Trojan in Java
Is it true that there was a Trojan detected and that the Java update yesterday was to patch the hole?
So it begins.....
I haven't actually seen any documentation of such a variant beyond the fairly vague information on F-Secure's page, which does not describe exactly what the contents of the file placed in LaunchAgents are.
I think the following is the primary thread where this variant first appeard in these forums:
.rserv wants to connect to cuojshtbohnt.com
And if you look at page 3 of that (still growing) thread you will see a typical example of the launchagent.
However, it is obvious from reading posts from infected folks on forums like these that the instructions - no matter what they may be - are inadequate.
I think they are adequate to find the top-level insertions of the current trojans. Not find every piece of code that may have been injected.
If there's a variant out ther that adds some control, injects its payload, and removes the control code, other than, for example, injecting code into browsers, then I haven't heard about it yet.
As are the numerous detection and removal tools based on those instructions.
I agree with that.
As that has become more clear, I have significantly modified my instructions, and have been considering pulling them altogether.
Which was my whole point of making you aware of this variant.
More and more, it's looking like anti-virus software is the best way to detect an infection.
To each his own. Let's agree to disagree.
As for removal, that's similarly difficult for novice users. I would have to say that if you can't find and remove the pieces on your own, without needing to rely on instructions, you shouldn't be trying. Either erase the hard drive and reinstall everything from scratch, or get a tech guru who really knows what he/she is doing to take care of the removal for you. Any other recommendation, at this point, is starting to look irresponsible.
There's a longish applescript floating around curently that attempts full detection and removal. I just don't have the link handy at the moment.
Similar Messages
-
NEW TO JAVA: TROJAN, KEYLOGGER, VIRUS etc..
Hello,
Just a question about JAVA.
Can the JAVA language be used to create trojan, keylogger, virus etc..?Trojan: (i.e. something you trick an end user into running)
Java would not be the best choice for a trojan, as it requires the JVM installed, which many machines don't have. You could target MacOS X machines.
Keylogger: Not without JNI. At which point why bother writing a GUI in Java?
Virus: (i.e. something that spreads on its own) No, a Virus would rely on a OS native feature for self propergation. (such as a error in Outlook, or sending junk to a certain port).
You might think that Java Applets are a good target envorement for Viruses/trojans. Java Applets run in a very tightly controlled sandbox. -
Viruses, malware, trojans, etc.
I have an MPB, OSX 10.5.8 and a 16.5 year old son. I was able to resolve the kernel panic problem, but only because I had access to an external drive version of an install disc with which I could fire up Disk Utility, which then made repairs. I had been able to reboot from neither an onboard install disc nor an internal TechTool eDrive.
Suspicious, I installed and ran ClamXav anti-virus tool and found two items:
hottiestar_installer.exe decsribed as Trojan.Inject-3034, and
useGoingBook.class-73a68686-5131a64d.class described as Trojan.Downloader.Java.ClassLoader-1 .
ClamXav placed the two in a folder and then I trashed them both. Am I done? Is it safe? I know so little about how these things operate and what they do. It seems like I've killed the messengers, but have I destroyed the messages?
Is it more likely that these were picked up from friends with infected Windows machines than from direct downloading to the MPB?
Thank you.Raven Icefire wrote:
I am looking at buying a MBP. My brother goes to ITT and he said that they are talking about the rise of mac viruses. Is this something I should consider when buying, like should I pay for the anti-virus or are the types of viruses that they were talking about not something to worry about?
Welcome to Apple's discussion groups.
There really are no Mac viruses in the traditional sense. There are Mac trojans, which can be avoided by actions such as declining offers to install "codecs" that claim to allow viewing of questionable content.
Safari and OS X have a certain amount of malware protection already built in. If you really want to install anti-virus software on a Mac, consider ClamXav: http://www.clamxav.com/
One more piece of advice: If you're looking for advice, start your own thread instead of attaching your question to a thread already marked as "answered", as those threads receive a lot less attention than unanswered threads. -
Hi I need help from someone who knows how to solve such issues. My safari has been crashing since day before yesterday. At first it was once a day now it crashes after 15-20 minutes if im using safari. I also have noticed that the websites that i open are totally random, and yet it still crashes.
It says " Safari quit unexpectedly while using the .HardCopyPro.tmp plugin." - I don't know what that means. And also here is the report that it shows up. Please help!!
Process: Safari [1588]
Path: /Applications/Safari.app/Contents/MacOS/Safari
Identifier: com.apple.Safari
Version: 5.1 (6534.50)
Build Info: WebBrowser-75345000~1
Code Type: X86-64 (Native)
Parent Process: launchd [191]
PlugIn Path: /Users/moonkuikel/Library/Application Support/.HardCopyPro.tmp
PlugIn Identifier: .HardCopyPro.tmp
PlugIn Version: ??? (???)
Date/Time: 2012-04-14 01:12:00.126 -0400
OS Version: Mac OS X 10.6.8 (10K540)
Report Version: 6
Interval Since Last Report: 93102 sec
Crashes Since Last Report: 16
Per-App Interval Since Last Report: 204940 sec
Per-App Crashes Since Last Report: 13
Anonymous UUID: E3B75479-F5A9-4BD0-B5CA-B843A1200930
Exception Type: EXC_CRASH (SIGABRT)
Exception Codes: 0x0000000000000000, 0x0000000000000000
Crashed Thread: 1
Application Specific Information:
abort() called
Thread 0: Dispatch queue: com.apple.main-thread
0 libSystem.B.dylib 0x00007fff84dcfd7a mach_msg_trap + 10
1 libSystem.B.dylib 0x00007fff84dd03ed mach_msg + 59
2 com.apple.CoreFoundation 0x00007fff80e2e932 __CFRunLoopRun + 1698
3 com.apple.CoreFoundation 0x00007fff80e2ddbf CFRunLoopRunSpecific + 575
4 com.apple.HIToolbox 0x00007fff802c67ee RunCurrentEventLoopInMode + 333
5 com.apple.HIToolbox 0x00007fff802c65f3 ReceiveNextEventCommon + 310
6 com.apple.HIToolbox 0x00007fff802c64ac BlockUntilNextEventMatchingListInMode + 59
7 com.apple.AppKit 0x00007fff81c07eb2 _DPSNextEvent + 708
8 com.apple.AppKit 0x00007fff81c07801 -[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 155
9 com.apple.Safari.framework 0x00007fff831f9452 -[BrowserApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 177
10 com.apple.AppKit 0x00007fff81bcd68f -[NSApplication run] + 395
11 com.apple.AppKit 0x00007fff81bc63b0 NSApplicationMain + 364
12 com.apple.Safari.framework 0x00007fff833b3f62 SafariMain + 200
13 com.apple.Safari 0x0000000100000f1c 0x100000000 + 3868
Thread 1 Crashed:
0 libSystem.B.dylib 0x00007fff84e429ce __semwait_signal_nocancel + 10
1 libSystem.B.dylib 0x00007fff84e428d0 nanosleep$NOCANCEL + 129
2 libSystem.B.dylib 0x00007fff84e9f3ce usleep$NOCANCEL + 57
3 libSystem.B.dylib 0x00007fff84ebea00 abort + 93
4 libstdc++.6.dylib 0x00007fff8a6155d2 __tcf_0 + 0
5 libobjc.A.dylib 0x00007fff825ccb4d _objc_terminate + 120
6 libstdc++.6.dylib 0x00007fff8a613ae1 __cxxabiv1::__terminate(void (*)()) + 11
7 libstdc++.6.dylib 0x00007fff8a613b16 __cxxabiv1::__unexpected(void (*)()) + 0
8 libstdc++.6.dylib 0x00007fff8a613bfc __gxx_exception_cleanup(_Unwind_Reason_Code, _Unwind_Exception*) + 0
9 libstdc++.6.dylib 0x00007fff8a5cfa3e std::__throw_length_error(char const*) + 127
10 libstdc++.6.dylib 0x00007fff8a5fa3fe std::string::append(char const*, unsigned long) + 82
11 .HardCopyPro.tmp 0x0000000100082cbb dylibmain + 3599
12 com.apple.CFNetwork 0x00007fff87c8cdd7 HTTPReadFilter::readHeaderBytes(StreamReader*, unsigned char, unsigned char*, long, CFStreamError*) + 421
13 com.apple.CFNetwork 0x00007fff87c8dd4c HTTPReadFilter::canReadNoSignal(StreamReader*, CFStreamError*, unsigned char) + 110
14 com.apple.CFNetwork 0x00007fff87c3b52c HTTPReadFilter::streamCanRead(__CFReadStream*) + 90
15 com.apple.CFNetwork 0x00007fff87c3b6a2 HTTPReadFilter::socketReadStreamCallback(unsigned long) + 122
16 com.apple.CFNetwork 0x00007fff87c3b613 HTTPReadFilter::_httpRdFilterStreamCallBack(__CFReadStream*, unsigned long, void*) + 49
17 com.apple.CoreFoundation 0x00007fff80e90373 _signalEventSync + 115
18 com.apple.CoreFoundation 0x00007fff80e902e4 _cfstream_solo_signalEventSync + 116
19 com.apple.CoreFoundation 0x00007fff80e90224 _CFStreamSignalEvent + 740
20 com.apple.CFNetwork 0x00007fff87c908d7 SocketStream::dispatchSignalFromSocketCallbackUnlocked(SocketStreamSignalHolder *) + 45
21 com.apple.CFNetwork 0x00007fff87c2512c SocketStream::socketCallback(__CFSocket*, unsigned long, __CFData const*, void const*) + 224
22 com.apple.CFNetwork 0x00007fff87c25016 SocketStream::_SocketCallBack_stream(__CFSocket*, unsigned long, __CFData const*, void const*, void*) + 96
23 com.apple.CoreFoundation 0x00007fff80e58bea __CFSocketDoCallback + 634
24 com.apple.CoreFoundation 0x00007fff80e585eb __CFSocketPerformV0 + 315
25 com.apple.CoreFoundation 0x00007fff80e30401 __CFRunLoopDoSources0 + 1361
26 com.apple.CoreFoundation 0x00007fff80e2e5f9 __CFRunLoopRun + 873
27 com.apple.CoreFoundation 0x00007fff80e2ddbf CFRunLoopRunSpecific + 575
28 com.apple.CFNetwork 0x00007fff87c3e1fc HTTPNetStreamInfo::streamRead(__CFReadStream*, unsigned char*, long, CFStreamError*, unsigned char*) + 278
29 com.apple.CoreFoundation 0x00007fff80e1e08c CFReadStreamRead + 748
30 .HardCopyPro.tmp 0x0000000100082c66 dylibmain + 3514
31 com.apple.CFNetwork 0x00007fff87c8ffe0 HTTPReadStream::streamRead(__CFReadStream*, unsigned char*, long, CFStreamError*, unsigned char*) + 82
32 com.apple.CoreFoundation 0x00007fff80e1e08c CFReadStreamRead + 748
33 .HardCopyPro.tmp 0x0000000100082264 dylibmain + 952
34 .HardCopyPro.tmp 0x0000000100081198 0x10007a000 + 29080
35 .HardCopyPro.tmp 0x0000000100081f46 dylibmain + 154
36 .HardCopyPro.tmp 0x000000010008459d dylibmain + 9969
37 .HardCopyPro.tmp 0x000000010008951c ksyms + 202
38 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
39 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 2:
0 libSystem.B.dylib 0x00007fff84e0aa6a __semwait_signal + 10
1 libSystem.B.dylib 0x00007fff84e0e881 _pthread_cond_wait + 1286
2 .HardCopyPro.tmp 0x000000010008968d ksyms + 571
3 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
4 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 3:
0 libSystem.B.dylib 0x00007fff84e0aa6a __semwait_signal + 10
1 libSystem.B.dylib 0x00007fff84e0e881 _pthread_cond_wait + 1286
2 .HardCopyPro.tmp 0x000000010008968d ksyms + 571
3 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
4 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 4:
0 libSystem.B.dylib 0x00007fff84e0aa6a __semwait_signal + 10
1 libSystem.B.dylib 0x00007fff84e0e881 _pthread_cond_wait + 1286
2 .HardCopyPro.tmp 0x000000010008968d ksyms + 571
3 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
4 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 5:
0 libSystem.B.dylib 0x00007fff84e0aa6a __semwait_signal + 10
1 libSystem.B.dylib 0x00007fff84e0e881 _pthread_cond_wait + 1286
2 .HardCopyPro.tmp 0x000000010008968d ksyms + 571
3 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
4 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 6:
0 libSystem.B.dylib 0x00007fff84e0aa6a __semwait_signal + 10
1 libSystem.B.dylib 0x00007fff84e0e881 _pthread_cond_wait + 1286
2 .HardCopyPro.tmp 0x000000010008968d ksyms + 571
3 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
4 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 7:
0 libSystem.B.dylib 0x00007fff84e0aa6a __semwait_signal + 10
1 libSystem.B.dylib 0x00007fff84e0e881 _pthread_cond_wait + 1286
2 .HardCopyPro.tmp 0x000000010008968d ksyms + 571
3 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
4 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 8:
0 libSystem.B.dylib 0x00007fff84e0aa6a __semwait_signal + 10
1 libSystem.B.dylib 0x00007fff84e0e881 _pthread_cond_wait + 1286
2 .HardCopyPro.tmp 0x000000010008968d ksyms + 571
3 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
4 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 9:
0 libSystem.B.dylib 0x00007fff84e0aa6a __semwait_signal + 10
1 libSystem.B.dylib 0x00007fff84e0e881 _pthread_cond_wait + 1286
2 .HardCopyPro.tmp 0x000000010008968d ksyms + 571
3 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
4 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 10:
0 libSystem.B.dylib 0x00007fff84e0aa6a __semwait_signal + 10
1 libSystem.B.dylib 0x00007fff84e0e881 _pthread_cond_wait + 1286
2 .HardCopyPro.tmp 0x000000010008968d ksyms + 571
3 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
4 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 11:
0 libSystem.B.dylib 0x00007fff84e0aa6a __semwait_signal + 10
1 libSystem.B.dylib 0x00007fff84e0e881 _pthread_cond_wait + 1286
2 .HardCopyPro.tmp 0x000000010008968d ksyms + 571
3 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
4 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 12: Dispatch queue: com.apple.libdispatch-manager
0 libSystem.B.dylib 0x00007fff84de8c0a kevent + 10
1 libSystem.B.dylib 0x00007fff84deaadd _dispatch_mgr_invoke + 154
2 libSystem.B.dylib 0x00007fff84dea7b4 _dispatch_queue_invoke + 185
3 libSystem.B.dylib 0x00007fff84dea2de _dispatch_worker_thread2 + 252
4 libSystem.B.dylib 0x00007fff84de9c08 _pthread_wqthread + 353
5 libSystem.B.dylib 0x00007fff84de9aa5 start_wqthread + 13
Thread 13: com.apple.CFSocket.private
0 libSystem.B.dylib 0x00007fff84e13932 select$DARWIN_EXTSN + 10
1 com.apple.CoreFoundation 0x00007fff80e50498 __CFSocketManager + 824
2 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
3 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 14: WebCore: IconDatabase
0 libSystem.B.dylib 0x00007fff84e0aa6a __semwait_signal + 10
1 libSystem.B.dylib 0x00007fff84e0e881 _pthread_cond_wait + 1286
2 com.apple.WebCore 0x00007fff85a92749 WebCore::IconDatabase::syncThreadMainLoop() + 265
3 com.apple.WebCore 0x00007fff85a8fc88 WebCore::IconDatabase::iconDatabaseSyncThread() + 296
4 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
5 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 15:
0 libSystem.B.dylib 0x00007fff84dcfd7a mach_msg_trap + 10
1 libSystem.B.dylib 0x00007fff84dd03ed mach_msg + 59
2 com.apple.QuartzCore 0x00007fff89db0396 CA::Render::Server::server_thread(void*) + 177
3 com.apple.QuartzCore 0x00007fff89db02d6 thread_fun + 34
4 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
5 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 16: Safari: SafeBrowsingManager
0 libSystem.B.dylib 0x00007fff84dcfd7a mach_msg_trap + 10
1 libSystem.B.dylib 0x00007fff84dd03ed mach_msg + 59
2 com.apple.CoreFoundation 0x00007fff80e2e932 __CFRunLoopRun + 1698
3 com.apple.CoreFoundation 0x00007fff80e2ddbf CFRunLoopRunSpecific + 575
4 com.apple.Safari.framework 0x00007fff8336cd39 Safari::MessageRunLoop::threadBody() + 107
5 com.apple.Safari.framework 0x00007fff8336cd73 Safari::MessageRunLoop::threadCallback(void*) + 9
6 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
7 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 17: Safari: SnapshotStore
0 libSystem.B.dylib 0x00007fff84e0aa6a __semwait_signal + 10
1 libSystem.B.dylib 0x00007fff84e0e881 _pthread_cond_wait + 1286
2 com.apple.JavaScriptCore 0x00007fff8274a690 ***::ThreadCondition::timedWait(***::Mutex&, double) + 64
3 com.apple.Safari.framework 0x00007fff833e6f6d Safari::MessageQueueWaitResult Safari::MessageQueue<***::RefPtr<Safari::SnapshotStore::DiskAccessMessage> >::waitForMessageFilteredWithTimeout<bool ()(***::RefPtr<Safari::SnapshotStore::DiskAccessMessage>&)>(***::RefPtr<Safari: :SnapshotStore::DiskAccessMessage>&, bool (&)(***::RefPtr<Safari::SnapshotStore::DiskAccessMessage>&), double) + 149
4 com.apple.Safari.framework 0x00007fff833e536d Safari::SnapshotStore::diskAccessThreadBody() + 379
5 com.apple.Safari.framework 0x00007fff833e5b27 Safari::SnapshotStore::diskAccessThreadCallback(void*) + 9
6 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
7 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 18: WebCore: LocalStorage
0 libSystem.B.dylib 0x00007fff84e0aa6a __semwait_signal + 10
1 libSystem.B.dylib 0x00007fff84e0e881 _pthread_cond_wait + 1286
2 com.apple.JavaScriptCore 0x00007fff8274a690 ***::ThreadCondition::timedWait(***::Mutex&, double) + 64
3 com.apple.WebCore 0x00007fff85aac4c1 WebCore::LocalStorageThread::threadEntryPoint() + 177
4 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
5 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 19:
0 libSystem.B.dylib 0x00007fff84dcfd7a mach_msg_trap + 10
1 libSystem.B.dylib 0x00007fff84dd03ed mach_msg + 59
2 com.apple.CoreFoundation 0x00007fff80e2e932 __CFRunLoopRun + 1698
3 com.apple.CoreFoundation 0x00007fff80e2ddbf CFRunLoopRunSpecific + 575
4 com.apple.Foundation 0x00007fff8829423f +[NSURLConnection(NSURLConnectionReallyInternal) _resourceLoadLoop:] + 297
5 com.apple.Foundation 0x00007fff88215204 __NSThread__main__ + 1429
6 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
7 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 20:
0 libSystem.B.dylib 0x00007fff84de9a2a __workq_kernreturn + 10
1 libSystem.B.dylib 0x00007fff84de9e3c _pthread_wqthread + 917
2 libSystem.B.dylib 0x00007fff84de9aa5 start_wqthread + 13
Thread 21:
0 libSystem.B.dylib 0x00007fff84de9a2a __workq_kernreturn + 10
1 libSystem.B.dylib 0x00007fff84de9e3c _pthread_wqthread + 917
2 libSystem.B.dylib 0x00007fff84de9aa5 start_wqthread + 13
Thread 1 crashed with X86 Thread State (64-bit):
rax: 0x000000000000003c rbx: 0x00000001004c9890 rcx: 0x00000001004c9848 rdx: 0x0000000000000001
rdi: 0x0000000000000c03 rsi: 0x0000000000000000 rbp: 0x00000001004c9880 rsp: 0x00000001004c9848
r8: 0x0000000000000000 r9: 0x0000000000989680 r10: 0x0000000000000001 r11: 0x0000000000000246
r12: 0x0000000000000000 r13: 0x000000011d656880 r14: 0x0000000000001000 r15: 0xffffffffffffffff
rip: 0x00007fff84e429ce rfl: 0x0000000000000247 cr2: 0x000000011b676017
Binary Images:
0x100000000 - 0x100000fff com.apple.Safari 5.1 (6534.50) <1F791A92-0E1B-FA63-8447-AD69C689F0D3> /Applications/Safari.app/Contents/MacOS/Safari
0x100004000 - 0x100004fff +.libgmalloc.dylib ??? (???) <C5C8E257-608E-091E-359F-71200A436282> /Users/Shared/.libgmalloc.dylib
0x10007a000 - 0x1000a1fff +.HardCopyPro.tmp ??? (???) <321B8545-39FC-4FEA-B2A4-2EAA3732F4A9> /Users/moonkuikel/Library/Application Support/.HardCopyPro.tmp
0x100200000 - 0x1002e6fe7 libcrypto.0.9.7.dylib 0.9.7 (compatibility 0.9.7) <2D39CB30-54D9-B03E-5FCF-E53122F87484> /usr/lib/libcrypto.0.9.7.dylib
0x115cc8000 - 0x115ceefff GLRendererFloat ??? (???) <490221DD-53D9-178E-3F31-3A4974D34DCD> /System/Library/Frameworks/OpenGL.framework/Resources/GLRendererFloat.bundle/GL RendererFloat
0x119907000 - 0x119a9afe7 GLEngine ??? (???) <53A8A7E8-4846-D236-F3D9-DA3F2AF686D8> /System/Library/Frameworks/OpenGL.framework/Resources/GLEngine.bundle/GLEngine
0x11a216000 - 0x11a639fef libclh.dylib 3.1.1 C (3.1.1) <432F5475-F934-92A0-FB49-78F03DA82176> /System/Library/Extensions/GeForceGLDriver.bundle/Contents/MacOS/libclh.dylib
0x200000000 - 0x200787fe7 com.apple.GeForceGLDriver 1.6.36 (6.3.6) <4F23289A-D45A-0630-8D7F-4C35A4D2AA00> /System/Library/Extensions/GeForceGLDriver.bundle/Contents/MacOS/GeForceGLDrive r
0x7fff5fc00000 - 0x7fff5fc3be0f dyld 132.1 (???) <29DECB19-0193-2575-D838-CF743F0400B2> /usr/lib/dyld
0x7fff80047000 - 0x7fff80082fff com.apple.AE 496.5 (496.5) <208DF391-4DE6-81ED-C697-14A2930D1BC6> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/AE.fram ework/Versions/A/AE
0x7fff80083000 - 0x7fff800d2fef libTIFF.dylib ??? (???) <5DE9F066-9B64-CBE4-976A-CC7B8DD3C31A> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ ImageIO.framework/Versions/A/Resources/libTIFF.dylib
0x7fff800e2000 - 0x7fff800e5fff com.apple.help 1.3.2 (41.1) <BD1B0A22-1CB8-263E-FF85-5BBFDE3660B9> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/Help.framewor k/Versions/A/Help
0x7fff8010a000 - 0x7fff80110ff7 IOSurface ??? (???) <8E302BB2-0704-C6AB-BD2F-C2A6C6A2E2C3> /System/Library/Frameworks/IOSurface.framework/Versions/A/IOSurface
0x7fff80111000 - 0x7fff80126ff7 com.apple.LangAnalysis 1.6.6 (1.6.6) <1AE1FE8F-2204-4410-C94E-0E93B003BEDA> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ LangAnalysis.framework/Versions/A/LangAnalysis
0x7fff80298000 - 0x7fff80596fff com.apple.HIToolbox 1.6.5 (???) <AD1C18F6-51CB-7E39-35DD-F16B1EB978A8> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/HIToolbox.fra mework/Versions/A/HIToolbox
0x7fff80597000 - 0x7fff805adfe7 com.apple.MultitouchSupport.framework 207.11 (207.11) <8233CE71-6F8D-8B3C-A0E1-E123F6406163> /System/Library/PrivateFrameworks/MultitouchSupport.framework/Versions/A/Multit ouchSupport
0x7fff805ae000 - 0x7fff8060efe7 com.apple.framework.IOKit 2.0 (???) <4F071EF0-8260-01E9-C641-830E582FA416> /System/Library/Frameworks/IOKit.framework/Versions/A/IOKit
0x7fff8060f000 - 0x7fff8061aff7 com.apple.HelpData 2.0.5 (34.1.1) <24DC6CD3-02B7-9332-FF6D-F0C545857B55> /System/Library/PrivateFrameworks/HelpData.framework/Versions/A/HelpData
0x7fff8061b000 - 0x7fff806a0ff7 com.apple.print.framework.PrintCore 6.3 (312.7) <CDFE82DD-D811-A091-179F-6E76069B432D> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ PrintCore.framework/Versions/A/PrintCore
0x7fff806a9000 - 0x7fff806cafff libresolv.9.dylib 41.0.0 (compatibility 1.0.0) <9F322F47-0584-CB7D-5B73-9EBD670851CD> /usr/lib/libresolv.9.dylib
0x7fff806cb000 - 0x7fff80757fef SecurityFoundation ??? (???) <3F1F2727-C508-3630-E2C1-38361841FCE4> /System/Library/Frameworks/SecurityFoundation.framework/Versions/A/SecurityFoun dation
0x7fff80758000 - 0x7fff809e1ff7 com.apple.security 6.1.2 (55002) <4419AFFC-DAE7-873E-6A7D-5C9A5A4497A6> /System/Library/Frameworks/Security.framework/Versions/A/Security
0x7fff80c25000 - 0x7fff80d5afff com.apple.audio.toolbox.AudioToolbox 1.6.7 (1.6.7) <E5D7DBDB-6DDF-E6F9-C71C-86F4520EE5A3> /System/Library/Frameworks/AudioToolbox.framework/Versions/A/AudioToolbox
0x7fff80d5b000 - 0x7fff80db0ff7 com.apple.framework.familycontrols 2.0.2 (2020) <8807EB96-D12D-8601-2E74-25784A0DE4FF> /System/Library/PrivateFrameworks/FamilyControls.framework/Versions/A/FamilyCon trols
0x7fff80dd2000 - 0x7fff80de1fff com.apple.NetFS 3.2.2 (3.2.2) <7CCBD70E-BF31-A7A7-DB98-230687773145> /System/Library/Frameworks/NetFS.framework/Versions/A/NetFS
0x7fff80de2000 - 0x7fff80f59fe7 com.apple.CoreFoundation 6.6.5 (550.43) <31A1C118-AD96-0A11-8BDF-BD55B9940EDC> /System/Library/Frameworks/CoreFoundation.framework/Versions/A/CoreFoundation
0x7fff80f5a000 - 0x7fff80f5ffff libGIF.dylib ??? (???) <95443F88-7D4C-1DEE-A323-A70F7A1B4B0F> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ ImageIO.framework/Versions/A/Resources/libGIF.dylib
0x7fff81889000 - 0x7fff818cafef com.apple.QD 3.36 (???) <5DC41E81-32C9-65B2-5528-B33E934D5BB4> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ QD.framework/Versions/A/QD
0x7fff818cb000 - 0x7fff818cbff7 com.apple.vecLib 3.6 (vecLib 3.6) <96FB6BAD-5568-C4E0-6FA7-02791A58B584> /System/Library/Frameworks/vecLib.framework/Versions/A/vecLib
0x7fff818cc000 - 0x7fff818d1fff libGFXShared.dylib ??? (???) <1D0D3531-9561-632C-D620-1A8652BEF5BC> /System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libGFXShared.d ylib
0x7fff818d2000 - 0x7fff8190fff7 libFontRegistry.dylib ??? (???) <4C3293E2-851B-55CE-3BE3-29C425DD5DFF> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ ATS.framework/Versions/A/Resources/libFontRegistry.dylib
0x7fff81910000 - 0x7fff819f5fef com.apple.DesktopServices 1.5.11 (1.5.11) <39FAA3D2-6863-B5AB-AED9-92D878EA2438> /System/Library/PrivateFrameworks/DesktopServicesPriv.framework/Versions/A/Desk topServicesPriv
0x7fff819f6000 - 0x7fff81a08fe7 libsasl2.2.dylib 3.15.0 (compatibility 3.0.0) <76B83C8D-8EFE-4467-0F75-275648AFED97> /usr/lib/libsasl2.2.dylib
0x7fff81a09000 - 0x7fff81a0aff7 com.apple.TrustEvaluationAgent 1.1 (1) <5952A9FA-BC2B-16EF-91A7-43902A5C07B6> /System/Library/PrivateFrameworks/TrustEvaluationAgent.framework/Versions/A/Tru stEvaluationAgent
0x7fff81ac1000 - 0x7fff81b04ff7 libRIP.A.dylib 545.0.0 (compatibility 64.0.0) <5FF3D7FD-84D8-C5FA-D640-90BB82EC651D> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ CoreGraphics.framework/Versions/A/Resources/libRIP.A.dylib
0x7fff81b05000 - 0x7fff81bc2fff com.apple.CoreServices.OSServices 359 (359) <DAAB42A1-89A6-9644-CB21-50BA66417F12> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/OSServi ces.framework/Versions/A/OSServices
0x7fff81bc3000 - 0x7fff81bc3ff7 com.apple.Accelerate 1.6 (Accelerate 1.6) <15DF8B4A-96B2-CB4E-368D-DEC7DF6B62BB> /System/Library/Frameworks/Accelerate.framework/Versions/A/Accelerate
0x7fff81bc4000 - 0x7fff825beff7 com.apple.AppKit 6.6.8 (1038.36) <4CFBE04C-8FB3-B0EA-8DDB-7E7D10E9D251> /System/Library/Frameworks/AppKit.framework/Versions/C/AppKit
0x7fff825bf000 - 0x7fff82675ff7 libobjc.A.dylib 227.0.0 (compatibility 1.0.0) <03140531-3B2D-1EBA-DA7F-E12CC8F63969> /usr/lib/libobjc.A.dylib
0x7fff8267b000 - 0x7fff8273cfff libFontParser.dylib ??? (???) <A00BB0A7-E46C-1D07-1391-194745566C7E> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ ATS.framework/Versions/A/Resources/libFontParser.dylib
0x7fff8273d000 - 0x7fff8273ffff libRadiance.dylib ??? (???) <76C1B129-6F25-E43C-1498-B1B88B37163B> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ ImageIO.framework/Versions/A/Resources/libRadiance.dylib
0x7fff82740000 - 0x7fff8294dff7 com.apple.JavaScriptCore 6534 (6534.49) <1D418EF7-CDBE-3832-0157-D853073948D0> /System/Library/Frameworks/JavaScriptCore.framework/Versions/A/JavaScriptCore
0x7fff829e1000 - 0x7fff82b7dfff com.apple.WebKit 6534 (6534.50) <05AEA122-3F31-0F56-4AA6-E84140C53785> /System/Library/Frameworks/WebKit.framework/Versions/A/WebKit
0x7fff82b9a000 - 0x7fff82bd7ff7 libssl.0.9.8.dylib 0.9.8 (compatibility 0.9.8) <F743389F-F25A-A77D-4FCA-D6B01AF2EE6D> /usr/lib/libssl.0.9.8.dylib
0x7fff82c70000 - 0x7fff82c76ff7 com.apple.DiskArbitration 2.3 (2.3) <857F6E43-1EF4-7D53-351B-10DE0A8F992A> /System/Library/Frameworks/DiskArbitration.framework/Versions/A/DiskArbitration
0x7fff82c77000 - 0x7fff82cc6ff7 com.apple.DirectoryService.PasswordServerFramework 6.1 (6.1) <0731C40D-71EF-B417-C83B-54C3527A36EA> /System/Library/PrivateFrameworks/PasswordServer.framework/Versions/A/PasswordS erver
0x7fff82d4a000 - 0x7fff82d4cfff com.apple.print.framework.Print 6.1 (237.1) <CA8564FB-B366-7413-B12E-9892DA3C6157> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/Print.framewo rk/Versions/A/Print
0x7fff82ddb000 - 0x7fff82e06ff7 libxslt.1.dylib 3.24.0 (compatibility 3.0.0) <8AB4CA9E-435A-33DA-7041-904BA7FA11D5> /usr/lib/libxslt.1.dylib
0x7fff82e7c000 - 0x7fff82e82ff7 com.apple.CommerceCore 1.0 (9.1) <3691E9BA-BCF4-98C7-EFEC-78DA6825004E> /System/Library/PrivateFrameworks/CommerceKit.framework/Versions/A/Frameworks/C ommerceCore.framework/Versions/A/CommerceCore
0x7fff82e83000 - 0x7fff82ec6fef libtidy.A.dylib ??? (???) <2F4273D3-418B-668C-F488-7E659D3A8C23> /usr/lib/libtidy.A.dylib
0x7fff82fea000 - 0x7fff82ff0fff libCGXCoreImage.A.dylib 545.0.0 (compatibility 64.0.0) <D2F8C7E3-CBA1-2E66-1376-04AA839DABBB> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ CoreGraphics.framework/Versions/A/Resources/libCGXCoreImage.A.dylib
0x7fff830be000 - 0x7fff830c9ff7 com.apple.speech.recognition.framework 3.11.1 (3.11.1) <3D65E89B-FFC6-4AAF-D5CC-104F967C8131> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/SpeechRecogni tion.framework/Versions/A/SpeechRecognition
0x7fff830ca000 - 0x7fff830f1ff7 libJPEG.dylib ??? (???) <B9AA5816-8CCB-AFCB-61FD-3820C6E8219D> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ ImageIO.framework/Versions/A/Resources/libJPEG.dylib
0x7fff83127000 - 0x7fff83147ff7 com.apple.DirectoryService.Framework 3.6 (621.12) <A4685F06-5881-35F5-764D-C380304C1CE8> /System/Library/Frameworks/DirectoryService.framework/Versions/A/DirectoryServi ce
0x7fff83199000 - 0x7fff839c2fef com.apple.Safari.framework 6534 (6534.50) <5E989098-BEA0-9DF9-EDFA-CF05BDDEB895> /System/Library/PrivateFrameworks/Safari.framework/Versions/A/Safari
0x7fff839c3000 - 0x7fff839f4fff libGLImage.dylib ??? (???) <7F102A07-E4FB-9F52-B2F6-4E2D2383CA13> /System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libGLImage.dyl ib
0x7fff839f5000 - 0x7fff83a0cfff com.apple.ImageCapture 6.1 (6.1) <79AB2131-2A6C-F351-38A9-ED58B25534FD> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/ImageCapture. framework/Versions/A/ImageCapture
0x7fff83a0d000 - 0x7fff84217fe7 libBLAS.dylib 219.0.0 (compatibility 1.0.0) <FC941ECB-71D0-FAE3-DCBF-C5A619E594B8> /System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.fr amework/Versions/A/libBLAS.dylib
0x7fff84218000 - 0x7fff84296ff7 com.apple.CoreText 151.10 (???) <54961997-55D8-DC0F-2634-674E452D5A8E> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ CoreText.framework/Versions/A/CoreText
0x7fff84297000 - 0x7fff842d1fff libcups.2.dylib 2.8.0 (compatibility 2.0.0) <7982734A-B66B-44AA-DEEC-364D2C10009B> /usr/lib/libcups.2.dylib
0x7fff842d2000 - 0x7fff8436cfe7 com.apple.ApplicationServices.ATS 275.16 (???) <4B70A2FC-1902-5F27-5C3B-5C78C283C6EA> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ ATS.framework/Versions/A/ATS
0x7fff843ad000 - 0x7fff8446efef com.apple.ColorSync 4.6.6 (4.6.6) <BB2C5813-C61D-3CBA-A8F7-0E59E46EBEE8> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ ColorSync.framework/Versions/A/ColorSync
0x7fff8453c000 - 0x7fff84656fef libGLProgrammability.dylib ??? (???) <8A4B86E3-0FA7-8684-2EF2-C5F8079428DB> /System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libGLProgramma bility.dylib
0x7fff84657000 - 0x7fff84795fff com.apple.CoreData 102.1 (251) <9DFE798D-AA52-6A9A-924A-DA73CB94D81A> /System/Library/Frameworks/CoreData.framework/Versions/A/CoreData
0x7fff84796000 - 0x7fff847d7fff com.apple.SystemConfiguration 1.10.8 (1.10.2) <78D48D27-A9C4-62CA-2803-D0BBED82855A> /System/Library/Frameworks/SystemConfiguration.framework/Versions/A/SystemConfi guration
0x7fff84853000 - 0x7fff84c9afef com.apple.RawCamera.bundle 3.7.1 (570) <5AFA87CA-DC3D-F84E-7EA1-6EABA8807766> /System/Library/CoreServices/RawCamera.bundle/Contents/MacOS/RawCamera
0x7fff84c9b000 - 0x7fff84cb6ff7 com.apple.openscripting 1.3.1 (???) <9D50701D-54AC-405B-CC65-026FCB28258B> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/OpenScripting .framework/Versions/A/OpenScripting
0x7fff84cb7000 - 0x7fff84dcefef libxml2.2.dylib 10.3.0 (compatibility 10.0.0) <1B27AFDD-DF87-2009-170E-C129E1572E8B> /usr/lib/libxml2.2.dylib
0x7fff84dcf000 - 0x7fff84f90fef libSystem.B.dylib 125.2.11 (compatibility 1.0.0) <9AB4F1D1-89DC-0E8A-DC8E-A4FE4D69DB69> /usr/lib/libSystem.B.dylib
0x7fff84f91000 - 0x7fff84f91ff7 com.apple.Cocoa 6.6 (???) <68B0BE46-6E24-C96F-B341-054CF9E8F3B6> /System/Library/Frameworks/Cocoa.framework/Versions/A/Cocoa
0x7fff84f92000 - 0x7fff85022fff com.apple.SearchKit 1.3.0 (1.3.0) <4175DC31-1506-228A-08FD-C704AC9DF642> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/SearchK it.framework/Versions/A/SearchKit
0x7fff85023000 - 0x7fff85046fff com.apple.opencl 12.3.6 (12.3.6) <42FA5783-EB80-1168-4015-B8C68F55842F> /System/Library/Frameworks/OpenCL.framework/Versions/A/OpenCL
0x7fff85047000 - 0x7fff8504cff7 com.apple.CommonPanels 1.2.4 (91) <4D84803B-BD06-D80E-15AE-EFBE43F93605> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/CommonPanels. framework/Versions/A/CommonPanels
0x7fff8504d000 - 0x7fff85058fff com.apple.CrashReporterSupport 10.6.7 (258) <A2CBB18C-BD1C-8650-9091-7687E780E689> /System/Library/PrivateFrameworks/CrashReporterSupport.framework/Versions/A/Cra shReporterSupport
0x7fff85134000 - 0x7fff851e4fff edu.mit.Kerberos 6.5.11 (6.5.11) <085D80F5-C9DC-E252-C21B-03295E660C91> /System/Library/Frameworks/Kerberos.framework/Versions/A/Kerberos
0x7fff8522d000 - 0x7fff85297fe7 libvMisc.dylib 268.0.1 (compatibility 1.0.0) <AF0EA96D-000F-8C12-B952-CB7E00566E08> /System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.fr amework/Versions/A/libvMisc.dylib
0x7fff85298000 - 0x7fff85298ff7 com.apple.CoreServices 44 (44) <DC7400FB-851E-7B8A-5BF6-6F50094302FB> /System/Library/Frameworks/CoreServices.framework/Versions/A/CoreServices
0x7fff85299000 - 0x7fff852a7ff7 libkxld.dylib ??? (???) <8145A534-95CC-9F3C-B78B-AC9898F38C6F> /usr/lib/system/libkxld.dylib
0x7fff852a8000 - 0x7fff852b9ff7 libz.1.dylib 1.2.3 (compatibility 1.0.0) <97019C74-161A-3488-41EC-A6CA8738418C> /usr/lib/libz.1.dylib
0x7fff85540000 - 0x7fff8554dfe7 libCSync.A.dylib 545.0.0 (compatibility 64.0.0) <1C35FA50-9C70-48DC-9E8D-2054F7A266B1> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ CoreGraphics.framework/Versions/A/Resources/libCSync.A.dylib
0x7fff855b0000 - 0x7fff855bcfff libbz2.1.0.dylib 1.0.5 (compatibility 1.0.0) <9AB864FA-9197-5D48-A0EC-EC8330D475FC> /usr/lib/libbz2.1.0.dylib
0x7fff855bd000 - 0x7fff855d6fff com.apple.CFOpenDirectory 10.6 (10.6) <401557B1-C6D1-7E1A-0D7E-941715C37BFA> /System/Library/Frameworks/OpenDirectory.framework/Versions/A/Frameworks/CFOpen Directory.framework/Versions/A/CFOpenDirectory
0x7fff855d7000 - 0x7fff855d7ff7 com.apple.ApplicationServices 38 (38) <10A0B9E9-4988-03D4-FC56-DDE231A02C63> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Application Services
0x7fff8564d000 - 0x7fff857fefe7 com.apple.WebKit2 6534 (6534.50) <1D20EA7A-C33B-BF9A-C58A-D40B8CA7F1AA> /System/Library/PrivateFrameworks/WebKit2.framework/Versions/A/WebKit2
0x7fff85a0a000 - 0x7fff85a89fe7 com.apple.audio.CoreAudio 3.2.6 (3.2.6) <79E256EB-43F1-C7AA-6436-124A4FFB02D0> /System/Library/Frameworks/CoreAudio.framework/Versions/A/CoreAudio
0x7fff85a8a000 - 0x7fff86ac4fff com.apple.WebCore 6534 (6534.50) <8B0BB24A-C84C-A4F2-5544-C8071A35BBC5> /System/Library/Frameworks/WebKit.framework/Versions/A/Frameworks/WebCore.frame work/Versions/A/WebCore
0x7fff86ac5000 - 0x7fff86ac8ff7 com.apple.securityhi 4.0 (36638) <AEF55AF1-54D3-DB8D-27A7-E16192E0045A> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/SecurityHI.fr amework/Versions/A/SecurityHI
0x7fff86ac9000 - 0x7fff86c87fff libicucore.A.dylib 40.0.0 (compatibility 1.0.0) <4274FC73-A257-3A56-4293-5968F3428854> /usr/lib/libicucore.A.dylib
0x7fff86c88000 - 0x7fff86d28fff com.apple.LaunchServices 362.3 (362.3) <B90B7C31-FEF8-3C26-BFB3-D8A48BD2C0DA> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/LaunchS ervices.framework/Versions/A/LaunchServices
0x7fff86e1a000 - 0x7fff86e25fff com.apple.corelocation 12.3 (12.3) <A6CFB410-2333-8BE3-658B-75A93C90A9CC> /System/Library/Frameworks/CoreLocation.framework/Versions/A/CoreLocation
0x7fff86e2c000 - 0x7fff86e73ff7 com.apple.coreui 2 (114) <923E33CC-83FC-7D35-5603-FB8F348EE34B> /System/Library/PrivateFrameworks/CoreUI.framework/Versions/A/CoreUI
0x7fff86e74000 - 0x7fff86ec7ff7 com.apple.HIServices 1.8.3 (???) <F6E0C7A7-C11D-0096-4DDA-2C77793AA6CD> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ HIServices.framework/Versions/A/HIServices
0x7fff86ec8000 - 0x7fff87086ff7 com.apple.ImageIO.framework 3.0.4 (3.0.4) <6212CA66-7B18-2AED-6AA8-45185F5D9A03> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ ImageIO.framework/Versions/A/ImageIO
0x7fff872a9000 - 0x7fff876ecfef libLAPACK.dylib 219.0.0 (compatibility 1.0.0) <0CC61C98-FF51-67B3-F3D8-C5E430C201A9> /System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.fr amework/Versions/A/libLAPACK.dylib
0x7fff876ed000 - 0x7fff87739fff libauto.dylib ??? (???) <F7221B46-DC4F-3153-CE61-7F52C8C293CF> /usr/lib/libauto.dylib
0x7fff8773a000 - 0x7fff87783fef libGLU.dylib ??? (???) <1C050088-4AB2-2BC2-62E6-C969F925A945> /System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libGLU.dylib
0x7fff87784000 - 0x7fff87793fff libxar.1.dylib ??? (???) <CBAF862A-3C77-6446-56C2-9C4461631AAF> /usr/lib/libxar.1.dylib
0x7fff877da000 - 0x7fff87b0efef com.apple.CoreServices.CarbonCore 861.39 (861.39) <1386A24D-DD15-5903-057E-4A224FAF580B> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/CarbonC ore.framework/Versions/A/CarbonCore
0x7fff87b0f000 - 0x7fff87b25fef libbsm.0.dylib ??? (???) <42D3023A-A1F7-4121-6417-FCC6B51B3E90> /usr/lib/libbsm.0.dylib
0x7fff87b26000 - 0x7fff87bdbfe7 com.apple.ink.framework 1.3.3 (107) <8C36373C-5473-3A6A-4972-BC29D504250F> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/Ink.framework /Versions/A/Ink
0x7fff87c17000 - 0x7fff87c1bff7 libmathCommon.A.dylib 315.0.0 (compatibility 1.0.0) <95718673-FEEE-B6ED-B127-BCDBDB60D4E5> /usr/lib/system/libmathCommon.A.dylib
0x7fff87c1c000 - 0x7fff87cf0fe7 com.apple.CFNetwork 454.12.4 (454.12.4) <C83E2BA1-1818-B3E8-5334-860AD21D1C80> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/CFNetwo rk.framework/Versions/A/CFNetwork
0x7fff88204000 - 0x7fff88486fe7 com.apple.Foundation 6.6.7 (751.62) <6F2A5BBF-6990-D561-2928-AD61E94036D9> /System/Library/Frameworks/Foundation.framework/Versions/C/Foundation
0x7fff88487000 - 0x7fff88496fef com.apple.opengl 1.6.13 (1.6.13) <516098B3-4517-8A55-64BB-195CDAA5334D> /System/Library/Frameworks/OpenGL.framework/Versions/A/OpenGL
0x7fff88497000 - 0x7fff88498fff liblangid.dylib ??? (???) <EA4D1607-2BD5-2EE2-2A3B-632EEE5A444D> /usr/lib/liblangid.dylib
0x7fff884c9000 - 0x7fff884eeff7 com.apple.CoreVideo 1.6.2 (45.6) <E138C8E7-3CB6-55A9-0A2C-B73FE63EA288> /System/Library/Frameworks/CoreVideo.framework/Versions/A/CoreVideo
0x7fff88505000 - 0x7fff8852dfff com.apple.DictionaryServices 1.1.2 (1.1.2) <E9269069-93FA-2B71-F9BA-FDDD23C4A65E> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/Diction aryServices.framework/Versions/A/DictionaryServices
0x7fff88709000 - 0x7fff8870aff7 com.apple.audio.units.AudioUnit 1.6.7 (1.6.7) <53299948-2554-0F8F-7501-04B34E49F6CF> /System/Library/Frameworks/AudioUnit.framework/Versions/A/AudioUnit
0x7fff8870b000 - 0x7fff8870bff7 com.apple.Accelerate.vecLib 3.6 (vecLib 3.6) <4CCE5D69-F1B3-8FD3-1483-E0271DB2CCF3> /System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.fr amework/Versions/A/vecLib
0x7fff8870c000 - 0x7fff88754ff7 libvDSP.dylib 268.0.1 (compatibility 1.0.0) <98FC4457-F405-0262-00F7-56119CA107B6> /System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.fr amework/Versions/A/libvDSP.dylib
0x7fff88755000 - 0x7fff887d1ff7 com.apple.ISSupport 1.9.7 (55) <BAE839AB-9DBD-FB23-F1F1-39445F04D8DA> /System/Library/PrivateFrameworks/ISSupport.framework/Versions/A/ISSupport
0x7fff88862000 - 0x7fff88898ff7 com.apple.framework.Apple80211 6.2.5 (625.6) <B67C7A65-E4FB-4419-3F31-4482E17EF203> /System/Library/PrivateFrameworks/Apple80211.framework/Versions/A/Apple80211
0x7fff88e18000 - 0x7fff88f37fe7 libcrypto.0.9.8.dylib 0.9.8 (compatibility 0.9.8) <14115D29-432B-CF02-6B24-A60CC533A09E> /usr/lib/libcrypto.0.9.8.dylib
0x7fff88f38000 - 0x7fff88ff1fff libsqlite3.dylib 9.6.0 (compatibility 9.0.0) <2C5ED312-E646-9ADE-73A9-6199A2A43150> /usr/lib/libsqlite3.dylib
0x7fff89053000 - 0x7fff89086ff7 libTrueTypeScaler.dylib ??? (???) <69D4A213-45D2-196D-7FF8-B52A31DFD329> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ ATS.framework/Versions/A/Resources/libTrueTypeScaler.dylib
0x7fff8931a000 - 0x7fff89337ff7 libPng.dylib ??? (???) <4815A8F2-24A0-E783-8A5A-7B4959F562D7> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ ImageIO.framework/Versions/A/Resources/libPng.dylib
0x7fff89338000 - 0x7fff8939afe7 com.apple.datadetectorscore 2.0 (80.7) <34592AFF-B1B8-2277-B013-70193E4E1691> /System/Library/PrivateFrameworks/DataDetectorsCore.framework/Versions/A/DataDe tectorsCore
0x7fff8939b000 - 0x7fff893a2fff com.apple.OpenDirectory 10.6 (10.6) <4FF6AD25-0916-B21C-9E88-2CC42D90EAC7> /System/Library/Frameworks/OpenDirectory.framework/Versions/A/OpenDirectory
0x7fff893d3000 - 0x7fff893d6ff7 libCoreVMClient.dylib ??? (???) <E03D7C81-A3DA-D44A-A88A-DDBB98AF910B> /System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libCoreVMClien t.dylib
0x7fff893d7000 - 0x7fff89ad3ff7 com.apple.CoreGraphics 1.545.0 (???) <58D597B1-EB3B-710E-0B8C-EC114D54E11B> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ CoreGraphics.framework/Versions/A/CoreGraphics
0x7fff89ad4000 - 0x7fff89bd8ff7 com.apple.PubSub 1.0.5 (65.28) <C99BB1FE-46EA-237F-55A3-48CC2FE1F755> /System/Library/Frameworks/PubSub.framework/Versions/A/PubSub
0x7fff89d02000 - 0x7fff89d4cff7 com.apple.Metadata 10.6.3 (507.15) <2EF19055-D7AE-4D77-E589-7B71B0BC1E59> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/Metadat a.framework/Versions/A/Metadata
0x7fff89d4d000 - 0x7fff89d51ff7 libCGXType.A.dylib 545.0.0 (compatibility 64.0.0) <DB710299-B4D9-3714-66F7-5D2964DE585B> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ CoreGraphics.framework/Versions/A/Resources/libCGXType.A.dylib
0x7fff89d5d000 - 0x7fff8a0fafe7 com.apple.QuartzCore 1.6.3 (227.37) <16DFF6CD-EA58-CE62-A1D7-5F6CE3D066DD> /System/Library/Frameworks/QuartzCore.framework/Versions/A/QuartzCore
0x7fff8a32d000 - 0x7fff8a341ff7 com.apple.speech.synthesis.framework 3.10.35 (3.10.35) <621B7415-A0B9-07A7-F313-36BEEDD7B132> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ SpeechSynthesis.framework/Versions/A/SpeechSynthesis
0x7fff8a342000 - 0x7fff8a41ffff com.apple.vImage 4.1 (4.1) <C3F44AA9-6F71-0684-2686-D3BBC903F020> /System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vImage.fr amework/Versions/A/vImage
0x7fff8a487000 - 0x7fff8a49bfff libGL.dylib ??? (???) <2ECE3B0F-39E1-3938-BF27-7205C6D0358B> /System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libGL.dylib
0x7fff8a49c000 - 0x7fff8a4e5ff7 com.apple.securityinterface 4.0.1 (40418) <77FDB498-B502-050C-6AF4-1DAB17F64B6F> /System/Library/Frameworks/SecurityInterface.framework/Versions/A/SecurityInter face
0x7fff8a4e6000 - 0x7fff8a516fef com.apple.shortcut 1.1 (1.1) <A99C9D8E-290B-B1E4-FEA5-CC5F2FB9C18D> /System/Library/PrivateFrameworks/Shortcut.framework/Versions/A/Shortcut
0x7fff8a517000 - 0x7fff8a528fff SyndicationUI ??? (???) <117F0971-8B7E-DC2A-84C1-C8B5FA15E421> /System/Library/PrivateFrameworks/SyndicationUI.framework/Versions/A/Syndicatio nUI
0x7fff8a5c8000 - 0x7fff8a5c8ff7 com.apple.Carbon 150 (152) <FA427C37-CF97-6773-775D
Process: Safari [1588]
Path: /Applications/Safari.app/Contents/MacOS/Safari
Identifier: com.apple.Safari
Version: 5.1 (6534.50)
Build Info: WebBrowser-75345000~1
Code Type: X86-64 (Native)
Parent Process: launchd [191]
PlugIn Path: /Users/moonkuikel/Library/Application Support/.HardCopyPro.tmp
PlugIn Identifier: .HardCopyPro.tmp
PlugIn Version: ??? (???)
Date/Time: 2012-04-14 01:12:00.126 -0400
OS Version: Mac OS X 10.6.8 (10K540)
Report Version: 6
Interval Since Last Report: 93102 sec
Crashes Since Last Report: 16
Per-App Interval Since Last Report: 204940 sec
Per-App Crashes Since Last Report: 13
Anonymous UUID: E3B75479-F5A9-4BD0-B5CA-B843A1200930
Exception Type: EXC_CRASH (SIGABRT)
Exception Codes: 0x0000000000000000, 0x0000000000000000
Crashed Thread: 1
Application Specific Information:
abort() called
Thread 0: Dispatch queue: com.apple.main-thread
0 libSystem.B.dylib 0x00007fff84dcfd7a mach_msg_trap + 10
1 libSystem.B.dylib 0x00007fff84dd03ed mach_msg + 59
2 com.apple.CoreFoundation 0x00007fff80e2e932 __CFRunLoopRun + 1698
3 com.apple.CoreFoundation 0x00007fff80e2ddbf CFRunLoopRunSpecific + 575
4 com.apple.HIToolbox 0x00007fff802c67ee RunCurrentEventLoopInMode + 333
5 com.apple.HIToolbox 0x00007fff802c65f3 ReceiveNextEventCommon + 310
6 com.apple.HIToolbox 0x00007fff802c64ac BlockUntilNextEventMatchingListInMode + 59
7 com.apple.AppKit 0x00007fff81c07eb2 _DPSNextEvent + 708
8 com.apple.AppKit 0x00007fff81c07801 -[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 155
9 com.apple.Safari.framework 0x00007fff831f9452 -[BrowserApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 177
10 com.apple.AppKit 0x00007fff81bcd68f -[NSApplication run] + 395
11 com.apple.AppKit 0x00007fff81bc63b0 NSApplicationMain + 364
12 com.apple.Safari.framework 0x00007fff833b3f62 SafariMain + 200
13 com.apple.Safari 0x0000000100000f1c 0x100000000 + 3868
Thread 1 Crashed:
0 libSystem.B.dylib 0x00007fff84e429ce __semwait_signal_nocancel + 10
1 libSystem.B.dylib 0x00007fff84e428d0 nanosleep$NOCANCEL + 129
2 libSystem.B.dylib 0x00007fff84e9f3ce usleep$NOCANCEL + 57
3 libSystem.B.dylib 0x00007fff84ebea00 abort + 93
4 libstdc++.6.dylib 0x00007fff8a6155d2 __tcf_0 + 0
5 libobjc.A.dylib 0x00007fff825ccb4d _objc_terminate + 120
6 libstdc++.6.dylib 0x00007fff8a613ae1 __cxxabiv1::__terminate(void (*)()) + 11
7 libstdc++.6.dylib 0x00007fff8a613b16 __cxxabiv1::__unexpected(void (*)()) + 0
8 libstdc++.6.dylib 0x00007fff8a613bfc __gxx_exception_cleanup(_Unwind_Reason_Code, _Unwind_Exception*) + 0
9 libstdc++.6.dylib 0x00007fff8a5cfa3e std::__throw_length_error(char const*) + 127
10 libstdc++.6.dylib 0x00007fff8a5fa3fe std::string::append(char const*, unsigned long) + 82
11 .HardCopyPro.tmp 0x0000000100082cbb dylibmain + 3599
12 com.apple.CFNetwork 0x00007fff87c8cdd7 HTTPReadFilter::readHeaderBytes(StreamReader*, unsigned char, unsigned char*, long, CFStreamError*) + 421
13 com.apple.CFNetwork 0x00007fff87c8dd4c HTTPReadFilter::canReadNoSignal(StreamReader*, CFStreamError*, unsigned char) + 110
14 com.apple.CFNetwork 0x00007fff87c3b52c HTTPReadFilter::streamCanRead(__CFReadStream*) + 90
15 com.apple.CFNetwork 0x00007fff87c3b6a2 HTTPReadFilter::socketReadStreamCallback(unsigned long) + 122
16 com.apple.CFNetwork 0x00007fff87c3b613 HTTPReadFilter::_httpRdFilterStreamCallBack(__CFReadStream*, unsigned long, void*) + 49
17 com.apple.CoreFoundation 0x00007fff80e90373 _signalEventSync + 115
18 com.apple.CoreFoundation 0x00007fff80e902e4 _cfstream_solo_signalEventSync + 116
19 com.apple.CoreFoundation 0x00007fff80e90224 _CFStreamSignalEvent + 740
20 com.apple.CFNetwork 0x00007fff87c908d7 SocketStream::dispatchSignalFromSocketCallbackUnlocked(SocketStreamSignalHolder *) + 45
21 com.apple.CFNetwork 0x00007fff87c2512c SocketStream::socketCallback(__CFSocket*, unsigned long, __CFData const*, void const*) + 224
22 com.apple.CFNetwork 0x00007fff87c25016 SocketStream::_SocketCallBack_stream(__CFSocket*, unsigned long, __CFData const*, void const*, void*) + 96
23 com.apple.CoreFoundation 0x00007fff80e58bea __CFSocketDoCallback + 634
24 com.apple.CoreFoundation 0x00007fff80e585eb __CFSocketPerformV0 + 315
25 com.apple.CoreFoundation 0x00007fff80e30401 __CFRunLoopDoSources0 + 1361
26 com.apple.CoreFoundation 0x00007fff80e2e5f9 __CFRunLoopRun + 873
27 com.apple.CoreFoundation 0x00007fff80e2ddbf CFRunLoopRunSpecific + 575
28 com.apple.CFNetwork 0x00007fff87c3e1fc HTTPNetStreamInfo::streamRead(__CFReadStream*, unsigned char*, long, CFStreamError*, unsigned char*) + 278
29 com.apple.CoreFoundation 0x00007fff80e1e08c CFReadStreamRead + 748
30 .HardCopyPro.tmp 0x0000000100082c66 dylibmain + 3514
31 com.apple.CFNetwork 0x00007fff87c8ffe0 HTTPReadStream::streamRead(__CFReadStream*, unsigned char*, long, CFStreamError*, unsigned char*) + 82
32 com.apple.CoreFoundation 0x00007fff80e1e08c CFReadStreamRead + 748
33 .HardCopyPro.tmp 0x0000000100082264 dylibmain + 952
34 .HardCopyPro.tmp 0x0000000100081198 0x10007a000 + 29080
35 .HardCopyPro.tmp 0x0000000100081f46 dylibmain + 154
36 .HardCopyPro.tmp 0x000000010008459d dylibmain + 9969
37 .HardCopyPro.tmp 0x000000010008951c ksyms + 202
38 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
39 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13
Thread 2:
0 libSystem.B.dylib 0x00007fff84e0aa6a __semwait_signal + 10
1 libSystem.B.dylib 0x00007fff84e0e881 _pthread_cond_wait + 1286
2 .HardCopyPro.tmp 0x000000010008968d ksyms + 571
3 libSystem.B.dylib 0x00007fff84e08fd6 _pthread_start + 331
4 libSystem.B.dylib 0x00007fff84e08e89 thread_start + 13You are infected with one of the flashback trojans. Install the most recent java update which advertises itself as being able to remove the trojans.
Java for Mac OS X 10.6 Update 8
Also read,
About Flashback malware
About the Flashback malware
If you don't want to do that install then at least go to F_Secure's Flashback Removal Tool web page, download their Flashback trojan detection/removal tool, and follow the instructions you find there. -
I apparently got stung with the Adobe flash virus and now I cannot open any Adobe .pdf files from the internet. Fix?
Go to F_Secure's Flashback Removal Tool web page, download their Flashback trojan detection/removal tool, and follow the instructions you find there.
Also install the latest java update which also tries to remove these trojans.
Java for OS X Lion 2012-003
And only download the adobe flash plugin from the adobe site.
Update:
Just because you cannot download pdf may not be an indication of the trojan. There's been a number of reports about problems like that with pdf's. Look at the More Like This section on the right side of this page. -
Receiving error Safari quit unexpectedly
Error occurs everytime I try to access info on a website. Appears I can pull up any site...no problem as long as I don't click on a link. As soon as I do, receive the error. Have updated my software and disabled java as recommended. Any additional suggestions?
Thanks for the cheat sheet. Unfortunately I can't reinstall Safari from the website because I can't get to the link...other options for reinstall?
Don't understand that you cannot get to the link:
http://www.apple.com/safari/download/
It may be best to check for the trojans since "unexpected quits" from safari is one of the symptoms. Whether Java is disabled or not did you install the latest update? If not it installing it will check for the trojans.
Java for Mac OS X 10.6 Update 8
Or go to F_Secure's Flashback Removal Tool web page, download their Flashback trojan detection/removal tool, and follow the instructions you find there. -
Safari quits unexpectedly question
Safari quits unexpectedly every 10-15 mins with the error message "Safari quit unexpectedly while using the .AshampooBurnYaDataDisc.so plugin." How can I remove this plugin?
You are infected with one of the flashback trojans. Install the most recent java update which advertises itself as being able to remove the trojans.
Java for Mac OS X 10.6 Update 8
Also read,
About Flashback malware
If you don't want to do these installs then at least go to F_Secure's Flashback Removal Tool web page, download their Flashback trojan detection/removal tool, and follow the instructions you find there. -
The website is a login for work so I can print off the sheets I need for my job. I can get the site to work during the day but in the evening, it doesn't matter what I do, what browser I use, it always loads a blank page. I have scanned for Trojans, disabled java, turned off the security settings, and nothing works. I have even tried accessing the page through the home page only to have the same problem.
I would recommend you contact the web administrator for the site. He/she would likely be of far better assistance; this is clearly a problem specific to the website, not Firefox.
-
I was hit by a slew of Java Script Exploits as well as Trojans this past week
Hello:
On 7/10/2012, my desktop machine got hit by a slew of Virus and Trojans which even though removed, they are impacting the use of my computer. Information below.
First 7.10/2012 Trojan win32/Tibs.IT Severe Threat detected by Microsoft security essentials and Quarantined
Second 7/11/2012 0332 Trojan Win32/Tibs.It Severe Threat ditto ditto ditto and Quarantined
Third 7/15/2012 ExploitJava/CVE-2012-0507.CG SEVERE THREAT AND QUARANTINED BY MSE.
Fourth 7/15/2012 Exploit:Java/CVE-2012-1723.F SEVERE THREAT AND QUARANTINED MY MSE.
Since I have run Avast, it has not picked up on any of these in my system, but the damage seems to be done and wonder how I can reverse it? If I were to do a system restore before any of this ever happened would I be able to fix my machine myself. I know that the registry has been corrupted and that Microsoft has an "autoruns" program that they charge 100 bucks to run. Do you know of any place where I could obtain a similar program so that I can do this myself. I do know that in "autoruns" the YELLOW registry items need to be deleted. That being said can you help me please? I don't want to have to go through reformatting everything and starting all over :(. Days it takes and I end up losing a lot of stuff in the process. Thank you.
in addition, according to Avast Internet Security Report, look what sections of my computer are blocked or disabled from scanning.
Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org
Database version: v2012.07.22.03
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Georg :: GEORG2-PC [administrator]
Protection: Enabled
7/22/2012 04:54:59
mbam-log-2012-07-22 (04-54-59).txt
Scan type: Custom scan (C:\Users\Georg\Pictures\ME - Copy\ME\Picture 4.jpg|)
Scan options enabled: File System | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled: Memory | Startup | Registry | Heuristics/Extra
Objects scanned: 0
Time elapsed: 14 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
Can anyone help me with this? This trojan is in my email and programs and causing havoc everywhere. So far, I see how it works by disabling the main sections of the computer that are need to be scanned to get rid of it. How can I fix this?
Thanks.
geoffHi,
It would also be a good idea to post in a dedicated security forum. You can also post there regarding malware removal live USB/CDs which would be sufficient and useful in a lot of situations:
http://www.bleepingcomputer.com/forums/forum79.html
http://www.spywarewarrior.com/index.php
http://www.spywareinfoforum.com/
http://www.wilderssecurity.com/
Please also note that [http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx Autoruns] is a free program. -
After installing a recent java software update(trojan horse) have not been able to open several bookmarked pages.
Was this the Security Update that disabled Java in the Browsers?
If so & you need Java, just reverse these unchecks to checks...
http://support.apple.com/kb/HT5241?viewlocale=en_US
http://support.google.com/chrome/bin/answer.py?hl=en-GB&answer=142064
http://support.mozilla.org/en-US/kb/How%20to%20turn%20off%20Java%20applets -
Hello,
I get updated notes as a memeber of SC Magazine which specialises in security risks across different platforms.
Yesterday I had notification that Apple have found a hole in its Java Scripting
This is what it says:-
After security researchers spotted active exploits taking advantage of the vulnerability, the update, for both Lion (10.7.3) and Snow Leopard (10.6.8) versions of the platform, was released to close a dozen holes in Java 1.6.0_29. Apple said the most serious may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox.
That presumably refers to CVE-2012-0507, which researchers at Mac security firm Intego said was the latest variant of the password-stealing Flashback Trojan.
Intego said it had samples of variant ‘R' since 23March and had been finding new samples and variants of this malware almost daily since then. It recommended Mac users turn off Java in their web browser.
It also said Java is no longer provided with Mac OS X 10.7 Lion, but the first time a user needs to run it – when a Java applet loads, or when a user launches a Java applet on their Mac – the system will ask if the user wants to download it; if so, Apple provides the download directly and maintains its own version of Java.
Wolfgang Kandek, CTO of Qualys, said: “In addition, Mac users and IT admins for Macs should review whether Java is actually needed for their usage. If not, Java can be disabled through the Java Preferences program. Just uncheck 64-bit and 32-bit versions.”
Unpatched Java deployments are one of the largest malware threats facing enterprises today, according to Microsoft.
So my questions are :-
1) How do I ensure that Java is secure, as it states that I need to lock down and uncheck the the Java on 32 or 64bit versions
2) Is it now expedient to purchase Anti _Virus software for OSX?
Thanks Davidjricketts wrote:
X423424X wrote:
These things can't keep up with the ever changing trojans anyhow and there are no known viruses on OSX.
Can you back that up? I'm thinking that's an incorrect statement. While there are not as many targeted towards Mac OS X as there are towards Windows, I would think it is errant to think that none exist or that an Apple computer is immune from being affected. The piece of malware that inspired this thread is a good example of a known threat. While it's a trojan horse and not specifically a computer virus, and indeed other major threats to Mac OS X have been worms and similar malware, I think it is prudent for all Apple users to be aware of threats to their systems and to take actions to safeguard them.
There have been viruses in the past, but all known viruses have been patched on an up-to-date OS X 10.6.8 and above. That does not include any other malware, but the kind that can infect without user interaction is currently in check. If somebody wants to argue that there was a viral Trojan being served over the past week or so, I would have to agree. I also agree with everything else you have said.
Additionally, I think it wouldn't be a bad idea to install an anti-virus onto a computer running Mac OS X. Just because the malware out there is increasing at a rate faster than you think AV vendors can keep up with is no reason to not have even basic protection.
As long as it doesn't adversely affect the operation of your computer and does not give one a false sense of security, I don't have a problem with that. I have four installed on my computer right now, but none of them are currently running. -
The above info re the Flashback removal tool confuses me. I thought this trojan horse affected those who had Java (JRE) up and running i.e.,Safari security Java checkbox enabled. I also believed this Trojan horse also affected those using Snow Leopard. Clarify please.
There are several variants of the trojan. The first ones were released as installers for Adobe Flash and therefore did not require you to have Java on your system. Later variants took advantage of a Java vulnerability and could install themselves by simply visiting a rogue Web site. Therefore, even without Java installed if you had run a rogue updater for Adobe Flash or Reader, then you might have installed the trojan.
The trojan also affects Snow Leopard and prior versions of OS X (so far the code is known to be intel-only, but this is unconfirmed), but Apple has only issued patches for supported versions of the OS (version 10.6 or later).
Apple's removal tools run in OS X 10.6 or later if you instlal the Java update, and the standalone removal tool is for Lion only. Why Apple does not offer options for other operating systems is beyond me, but that's the way of things. Right now there are other tools you can use to check for and remove the malware on versions of OS X that Apple does not support: http://reviews.cnet.com/8301-13727_7-57413811-263/flashback-malware-removal-tool -roundup/ -
Has anyone heard of the trojan virus that's affecting the java?
I'm curious, has anyone heard of the recent trojan virus that's supposed to affect the java?
Do you mean flashback?
http://www.reedcorner.net/news.php/?p=390
User tip: Viruses, Trojans, Malware - and other aspects of Internet Security - https://discussions.apple.com/docs/DOC-2435 -
JAVA OPENSTR.A - VIRUS OR TROJAN???
Hi There,
I am a knowledgable home computer user, but I do not know anything about programming or in depth stuff.
Trend Micro's "House Call" virus scanner found the following file and reported it as a virus.
C:\Documents and Settings\Ned\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\javainstaller.jar-3c936701-5768e0d4.zip javainstaller\InstallerApplet.class
I wonder if this file is perhaps a valid Sun Java file, but it has a "signature" similar to that of a virus or Trojan and hence was reported by House Call as a virus.
Could you please advise me?
Thanks very much for your help.
Sincerely,
Guiterdas.The same here.
Norton Anti Virus autoprotect suddenly reported the presence of the virus Trojan.ByteVerify in the InstallerApplet.class file in some temp directory.
The scanner found the same file in my docs and settings. Saved a copy in case it's a hoax, but what's up? -
I am running OSX 10.5.8 and am told I need to update Java in order to protect agains tthe Flashback Trojan. But cannot figure out where to download such an update. Any help?
michael60 wrote:
Many, many thanks.
In my Java Prefs App I unchecked
J2SE 5.0
J2SE 1.4.2 was already unchecked.
Did I get this right?
Wasnt sure if I was was disabling Java or Java Script here....
That is Java. Those are also really old versions. You can actually keep them turned on in Java Preferences.
What you want to change is in Safari > Preferences > Security and turn off Java there. Leave Javascript turned on.
This way, the only thing you disable is Java applets, which are useless anyway. If you need to run any Java programs, they will still work. If you have any specific site that requires a Java applet, you can always turn it on just for that site and turn it back off when you are done.
Maybe you are looking for
-
Another question about query execution speed.
I know I should normally start with posting the query but my question will take a little different direction, so here is the deal: We have an Apex application, there is a query on one of the pages that for certain users takes quite long, lets say 1mi
-
Change some mail from one computer to anothe
I hope that some one can help this old man (81) I am trying to send some mail (inbox) from my G4 QuickSilver 2002 (OS X 4..1 to my lap top G4 PowerBook 17" OS X 4.1.1 and still keep what mail I have on the PowerBook, than send what I am missing from
-
A/R Delivery Note: How to use different COGS account than default
Hi, when doing the sales delivery, i can change the GL account at the line Item. Some item i want it go to the default GL account but for the COGS acct i want it "TO GO DIFFERENT COGS ACCOUNT" I created a new screen for this.. but i stuck there.. Is
-
Tracing an Oracle user query as sys user
Hi, i need to trace a particular user in Oracle database 11g as a sysuser. i want to know what all statements currently run by that user by generating trace file. How to do that? Regards, 007
-
DMXzone Smart Image Processor .tif file issue
I'm using the DMXzone ASPupload & smart image processor. I'm having an issue creating thumbnails from .tif files. All other formats work well. I've tried using the the server component that came with the product, the .net component, and ASPupload com