Spyware???

Similar Messages

• Do I have spyware on my iMac?

  I'm wondering if my computer has been infected with spyware. I had McAfee on my pc but no protection on my Mac as I was told Macs don't need it. I read about Clamxav on this site yesterday and installed it and scanned my hard drive but it didn't uncover anything.
  Anyway, yesterday and today when I visited this one website (cuteoverload.com), my browser (Safari) suddenly shut down and a message popped up that read: "http://scanner.av-best.info Alert! Your pc is at risk of virus and spyware attack. Your system requires immediate check! System Security Scanner will perform a quick and free scan of your pc for viruses and spyware programs."
  It has a place where you click "ok" and if you do that Safari then opens and it takes you to a site called Virus Doctor. I shut down Safari then and started it back up but I'm wondering if this is happening because I've been infected with spyware or is it being generated from the website. When I googled Virus Doctor I found that "Virus Doctor (also known as VirusDoctor) is classified as a rogue software, a false anti-spyware application that claim to be the best in removing trojans and in real it does nothing, it displays false detections (files detected by Virus Doctor are inexistent or are trusted programs) and trick the user to buy the “full version”. This malicious program can also be promoted by malware and trojans as Zlob (a false video codec)."
  Any help would be much appreciated.
  Thanks,
  Kathy

  Well, where is it being generated from? Is it coming from the website I visited? I've been visiting that website for a long time and never had a problem before. It's able to shut down my browser.

• I have iPhone 4s, and using latest iOS. When I try to open any link from Twitter or Facebook, it goes to open some wrong webpage. My iphone seems to be infected or suffering from some spyware or malware. How can I remove this wrong link opening

  I have iPhone 4s, and using latest iOS. When I try to open any link from Twitter or Facebook, it goes to open some wrong webpage. My iphone seems to be infected or suffering from some spyware or malware. How can I remove this wrong link opening ? Please help me to resolve...

  I think the McAfee suite will do the trick when I pay them a one-time fee of $69 or $179 for a year for unlimited support.
  Your call of course but IMO a waste of money. Please read this first:
  There are many forms of ‘Malware’ that can affect a computer system, of which ‘a virus’ is but one type, ‘trojans’ another. Using the strict definition of a computer virus, no viruses that can attack OS X have so far been detected 'in the wild', i.e. in anything other than laboratory conditions. The same is not true of other forms of malware, such as Trojans. Whilst it is a fairly safe bet that your Mac has NOT been infected by a virus, it may have another security-related problem, but more likely a technical problem unrelated to any malware threat.
  You may find this User Tip on Viruses, Trojan Detection and Removal, as well as general Internet Security and Privacy, useful:
  https://discussions.apple.com/docs/DOC-2435
  The User Tip (which you are welcome to print out and retain for future reference) seeks to offer guidance on the main security threats and how to avoid them.
  More useful information can also be found here:
  http://www.reedcorner.net/mmg/

• I believe that I have a keylogger or some sort of spyware installed on my mac, please help!

  I followed this procedure to check my files:
  Please read this whole message before doing anything.
  The following procedure will help whether your system has been modified. Don’t be alarmed by the complexity of these instructions — they’re easy to carry out and won’t change anything on your Mac.
  These steps are to be taken while booted in “normal” mode, not in safe mode. If you’re now running in safe mode, reboot as usual before continuing.
  Below are instructions to enter some UNIX shell commands. The commands are harmless, but they must be entered exactly as given in order to work. If you have doubts about the safety of the procedure suggested here, search this site for other discussions in which it’s been followed without any report of ill effects.
  Some of the commands will line-wrap or scroll in your browser, but each one is really just a single line, all of which must be selected. You can accomplish this easily by triple-clicking anywhere in the line. The whole line will highlight, and you can then either copy or drag it. The headings “Step 1” and so on are not part of the commands.
  Note: If you have more than one user account, Step 2 must be taken as an administrator. Ordinarily that would be the user created automatically when you booted the system for the first time. The other steps should be taken as the user who has the problem, if different. Most personal Macs have only one user, and in that case this paragraph doesn’t apply.
  Launch the Terminal application in any of the following ways:
  ☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.)
  ☞ In the Finder, select Go ▹ Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens.
  ☞ Open LaunchPad. Click Utilities, then Terminal in the page that opens.
  When you launch Terminal, a text window will open with a line already in it, ending either in a dollar sign (“$”) or a percent sign (“%”). If you get the percent sign, enter “sh” and press return. You should then get a new line ending in a dollar sign.
  Step 1
  Copy or drag — do not type — the line below into the Terminal window, then press return:
  kextstat -kl | awk '!/com\.apple/{printf "%s %s\n", $6, $7}'
  Post the lines of output (if any) that appear below what you just entered (the text, please, not a screenshot.) You can omit the final line ending in “$”.
  Step 2
  Repeat with this line:
  sudo launchctl list | sed 1d | awk '!/0x|com\.(apple|openssh|vix)|edu\.mit|org\.(amavis|apache|cups|isc|ntp|postfix|x)/{print $3}' 
  This time, you'll be prompted for your login password, which won't be displayed when you type it. You may get a one-time warning not to screw up. You don't need to post the warning.
  Note: If you don’t have a login password, you’ll need to set one before taking this step. If that’s not possible, skip to the next step.
  Step 3
  launchctl list | sed 1d | awk '!/0x|com\.apple|edu\.mit|org\.(x|openbsd)/{print $3}' 
  Step 4
  ls -1A /e*/mach* {,/}L*/{Ad,Compon,Ex,Fram,In,Keyb,La,Mail/Bu,P*P,Priv,Qu,Scripti,Servi,Spo,Sta}* L*/Fonts 2> /dev/null 
  Step 5
  osascript -e 'tell application "System Events" to get name of every login item' 2> /dev/null 
  Remember, steps 1-5 are all drag-and-drop or copy-and-paste, whichever you prefer — no typing, except your password. Also remember to post the output.
  You can then quit Terminal.
  I believe that I have a keylogger or some sort of spyware installed on my mac, please help!
  POST YOUR OUTPUT FOR REVIEW/COMMENT.
  After running these commands, here is the output. Can you please tell me if you see anything here. I would be so grateful.
  com.oxsemi.driver.OxsemiDeviceType00 (1.28.13)
  at.obdev.nke.LittleSnitch (4052)
  Password:
  com.wdc.WDSmartWareServer
  com.wdc.WDDMservice
  com.sierrawireless.SwitchTool
  com.oracle.java.JavaUpdateHelper
  com.oracle.java.Helper-Tool
  com.microsoft.office.licensing.helper
  com.lacie.desktopmanager.service
  com.google.keystone.daemon
  com.adobe.fpsaud
  at.obdev.littlesnitchd
  jp.buffalo.NASPower
  com.oracle.java.Java-Updater
  com.lacie.eventsactions.launcher.agent
  com.hp.messagecenter.launcher
  com.hp.devicemonitor
  com.google.keystone.system.agent
  at.obdev.LittleSnitchUIAgent
  com.nds.pcshow.uninstall
  com.nds.pcshow
  com.facebook.videochat.thomasbrown.updater
  com.adobe.ARM.202f4087f2bbde52e3ac2df389f53a4f123223c9cc56a8fd83a6f7ae
  com.adobe.AAM.Scheduler-1.0
  LaCie DiscRecording/LaCie DiscRecording.pkg:
  Contents
  /Library/Address Book Plug-Ins:
  /Library/Components:
  /Library/Extensions:
  /Library/Frameworks:
  AEProfiling.framework
  AERegistration.framework
  Adobe AIR.framework
  AudioMixEngine.framework
  EWSMac.framework
  HPDeviceModel.framework
  HPPml.framework
  HPScan.framework
  HPServicesInterface.framework
  HPSmartPrint.framework
  HPSmartX.framework
  NyxAudioAnalysis.framework
  PluginManager.framework
  Snapfish.framework
  iLifeFaceRecognition.framework
  iLifeKit.framework
  iLifePageLayout.framework
  iLifeSQLAccess.framework
  iLifeSlideshow.framework
  iTunesLibrary.framework
  /Library/Input Methods:
  /Library/Internet Plug-Ins:
  AdobePDFViewer.plugin
  Flash Player.plugin
  JavaAppletPlugin.plugin
  Quartz Composer.webplugin
  QuickTime Plugin.plugin
  SharePointBrowserPlugin.plugin
  SharePointWebKitPlugin.webplugin
  Silverlight.plugin
  flashplayer.xpt
  googletalkbrowserplugin.plugin
  iPhotoPhotocast.plugin
  npgtpo3dautoplugin.plugin
  nsIQTScriptablePlugin.xpt
  o1dbrowserplugin.plugin
  /Library/Keyboard Layouts:
  /Library/LaunchAgents:
  at.obdev.LittleSnitchUIAgent.plist
  com.adobe.AAM.Updater-1.0.plist
  com.google.keystone.agent.plist
  com.hp.devicemonitor.plist
  com.hp.messagecenter.launcher.plist
  com.lacie.eventsactions.launcher.agent.plist
  com.oracle.java.Java-Updater.plist
  jp.buffalo.NASPower.plist
  jp.buffalo.NASPower_pla.plist
  /Library/LaunchDaemons:
  at.obdev.littlesnitchd.plist
  com.adobe.fpsaud.plist
  com.apple.remotepairtool.plist
  com.google.keystone.daemon.plist
  com.lacie.desktopmanager.service.plist
  com.microsoft.office.licensing.helper.plist
  com.oracle.java.Helper-Tool.plist
  com.oracle.java.JavaUpdateHelper.plist
  com.sierrawireless.SwitchTool.plist
  com.wdc.WDDMservice.plist
  com.wdc.WDSmartWareServer.plist
  /Library/PreferencePanes:
  Flash Player.prefPane
  HP Scanjet.prefPane
  JavaControlPanel.prefPane
  /Library/PrivilegedHelperTools:
  .DS_Store
  NasNavigator2.app
  com.microsoft.office.licensing.helper
  com.oracle.java.JavaUpdateHelper
  /Library/QuickLook:
  GBQLGenerator.qlgenerator
  iWork.qlgenerator
  /Library/QuickTime:
  AppleIntermediateCodec.component
  AppleMPEG2Codec.component
  /Library/ScriptingAdditions:
  /Library/Spotlight:
  GBSpotlightImporter.mdimporter
  Microsoft Entourage.mdimporter
  Microsoft Office.mdimporter
  iWeb.mdimporter
  iWork.mdimporter
  /Library/StartupItems:
  ChmodBPF
  HP IO
  LocSvc
  /etc/mach_init.d:
  /etc/mach_init_per_login_session.d:
  /etc/mach_init_per_user.d:
  Library/Address Book Plug-Ins:
  SkypeABDialer.bundle
  SkypeABSMS.bundle
  Library/Fonts:
  04b-08.suit
  Arial
  Brush Script
  Times New Roman
  Verdana
  Wingdings
  Wingdings 2
  Wingdings 3
  encodings.dir
  fonts.dir
  fonts.list
  fonts.scale
  Library/Frameworks:
  EWSMac.framework
  Library/Internet Plug-Ins:
  FacebookVideoCalling.bundle
  Move-Media-Player.plugin
  PlayerPlugin.bundle
  fbplugin_1_0_3.plugin
  Library/Keyboard Layouts:
  Library/LaunchAgents:
  com.adobe.AAM.Updater-1.0.plist
  com.adobe.ARM.202f4087f2bbde52e3ac2df389f53a4f123223c9cc56a8fd83a6f7ae.plist
  com.facebook.videochat.thomasbrown.plist
  com.nds.pcshow.plist
  com.nds.pcshow.uninstall.plist
  Library/PreferencePanes:
  Opera Preferences
  TomTomHOMERunner, LDMStatusItem, apple-scc-20130209-112927
  thank you much for helping...sincerely. tlenbro.

  I followed this procedure to check my files:
  Please read this whole message before doing anything.
  The following procedure will help whether your system has been modified. Don’t be alarmed by the complexity of these instructions — they’re easy to carry out and won’t change anything on your Mac.
  These steps are to be taken while booted in “normal” mode, not in safe mode. If you’re now running in safe mode, reboot as usual before continuing.
  Below are instructions to enter some UNIX shell commands. The commands are harmless, but they must be entered exactly as given in order to work. If you have doubts about the safety of the procedure suggested here, search this site for other discussions in which it’s been followed without any report of ill effects.
  Some of the commands will line-wrap or scroll in your browser, but each one is really just a single line, all of which must be selected. You can accomplish this easily by triple-clicking anywhere in the line. The whole line will highlight, and you can then either copy or drag it. The headings “Step 1” and so on are not part of the commands.
  Note: If you have more than one user account, Step 2 must be taken as an administrator. Ordinarily that would be the user created automatically when you booted the system for the first time. The other steps should be taken as the user who has the problem, if different. Most personal Macs have only one user, and in that case this paragraph doesn’t apply.
  Launch the Terminal application in any of the following ways:
  ☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.)
  ☞ In the Finder, select Go ▹ Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens.
  ☞ Open LaunchPad. Click Utilities, then Terminal in the page that opens.
  When you launch Terminal, a text window will open with a line already in it, ending either in a dollar sign (“$”) or a percent sign (“%”). If you get the percent sign, enter “sh” and press return. You should then get a new line ending in a dollar sign.
  Step 1
  Copy or drag — do not type — the line below into the Terminal window, then press return:
  kextstat -kl | awk '!/com\.apple/{printf "%s %s\n", $6, $7}'
  Post the lines of output (if any) that appear below what you just entered (the text, please, not a screenshot.) You can omit the final line ending in “$”.
  Step 2
  Repeat with this line:
  sudo launchctl list | sed 1d | awk '!/0x|com\.(apple|openssh|vix)|edu\.mit|org\.(amavis|apache|cups|isc|ntp|postfix|x)/{print $3}' 
  This time, you'll be prompted for your login password, which won't be displayed when you type it. You may get a one-time warning not to screw up. You don't need to post the warning.
  Note: If you don’t have a login password, you’ll need to set one before taking this step. If that’s not possible, skip to the next step.
  Step 3
  launchctl list | sed 1d | awk '!/0x|com\.apple|edu\.mit|org\.(x|openbsd)/{print $3}' 
  Step 4
  ls -1A /e*/mach* {,/}L*/{Ad,Compon,Ex,Fram,In,Keyb,La,Mail/Bu,P*P,Priv,Qu,Scripti,Servi,Spo,Sta}* L*/Fonts 2> /dev/null 
  Step 5
  osascript -e 'tell application "System Events" to get name of every login item' 2> /dev/null 
  Remember, steps 1-5 are all drag-and-drop or copy-and-paste, whichever you prefer — no typing, except your password. Also remember to post the output.
  You can then quit Terminal.
  I believe that I have a keylogger or some sort of spyware installed on my mac, please help!
  POST YOUR OUTPUT FOR REVIEW/COMMENT.
  After running these commands, here is the output. Can you please tell me if you see anything here. I would be so grateful.
  com.oxsemi.driver.OxsemiDeviceType00 (1.28.13)
  at.obdev.nke.LittleSnitch (4052)
  Password:
  com.wdc.WDSmartWareServer
  com.wdc.WDDMservice
  com.sierrawireless.SwitchTool
  com.oracle.java.JavaUpdateHelper
  com.oracle.java.Helper-Tool
  com.microsoft.office.licensing.helper
  com.lacie.desktopmanager.service
  com.google.keystone.daemon
  com.adobe.fpsaud
  at.obdev.littlesnitchd
  jp.buffalo.NASPower
  com.oracle.java.Java-Updater
  com.lacie.eventsactions.launcher.agent
  com.hp.messagecenter.launcher
  com.hp.devicemonitor
  com.google.keystone.system.agent
  at.obdev.LittleSnitchUIAgent
  com.nds.pcshow.uninstall
  com.nds.pcshow
  com.facebook.videochat.thomasbrown.updater
  com.adobe.ARM.202f4087f2bbde52e3ac2df389f53a4f123223c9cc56a8fd83a6f7ae
  com.adobe.AAM.Scheduler-1.0
  LaCie DiscRecording/LaCie DiscRecording.pkg:
  Contents
  /Library/Address Book Plug-Ins:
  /Library/Components:
  /Library/Extensions:
  /Library/Frameworks:
  AEProfiling.framework
  AERegistration.framework
  Adobe AIR.framework
  AudioMixEngine.framework
  EWSMac.framework
  HPDeviceModel.framework
  HPPml.framework
  HPScan.framework
  HPServicesInterface.framework
  HPSmartPrint.framework
  HPSmartX.framework
  NyxAudioAnalysis.framework
  PluginManager.framework
  Snapfish.framework
  iLifeFaceRecognition.framework
  iLifeKit.framework
  iLifePageLayout.framework
  iLifeSQLAccess.framework
  iLifeSlideshow.framework
  iTunesLibrary.framework
  /Library/Input Methods:
  /Library/Internet Plug-Ins:
  AdobePDFViewer.plugin
  Flash Player.plugin
  JavaAppletPlugin.plugin
  Quartz Composer.webplugin
  QuickTime Plugin.plugin
  SharePointBrowserPlugin.plugin
  SharePointWebKitPlugin.webplugin
  Silverlight.plugin
  flashplayer.xpt
  googletalkbrowserplugin.plugin
  iPhotoPhotocast.plugin
  npgtpo3dautoplugin.plugin
  nsIQTScriptablePlugin.xpt
  o1dbrowserplugin.plugin
  /Library/Keyboard Layouts:
  /Library/LaunchAgents:
  at.obdev.LittleSnitchUIAgent.plist
  com.adobe.AAM.Updater-1.0.plist
  com.google.keystone.agent.plist
  com.hp.devicemonitor.plist
  com.hp.messagecenter.launcher.plist
  com.lacie.eventsactions.launcher.agent.plist
  com.oracle.java.Java-Updater.plist
  jp.buffalo.NASPower.plist
  jp.buffalo.NASPower_pla.plist
  /Library/LaunchDaemons:
  at.obdev.littlesnitchd.plist
  com.adobe.fpsaud.plist
  com.apple.remotepairtool.plist
  com.google.keystone.daemon.plist
  com.lacie.desktopmanager.service.plist
  com.microsoft.office.licensing.helper.plist
  com.oracle.java.Helper-Tool.plist
  com.oracle.java.JavaUpdateHelper.plist
  com.sierrawireless.SwitchTool.plist
  com.wdc.WDDMservice.plist
  com.wdc.WDSmartWareServer.plist
  /Library/PreferencePanes:
  Flash Player.prefPane
  HP Scanjet.prefPane
  JavaControlPanel.prefPane
  /Library/PrivilegedHelperTools:
  .DS_Store
  NasNavigator2.app
  com.microsoft.office.licensing.helper
  com.oracle.java.JavaUpdateHelper
  /Library/QuickLook:
  GBQLGenerator.qlgenerator
  iWork.qlgenerator
  /Library/QuickTime:
  AppleIntermediateCodec.component
  AppleMPEG2Codec.component
  /Library/ScriptingAdditions:
  /Library/Spotlight:
  GBSpotlightImporter.mdimporter
  Microsoft Entourage.mdimporter
  Microsoft Office.mdimporter
  iWeb.mdimporter
  iWork.mdimporter
  /Library/StartupItems:
  ChmodBPF
  HP IO
  LocSvc
  /etc/mach_init.d:
  /etc/mach_init_per_login_session.d:
  /etc/mach_init_per_user.d:
  Library/Address Book Plug-Ins:
  SkypeABDialer.bundle
  SkypeABSMS.bundle
  Library/Fonts:
  04b-08.suit
  Arial
  Brush Script
  Times New Roman
  Verdana
  Wingdings
  Wingdings 2
  Wingdings 3
  encodings.dir
  fonts.dir
  fonts.list
  fonts.scale
  Library/Frameworks:
  EWSMac.framework
  Library/Internet Plug-Ins:
  FacebookVideoCalling.bundle
  Move-Media-Player.plugin
  PlayerPlugin.bundle
  fbplugin_1_0_3.plugin
  Library/Keyboard Layouts:
  Library/LaunchAgents:
  com.adobe.AAM.Updater-1.0.plist
  com.adobe.ARM.202f4087f2bbde52e3ac2df389f53a4f123223c9cc56a8fd83a6f7ae.plist
  com.facebook.videochat.thomasbrown.plist
  com.nds.pcshow.plist
  com.nds.pcshow.uninstall.plist
  Library/PreferencePanes:
  Opera Preferences
  TomTomHOMERunner, LDMStatusItem, apple-scc-20130209-112927
  thank you much for helping...sincerely. tlenbro.

• I,v got a app on my iPhone 4 and it,s saying that their is spyware and my iPhone is not safe at all what do i do it,s always when i go too Facebook this always happens

  Like their is someone that is using spyware to get into my iPhone 4 and it;s right up to date one of my security apps is telling me this and it always happens every time i go too Facebook and have like tried too report this too Facebook that someone is attacking me using spyware the app that i,m using is called Fortinet it,s a security companie i,v got a lot of security apps and i know that apple protects me but it,s better too be safe but all these apps and i still got spyware showin up and i don't have a picture of it just believe me this is no bloody joke and just too add this the new updates have really made my iPhone not good at all even my Wifi is not as good now and the iTunes store does not work that well now and please tell me if their is a app that i can use to too stop spyware on my iPhone 4

  Unless your iPhone is jailbroken, there is no spyware on it.  There is no way for spyware to be downloaded or installed.  You don't really explain why you think you do.  As far as I can see, the Fortinet app is just an app providing information about their services - it isn't performing any functions on the phone itself.  Not clear what relevance you think the Norton security on your computer has to do with it.
  You might want to do something about that bug that is extracting all the punctuation from your writing though.....

• Mac users running Windows: Innoculate against spyware & virus

  I hope this thread I'm going to start is appropriate to this discussion board. I have been a Mac user since 1989 and an Apple user before then. Never a Windows user.
  With the new intel macs, I am now using Windows occassionally to run a program (Atlas.ti) that is only made for Windows. I'm using Parallels to rung Windows XP Pro (SP2)I have found, to my horror, that getting infected by spyware and adware is really easy on Windows machines. I rarely use the Windows side to browse but once in a while I do when I'm using Atlas.ti and mostly to sites that are reputable. Just by doing that, I've been infected with spyware that no free anti-spyware program can remove after the fact. Something called "Trojan.cm.small" or something like that. I don't have the exact name.
  Because of those problems, I've had to re-create my virtual disk 3 times, each time getting smarter about how to use Windows machines. The following is my latest tip and I wanted to share it. If any of you have better tips, please post to the thread.
  TIP BEGINS:
  I’ve had to recreate my virtual disk at least three times, the last time being yesterday, thanks to spyware that none of the free spyware programmes could remove. They could detect it just fine but they couldn’t remove it. And get this, I rarely use Windows and hardly use it to browse on the internet but just the few minutes of browsing on the internet has caused me great problems.
  What I did differently than the previous two re-installations is the following:
  1. After (re)installing Windows, I immediately do Windows update and MADE SURE I did NOT browse to ANY other site. I allowed Windows to completely update itself include several restarts and multiple runs of updates.
  2. After that’s done, I installed the following anti-spyware and anti-virus software. All were free except the virus software which was available free to users at my university:
  a. Spybot Search & Destroy
  b. Spyware Blaster
  c. SpywareGuard
  d. Windows Defender Beta
  e. McAfee VirusScan
  3. I installed these programmes one at a time and updated them and performed the appropriate setting changes before proceeding to install the remaining software.
  I did a lot of research to determine which anti-spyware programmes to use and determined these were the best according to my research. You can do you own research and I think one of the best ways is to go to a reputable university’s website, type in “Spyware” and see how THEY tell their faculty and students to innoculate their computers against spyware. The sites I used were:
  a. University of California, Santa Cruz
  b. University of Calfiornia, Berkeley
  c. Carnegie Mellon University
  d. University of Illinois, Urbana-Champagne
  I hope this tip helps Mac users. It’s only since moving to an Intel Mac did I start using Windows and I can’t believe how quickly my computer (the VM side) became infected. As I say, I had to re-install 3 times and each time I became wiser. I hope this is the last time I have to do a complete re-installation.
  One last thing, after installing all those anti-spyware and anti-virus programmes, you might find that when installing your own software (in my case, Atlas.ti) might be a problem. It was for me so I ended up turning off all the anti-spyware programmes, installing Atlas.ti, then turning back on the anti-spyware programmes.
  I can’t believe why the majority of computer users put up with such a crappy OS system! At least the Mac is my primary OS.

  Also I really can't agree with you, when I run those
  anti-spyware programs (about once a month) it usually
  doesn't find ANY infections. Do you use Internet
  Explorer by any chance? The infection rate with that
  browser is significantly higher than with others
  (Firefox, Opera, etc).
  Yes, one of the problems was running Internet Explorer.
  For any Mac user who is just using Windows for the first time, it is intuitive to use the built-in Internet Explorer browser, right? I mean, it should NOT be the problem of the user to determine that using Internet Explorer is a problem. But unfortunately, IE is a problem. Nevertheless, that's a backwards approach which seems a very Windows-centric way of doing things. Can't blame the user for not knowing and using Internet Explorer.
  What I've resorted to now is running Internet Explorer only for Windows updates and other Microsoft websites that require it. Everything else I use Opera or Firefox.
  By the way, an interesting new service from Microsoft is:
  http://safety.live.com

• How can I detect spyware or keylogger programs directly installed on my computer?

  Hello,
  I have a serious problem. My ex had physical access to my MacBook Air and I believe he installed either spyware or a key logger program directly on my computer, as he had administrative access. It could be a program like WebWatcher or Spector Pro. There are a number of programs that allow someone to install this software by downloading it from the internet directly onto your computer.
  Unfortunately, I'm a physician whose been involved in reaserch which has classified information on it. It never occurred to me that someone would do something like this, but I am very worried that he has installed something. I recently installed MacScan and Little Snitch to determine if anything was detected.
  MacScan Displayed the following:
  Last Spware Scan Run on: Sat 4/26/14 01:15 am
  Spyware Detected on Last Scan: 0
  Total Spyware Detected in all Scans: 148
  I'm unsure if what was detected by Mac Scan were simply cookies.
  I also tried Linc Davis' suggestion and here are my results:
  Re: Detect spyware and determine who is spying on my imac 
  Apr 26, 2014 8:49 AM (in response to Linc Davis)
  Hello Linc,
  This time it asked for my password and I got:
  Last login: Sat Apr 26 11:45:48 on ttys000
  Olivias-MacBook-Air:~ MD$ kextstat -kl | awk '!/com\.apple/{printf "%s %s\n", $6, $7}'
  at.obdev.nke.LittleSnitch (4050)
  Olivias-MacBook-Air:~ MD$ sudo launchctl list | sed 1d | awk '!/0x|com\.(apple|openssh|vix)|edu\.mit|org\.(amavis|apache|cups|isc|ntp|postfi x|x)/{print $3}'
  Password:
  com.oracle.java.Helper-Tool
  com.microsoft.office.licensing.helper
  com.google.keystone.daemon
  com.adobe.fpsaud
  at.obdev.littlesnitchd
  Olivias-MacBook-Air:~ MD$ launchctl list | sed 1d | awk '!/0x|com\.apple|edu\.mit|org\.(x|openbsd)/{print $3}'
  com.microsoft.autoupdate.fba.42800
  com.microsoft.Office365Service.30128
  com.microsoft.Word.27840
  com.bodymedia.BodyMedia-SYNC.35760
  com.linebreak.CloudAppMacOSX.48784
  com.oracle.java.Java-Updater
  com.google.keystone.system.agent
  at.obdev.LittleSnitchUIAgent
  com.genieo.completer.update
  com.genieo.completer.download
  com.adobe.ARM.202f4087f2bbde52e3ac2df389f53a4f123223c9cc56a8fd83a6f7ae
  Olivias-MacBook-Air:~ MD$ ls -1A /e*/mach* {,/}L*/{Ad,Compon,Ex,Fram,In,Keyb,La,Mail/Bu,P*P,Priv,Qu,Scripti,Servi,Spo,Sta} * L*/Fonts 2> /dev/null
  /Library/Components:
  /Library/Extensions:
  ATTOCelerityFC8.kext
  ATTOExpressSASHBA2.kext
  ATTOExpressSASRAID2.kext
  ArcMSR.kext
  CalDigitHDProDrv.kext
  HighPointIOP.kext
  HighPointRR.kext
  LittleSnitch.kext
  PromiseSTEX.kext
  SoftRAID.kext
  /Library/Frameworks:
  AEProfiling.framework
  AERegistration.framework
  Adobe AIR.framework
  AudioMixEngine.framework
  EWSMac.framework
  NyxAudioAnalysis.framework
  PluginManager.framework
  iTunesLibrary.framework
  /Library/Input Methods:
  /Library/Internet Plug-Ins:
  AdobePDFViewer.plugin
  AdobePDFViewerNPAPI.plugin
  AmazonMP3DownloaderPlugin101750.plugin
  Default Browser.plugin
  Flash Player.plugin
  JavaAppletPlugin.plugin
  Quartz Composer.webplugin
  QuickTime Plugin.plugin
  SharePointBrowserPlugin.plugin
  SharePointWebKitPlugin.webplugin
  Silverlight.plugin
  Unity Web Player.plugin
  flashplayer.xpt
  googletalkbrowserplugin.plugin
  nsIQTScriptablePlugin.xpt
  o1dbrowserplugin.plugin
  /Library/Keyboard Layouts:
  /Library/LaunchAgents:
  at.obdev.LittleSnitchUIAgent.plist
  com.google.keystone.agent.plist
  com.oracle.java.Java-Updater.plist
  /Library/LaunchDaemons:
  at.obdev.littlesnitchd.plist
  com.adobe.fpsaud.plist
  com.google.keystone.daemon.plist
  com.microsoft.office.licensing.helper.plist
  com.oracle.java.Helper-Tool.plist
  /Library/PreferencePanes:
  BodyMedia SYNC.prefPane
  Flash Player.prefPane
  JavaControlPanel.prefPane
  /Library/PrivilegedHelperTools:
  com.microsoft.office.licensing.helper
  /Library/QuickLook:
  iBooksAuthor.qlgenerator
  iWork.qlgenerator
  /Library/QuickTime:
  AppleIntermediateCodec.component
  AppleMPEG2Codec.component
  /Library/ScriptingAdditions:
  /Library/Spotlight:
  Microsoft Office.mdimporter
  iBooksAuthor.mdimporter
  iWork.mdimporter
  /Library/StartupItems:
  /etc/mach_init.d:
  /etc/mach_init_per_login_session.d:
  /etc/mach_init_per_user.d:
  Library/Address Book Plug-Ins:
  SkypeABDialer.bundle
  SkypeABSMS.bundle
  YMsgrCallABPlugin.bundle
  YMsgrMsnABPlugin.bundle
  YMsgrSmsABPlugin.bundle
  YMsgrYimABPlugin.bundle
  Library/Fonts:
  Library/Frameworks:
  EWSMac.framework
  Library/Input Methods:
  .localized
  Library/Internet Accounts:
  V1
  Library/Internet Plug-Ins:
  Library/Keyboard Layouts:
  Library/LaunchAgents:
  com.adobe.ARM.202f4087f2bbde52e3ac2df389f53a4f123223c9cc56a8fd83a6f7ae.plist
  com.apple.CSConfigDotMacCert-ph.dio.....@me.com-SharedServices.Agent.plist
  com.genieo.completer.download.plist
  com.genieo.completer.update.plist
  Library/PreferencePanes:
  Library/Services:
  .localized
  Olivias-MacBook-Air:~ MD$ osascript -e 'tell application "System Events" to get name of every login item' 2> /dev/null
  iTunesHelper, Yahoo! Messenger, Dropbox, Cloud, AdobeResourceSynchronizer, BodyMedia SYNC, TuneupMyMac
  Olivias-MacBook-Air:~ MD$
  CAN ANYONE HELP ME?
  Thank you so much.

  I am adding information from Webwatcher's own site:
  Q. Is WebWatcher easy to use?
  A. Yes. WebWatcher is very easy to use and you can begin monitoring immediately without having to read a lengthy manual. Our web based interface is user-friendly and can be conveniently accessed from any computer in the world with an Internet connection.
  Q. How does WebWatcher compare to other monitoring software?
  A. It's the most powerful and intuitive tool on the market. As the only web-based program, WebWatcher ensures the security of your data while providing you with the flexibility to monitor any computer from anywhere in the world. While some products email data, email is NOT a secure means of transporting information. Anything sent by email is extremely vulnerable, and can be seen by dozens of people before it reaches its destination. WebWatcher, however, uses 128-bit encryption guaranteeing the safety and security of your information.
  Q. Is WebWatcher PC or Mac compatible?
  A. WebWatcher is PC compatible, as well as Mac OS X compatible.
  Q. Is WebWatcher truly invisible?
  A. Absolutely! WebWatcher is 100% invisible. It doesn't run as a service, it doesn't appear in the list of running processes and there are no visible files that can be seen. Not only does WebWatcher work invisibly, but it's also friendly with all known firewall software and hardware allowing you to gather the information you need without raising any red flags.
  Q. How will I know WebWatcher is working?
  A. Just login to your secure online account to see the recorded data. Or you can enter the hotkey sequence on the monitored computer to view the WebWatcher status panel.
  Q. If I buy WebWatcher now, how soon will I receive the software?
  A. Immediately. Within minutes you'll receive a confirmation email that contains the username and password needed to download WebWatcher.
  Q. How do I install WebWatcher?
  A. Within minutes of completing your purchase, you'll receive an email with a link to the Setup Wizard. Just follow the onscreen instructions. Once the Setup Wizard is complete you'll receive a link to download the software. Important: you can complete the Setup Wizard from any computer, but the SOFTWARE MUST BE INSTALLED ON THE COMPUTER YOU WISH TO MONITOR.
  Q. Do I install WebWatcher on my computer or on the computer I want to monitor?
  A. The Setup Wizard can be installed on any computer, but the actual monitoring software must be installed on the computer you wish to monitor. Since WebWatcher is web based, you won't have to download the software onto the computer you'll use for viewing the recorded information.
  Q. Can I use different computers to check what's been recorded?
  A. Yes. Once the software is installed on the computer you wish to monitor, you can view the data from any computer in the world with Internet access.
  Q. Do WebWatcher icons or messages appear on my computer or on the monitored computer?
  A. No. Since WebWatcher runs invisibly, no icons or messages will appear on your computer or on the monitored computer.
  Q. Will WebWatcher email the recorded information to me?
  A. No. Email isn't secure for transmitting information. Any program that emails your data puts your private information at serious risk. WebWatcher offers the only web based monitoring system of its kind. We use 128-bit encryption to ensure the highest level of data security.
  Q. How do I retrieve the information that WebWatcher has recorded?
  A. Just log into our secure web based interface from any computer in the world with a standard web browser. Visit our demo to see actual screenshots of the program.
  Q. Will WebWatcher work on a laptop?
  A. Yes. WebWatcher will record computer activities and upload the data to your account when the monitored computer is reconnected to the Internet.
  Q. Does WebWatcher record emails?
  A. Yes. WebWatcher records emails and you'll be able to see the subject of the email, who sent it, who received it, the time and date email is sent and received, the contents and any attachments. Our email recorder is compatible with all of the most popular email programs including web based email.
  Q. Does WebWatcher record IMs?
  A. Yes. WebWatcher records instant messages. Our software is compatible with all of the most popular instant message programs including AOL Instant Messenger (AIM), MSN Messenger, Windows Messenger and Yahoo Messenger.
  Q. Does WebWatcher record websites visited?
  A. Yes. WebWatcher records websites visited. With just a click, you'll be able to visit the exact website visited and see what was viewed including searches performed.
  Q. Can WebWatcher block websites?
  A. Yes. WebWatcher can both block websites and record websites. When it encounters an Alert Word on a site, it can block that page or take a screenshot for later review. You can also block specific URL addresses.
  Q. Does WebWatcher have a keylogger?
  A. Yes. Our invisible key logger records every keystroke, even when a user is offline.
  Q. Do I need one license for every computer that I wish to monitor?
  A. Yes. An individual license is required for every computer that you wish to monitor. We offervolume discounts for multi-license purchases.

• How can I check for spyware on my Intel based mid-2007 iMac running Lion?

  I recently received a message stating that my Intel based iMac desktop may contain spyware plus a friend sent me a copy of an email to my iCloud email address that i did not send to him, i was not even home using my iMac on that date. I do have anti-virus software on my iMac from Integra and I do a scan each day before i shutdown the iMac and have not received any such warnings from that software.
  I do appreciate any and all advise I can receive in this matter. A long time ago I did receive an email a Yahoo based email address and was notified that I could possibly loose my email account due to junk email being sent from my iMac. I did have the support/warranty from Apple at that time and a phone rep did talk me through steps to check for any intrusion to my iMac with negative results, the iMac was clear of any spyware, etc.
  Hoping there is the same for this issue.

  You can't use a specific Mac OS X disc for a Mac with a different computer. First, call Apple and buy Mac OS X Snow Leopard > http://support.apple.com/kb/HE57 Then, make a backup, insert the DVD and upgrade OS X. Finally, open  > Software Update and install the most recent version

• How can I know if malicious spyware or malware has been downloaded to my iphone 4?

  How can I know if malicious spyware or malware has been downloaded to my iPhone 4? And if so, how do I remove it?

  If your device has not been jailbroken, there can't be viruses or malware on the phone.

• Spyware doctor stops transfering

  Just a note for some people, when I have spyware doctor running I can't transfer tunes to my iPod. I turn it off and they transfer fine...Just a note that may help some. I'm running Vista and the latest version of spyware....Eric

  Set your preferences in spyware doctor to not scan iPods. If you are manually managing your music also set it to not scan removable storage devices.

• Removing spyware from a computer with no firewall/antivirus software

  I got an e-mail I thought was suspect in regards to a company on line I buy from. I called their customer service and they told me the e-mail was a survey from them if it used my full name in the body of the text (and my name was in fact in the body of the text).
  I clicked on it by accident.
  What software can I use to see if it installed spyware on my hard drive. I did not have a firewall or virus software installed. After the fact, I installed Norton Antivirus 9.0 on my hard drive and live updated to the most current version-but I know Norton has stopped supporting Macs, so I'm afraid their software won't be capable of catching the most current spyware. What can I do the ensure no spyware is on my hard drive?

  There really isn't any spyware for Macs, unless you count tracking cookies from websites. Application installations or system changes have to be authorised by you entering your password, so unless you did so at the time, you're almost certainly fine.
  In any case, I don't think NAV checks for spyware. If you want a good current antivirus application, I recommend ClamXAV. And you can turn on your Mac's built-in firewall in System Preferences - Sharing (although it doesn't protect you from downloading malware).
  Matt

• Ipod video converter without all this adware , spyware e.t.c

  Hi again!
  I 'm sure that many relative questions will have been asked again but is there any s a f e free video converter for ipod without all this adware types ?
  Is it also additionaly available for conversion of flv video types or do I need an extra converter from flv to (e.g.) mpeg ?
  In the past I used videora but is seems that it is also suspicious of all this spyware stuff !
  If there is not anyone for free, which is your proposal for buying a reliable one including flv conversion ?
  Thanks
  acer laptop   Windows XP  

  Duplicate? Resolved following system Restore.

• Disastrous spyware, needed disk scrubbed, then went to OSX 10.5.8 - so where's a Three Pointer version? I had the updated last one on Tiger and lived in it all day.

  Details? What I said... My work is totally browser based and I lived in a house made of Firefox. On a G5 with OSX 10.4.11. Tiger. Now I'm in Leopard but still, the pesky G5 chasm...
  I'm New Orleanian. When Leopard came along we were much too busy trying to find building supplies after The Unpleasantness of 2005 to notice, then it was gone. This iMac G5 was the star for about two weeks- then Steve Jobs said "Look! Intel Proccessors!!" Oh dammit!
  ( I look for things- coin silver antique Arabian stirrups to support group boards for people who really do wear tin foil hats and will argue styles of making them. Don't laugh! A qualified proffessional is studying the sites. She wanted help finding them. Exotic things to buy is more fun.)
  So I had either a bot, huge spyware glob, or something mildewy on the system files remora style. It ate clean up appies like canapes, and I had to take the iMac into Apple Store. I backed up my several thousand bookmarks, planning to just get a fresh new Fox after; Five years of updates and add ons taken off makes a browser creaky.
  Apple Store scrubbed the drives completely, then updated me for free to Leopard so my iPhone will work; Tiger was just done. Over. I'm back cruising the cyber spaces again, but in Safari. Bleh!
  So where's a Firefox for us still retrogrouching? The cash for a new Apple is tight now and I'm going to have to last six months to make a Mac Mini- when Lion will be out. I need the last Firefox, a 3.6 I think? Something to put my fave security add ons on and get back to work?
  There's a lot of us out here on a tight budget getting left out and behind. Be a sport, guys, give us a link for a bit longer?

  This is a user to user forum - you aren't talking to Apple here. I'm afraid all we can do is sympathize - you have described the situation exactly. Whenever you do any system upgrade it's advisable to check on its requirements - that for iOS7 presumably indicates that iTunes 11 is required. I'm sorry to say that there is no solution for your situation.

• What's the best type of anti-virus or spyware to use for cleaning up my MacBook Pro? I recently switched to a mac from pc, so don't know much about my computer yet.

  I recently switched to a macbook pro from a pc, and am curious what type of (if any) virus protection or spyware protection to use for it.  I keep getting a message to Install MacKeeper 2012; but am not sure if it's worth paying for or not.  I'd like some advice on what would be the best protection for my computer.  Also, I recently had the new microsoft office installed; which has been having issues freezing up quite often when I use it.  I don't know if clenaing my mac would help with the Microsoft office stuff, or not (or even if that would be related)...also each time I restart my computer; all windows applications open (word, power point, excel & outlook).   obviously I'm not very tech savvy to begin with so any advice would help!  I'm hoping this computer will last me thru the next 4 years of grad school & just want to make sure this computer is well taken care of to last that long.  Thanks!

  Welcome to the Apple Support Communities
  You don't need an antivirus, but don't install Mackeeper if you don't want a damaged Mac OS > https://discussions.apple.com/docs/DOC-3036 See > http://www.reedcorner.net/mmg/

• Why does firefox keep crashing? I ran a scan and there was no spyware or malware. I uninstalled and reinstalled firefox. It doesn't happen in safe mode.

  For some unknown reason firefox keeps crashing on my laptop computer. I mostly just use the internet for surfing and for emailing. It is very frustrating when I am trying to write an email and firefox crashes. I have unistalled and reinstalled firefox. I ran a McAfee scan on the computer and it has no problems with spyware or malware. It doesn't crash in safemode either. I am in safe mode now otherwise it would have crashed multiple times while getting to this page and typing this message.

  If Firefox crashes frequently but stops crashing when you are in Safe Mode that is a pretty sure sign that there is something wrong with your individual setup of Firefox on your Windows 7 machine.
  (The 99 others claiming to have the same problem this week probably have their own distinct and separate problems - if you are one of those 99 it may make sense to start your own questions about your problems, if you do not see suitable answers).
  Many malware problems would continue even in Firefox's [[safe mode]], so the good news is that malware may not be your problem.
  Note that safe mode does not disable plugins, you may wish to consider testing with your plugins disabled, just in case they are interacting with something. To temporarily disable plugins use
  * '''Firefox button -> Add-ons -> |Plugins|'''
  You do not list the Firefox extensions that are in use, maybe one of them is a problem. I suggest you try Firefox with half of them disabled, if that solves the problem, the troublesome add-on may be in the other half, disable them all and then try with half of the other half enabled. (If you have more than a handful of add-ons it is faster testing like that than enabling or disabling one at a time)
  One very important question is how do you know Firefox is crashing ? <br/>will you please explain exactly what happens, and what if any error messages you are seeing. (If firefox freezes/hangs that may be different from Firefox or the OS crashing, and require different solutions).
  On a general note the following articles may help with troubleshooting:
  * [[basic troubleshooting]]
  * [[troubleshooting extensions and themes]]
  * [[http://kb.mozillazine.org/Standard_diagnostic_%28Firefox%29]]
  and if the problem is a true crash
  * see [[firefox crashes]]

• Do I need to have any type of anti-virus or malware, spyware protection for my Macbook Pro?

  My Macbook is a year old. When I bought it, I was told by several people that I would not need any type of anti-virus software or anything to protect my computer because Mac did not get infected that often. However, I have had people today tell me that I do need protection for my computer. My Mac runs about as good as the day I got it, but I really don't want anything to happen to it. If I need to get an anti-virus, or malware/spyware software, what programs would y'all recomend? I am just looking for information. Thanks!

  1. This comment applies to malicious software ("malware") that's installed unwittingly by the victim of a network attack. It does not apply to software, such as keystroke loggers, that may be installed deliberately by an intruder who has hands-on access to the victim's computer. That threat is in a different category, and there's no easy way to defend against it. If you have reason to suspect that you're the target of such an attack, you need expert help.
  If you find this comment too long or too technical, read only sections 5, 6, and 10.
  OS X now implements three layers of built-in protection specifically against malware, not counting runtime protections such as execute disable, sandboxing, system library randomization, and address space layout randomization that may also guard against other kinds of exploits.
  2. All versions of OS X since 10.6.7 have been able to detect known Mac malware in downloaded files, and to block insecure web plugins. This feature is transparent to the user, but internally Apple calls it "XProtect." The malware recognition database is automatically checked for updates once a day; however, you shouldn't rely on it, because the attackers are always at least a day ahead of the defenders.
  The following caveats apply to XProtect:
  It can be bypassed by some third-party networking software, such as BitTorrent clients and Java applets.
  It only applies to software downloaded from the network. Software installed from a CD or other media is not checked.
  3. Starting with OS X 10.7.5, there has been a second layer of built-in malware protection, designated "Gatekeeper" by Apple. By default, applications and Installer packages downloaded from the network will only run if they're digitally signed by a developer with a certificate issued by Apple. Software certified in this way hasn't necessarily been tested by Apple, but you can be reasonably sure that it hasn't been modified by anyone other than the developer. His identity is known to Apple, so he could be held legally responsible if he distributed malware. That may not mean much if the developer lives in a country with a weak legal system (see below.)
  Gatekeeper doesn't depend on a database of known malware. It has, however, the same limitations as XProtect, and in addition the following:
  It can easily be disabled or overridden by the user.
  A malware attacker could get control of a code-signing certificate under false pretenses, or could simply ignore the consequences of distributing codesigned malware.
  An App Store developer could find a way to bypass Apple's oversight, or the oversight could fail due to human error.
  For the reasons given above, App Store products, and other applications recognized by Gatekeeper as signed, are safer than others, but they can't be considered absolutely safe. "Sandboxed" applications may prompt for access to private data, such as your contacts, or for access to the network. Think before granting that access. OS X security is based on user input. Never click through any request for authorization without thinking.
  4. Starting with OS X 10.8.3, a third layer of protection has been added: a "Malware Removal Tool" (MRT). MRT runs automatically in the background when you update the OS. It checks for, and removes, malware that may have evaded the other protections via a Java exploit (see below.) MRT also runs when you install or update the Apple-supplied Java runtime (but not the Oracle runtime.) Like XProtect, MRT is presumably effective against known attacks, but maybe not against unknown attacks. It notifies you if it finds malware, but otherwise there's no user interface to MRT.
  5. XProtect, Gatekeeper, and MRT reduce the risk of malware attack, but they're not absolute protection. The first and best line of defense is always your own intelligence. With the possible exception of Java exploits, all known malware circulating on the Internet that affects a fully-updated installation of OS X 10.6 or later takes the form of so-called "trojan horses," which can only have an effect if the victim is duped into running them. The threat therefore amounts to a battle of wits between you and the malware attacker. If you're smarter than he thinks you are, you'll win.
  That means, in practice, that you never use software that comes from an untrustworthy source, or that does something inherently untrustworthy. How do you know what is trustworthy?
  Any website that prompts you to install a “codec,” “plug-in,” "player," "extractor," or “certificate” that comes from that same site, or an unknown one, is untrustworthy.
  A web operator who tells you that you have a “virus,” or that anything else is wrong with your computer, or that you have won a prize in a contest you never entered, is trying to commit a crime with you as the victim. (Some reputable websites did legitimately warn visitors who were infected with the "DNSChanger" malware. That exception to this rule no longer applies.)
  Pirated copies or "cracks" of commercial software, no matter where they come from, are unsafe.
  Software of any kind downloaded from a BitTorrent or from a Usenet binary newsgroup is unsafe.
  Software that purports to help you do something that's illegal or that infringes copyright, such as saving streamed audio or video for reuse without permission, is unsafe. All YouTube "downloaders" are in this category, though not all are necessarily harmful.
  Software with a corporate brand, such as Adobe Flash Player, must be downloaded directly from the developer’s website. If it comes from any other source, it's unsafe.
  Even signed applications, no matter what the source, should not be trusted if they do something unexpected, such as asking for permission to access your contacts, your location, or the Internet for no obvious reason.
  6. Java on the Web (not to be confused with JavaScript, to which it's not related, despite the similarity of the names) is a weak point in the security of any system. Java is, among other things, a platform for running complex applications in a web page, on the client. That was always a bad idea, and Java's developers have proven themselves incapable of implementing it without also creating a portal for malware to enter. Past Java exploits are the closest thing there has ever been to a Windows-style virus affecting OS X. Merely loading a page with malicious Java content could be harmful.
  Fortunately, client-side Java on the Web is obsolete and mostly extinct. Only a few outmoded sites still use it. Try to hasten the process of extinction by avoiding those sites, if you have a choice. Forget about playing games or other non-essential uses of Java.
  Java is not included in OS X 10.7 and later. Discrete Java installers are distributed by Apple and by Oracle (the developer of Java.) Don't use either one unless you need it. Most people don't. If Java is installed, disable it — not JavaScript — in your browsers.
  Regardless of version, experience has shown that Java on the Web can't be trusted. If you must use a Java applet for a task on a specific site, enable Java only for that site in Safari. Never enable Java for a public website that carries third-party advertising. Use it only on well-known, login-protected, secure websites without ads. In Safari 6 or later, you'll see a lock icon in the address bar with the abbreviation "https" when visiting a secure site.
  Follow the above guidelines, and you’ll be as safe from malware as you can practically be. The rest of this comment concerns what you should not do to protect yourself from malware.
  7. Never install any commercial "anti-virus" or "Internet security" products for the Mac, as they all do more harm than good, if they do any good at all. Any database of known threats is always going to be out of date. Most of the danger is from unknown threats. If you need to be able to detect Windows malware in your files, use the free software  ClamXav— nothing else.
  Why shouldn't you use commercial "anti-virus" products?
  Their design is predicated on the nonexistent threat that malware may be injected at any time, anywhere in the file system. Malware is downloaded from the network; it doesn't materialize from nowhere.
  In order to meet that nonexistent threat, the software modifies or duplicates low-level functions of the operating system, which is a waste of resources and a common cause of instability, bugs, and poor performance.
  By modifying the operating system, the software itself may create weaknesses that could be exploited by malware attackers.
  8. ClamXav doesn't have these drawbacks. That doesn't mean it's entirely safe. It may report email messages that have "phishing" links in the body, or Windows malware in attachments, as infected files, and offer to delete or move them. Doing so will corrupt the Mail database. The messages should be deleted from within the Mail application.
  ClamXav is not needed, and should not be relied upon, for protection against OS X malware. It's useful only for detecting Windows malware. Windows malware can't harm you directly (unless, of course, you use Windows.) Just don't pass it on to anyone else.
  A Windows malware attachment in email is usually easy to recognize. The file name will often be targeted at people who aren't very bright; for example:
  ♥♥♥♥♥♥♥♥♥♥♥♥♥♥!!!!!!!H0TBABEZ4U!!!!!!!.AVI♥♥♥♥♥♥♥♥♥♥♥♥♥♥.exe
  ClamXav may be able to tell you which particular virus or trojan it is, but do you care? In practice, there's seldom a reason to use ClamXav unless a network administrator requires you to run an anti-virus application.
  9. It seems to be a common belief that the built-in Application Firewall acts as a barrier to infection, or prevents malware from functioning. It does neither. It blocks inbound connections to certain network services you're running, such as file sharing. It's disabled by default and you should leave it that way if you're behind a router on a private home or office network. Activate it only when you're on an untrusted network, for instance a public Wi-Fi hotspot, where you don't want to provide services. Disable any services you don't use in the Sharing preference pane. All are disabled by default.
  10. As a Mac user you don't have to live in fear that your computer is going to be infected every time you install an application, read email, or visit a web page. But neither should you have the false idea that you will always be safe, no matter what you do. The greatest harm done by security software is precisely its selling point: it makes people feel safe. They may then feel safe enough to take risks from which the software doesn't protect them. Nothing can lessen the need for safe computing practices.