Confusion on trojan/virus download

Similar Messages

• How to uninstall malicious viruses Rootkit.Sirefef.Spy and Trojan.FakeAV Download

  I got a screen that states Warning: System may have found viruses on your computer.  It references Rootkit.Sirefef.Spy and Trojan.FakeAV-Download.
  I can no longer get onto Safari without directing me to the address:
  macibr.com/mac/ibr-2?sub_id=008612858011772470948
  There is a pop up window that reads:
  Http://macibr.com
  WARNING! Please Install Update To Continue.
  How do I get rid of this warning? There isn't an appointment in the Apple store for two days.
  Anyone had experience with this?

  These are most likely scams. Ignore them. You do not have to do a thing.
  The following comes from user stevejobsfan0123. I have made minor changes to adapt to this presentation.
  Fix Some Browser Pop-ups That Take Over Safari.
  Common pop-ups include a message saying the government has seized your computer and you must pay to have it released (often called "Moneypak"), or a phony message saying that your computer has been infected, and you need to call a tech support number (sometimes claiming to be Apple) to get it resolved. First, understand that these pop-ups are not caused by a virus and your computer has not been affected. This "hijack" is limited to your web browser. Also understand that these messages are scams, so do not pay any money, call the listed number, or provide any personal information. This article will outline the solution to dismiss the pop-up.
  Quit Safari
  Usually, these pop-ups will not go away by either clicking "OK" or "Cancel." Furthermore, several menus in the menu bar may become disabled and show in gray, including the option to quit Safari. You will likely have to force quit Safari. To do this, press Command + option + esc, select Safari, and press Force Quit.
  Relaunch Safari
  If you relaunch Safari, the page will reopen. To prevent this from happening, hold down the 'Shift' key while opening Safari. This will prevent windows from the last time Safari was running from reopening.
  This will not work in all cases. The shift key must be held at the right time, and in some cases, even if done correctly, the window reappears. In these circumstances, after force quitting Safari, turn off Wi-Fi or disconnect Ethernet, depending on how you connect to the Internet. Then relaunch Safari normally. It will try to reload the malicious webpage, but without a connection, it won't be able to. Navigate away from that page by entering a different URL, i.e. www.apple.com, and trying to load it. Now you can reconnect to the Internet, and the page you entered will appear rather than the malicious one.
  You Don’t Have a Virus and Don’t Pay Money to Remove
  This is not a virus nor is it pop-up adware. Fortunately, it doesn’t affect anything but the browser, and it can be easily removed.
  If it has opened a tab or window, then close the window by pressing COMMAND-W. A large box may pop open. Press the RETURN key which should dismiss the box and close the page.
  If the above does not work then try the following:
       1. Select Safari preferences. Click on the Security icon in the toolbar.
       2. Locate the checkbox labeled, Enable JavaScript, and uncheck the box. Do not
           close the preferences dialog.
       3. Close the bad window or tab.
       4. Re-check the JavaScript box and close the preferences dialog.
  If the Preferences menuitem is inactive then quit or force quit Safari. Run Safari by holding down the SHIFT key while clicking Safari’s Dock icon. Select Safari preferences and click on the Privacy icon in the toolbar. At the top is a dropdown menu labeled, “Cookies and other website date.” Click on the Remove All Website Data… button.
  Check your Downloads folder for anything you don’t recognize or remember downloading and delete it.
  Also see: I just got a "warning: system may have found viruses on your computer" message on safari.

• Does Trojan Virus Works on Mac?

  Hey guys, i've downloaded a file from safari, and i've tried to open it up but all of a sudden my shophos anti-virus just pops and say there's a trojan virus with a 1/5 danger.
  If i'm right, i remember macs are "virus-free", and trojans are PC virus which shouldn't work on Mac.
  Please help!!

  1. This comment applies to malicious software ("malware") that's installed unwittingly by the victim of a network attack. It does not apply to software, such as keystroke loggers, that may be installed deliberately by an intruder who has hands-on access to the victim's computer. That threat is in a different category, and there's no easy way to defend against it. If you have reason to suspect that you're the target of such an attack, you need expert help.
  2. All versions of OS X since 10.6.7 have been able to detect known Mac malware in downloaded files, and to block insecure web plugins. This feature is transparent to the user, but internally Apple calls it "XProtect." The malware recognition database is automatically updated once a day; however, you shouldn't rely on it, because the attackers are always at least a day ahead of the defenders.
  The following caveats apply to XProtect:
  It can be bypassed by some third-party networking software, such as BitTorrent clients and Java applets (see below.)
  It only applies to software downloaded from the network. Software installed from a CD or other media is not checked.
  3. Starting with OS X 10.7.5, there has been another layer of built-in malware protection, designated "Gatekeeper" by Apple. By default, applications and Installer packages downloaded from the network will only run if they're digitally signed by a developer with a certificate issued by Apple. Software certified in this way hasn't actually been tested by Apple (unless it comes from the Mac App Store), but you can be reasonably sure that it hasn't been modified by anyone other than the developer. His identity is known to Apple, so he could be held legally responsible if he distributed malware. For most practical purposes, applications recognized by Gatekeeper as signed can be considered safe.
  Gatekeeper has, however, the same limitations as XProtect, and in addition the following:
  It can easily be disabled or overridden by the user.
  A malware attacker could get control of a code-signing certificate under false pretenses, or could find some other way to evade Apple's controls.
  For more information about Gatekeeper, see this Apple Support article.
  4. Beyond XProtect and Gatekeeper, there’s no benefit, in most cases, from any other automated protection against malware. The first and best line of defense is always your own intelligence. All known malware circulating on the Internet that affects a fully-updated installation of OS X 10.6 or later takes the form of so-called "trojan horses," which can only have an effect if the victim is duped into running them. The threat therefore amounts to a battle of wits between you and the malware attacker. If you're smarter than he thinks you are, you'll win.
  That means, in practice, that you never use software that comes from an untrustworthy source. How do you know whether a source is trustworthy?
  Any website that prompts you to install a “codec,” “plug-in,” "player," "archive extractor," or “certificate” that comes from that same site, or an unknown one, is untrustworthy.
  A web operator who tells you that you have a “virus,” or that anything else is wrong with your computer, or that you have won a prize in a contest you never entered, is trying to commit a crime with you as the victim. (Some reputable websites did legitimately warn users who were infected with the "DNSChanger" malware. That exception to this rule no longer applies.)
  Pirated copies or "cracks" of commercial software, no matter where they come from, are unsafe.
  Software of any kind downloaded from a BitTorrent or from a Usenet binary newsgroup is unsafe.
  Software with a corporate brand, such as Adobe Flash Player, must be downloaded directly from the developer’s website. If it comes from any other source, it's unsafe.
  5. Java on the Internet (not to be confused with JavaScript, to which it's not related, despite the similarity of the names) is a weak point in the security of any system. Java is, among other things, a platform for running complex applications in a web page. Its developers have had a lot of trouble getting it to do this without also creating a portal for malware to enter. Past Java exploits are the closest thing there has ever been to a Windows-style "virus" in OS X. Merely loading a page with malicious Java content could be harmful.
  Java is not included in OS X 10.7 and later. A separate Java installer is distributed by Apple, and another one by Oracle (the developer of Java.) Don't use either one unless you need it. At the moment, the Oracle version is blocked by Apple because of known security flaws that make it unsafe to use on the Internet. If Java is installed, disable it — not JavaScript — in your browsers. In Safari, this is done by unchecking the box marked Enable Java in the Security tab of the preferences dialog. Few websites have Java content nowadays, so you probably won’t be missing much.
  Regardless of version, experience has shown that Java on the Web can't be trusted. If you must use a Java applet for a specific task, enable Java only when needed for the task and disable it immediately when done. Close all other browser windows and tabs, and don't visit any other sites while Java is active. Eliminate Java from your online workflow whenever possible. If a web page prompts you to use Java to do something that can be done without it, such as streaming video or downloading files, don't.
  Follow these guidelines, and you’ll be as safe from malware as you can reasonably be.
  6. Never install any commercial "anti-virus" or "Internet security" products for the Mac, as they all do more harm than good, if they do any good at all. If you need to be able to detect Windows malware in your files, use the free software ClamXav — nothing else.
  Why shouldn't you use commercial "anti-virus" products?
  Their design is predicated on the nonexistent threat that malware may be injected at any time, anywhere in the file system. Malware is downloaded from the network; it doesn't materialize from nowhere.
  In order to meet that nonexistent threat, the software modifies or duplicates low-level functions of the operating system, which is a waste of resources and a common cause of instability, bugs, and poor performance.
  By modifying the operating system, the software itself may create weaknesses that could be exploited by malware attackers.
  7. ClamXav doesn't have these drawbacks. That doesn't mean it's entirely safe. It may report email messages that have "phishing" links in the body, or Windows malware in attachments, as infected files, and offer to delete or move them. Doing so will corrupt the Mail database. The messages should be deleted from within the Mail application.
  ClamXav is not needed, and should not be relied upon, for protection against OS X malware. It's useful only for detecting Windows malware. Windows malware can't harm you directly (unless, of course, you use Windows.) Just don't pass it on to anyone else.
  A Windows malware attachment in email is usually easy to recognize. The file name will often be targeted at people who aren't very bright; for example:
  ♥♥♥♥♥♥♥♥♥♥♥♥♥♥!!!!!!!H0TBABEZ4U!!!!!!!.AVI♥♥♥♥♥♥♥♥♥♥♥♥♥♥.exe
  ClamXav may be able to tell you which particular virus or trojan it is, but do you care? In practice, there's seldom a reason to use ClamXav unless a network administrator requires you to run an anti-virus application.
  8. The greatest harm done by anti-virus software, in my opinion, is in its effect on human behavior. It does little or nothing to protect people from emerging threats, but they get a false sense of security from it, and then they may behave in ways that expose them to higher risk. Nothing can lessen the need for safe computing practices.
  9. It seems to be a common belief that the built-in Application Firewall acts as a barrier to infection, or prevents malware from functioning. It does neither. It blocks inbound connections to certain network services you're running, such as file sharing. It's disabled by default and you should leave it that way if you're behind a router on a private home or office network. Activate it only when you're on an untrusted network, for instance a public Wi-Fi hotspot, where you don't want to provide services. Disable any services you don't use in the Sharing preference pane. All are disabled by default.

• Have others had trouble with Trojan infected download of Adobe CS2 and Premier Pro?

  Last week I contacted Adobe to help me activate Creative Suites program I bought years ago but never used. I couldn't activate it after using my discs to load it on my laptop. The tech I talked to informed me Adobe no longer supported it and I could go to the website and download the programs as CS2. I removed the original software and downloaded from https://www.adobe.com/cfusion/entitlement/index.cfm?e=cs2%5Fdownloads. The 3rd CS2 'CD' would not download, hung up. I closed it and finished Audition and Pro. After installation I suspected a virus may have been placed on my computer so ran McAfee, which said my computer was free of any viruses, and ClamWin, which said I have various forms of a Trojan virus throughout the Acrobat Adobe programs. I haven't tried to use them yet, and am leary of doing so. Are others having a problem downloading these programs? Should I uninstall, run ClamWin to ensure I have no more Trojans, and then reinstall?

  These are false positives.
  Mylenium

• Popup said I have a Trojan Virus, how do I remove?

  While browsing news I got a popup with an Android picture that said I caught a Trojan Virus and offered an option to clean. Not knowing if that would "activate" the virus I closed out of the site. Now I'm worried that I have a virus. Is there a way to do a virus scan and repair on my LG phone?

  Along with antivirus app, backing out of the page is usually yields no problem.  It's more of a popup than an executable.  Those pop ups normally take you to a page where you have to actually download the app.  Chrome typically asks via bottom-of-screen pop-up if you are sure you want to install x file.  this is also a good time to make sure "Unknown Sources" is unchecked and "Verify Apps" is checked.

• Trojan Virus from Song Lyrics?

  So I went to look up song lyrics and an ad popped up.  I clicked the "X" in the corner and suddenly it opened up a new tab with a Safari window telling me that my "PC" had caught a trojan virus that could access my log-in information (I'm using a MacBook Pro).  It also said not to fix the problem manually because it could cause my data to crash.  It also gave me a shady website/number to call for help (I didn't contact them).  Did I seriously download a virus of that nature, or does the scam reside in the contact information?  If I am in trouble, what can I do?

  Be sure to read Klaus's tips on viruses, trojans, etc. and see that you have covered his suggestions.

• Warning "anti-viral" trojan virus circulating using apple icon

  I accidently loaded a trojan virus when I thought I was downloading an anti-viral program sent from Apple - they use the Apple logo.  It then results in continuous pop-ups of *********** sites.  Apple tech support could not help but I found a website providing instructions to remove the malware.  Website is called "bleeping.com"  Yes, the irony of the name given what I had to get rid of - be careful.

  This was "news" three weeks ago. And every day here, but mostly over on forum for Snow Leopard
  There are dozens of articles, threads, links on how to help, as well as on what it is.
  Apple Community threads "macdefender"
  What is odd is a policy of turning customers away.
  Microsoft links fake Mac AV to Windows scareware gang
  http://www.reedcorner.net/news.php/?p=82
  MacInTouch - security discussion
  The most common and popular AV mentioned -
  ClamXav
  Intego Software 
  Mac BitDefender
  Norton for Mac
  Sophos Anti-Virus for Mac Home Edition
  MACDEFENDER Malware
  ZDNet Security
  Snow Leopard malware attacks
  New MAC OS X scareware delivered through blackhat SEO
  MacDefender Trojan
  http://www.reedcorner.com/guides/macvirus/

• I got the Trojan virus on my G56 Notebook PC, tried AVG to remove it hasn't worked!!!

  Can I get some assistance in removing this #^%$#%@$ Trojan Virus from my laptop... HELP!!!
  This question was solved.
  View Solution.

  Welcome Natty.
  Please take a look at this site.
  http://www.bleepingcomputer.com/combofix/how-to-use-combofix#uninstall
  The link to download then run COMBOFIX is there.
  You can get one or more of the online rep's to help you on there forum if needed..
  They are the best for a virus removal.
  Hope this helps.
  HP Expert Tester "Now testing HP Pavilion 15t i3-4030U Win8.1, 6GB RAM and 750GB HDD"
  Loaner Program”HP Split 13 x2 13r010dx i3-4012Y Win8.1, 4GB RAM and 500GB Hybrid HDD”
  Microsoft Registered Refurbisher
  Registered Microsoft Partner
  Apple Certified Macintosh Technician Certification in progress.

• I am so confused.  I just downloaded Itunes.  I set up an Apple ID with a password.  Now I want to purchase a song.  I can't do it.  I keep getting the message: This Apple ID has not yet been used with the Itunes Store.  What am I doing wrong?

  I am so confused.  I just downloaded Itunes.  I set up an Apple ID with a password.  Now I want to buy a song.  I can't do it.  I keep getting the message: "This Apple ID has not yet been used with the Itunes Store.  What am I doing wrong?

  You haven't opened an account with that Apple ID in iTunes. Open iTunes and log in. A dialog will appear in which you need to enter your Apple ID and/or password. Below it you should see a link for creating a new account. Click on that link to get started.

• Can't close Firefox after eradicating Fake.Trojan virus

  Got infected with Fake.Trojan virus today while surfing email via Firefox. Successfully used Malwarebytes to clean up the mess but some carnage remains. On a WIn7 platform.
  During infection and since eradication I keep getting this message, "Firefox is already running, but is not responding. To open a new window, you must first close the existing Firefox process, or restart your system."
  Tried the following to no avail --
  1. Task Manager - The Firefox process doesn't show up.
  2. Restarting the PC - Same problem;
  3. Uninstalling & Reinstalling - Same problem; says it need to close first.
  4. Finding/fixing the Profile - %APPDATA%\Mozilla\Firefox\Profiles\ not found.
  5. Call to tech support at AVG - They've never seen this. They recommend a full reinstall of Windows (Ugh - don't even know where the disks are!).
  Any help welcome. Thanks. -j philly

  Thank you for the tip. I had already tried your suggestion but based on it decided to take a closer look. I also did a YouTube lookup using IE.
  But my first stop was to run that lengthy ChkDsk program to make sure all was structurally sound after the virus. I also bought the Pro version of Malwarebytes to take security even higher.
  I went to YouTube because I was having a hard time finding that profile folder the solution you gave me referenced. Answer that worked for me: Don't use the Start button to find your Profile, use your desktop explorer starting with your Users directory and drill down from there. Learned that here: http://www.youtube.com/watch?v=zRUgxlo4U4w&feature=related (Note: The speaker and video quality isn't great but his intent is good and his message had enough helpful content to get me started. Ohers may feel the same way.)
  Within the comments section replying to the above-referenced YouTube video, I then found one person who wrote this --
  "If your Firefox locks up with this error as the result of a "virus" which also happened to hide all your files and desktop icons, then none of these crap Windows XP 'fixes'on YOUTUBE will work.
  In 2012, you will need to install Google Chrome, make it your default browser/import bookmarks etc. Then run Firefox while Chrome is open, and Firefox will suddenly be unlocked! 8-) Amazing!!! Then just disarm Google Chrome and uninstall it, and you will have your Firefox back."
  His message wasn't so kind, but I did try his solution and it worked! All appears better.
  Thank you again to the community for assistance today and to jscher2000 in particular for taking the time. - j philly

• What is the best free anti-virus download to use on my MacBook Pro?

  I'm worried that whatever Apple has built into the computer is not enough security. Is there a free anti-virus download for Macs? Do they do the job or do I have to spend money on something better? The download would need to identify and fix the problems. I mostly email, search the internet, sometimes buy things, download Kindle books, do my banking, etc. I would really not want to spend any money if it's not needed. Thanks.

  svdmmanta wrote:
  Is there a free anti-virus download for Macs? Do they do the job or do I have to spend money on something better?
  In General 3rd Party AV Software and Cleaning Utilities tend to cause More Issues than they claim to fix...
  They Not Required...
  Mac OS X tends to look after itself.
  See  >  Mac OS X Built in Security  >  http://www.apple.com/osx/what-is/security.html
  More Info Here  >   https://discussions.apple.com/thread/4545776?tstart=0
  And Here  >  Antivirus Discussion
  The Safe Mac  >  http://www.thesafemac.com/mmg/

• Are there any free safe anti-virus downloads

  are there any free safe anti-virus downloads compatible w/windows 2000

  Nothing from Adobe is free beyond the 30 day trial.  If you want free software, you'll need to look at plain HTML editors.  See link below for options.
  http://webdesign.about.com/od/windowshtmleditors/tp/free-windows-editors.htm
  Nancy O.

• My avast! antivirus software is identifying two Trojan viruses on my MacBookPro (Max OSX 10.7.5) that seem to be related to my Outlook for Mac.   An example of one of the file names is:  /.MobileBackups/Computer/2014-06-22-151618/Volume/Us

  My avast! antivirus software is identifying two Trojan viruses on my MacBookPro (Max OSX 10.7.5) that seem to be related to my Outlook for Mac.
  An example of one of the file names is:  /.MobileBackups/Computer/2014-06-22-151618/Volume/Users/stevekreitner/Documents /Microsoft User Data/Office 2011 Identities/Main Identity [Backed up 2014-06-22 12.48.35]/Data Records/Message Attachments/0T/0B/0M/9K/x26_9605.olk14MsgAttach
  Any suggestions on how to locate and remove these virsues?

  Actually, you can delete the entire Main Identity folder for Outlook that has a backup date in brackets [xxx] as part of its name since that was created when you used the Microsoft Database Utility to rebuild your email database. The folder that is only named Main Identity is the one in use. The other is now nothing.
  That should be true but sometimes users are in the wrong Identity. Outlook 'forgets' what is supposed to be the main default Identity and opens in the wrong one. You need to check the database file in the Identity to see date modified to know for sure.
  Typically, after rebuilding you delete the rebuild after a bit when you are satisfied with the rebuild. There should only be one Identity in the Identities folder. However, most users don't understand what to do with the copy that is made and never deletes anything.

• How do i uninstall the flash trojan virus?

  how do i uninstall the flash trojan virus?

  Seeing as how your Mac is up to date according to your profile, the update to Lion should have gotten rid of the trojan if it was on your Mac.
  Allan

• Can the rescue and recovery function be infect with a trojan virus?

  I had some trouble with trojan viruses. My scan software detected malware on my system which I deleted with the help of the antivirus software antivir (free version) and with the software malwarebytes.
  My thinkpad r51 is still running and virus scans do not show any problems any more. But I am not quite sure if I can trust the scans. So I am thinking about to format the harddisk and setup a new system. Or to use the rescue and recovery function which says that the system will be put back to its initial state. Is it really possible to bring the system back to its original state with help of rescue and recovery? ? I am a little bit afraid that the rescue and recovery function might be infected too? How does the function work? Can the system really be put back to its original state?
  Any help appreciated, thanks!
  Tom
  Solved!
  Go to Solution.

  Hi,
  if you have a virus on your system, then there is a realy small chance, that the virus got also into the Service Partition. 
  So in this situation if you want to restore the system , then after the restore finish, the virus should surely be gone.
  Service partition is a protected partition, which content can not be accessed just like that .
  Rgrds