Emet with Anti Virus

Similar Messages

• Every time you update there are compatibility issues. Especially with Anti-virus programs. WHY? When publishing updates it seems that it would behoove you to contact ALL Virus programs.

  Every time I have FF updates there are major compatibility issues with anti virus, Adobe Flash, Java, & HP printer. This happens whenever Firefox has updates unless I wait 3-4 weeks to update. Impossible to live with these issues constantly.

  It's 6 weeks between Firefox version updates, not 8 weeks.
  Firefox doesn't force developers to create add-ons for Firefox, it is their choice. If they aren't up to the challenge of the fast release schedule, maybe they need to rethink their commitment to add-ons for Firefox and quit the game if they can't keep up with it.

• Does my macbook pro come with anti virus protection?

  Does my Macbook Pro come with anti-virus protection, or do i need to supply it myself?

  Mac users often ask whether they should install "anti-virus" software. The answer usually given on ASC is "no." The answer is right, but it may give the wrong impression that there is no threat from what are loosely called "viruses." There  is a threat, and you need to educate yourself about it.
  1. This is a comment on what you should—and should not—do to protect yourself from malicious software ("malware") that circulates on the Internet and gets onto a computer as an unintended consequence of the user's actions. It does not apply to software, such as keystroke loggers, that may be installed deliberately by an intruder who has hands-on access to the computer, or who has been able to take control of it remotely. That threat is in a different category, and there's no easy way to defend against it.
  The comment is long because the issue is complex. The key points are in sections 5, 6, and 10.
  OS X now implements three layers of built-in protection specifically against malware, not counting runtime protections such as execute disable, sandboxing, system library randomization, and address space layout randomization that may also guard against other kinds of exploits.
  2. All versions of OS X since 10.6.7 have been able to detect known Mac malware in downloaded files, and to block insecure web plugins. This feature is transparent to the user. Internally Apple calls it "XProtect."
  The malware recognition database used by XProtect is automatically updated; however, you shouldn't rely on it, because the attackers are always at least a day ahead of the defenders.
  The following caveats apply to XProtect:
  ☞ It can be bypassed by some third-party networking software, such as BitTorrent clients and Java applets.
  ☞ It only applies to software downloaded from the network. Software installed from a CD or other media is not checked.
  As new versions of OS X are released, it's not clear whether Apple will indefinitely continue to maintain the XProtect database of older versions such as 10.6. The security of obsolete system versions may eventually be degraded. Security updates to the code of obsolete systems will stop being released at some point, and that may leave them open to other kinds of attack besides malware.
  3. Starting with OS X 10.7.5, there has been a second layer of built-in malware protection, designated "Gatekeeper" by Apple. By default, applications and Installer packages downloaded from the network will only run if they're digitally signed by a developer with a certificate issued by Apple. Software certified in this way hasn't necessarily been tested by Apple, but you can be reasonably sure that it hasn't been modified by anyone other than the developer. His identity is known to Apple, so he could be held legally responsible if he distributed malware. That may not mean much if the developer lives in a country with a weak legal system (see below.)
  Gatekeeper doesn't depend on a database of known malware. It has, however, the same limitations as XProtect, and in addition the following:
  ☞ It can easily be disabled or overridden by the user.
  ☞ A malware attacker could get control of a code-signing certificate under false pretenses, or could simply ignore the consequences of distributing codesigned malware.
  ☞ An App Store developer could find a way to bypass Apple's oversight, or the oversight could fail due to human error.
  Apple has so far failed to revoke the codesigning certificates of some known abusers, thereby diluting the value of Gatekeeper and the Developer ID program. These failures don't involve App Store products, however.
  For the reasons given, App Store products, and—to a lesser extent—other applications recognized by Gatekeeper as signed, are safer than others, but they can't be considered absolutely safe. "Sandboxed" applications may prompt for access to private data, such as your contacts, or for access to the network. Think before granting that access. Sandbox security is based on user input. Never click through any request for authorization without thinking.
  4. Starting with OS X 10.8.3, a third layer of protection has been added: a "Malware Removal Tool" (MRT). MRT runs automatically in the background when you update the OS. It checks for, and removes, malware that may have evaded the other protections via a Java exploit (see below.) MRT also runs when you install or update the Apple-supplied Java runtime (but not the Oracle runtime.) Like XProtect, MRT is effective against known threats, but not against unknown ones. It notifies you if it finds malware, but otherwise there's no user interface to MRT.
  5. The built-in security features of OS X reduce the risk of malware attack, but they are not, and never will be, complete protection. Malware is a problem of human behavior, not machine behavior, and no technological fix alone is going to solve it. Trusting software to protect you will only make you more vulnerable.
  The best defense is always going to be your own intelligence. With the possible exception of Java exploits, all known malware circulating on the Internet that affects a fully-updated installation of OS X 10.6 or later takes the form of so-called "Trojan horses," which can only have an effect if the victim is duped into running them. The threat therefore amounts to a battle of wits between you and Internet criminals. If you're better informed than they think you are, you'll win. That means, in practice, that you always stay within a safe harbor of computing practices. How do you know when you're leaving the safe harbor? Below are some warning signs of danger.
  Software from an untrustworthy source
  ☞ Software with a corporate brand, such as Adobe Flash Player, doesn't come directly from the developer’s website. Do not trust an alert from any website to update Flash, or your browser, or any other software. A genuine alert that Flash is outdated and blocked is shown on this support page. Follow the instructions on the support page in that case. Otherwise, assume that the alert is fake and someone is trying to scam you into installing malware. If you see such alerts on more than one website, ask for instructions.
  ☞ Software of any kind is distributed via BitTorrent, or Usenet, or on a website that also distributes pirated music or movies.
  ☞ Rogue websites such as Softonic, Soft32, and CNET Download distribute free applications that have been packaged in a superfluous "installer."
  ☞ The software is advertised by means of spam or intrusive web ads. Any ad, on any site, that includes a direct link to a download should be ignored.
  Software that is plainly illegal or does something illegal
  ☞ High-priced commercial software such as Photoshop is "cracked" or "free."
  ☞ An application helps you to infringe copyright, for instance by circumventing the copy protection on commercial software, or saving streamed media for reuse without permission. All "YouTube downloaders" are in this category, though not all are necessarily malicious.
  Conditional or unsolicited offers from strangers
  ☞ A telephone caller or a web page tells you that you have a “virus” and offers to help you remove it. (Some reputable websites did legitimately warn visitors who were infected with the "DNSChanger" malware. That exception to this rule no longer applies.)
  ☞ A web site offers free content such as video or music, but to use it you must install a “codec,” “plug-in,” "player," "downloader," "extractor," or “certificate” that comes from that same site, or an unknown one.
  ☞ You win a prize in a contest you never entered.
  ☞ Someone on a message board such as this one is eager to help you, but only if you download an application of his choosing.
  ☞ A "FREE WI-FI !!!" network advertises itself in a public place such as an airport, but is not provided by the management.
  ☞ Anything online that you would expect to pay for is "free."
  Unexpected events
  ☞ A file is downloaded automatically when you visit a web page, with no other action on your part. Delete any such file without opening it.
  ☞ You open what you think is a document and get an alert that it's "an application downloaded from the Internet." Click Cancel and delete the file. Even if you don't get the alert, you should still delete any file that isn't what you expected it to be.
  ☞ An application does something you don't expect, such as asking for permission to access your contacts, your location, or the Internet for no obvious reason.
  ☞ Software is attached to email that you didn't request, even if it comes (or seems to come) from someone you trust.
  I don't say that leaving the safe harbor just once will necessarily result in disaster, but making a habit of it will weaken your defenses against malware attack. Any of the above scenarios should, at the very least, make you uncomfortable.
  6. Java on the Web (not to be confused with JavaScript, to which it's not related, despite the similarity of the names) is a weak point in the security of any system. Java is, among other things, a platform for running complex applications in a web page, on the client. That was always a bad idea, and Java's developers have proven themselves incapable of implementing it without also creating a portal for malware to enter. Past Java exploits are the closest thing there has ever been to a Windows-style virus affecting OS X. Merely loading a page with malicious Java content could be harmful.
  Fortunately, client-side Java on the Web is obsolete and mostly extinct. Only a few outmoded sites still use it. Try to hasten the process of extinction by avoiding those sites, if you have a choice. Forget about playing games or other non-essential uses of Java.
  Java is not included in OS X 10.7 and later. Discrete Java installers are distributed by Apple and by Oracle (the developer of Java.) Don't use either one unless you need it. Most people don't. If Java is installed, disable it—not JavaScript—in your browsers.
  Regardless of version, experience has shown that Java on the Web can't be trusted. If you must use a Java applet for a task on a specific site, enable Java only for that site in Safari. Never enable Java for a public website that carries third-party advertising. Use it only on well-known, login-protected, secure websites without ads. In Safari 6 or later, you'll see a padlock icon in the address bar when visiting a secure site.
  Stay within the safe harbor, and you’ll be as safe from malware as you can practically be. The rest of this comment concerns what you should not do to protect yourself.
  7. Never install any commercial "anti-virus" (AV) or "Internet security" products for the Mac, as they are all worse than useless. If you need to be able to detect Windows malware in your files, use one of the free security apps in the Mac App Store—nothing else.
  Why shouldn't you use commercial AV products?
  ☞ To recognize malware, the software depends on a database of known threats, which is always at least a day out of date. This technique is a proven failure, as a major AV software vendor has admitted. Most attacks are "zero-day"—that is, previously unknown. Recognition-based AV does not defend against such attacks, and the enterprise IT industry is coming to the realization that traditional AV software is worthless.
  ☞ Its design is predicated on the nonexistent threat that malware may be injected at any time, anywhere in the file system. Malware is downloaded from the network; it doesn't materialize from nowhere. In order to meet that nonexistent threat, commercial AV software modifies or duplicates low-level functions of the operating system, which is a waste of resources and a common cause of instability, bugs, and poor performance.
  ☞ By modifying the operating system, the software may also create weaknesses that could be exploited by malware attackers.
  ☞ Most importantly, a false sense of security is dangerous.
  8. An AV product from the App Store, such as "ClamXav," has the same drawback as the commercial suites of being always out of date, but it does not inject low-level code into the operating system. That doesn't mean it's entirely harmless. It may report email messages that have "phishing" links in the body, or Windows malware in attachments, as infected files, and offer to delete or move them. Doing so will corrupt the Mail database. The messages should be deleted from within the Mail application.
  An AV app is not needed, and cannot be relied upon, for protection against OS X malware. It's useful, if at all, only for detecting Windows malware, and even for that use it's not really effective, because new Windows malware is emerging much faster than OS X malware.
  Windows malware can't harm you directly (unless, of course, you use Windows.) Just don't pass it on to anyone else. A malicious attachment in email is usually easy to recognize by the name alone. An actual example:
  London Terror Moovie.avi [124 spaces] Checked By Norton Antivirus.exe
  You don't need software to tell you that's a Windows trojan. Software may be able to tell you which trojan it is, but who cares? In practice, there's no reason to use recognition software unless an organizational policy requires it. Windows malware is so widespread that you should assume it's in every email attachment until proven otherwise. Nevertheless, ClamXav or a similar product from the App Store may serve a purpose if it satisfies an ill-informed network administrator who says you must run some kind of AV application. It's free and it won't handicap the system.
  The ClamXav developer won't try to "upsell" you to a paid version of the product. Other developers may do that. Don't be upsold. For one thing, you should not pay to protect Windows users from the consequences of their choice of computing platform. For another, a paid upgrade from a free app will probably have all the disadvantages mentioned in section 7.
  9. It seems to be a common belief that the built-in Application Firewall acts as a barrier to infection, or prevents malware from functioning. It does neither. It blocks inbound connections to certain network services you're running, such as file sharing. It's disabled by default and you should leave it that way if you're behind a router on a private home or office network. Activate it only when you're on an untrusted network, for instance a public Wi-Fi hotspot, where you don't want to provide services. Disable any services you don't use in the Sharing preference pane. All are disabled by default.
  10. As a Mac user, you don't have to live in fear that your computer may be infected every time you install software, read email, or visit a web page. But neither can you assume that you will always be safe from exploitation, no matter what you do. Navigating the Internet is like walking the streets of a big city. It can be as safe or as dangerous as you choose to make it. The greatest harm done by security software is precisely its selling point: it makes people feel safe. They may then feel safe enough to take risks from which the software doesn't protect them. Nothing can lessen the need for safe computing practices.

• Should I protect my iMac with anti virus software and if yes what do you recommend thanks

  should i prtect i mac with anti virus software?

  If desired, use ClamXav. Any Mac OS X antivirus software which people actually charge for, as opposed to free downloads, should be avoided.
  (70900)

• ITunes installation probs with anti-virus software?

  After installing iTunes 5.0.1, my iTunes either will not run or it crashes. Also, my iPod now no longer works. It shows nothing but a folder and exclamation point, and iPod Updater does not recognize the iPod and therefore will not allow me to restore it to factory settings.
  Are these problems related to the incompatibility of the iTunes installer with anti-virus software? If so, can anyone suggest a fix for someone using Norton 2005 Internet Security? I tried to use the following 3-step program for addressing this problem at
  Lisa Bissell, "ITunes won't work" #4, 09:12pm Sep 28, 2005 CDT
  1.     Open Norton 2005 Internet Security, click on Personal Firewall, click Configure button, click Programs tab.
  2. Uncheck the Turn on Automatic Program Control box. In the Program window find itunes and change the Automatic setting to Permit All.
  3. Close Norton and restart Windows. itunes should work correctly after that.
  However, my iTunes is not found on Norton’s Program window. When I click on Add and then click on iTunes, the Norton program crashes. Suggestions?
  By the way, I am on week 2 of trying to untangle all of the problems created by the iTunes 5.0.1 installation. I have already implemented the suggestions on the following four sites without success.
  TOONZ’s 5-POINT PLAN
  toonz, "iTunes 5.01: Rending iPods useless Worldwide" #2, 12:01pm Oct 4, 2005 CDT
  DMITRY BYK’S 5-POINT PLAN
  http://discussions.info.apple.com/.68b90c60/224
  Troubleshooting iTunes and iPod Software installation on Windows
  http://docs.info.apple.com/article.html?artnum=93976
  iPod appears in Windows Explorer but does not appear in iTunes
  http://docs.info.apple.com/article.html?artnum=93716
  Any help getting my iTunes and iPod back in operation would be much appreciated.

  Ok, b, I'm now on week 3 of trying to get my iTunes and iPod back and wonder if I am any closer to resolution.
  I have tried all three of the sets of recommendations in the links you provided without success. Specifically:
  I've once again reinstalled iTunes (I now have version 6) and deleted all of the suggested Temp files etc.
  I've put my iPod into disk mode and tried to restore it. iPod updater still does not recognize my iPod. Nor does iTunes or Windows (My Computer). In contrast, Windows recognizes my son's iPod mini, but iTunes does not.
  I have run the System Config utility and selected iTunes Helper as the only the startup and iPod Service as the only service. When I restarted my computer, I had no better luck with my iTunes or iPod Updater. In fact, things got worse since I could no longer connect with the internet. So I went back to the old startup method and full range of services.
  I tried to go into Disk Management to change the letter of the network drive, but either Disk Mgmt wouldn't open or, when it did, I didn't see my iPod listed.
  I am also still having occasional difficulties launching iTunes, and having some difficulties using a hard reset to get my iPod off of its "Do Not Disconnect" message. (To accomplish the latter, I often am forced to try 3 or 4 times holding the Select and Menu buttons for 10 plus seconds at a time.) My iPod does nothing more than rotate between Do Not Disconnect and the sad icon.
  I would consider replacing my iPod, except that it is apparent that my problems are being generated by iTunes, considering that my son's iPod is also having problems when I attempt to synch it to iTunes, and it otherwise works fine.
  If you could help me get out of this mess, I would be eternally grateful.
  J

• Any recommendations/experience with anti-virus software?

  Any recommendations on/experience with anti-virus software?

  Norland88 wrote:
  Any recommendations on/experience with anti-virus software?
  Mac OS X is a smaller market, and, so far, and for whatever reason, a smaller target. Consequently, although major A/V vendors do usually have a Mac division, it seems to me that they employ for it the B-team. As a result, some Mac A/V tools create more problems than they solve.
  Furthermore, as WZZZ  rightly points out, all A/V tools (irrespective of platfom) fight yesterday's problem. They can only protect you against the threats they've already seen and analysed.
  So, the question is: Do you need an A/V tool?
  The people who say, "No, because there are no Mac viruses" are technically right, but in a very narrow sense. There are no Mac viruses—but there is Mac malware. MacDefender and iWork Services are examples; the recent Flashback infection—there've been threads dealing with it in this very forum for the past month—is another. So it really depends on what you do. The iWork Services Trojan Horse spread through a hacked download of Apple's iWork suite, distributed primarily through P2P file sharing. If you do that kind of stuff, you are at risk. Flashback spread through a Java vulnerability. If you browse the net with Java enabled, you are at risk.
  Then there's the issue of exchanging files with Windows. If you work in a mixed Win/Mac environment, or exchange documents with others who use Windows, you may be the unwitting vector of infection, by transmitting Windows malware from one PC-using correspondent to another. The Win malware would not affect you in any way—but it would certainly affect them.
  Therefore, the answer depends primarily on you.

• Does my new apple mac air come with anti-virus?

  does the new mac air come with anti-virus?

  1. This is a comment on what you should and should not do to protect yourself from malicious software ("malware") that circulates on the Internet. It does not apply to software, such as keystroke loggers, that may be installed deliberately by an intruder who has hands-on access to the victim's computer. That threat is in a different category, and there's no easy way to defend against it. If you have reason to suspect that you're the target of such an attack, you need expert help.
  If you find this comment too long or too technical, read only sections 5, 6, and 10.
  OS X now implements three layers of built-in protection specifically against malware, not counting runtime protections such as execute disable, sandboxing, system library randomization, and address space layout randomization that may also guard against other kinds of exploits.
  2. All versions of OS X since 10.6.7 have been able to detect known Mac malware in downloaded files, and to block insecure web plugins. This feature is transparent to the user, but internally Apple calls it "XProtect." The malware recognition database is automatically checked for updates once a day; however, you shouldn't rely on it, because the attackers are always at least a day ahead of the defenders.
  The following caveats apply to XProtect:
  It can be bypassed by some third-party networking software, such as BitTorrent clients and Java applets.
  It only applies to software downloaded from the network. Software installed from a CD or other media is not checked.
  As new versions of OS X are released, it's not clear whether Apple will indefinitely continue to maintain the XProtect database of older versions such as 10.6. The security of obsolete system versions may eventually be degraded. Security updates to the code of obsolete systems will stop being released at some point, and that may leave them open to other kinds of attack besides malware.
     3. Starting with OS X 10.7.5, there has been a second layer of built-in malware protection, designated "Gatekeeper" by Apple. By default, applications and Installer packages downloaded from the network will only run if they're digitally signed by a developer with a certificate issued by Apple. Software certified in this way hasn't necessarily been tested by Apple, but you can be reasonably sure that it hasn't been modified by anyone other than the developer. His identity is known to Apple, so he could be held legally responsible if he distributed malware. That may not mean much if the developer lives in a country with a weak legal system (see below.)
  Gatekeeper doesn't depend on a database of known malware. It has, however, the same limitations as XProtect, and in addition the following:
  It can easily be disabled or overridden by the user.
  A malware attacker could get control of a code-signing certificate under false pretenses, or could simply ignore the consequences of distributing codesigned malware.
  An App Store developer could find a way to bypass Apple's oversight, or the oversight could fail due to human error.
  For the reasons given above, App Store products, and other applications recognized by Gatekeeper as signed, are safer than others, but they can't be considered absolutely safe. "Sandboxed" applications may prompt for access to private data, such as your contacts, or for access to the network. Think before granting that access. Sandboxing security is based on user input. Never click through any request for authorization without thinking.
  4. Starting with OS X 10.8.3, a third layer of protection has been added: a "Malware Removal Tool" (MRT). MRT runs automatically in the background when you update the OS. It checks for, and removes, malware that may have evaded the other protections via a Java exploit (see below.) MRT also runs when you install or update the Apple-supplied Java runtime (but not the Oracle runtime.) Like XProtect, MRT is effective against known threats, but not against unknown ones. It notifies you if it finds malware, but otherwise there's no user interface to MRT.
  5. The built-in security features of OS X reduce the risk of malware attack, but they're not absolute protection. The first and best line of defense is always going to be your own intelligence. With the possible exception of Java exploits, all known malware circulating on the Internet that affects a fully-updated installation of OS X 10.6 or later takes the form of so-called "Trojan horses," which can only have an effect if the victim is duped into running them. The threat therefore amounts to a battle of wits between you and the malware attacker. If you're smarter than he thinks you are, you'll win.
  That means, in practice, that you always stay within a safe harbor of computing practices. How do you know what is safe?
  Any website that prompts you to install a “codec,” “plug-in,” "player," "extractor," or “certificate” that comes from that same site, or an unknown one, is unsafe.
  A web operator who tells you that you have a “virus,” or that anything else is wrong with your computer, or that you have won a prize in a contest you never entered, is trying to commit a crime with you as the victim. (Some reputable websites did legitimately warn visitors who were infected with the "DNSChanger" malware. That exception to this rule no longer applies.)
  Pirated copies or "cracks" of commercial software, no matter where they come from, are unsafe.
  Software of any kind downloaded from a BitTorrent or from a Usenet binary newsgroup is unsafe.
  Software that purports to help you do something that's illegal or that infringes copyright, such as saving streamed audio or video for reuse without permission, is unsafe. All YouTube "downloaders" are outside the safe harbor, though not all are necessarily harmful.
  Software with a corporate brand, such as Adobe Flash Player, must be downloaded directly from the developer’s website. If it comes from any other source, it's unsafe. For instance, if a web page warns you that Flash is out of date, do not follow an offered link to an update. Go to the Adobe website to download it, if you need it at all.
  Even signed applications, no matter what the source, should not be trusted if they do something unexpected, such as asking for permission to access your contacts, your location, or the Internet for no obvious reason.
  "FREE WI-FI !!!" networks in public places are unsafe unless you can verify that the network is not a trap (which you probably can't.) Even then, do not download any software or transmit any private information while connected to such a network, regardless of where it seems to come from or go to.
  6. Java on the Web (not to be confused with JavaScript, to which it's not related, despite the similarity of the names) is a weak point in the security of any system. Java is, among other things, a platform for running complex applications in a web page, on the client. That was always a bad idea, and Java's developers have proven themselves incapable of implementing it without also creating a portal for malware to enter. Past Java exploits are the closest thing there has ever been to a Windows-style virus affecting OS X. Merely loading a page with malicious Java content could be harmful.
  Fortunately, client-side Java on the Web is obsolete and mostly extinct. Only a few outmoded sites still use it. Try to hasten the process of extinction by avoiding those sites, if you have a choice. Forget about playing games or other non-essential uses of Java.
  Java is not included in OS X 10.7 and later. Discrete Java installers are distributed by Apple and by Oracle (the developer of Java.) Don't use either one unless you need it. Most people don't. If Java is installed, disable it — not JavaScript — in your browsers.
  Regardless of version, experience has shown that Java on the Web can't be trusted. If you must use a Java applet for a task on a specific site, enable Java only for that site in Safari. Never enable Java for a public website that carries third-party advertising. Use it only on well-known, login-protected, secure websites without ads. In Safari 6 or later, you'll see a lock icon in the address bar with the abbreviation "https" when visiting a secure site.
  Follow the above guidelines, and you’ll be as safe from malware as you can practically be. The rest of this comment concerns what you should not do to protect yourself.
  7. Never install any commercial "anti-virus" or "Internet security" products for the Mac, as they all do more harm than good, if they do any good at all. Any database of known threats is always going to be out of date. Most of the danger is from unknown threats. If you need to be able to detect Windows malware in your files, use one of the free anti-virus products in the Mac App Store — nothing else.
  Why shouldn't you use commercial "anti-virus" products?
  Their design is predicated on the nonexistent threat that malware may be injected at any time, anywhere in the file system. Malware is downloaded from the network; it doesn't materialize from nowhere.
  In order to meet that nonexistent threat, the software modifies or duplicates low-level functions of the operating system, which is a waste of resources and a common cause of instability, bugs, and poor performance.
  To recognize malware, the software depends on a database of known threats, which is always at least a day out of date. Most of the real danger comes from highly targeted "zero-day" attacks that are not yet recognized.
  By modifying the operating system, the software itself may create weaknesses that could be exploited by malware attackers.
  8. An anti-malware product from the App Store, such as "ClamXav," doesn't have these drawbacks. That doesn't mean it's entirely safe. It may report email messages that have "phishing" links in the body, or Windows malware in attachments, as infected files, and offer to delete or move them. Doing so will corrupt the Mail database. The messages should be deleted from within the Mail application.
  An anti-virus app is not needed, and should not be relied upon, for protection against OS X malware. It's useful only for detecting Windows malware. Windows malware can't harm you directly (unless, of course, you use Windows.) Just don't pass it on to anyone else.
  A Windows malware attachment in email is usually easy to recognize. The file name will often be targeted at people who aren't very bright; for example:
  ♥♥♥♥♥♥♥♥♥♥♥♥♥♥!!!!!!!H0TBABEZ4U!!!!!!!.AVI♥♥♥♥♥♥♥♥♥♥♥♥♥♥.exe
  Anti-virus software may be able to tell you which particular trojan it is, but do you care? In practice, there's seldom a reason to use the software unless an institutional policy requires it.
  The ClamXav developer won't try to "upsell" you to a paid version of the product. Other developers may do that. Don't be upsold. For one thing, you should not pay to protect Windows users from the consequences of their choice of computing platform. For another, a paid upgrade from a free app will probably have the disadvantages mentioned in section 7.
  9. It seems to be a common belief that the built-in Application Firewall acts as a barrier to infection, or prevents malware from functioning. It does neither. It blocks inbound connections to certain network services you're running, such as file sharing. It's disabled by default and you should leave it that way if you're behind a router on a private home or office network. Activate it only when you're on an untrusted network, for instance a public Wi-Fi hotspot, where you don't want to provide services. Disable any services you don't use in the Sharing preference pane. All are disabled by default.
  10. As a Mac user you don't have to live in fear that your computer may be infected every time you install software, read email, or visit a web page. But neither should you assume that you will always be safe from exploitation, no matter what you do. The greatest harm done by security software is precisely its selling point: it makes people feel safe. They may then feel safe enough to take risks from which the software doesn't protect them. Nothing can lessen the need for safe computing practices.

• Help with anti-virus programs, PLEASE!

  New Lenovo and it won't allow me to install AVG anti-virus. Download completed but when trying to install, after hours of waiting, I get an error message saying something about Microsoft, so I presume it's the bully response trying to make me accept Norton or some other anti-virus software they are pushing which I don't want.
  How to make Lenovo accept MY choice of anti-virus software?
  Moderator Note: Edited subject to match content.

  Hello,
  I have never had a problem installing another antivirus program onto a ThinkPad (or ThinkCentre) computer, so I think this may be some sort of error message about a missing component or patch level.  Here is what I would suggest that you try:
  Download, and have ready to run, the Symantec Norton Removal Tool (assuming your computer came with a Symantec product).  If your computer came with a McAfee product, download the McAfee Consumer Product Removal Tool, instead.
  Download the full package for the latest version of your prefered anti-malware solution.
  Run Microsoft Windows Update on the computer to ensure it is
  up-to-date with respect to all know operating system service packs,
  hot-fixes and updates.  Install the optional components, too.  Several
  reboots may be required before the computer is fully updated.
  After the computer is updated, uninstall the currently-installed anti-malware program via the Program ands Features Control Panel applet (filename: APPWIZ.CPL).  A reboot will likely be required to complete uninstallation.
  Run the appropriate Removal Tool from step #1 to remove any orphaned drivers, services or leftover registry entries from the now-uninstalled anti-malware program.  Again, a reboot may be required to finish the operation.
  Begin installation of your preferred security software.
  At this point, you should now have your security software installed on your Lenovo computer.
  Regards,
  Aryeh Goretsky
  I am a volunteer and neither a Lenovo nor a Microsoft employee. • Dexter is a good dog • Dexter je dobrý pes
  S230u (3347-4HU) • X220 (4286-CTO) • W510 (4318-CTO) • W530 (2441-4R3) • X100e (3508-CTO) • X120e (0596-CTO) • T61p (6459-CTO) • T43p (2678-H7U) • T42 (2378-R4U) • T23 (2648-LU7)
    Deutsche Community   Comunidad en Español Русскоязычное Сообщество

• Help with Anti Virus Software

  Hello, "Kapeisky" Anti Virus Software comes free with "Parallels" Desktop 4. Is it worth installing this, or would it be better to install "AVG" free version?.
  Thought it best to check with you guys, just in case it would slow things down, or cause other problems.
  Many thanks for your help.

  Whatever you trust and feel works. I don't think you go far wrong, and whether you want to use a full integrated suite with firewall and other features.

• Do iMacs come with anti-virus?

  I'm having trouble on a website and wonder if my iMac has a built in anti-virus or should I get one? I have OS X 10.5.7

  I'm having trouble on a website
  What do you mean exactly? What is the url? What browser?
  and wonder if my iMac has a built in anti-virus
  No, and since that's not an issue on a Mac your problem is caused by something else.
  I have OS X 10.5.7
  Then you should post your question in a different place (this forum is for 10.6.) Go here:
  http://discussions.apple.com/forum.jspa?forumID=1225

• ITunes Only Runs with Anti Virus disabled

  I had the same problem a lot of people are having when upgrading to the latest iTunes.
  I have reinstalled QT and iTunes separately and have finally gotten it to run. My problem now is that iTunes only opens if I have Norton Internet Security disabled. When Norton is enabled, iTunes doesn't open at all - no error message - but it runs because I get a message from Norton to designate the type of access I want to give to iTunes. I choose "permit all" but it doesn't open. Itunes appears to continue running because I have to force the computer shut each time because it is unable to end the program. Also, sometimes I get an end program error "SMAX4PNP" - the pc also cannot end the program and I have to force it shut.
  But when I log into iTunes with Norton disabled, everything works smoothly.
  When I go into the personal firewall for Norton, I am unable to find iTunes as an option to "permit all".
  Also, when I go to the task bar to end running processes, I try to end itunes.exe but it does not end it.
  Can you help? I have combed through the discussion pages for an hour and a half now but cannot find the specific fix to my problem.
  Thanks

  Thanks for your comments Cameron.
  I followed your steps. The uninstall and install went fine but I am still unable to open iTunes with NIS on. I believe I did something wrong.
  After scanning, I couldn't find the programs you mention in the program scan box (or in the personal firewall configure box): iTunesHelper.exe, iTunes.exe and the QuickTimeInstaller.exe. All I saw in the scna box was Apple iTunes and Apple Quicktime.
  You also said to leave all programs on the list - did you mean leave them as they appeared with the "Internet Access" field on Automatic?
  Also, once scanning is complete, I couldn't find an "accept" or "ok" button and the "next" button was never enabled, even after tinkering with the programs....should I just close the window?
  I think I need your help again.
  Thanks

• Does the Imac automatically come with Anti Virus, Or do I need to buy some separately?

  Does the Imac I bought new from the Apple Store a few years ago, automatically come with Antivirus, or do I have to buy some separately?

  Since a number of you are denigrating AV, let me remind you that even Apple has concluded that some form of AV is necessary and since 10.6.7, has included its own AV called XProtect. So much for AV being worthless.
  Apple's XProtect would be nice, but the problem with XProtect is that it seems Apple isn't really devoting all that much in the way of resources to it and its definitions are updated only sporadically, often only after some form of malware becomes prevalent. Of course that doesn't mean that a commercial AV, like Intego, or a free, highly rated AV like Sophos will necessarily have definitions for that malware, but since, unlike Apple, that's their only business, it's likely that they won't allow something to stay in the wild without any definitions, as Apple may do, for very long.
  It's all much more nuanced than the cut and dried answers usually supplied in ASC. Read on here about some of the shortcomings of XProtect.
  In the years I have been using Macs, I have not, to the best of my knowledge anyway, been infected by any kind of malware, (but, to emphasize, that's to the best of my knowledge), and I know all the common sense ways of avoiding it, but, and it's a big but, it only takes one event for all that  safe history to come to an end.
  And besides, to those of you who have already concluded that you have never been infected by any form of malware, including myself, I would ask, how can you be so certain? How do you know that you have never picked up any kind of malware? Malware these days is no longer of the script kiddies, or even of the well executed vandalism variety. Malware authors are writing for profit and they go out of their way to write programs that are undetectable. It's not like it will jump out at you, you can be infected and not know it.
  Besides using common sense as ones main defense against malware, AV is just another tool, to be used with respect for its obvious limitations.

• Anti-Virus for Sun Messeging server

  Dear All
  I have installed the sun messaging platform with no serious problem and everything looks okay, but really I don't have any idea how to integrate it with Anti-Virus software, the sun document is not complete and also 3rd parties document is not clear, I am looking to integrate it with Clamav which is free.
  BR
  Mo

  Description      Top
  This article describes a month-long process that yielded a working, complete Sun Java[TM] System Messaging Server installation, including SpamAssassin and Clam-AV. Installation described includes Solaris[TM] 9 X86 and Redhat Linux AS 2.1u2 tests.
  Document Body      Top
  A Small Mail Server, step-by-step
  Goal: Build a fully functional Sun Java System Messaging Server (Sun JES2), on X86 platform, with SpamAssassin and Clam-AV, all on a single system.
  Goal for this document: To note all major steps, and show pitfalls overcome.
  1.
  Hardware chosen: Standard PC, using an AMD 1700+ processor, ATI video board, Linksys 10/100 ethernet card. This system happened to be in my parts bin, all as separate parts. Motherboard chosen, MSI KM2M, with both video and network cards disabled.
  2.
  Operating system: Both Solaris 9 X86 and Linux AS 2.1 u2 are supported for the Messaging Server chosen, and both were evaluated.
  1.
  Linux installer seems more able to recognize the above hardware, and install the correct drivers. In fact, the Linux installer was happy with the built-in networking, but not able to use the built-in video capability. When the system was installed and tested, approximately 25% of the messages sent from Messaging Server to SpamAssassin resulted in tcp errors, causing spam to be delivered to mailboxes. Troubleshooting this problem appeared to be more difficult than changing OS.
  2.
  Solaris 9 X86 was able to configure itself for the video card, without error, but was not able to recognize the network card. A driver for this network card was found via links given in the Sun website for �reported to work� network cards. I found no documentation for exactly how to make the OS aware of the network card, so after some trial and error, here is that solution:
  1.
  Install the OS, without networking.
  2.
  Install the network card driver, per the documentation that comes with it, and test with the included software.
  3.
  Issue the �sys-unconfig� command to the OS. When the system reboots, configure all network settings.
  1.
  Installation of Sun JES2 is done normally, and proceeds without problems.
  2.
  The version of Perl that is included with Solaris[TM] was compiled with the Sun Forte[TM] compiler, and so does not know about other compilers. When you attempt to use CPAN or a makefile.PL to compile additional software, such as SpamAssassin or any of the optional sofware needed for that, you get errors. If you do not wish to purchase a Sun/Forte compiler, you can install gcc from the Sun Free Software site, and download/compile a new Perl version with that. This is what I did.
  3.
  Follow SpamAssassin documentation to install SpamAssassin. Follow Sun documentation for integration into JES Messaging Server. Test.
  4.
  Download, compile and install Clam-AV virus scanner. I put the �freshclam -quiet� command into the configutil setting for Messaging Server, as local.schedule.freshclam. This updaes the AV database. I used every 30 minutes as an interval.
  5.
  Integration of the Clam-AV is open for discussion. There are two different ways to do the integration. One way is through the documented �conversion channel�. This is certainly a good way, but has some drawbacks. Conversion Channel integration requires that a new process be started for each message, causing some overhead, and limiting performance. Another way is to use a third-party product, such as Amavis to communicate between SMTP and Clam-AV. I chose this second route for this installation. Install Amavis-new per documentation provided with it. We're using the amavisd daemonized version in our example. /etc/amavis.conf contains the settings for amavisd. I used port 10024 to send messages to amavisd, and 10025 to send the scanned results back to Messaging Server. I turned off amavis' ability to also call SpamAssassin, so I would not be scanning messages twice. I configured Messaging Server's inbound channels with the �aliasdetourhost� keyword, pointing to a new channel I created to handle Amavisd.
  My imta.cnf now has these new lines:
  ! tcp_scan
  [] $E$R${tcp_scan,$L}$U%[$L]@tcp_scan-daemon
  and in section II:
  ! tcp_local
  tcp_local smtp mx single_sys subdirs 20 dequeue_removeroute maxjobs 7 pool SMTP_POOL maytlsserver allowswitchchannel saslswitchchannel tcp_auth missingrecipientpolicy 4 aliasdetourhost tcp_scan-daemon
  tcp_local-daemon
  ! tcp_scan
  tcp_scan smtp single_sys subdirs 5 notices 1 backoff "pt8h" "pt24h" dequeue_removeroute maxjobs 7 pool SMTP_POOL daemon [127.0.0.1] port 10024
  tcp_scan-daemon
  Dispatcher.cnf adds:
  [SERVICE=SMTP-SCAN]
  DEBUG=-1
  PARAMETER=CHANNEL=tcp_scan
  PORT=10025
  IMAGE=IMTA_BIN:tcp_smtp_server
  LOGFILE=IMTA_LOG:tcp_scan-server.log
  STACKSIZE=2048000
  Option.dat (this is just the spamassassin stuff):
  spamfilter_config_file=/opt/SUNWmsgsr/config/spamassassin.opt spamfilter_library=/opt/SUNWmsgsr/lib/libspamass.so spamfilter_string_action=data:,require "fileinto"; fileinto "$U"
  Message flow, is now:
  1.
  Message received by MTA
  2.
  Forward a copy to SpamAssassin
  3.
  Receive a binary �spam/not-spam� answer.
  4.
  Forward message to Amavis, for virus scanning. (through tcp_scan channel).
  5.
  Receive message back from Amavis, through tcp_scan channel, for delivery to mailbox.
  6.
  Deliver message to mailbox.
  This setup has been working, without error for about 5 days, so far. I've received several thousand messages, identified and removed about a dozen virus-laden messages, and over 800 spam messages. My intention is to move to production by next week. As far as I can tell, the only downside to this configuration is that the mail.log_current shows two enqueue lines and two dequeue lines for each message. We get to see the initial enqueue, the dequeue to tcp_scan, an enqueue from tcp_scan to ims-ms, and the final dequeue. This could be configured differently.

• Firefox downloaded with a virus cannot remove program from my computer.Have tried normal removing i.e control panel remove program I am a new user

  Firefox has a virus attached. I download without an anti virus program in place.I now cannot remove current version of mozilla 3.6.3 from my computer. I've tried =control panel= add and remove programs nothing happens. I have all kind of problems trying to open mozilla and it constantly freezes and almost ever session displays restore session box. I would like to be able to remove this version and download again with anti-virus in place. I am new to using a computer and a lot of what I do is trial an error but I have always been able to add &remove programs. Thank you
  == This happened ==
  Every time Firefox opened
  == I downloaded

  Help->Troubleshooting information
  Copy contents of the webpage
  Paste them into your reply
  Help->Troubleshooting information
  Find on this page this part of table
  Build Configuration about:buildconfig
  click "about:buildconfig" link
  copy contents of this page
  paste them into your next reply
  (separately from contents of previous page)
  If possible, give link to the web-page from which you downloaded Firefox.
  Are you opening Add&Remove programs as the same user which installed Firefox?
  --------------------------------------------

• My iPhone 4 has crashed.  i tunes will not recognize it and I can't restore it.  I sync with macbook pro and all software is up to date.  no anti-virus applications/software are on my macbook.  any ideas?

  my iphone 4g has crashed.  itunes doesn't seem to recognize it and wil not let me restore it.  i have updated all software and there are no anti-virus apps/software on the macbook that this phone syncs with.  i do get an error message on the phone that says something like the accessory is not compatible but I have no accessory for the phone other than the apple chargers and ear buds.  any thoughts? 

  The possible fix for the "this accessory is not compatible" is to carefully clean the dock port with isopropyll alcohol especially the pins which are on top of the mid rib. Be firm but do not break anything. Let it dry for a minute. See if that helps, if not try to clean one more time. If problems persist might need to Visit Apple.