I got a weird malware somehow on my iMac running Leopard 10.5.5 When ever I try going to www.digg.com it takes to a spsecuritycenterr.com which is a website for PC malware scanning. I don't know what to do. I tried both Firefox and Safari and when I go to digg.com same thing happens. Please help.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Malware Virus on Firefox and Safari in Leopard - Help!!!
- Thread starter ayasinsk
- Start date
- Sort by reaction score
I don't remember really installing anything lately. Anyways under DNS servers(which I didn't add) there are two entries:
85.255.113.143
85.255.112.67
However I can't even delete them. They are not clickable and the minus button is not either. My search domains box is empty.
85.255.113.143
85.255.112.67
However I can't even delete them. They are not clickable and the minus button is not either. My search domains box is empty.
Putting those into google suggest they could well be the cause of the problem. In regards to removing them I am not sure, there are a couple of steps outlined in the proposed article above that may work.
Did you click the lock in the lower left corner to make changes? You should be able to delete those two entries. Your ISP should automatically populate the DNS servers.
If you can't delete them, they're not being stored on your computer, but on a router or another device providing DNS to your computer. I'd suggest deleting them from your router and then changing all of your passwords on that router (and possibly the computer too). Someone may have hopped on your wifi if it's unsecured or poorly secured and inserted those settings while they were there.
If you can't get that to work, reset the router to factory defaults (look at the instructions for the router) and start over, again with the strongest security you have available.
jW
The lock button is not locked so that's not the issue. The funny thing is that when I'm using the wifi on my iphone and ibook I can go to digg.com without a problem. My imac is also using same wifi. So I'm sure it's a problem with my imac somewhere.
I'm going to add to this briefly.
After getting a funky system freeze in Firefox, I checked in terminal with the sudo crontab -l command for the aforementioned trojan, and it came back with nada.
However, I *do* have grayed out DNS entries. I assume this is because I have vonage between my comp. and my cable modem.
Do you have any similar setup?
After getting a funky system freeze in Firefox, I checked in terminal with the sudo crontab -l command for the aforementioned trojan, and it came back with nada.
However, I *do* have grayed out DNS entries. I assume this is because I have vonage between my comp. and my cable modem.
Do you have any similar setup?
Well those DNS entries are definitely in the Possible Hostile Inhoster Addresses list.
You have the trojan...
There was a mention of where the trojan drops its file, so you can delete it directly.
Edit: May try this... from the do i have a trojan link.
You have the trojan...
There was a mention of where the trojan drops its file, so you can delete it directly.
Edit: May try this... from the do i have a trojan link.