Viruses On Os X

Yet another reason to have Little Snitch.

--J.D.

P.S. Though one of the commentators to that article posted states:

kirkmc: I've read that Little Snitch can't detect this, because the packets aren't the kind it detects. (I don't have Little Snitch and can't test it, but have read this on several forums.)
Click to expand...

Baby3.gif


Very good comments--particularly with the hijack of your computer to take part in DOS attacks. This is how these [CENSORED--Ed.] make their money--not by seeing if you have goat porn on your hard drive!--by making you part of their "bot-net." This is something that really affects PC users, and it is affecting Macs as well.
 
Last edited:
Dens,

It is possible that your system is infected by the OSX.RSPlug.A trojan, a DNS changing Trojan horse as Dr. X mentioned. My suggestion is to Google for "DNS change Trojan os x". One of the first (or the first) entries is a Macworld article about the Trojan and how to get rid of it. Unfortunately, the directions are a bit technical. Let us know if you have further questions.

If you do suspect you have the trojan, don't type in your credit card or visit banking sites until you get rid of it. Better safe than sorry, right?

Bot
 
Thanks for all this. I am a bit mystified since I have not downloaded anything or given the admin password to anything. I have a problem in accessing the network in system prefs since it is this page which has the drop down telling me that it has been changed by an application.
Since writing this I have run DNS changer tool scan & it came up with nothing. Any more ideas? Thanks.
 
Last edited:
dens said:
Thanks for all this. I am a bit mystified since I have not downloaded anything or given the admin password to anything. I have a problem in accessing the network in system prefs since it is this page which has the drop down telling me that it has been changed by an application.
Since writing this I have run DNS changer tool scan & it came up with nothing. Any more ideas? Thanks.
Click to expand...

Well did you pirated iWork and get that brand new Trojan? Did you read the article and check yet?
 
Satcomer said:
Well did you pirated iWork and get that brand new Trojan? Did you read the article and check yet?
Click to expand...

050317_steroid_hmed1p.hmedium.jpg


"Mr. Satcomer? I'm not here to talk about the past."

:)

I am "glad" this information is coming out. I do not claim to be a Guru in computer security [He thinks his computer has little piXies running it.--Ed.] but I heard a few rumors about a year ago when I lurked on some boards regarding things like "Storm" and other attacks. Interesting stuff that is probably not new to Gurus. A PC Guru mentioned that Macs had been part of the "botnet" during one of our discussions on this very subject of vira, PCs, Mac, and all of that.

Said Guru and other PC-ers would rant about how much of the DNS attacks from "Vlads" and the like were the result of end-users simply not taking precautions. As a Happy Mac User [Tm.--Ed.] I could sit smug to some extent, though I figured it was a mere matter of time. Vira are one thing; Trojans another.

Not to sound "panic" but if Vlads can attach this to pirated software, they can conceivably attach it to others. Granted, they are more likely to keep up distribution on the "darker side of the net"--not like it is going to be attached to your "Flip4Mac" download or downloads from other reputable places.

A warning to be safe.

--J.D.
 
No, have not downloaded any pirated editions. Have noticed that when opening an emailed attachment (newsletter) that the icon has some text (not sharp enough to read properly) about a boy & a small coloured pic of child in lower RH corner. Is this relevant to a specific virus/trojan/whatever? Dennis.
 
Simpy do a Cmd-Shift-4 which will save a picture of the selected area to the Desktop folder. You can upload the picture to the thread.
 
Fryke,
OK, I'm thick. I can get a snapshot on to the Desktop, but do not know how to upload to the thread. Thanks. Dennis.
 
Don't post a quick reply, instead click on "Go Advanced". There you can "Manage Attachments". Just try it.
 
frike,
I have tried that twice, but when I try to download the snapshots the display says please wait & nothing appears to be happening. Thanks for your patience I guess I''ll just have to give up live with the problem. Dennis.
 
So, anyway, it is quite unlikely your system has been compromised by malware. There's just not enough of it out there. Tom's Hardware wrote that there are only about 200 pieces of malware out there for OS X. I don't know where they got that number. Perhaps they're counting the old "classic" Mac viruses that don't affect OS X.

The number as I have been keeping track is surely a dozen or less. There have been claims of spyware, but no firm documentation that I've seen. That's why I think MacScan is nutters.

Bot
Mac Fanbot
 
ex2bot,
Thanks. On MacFixit someone has suggested my problem has arisen from downloading an Apple Security update. I think I have 'fixed' it, at least so long as I keep the padlock closed! Sad if true.
 
You must log in or register to reply here.
Back
Top