HELP! Trojan or malware and how do I get rid of it?

Similar Messages

• After being logged in to Facebook, I will get unlogged, taken to a new screen in a different language and asked to re-login, it has happening numerous times today, is this a virus, spam, malware and how do i get rid of it?

  when ever I log into facebook, after a few minutes I would get unlogged and have to re-login,
  1.I get a mesaage in a differnet language then I use
  2. the new login in screen is in a different language also

  You are experiencing a kernel panic.  It's usually hardware related.  Check out the following and do the necessary:
  OS X: About kernel panics 
  User Tip:  Kernel Panics? Don't panic too!
  How to troubleshoot a kernel panic
  =====================
  Your profile is a complete blank & your post is lacking system details!
  When posting in Apple Communties/Forums/Message Boards.......It would help us to know which Mac model you have, which OS & version you're using, how much RAM, etc. You can have this info displayed on the bottom of every post by completing your system profile and filling in the information asked for.
  CLICKY CLICK-----> Help us to help you on these forums
  ***This will help in providing you with the proper and/or correct solutions.***

• I was told by comcast that we had a computer in the house with a malware virus, they even said that they were going to terminate our service if we did not get it fixed. Now this week we hear that there is a trojan malware virus, how do we get rid of it?

  I was told by comcast that we had a computer in the house with a malware virus, they even said that they were going to terminate our service if we did not get it fixed. Now this week we hear that there is a trojan malware virus, how do we get rid of it?

  Hello,
  Flashback - Detect and remove the uprising Mac OS X Trojan...
  http://www.mac-and-i.net/2012/04/flashback-detect-and-remove-uprising.html
  In order to avoid detection, the installer will first look for the presence of some antivirus tools and other utilities that might be present on a power user's system, which according to F-Secure include the following:
  /Library/Little Snitch
  /Developer/Applications/Xcode.app/Contents/MacOS/Xcode
  /Applications/VirusBarrier X6.app
  /Applications/iAntiVirus/iAntiVirus.app
  /Applications/avast!.app
  /Applications/ClamXav.app
  /Applications/HTTPScoop.app
  /Applications/Packet Peeper.app
  If these tools are found, then the malware deletes itself in an attempt to prevent detection by those who have the means and capability to do so. Many malware programs use this behavior, as was seen in others such as the Tsunami malware bot.
  http://reviews.cnet.com/8301-13727_7-57410096-263/how-to-remove-the-flashback-ma lware-from-os-x/
  http://x704.net/bbs/viewtopic.php?f=8&t=5844&p=70660#p70660
  Check now whether your Mac is infected by Backdoor.Flashback.39!
  http://public.dev.drweb.com/april/

• Malware? What is this and how do I get rid of it?!

  Malware? What is this and how do I get rid of it/prevent it?!  I did not clik on anything just a grab shot.  This is the second time this has come up but this time I thought to grab a screen shot. IP shown is not my IP, it tracks to somewhere in Muldova...I was redirected to the page from a Google search.

  Read this interesting article to help you see what is happening.
  http://reviews.cnet.com/8301-13727_7-20062597-263.html
  This also has good info.
  http://deletemalware.blogspot.com/2011/05/remove-apple-security-center-uninstall .html
  If you didn't install anything it should be fine these appear to be fakes to get you to buy software you don't need.
  Mort

• An unknown excel file has appeared on my desktop. It cannot be deleted and I cannot get any information about it. Is this malware?  How can I get rid of it?

  An unknown excel file has appeared on my desktop. It cannot be deleted and I cannot get any information about it.
  Is this malware?  How can I get rid of it?

  Hello Jeff,
  Thanks very much for your reply.  I looked over the article you mentioned, but I have tried all of these methods, but only get the response "The item “29394D00” can’t be moved to the Trash because it can’t be deleted."  Similarly, I cannot Get Info on the file.  This is why I'm so concerned, it just appeared on my desktop, but I cannot touch it, or open it or delete it...
  If you have any more tricks up your sleeve, I'd love to hear about them...
  Derek

• TS1338 I have 4 Trojan Horse viruses on my external drive I use for Time Machine.  My MacBook Pro hard drive is clean.  I have eased the external drive 3 times using Disk Utility and it still has the 4 Trojan Horse viruses. How do I get rid of them. Wayne

  I have 4 Trojan Horse viruses on my external drive I use for Time Machine.  My MacBook Pro hard drive is clean.  I have eased the external drive 3 times using Disk Utility and it still has the 4 Trojan Horse viruses. How do I get rid of them. I am using 10.8.3  Wayne

  ksu62 wrote:
  The infection names are:  classload.jar-719ef6a5.zip
                                            classload.jar-5db452le31.zip
                                            ar3.jar-6ce3b2f-45l483f.zip
                                            classload.jar-lef99412-63bsd3fl.zip
  Those look alot like file names and not infection names. I don't find any reference to anything like that on Norton or VirusTotal. Since you said these were Trojans, I would expect to see "Trojan" as part of the infection name.
  ".jar" files are executable Java applets. The random alpha-numerics would seem to indicate a cache file, likely from a browser with Java enabled. And we all know what ".zip" means.
  Worst case is that you had Java enabled in a browser and were infected by one of the late variants of the Flashback Trojan over a year ago or one of a couple of other attacks using the same vulnerability but targetted against a small number of political sympathizers. Much more probable is that thes were Windows only Trojans. Hopefully you have a fully up-to-date OS X, including Java, and have disabled Java in all your browsers by now.

• What is the file attribute @ and how can I get rid of it

  I converted some wav files using Roxio Toast 11 and the output AIF files have a '@' in the file permissions and are not displayed in Finder. What does the '@' mean and how can I get rid of it. Would love to know why Toast adds it but I posted a question on Roxio's site and hopefully will get an answer to that.
  thanks for the help
  john

  okay, so I yes, it does indicate extended attributes. I executed ls -l@ *.aif and got this
  -rw-r--r--@ 1 johnprokopek  staff
  9690378 Oct  6 13:30 zeppelin1969-08-31t01.aif
      com.apple.FinderInfo      
  32
  -rw-r--r--@ 1 johnprokopek  staff   31533402 Oct  6 13:30 zeppelin1969-08-31t02.aif
      com.apple.FinderInfo      
  32
  -rw-r--r--@ 1 johnprokopek  staff   72260634 Oct  6 13:30 zeppelin1969-08-31t03.aif
      com.apple.FinderInfo      
  32
  -rw-r--r--@ 1 johnprokopek  staff  167361402 Oct  6 13:30 zeppelin1969-08-31t04.aif
      com.apple.FinderInfo      
  32
  -rw-r--r--@ 1 johnprokopek  staff  114149754 Oct  6 13:30 zeppelin1969-08-31t05.aif
      com.apple.FinderInfo      
  32
  -rw-r--r--@ 1 johnprokopek  staff  246019338 Oct  6 13:30 zeppelin1969-08-31t06.aif
      com.apple.FinderInfo      
  32
  -rw-r--r--@ 1 johnprokopek  staff   51214938 Oct  6 13:30 zeppelin1969-08-31t07.aif
      com.apple.FinderInfo      
  32
  I then did xattr -c *.aif to clear the extended attributes which got rid of the '@' but the files are still not being displayed in Finder.
  Help!

• HT1689 Where did the music on my phone that is not mine come from and how do I get rid of it?

  I have music on my phone that is not in iTunes and I did not download to my phone.  How did it get there and how do I get rid of it?
  Thanks for your help.

  Either you enabled the guest user, or you enabled Find My Mac, which requires there to be an active guest account for a thief to log into, so that they'll connect to the internet and allow you to locate it.

• What is the colored spinning disk, and why does it appear, and how do I get rid of it?

  What is the colored spinning disk, and why does it appear, and how do I get rid of it?

  Repairing permissions will help as will running the UNIX commands. This widget will do all but the pram.
  http://db.tt/Lob4XtPB  Maintenance Widget  One of those links will get you the widget.
  To reset the pram hold the Command+Option+P+R when starting up, wait through 4 startup sounds before letting go.

• TS3297 I have an error message 42110 when I sign into itunes, what does it mean and how can i get rid of it

  When i open up itunes it displays the message, "an unknow error occured (-42110). What does this mean and how do i get rid of it?

  Hello BROUN,
  That specific error has to do with Movie Rentals.
  From "iTunes: Advanced iTunes Store troubleshooting:"
  This alert is related to iTunes Store movie rentals and authorization issues.
  Make sure you are using the most recent version of iTunes and QuickTime. They both can be downloaded free of charge.
  If your iTunes is up to date, remove the SC Info folder.
  As the article says above, if you continue to have issues then refer to "iTunes repeatedly prompts to authorize computer to play iTunes Store purchases" for instructions on how to remove the "SC Info" folder.
  Hope that helps,
  -Griff W.

• What does this number mean and how do I get rid of it?

  The number 1 in hte red circle, what is it, why is it there and how do I get rid of it?

  From Calendar help:
  Reply to an invitation received in Calendar
  Click the Notifications button (in the top-left corner).
  The Notifications button shows how many invitations you have. If you don’t have any invitations, it isn’t available.
  If you have Calendar badges turned on in Notifications preferences, the Calendar icon in the Dock also shows how many invitations you have.
  Click Accept or Decline.You can also click Maybe for an event invitation.

• HT4796 Migration assistant failed after 90% of the way; where are the files now and how do I get rid of them?

  Migration assistant failed after 90% of the way; where are the files now and how do I get rid of them?

  Hello.  It looks like I recovered all my keywords attached to photos.  What I did:
  First I located all photos without keywords using a metadata search.
  I found that it seemed to be certain groups of photos that had no keywords.  I decided to at least get the main keyword on all of those in a particular group, like Canyonlands. 
  Once I added one of the keywords, the others all showed up magically!  I then went to each group of photos and added the main keyword, and the others came along and attached to the photos.
  Don't understand why this occurred or why it got fixed, since it was so random.  But, I'm glad to have my keywords restored (I had divided flowers by color, etc. so it was a lot of work!)
  Thanks for the discussion and help.

• Error -42408. What is it and how do I get rid of it?

  When I open iTunes, I get Error -42408. What is it and how do I get rid of it?

  Two things you could try that may or may not help.
  1) Force Quit Finder. Hold the Option+Command+esc keys together and Force Quit Finder.
  2) Try a Restart

• Bootcamp.What is it and How do I get rid of it?

  I accidentally initiated the Bootcamp option on my Imac, and cannot get rid of it. What is it and how do I get rid of it? Thanks.

  If you started BootCamp, it should have partitioned your drive (default 32GB) and now be asking for a WinXP disk to begin the install process. If you quit the process, then all you need to do is run BootCamp again and choose to restore your HD partition back to a single partition.
  Hope that helps,
  RP

• Bad pop ups and this thing called macsweeper. what us it and how do I get rid of it

  I gave bad pop ups and this thing called macsweeper. What is it and how do I get rid of it. Thanks

  There is no need to download anything to solve this problem.
  You may have installed one or more of the common types of ad-injection malware. Follow the instructions on this Apple Support page to remove it. It's been reported that some variants of the "VSearch" malware block access to the page. If that happens, start in safe mode by holding down the shift key at the startup chime, then try again.
  Back up all data before making any changes.
  One of the steps in the article is to remove malicious Safari extensions. Do the equivalent in the Chrome and Firefox browsers, if you use either of those. If Safari crashes on launch, skip that step and come back to it after you've done everything else.
  If you don't find any of the files or extensions listed, or if removing them doesn't stop the ad injection, ask for further instructions.
  Make sure you don't repeat the mistake that led you to install the malware. It may have come from an Internet cesspit such as "Softonic" or "CNET Download." Never visit either of those sites again. You might also have downloaded it from an ad in a page on some other site. The ad would probably have included a large green button labeled "Download" or "Download Now" in white letters. The button is designed to confuse people who intend to download something else on the same page. If you ever download a file that isn't obviously what you expected, delete it immediately.
  Malware is also found on websites that traffic in pirated content such as video. If you, or anyone else who uses the computer, visit such sites and follow prompts to install software, you can expect more of the same, and worse, to follow. Never install any software that you downloaded from a bittorrent, or that was downloaded by someone else from an unknown source.
  In the Security & Privacy pane of System Preferences, select the General tab. The radio button marked Anywhere  should not be selected. If it is, click the lock icon to unlock the settings, then select one of the other buttons. After that, don't ignore a warning that you are about to run or install an application from an unknown developer.
  Still in System Preferences, open the App Store or Software Update pane and check the box marked
            Install system data files and security updates (OS X 10.10 or later)
  or
            Download updates automatically (OS X 10.9 or earlier)
  if it's not already checked.