me up to their computer so I could backup. 10 minutes later, my computer starts loudly telling everyone in the store to "Question Authority, Think for yourself." Everyone just stared at my computer. It was sent to the repair service center, with one of the notes being that it was talking. Supposively they reloaded all the software. That was 3 weeks ago. My computer just started doing it again. I logged onto YouTube last night. Maybe that is the connection. I had logged onto the british opera singer before. I found this forum on a google on the quote. Has anyone successfully gotten rid of it?
i have a powerbook g4 that was doing it also last night. i restarted after quite a while. haven't tried it today, but will later tonight.
very creepy and annoying
very creepy and annoying
superleccy
macrumors 6502a
Well, if it is a Mac OS X virus, then it's one that only affects users who'd never previously posted on MacRumors Forums.
Funny, innit?
SL
Funny, innit?
SL
yellow
Moderator emeritus
Question Authority, Think For Yourself...
As always there is a simple solution. I had the same problem. I had installed a widget called Burning Man. Which is a countdown for the next Burning Man Event in Nevada. From the moment you don't have an internet connection this widget starts talking: Question Authority, Think For Yourself. And it goes on and on until you kill the widget. It doesn't help to kill the process in Activity Viewer. I hope it helps.
cu
As always there is a simple solution. I had the same problem. I had installed a widget called Burning Man. Which is a countdown for the next Burning Man Event in Nevada. From the moment you don't have an internet connection this widget starts talking: Question Authority, Think For Yourself. And it goes on and on until you kill the widget. It doesn't help to kill the process in Activity Viewer. I hope it helps.
cu
yellow
Moderator emeritus
Osarkon
macrumors 68020
A lot of the comments on that youtube video confirm it. I'm surprised it's taken this long for everyone to notice. 🙂
I was going to suggest you check your cron scripts or the 'at' queue for interesting stuff but it appears you have solved the problem. Something to remember though if you ever have a similar problem with a re-occurring event/process.
If you have turned Airport and Bluetooth off and are not connected to another computer via Ethernet or Firewire (and you'd notice because there'd be a cable), then no-one is hacking you.
Many applications use a client-server model locally. Such that they'll have a client on your computer and a server on your computer, and have the two interact over "loopback", which is essentially TCP traffic from one part of your computer to another. This shouldn't exceed more than a few KB/s.