New To Mac-Forums?

Welcome to our community! Join the discussion today by registering your FREE account. If you have any problems with the registration process, please contact us!

Get your questions answered by community gurus Advice and insight from world-class Apple enthusiasts Exclusive access to members-only contests, giveaways and deals

Join today!

 
Start a Discussion
 

Mac-Forums Brief

Subscribe to Mac-Forums Brief to receive special offers from Mac-Forums partners and sponsors

Join the conversation RSS
OS X - Operating System General OS operation information and support

MacBook - Trojan Horse Warning


Post Reply New Thread Subscribe

 
Thread Tools
Gargantua

 
Member Since: Aug 12, 2007
Location: Chicagoland
Posts: 37
Gargantua is on a distinguished road
Mac Specs: White Macbook 2.16ghz

Gargantua is offline
I was surfing around about 10 minutes ago and got this weird page that came up and looks just like MY COMPUTER on a Windows machine. It indicated that I had all sorts of trojan.download viruses on various drives. A dialog box came up with the Safari logo saying that I needed to go to a site to download malware protection.

screen-capture.png

Then this box:

screen-capture-1.png

I immediately went to Mac support and saw that this program was recommended. I went to the site and began a download:
screen-capture-2.png

During the download I looked around some more and found a thread on Apple Support where people were saying that it is not an issue and not to worry about it. I'm confused. I stopped the download but now I'm not sure that the site I was downloading from was legit. Can anyone straighten this out for me? I've had this MacBook for over 1.5 years and never a problem. Also, I don't know if it matters, but I had my brothers Western Digital 320GB external drive plugged into mine and was looking thru his iTunes library. He uses this ext. drive with his iMac though, so its not like it's attached to a PC or something.... Very strange.
QUOTE Thanks
Gargantua

 
Member Since: Aug 12, 2007
Location: Chicagoland
Posts: 37
Gargantua is on a distinguished road
Mac Specs: White Macbook 2.16ghz

Gargantua is offline
Here is the page from Apple Support I was referring to:

Apple - Support - Discussions - Virus ...
QUOTE Thanks
louishen

 
louishen's Avatar
 
Member Since: Oct 22, 2007
Location: London
Posts: 8,931
louishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant future
Mac Specs: Mac Mini Core i7 2012 | White 2009 MacBook 2 Ghz | 733 Mhz G4 Quicksilver

louishen is offline
Its some windows security software that is really a trojan, look how it poped up false windows XP alerts, the whole thing is engineered to get you to download AntiVirus 360 - which is itself a piece of malware

Ignore the fake scan and its alerts that OS X has somehow been infected (with windows malware???)

You are not infected and do not need MacScan (which is legit software but not needed at this point)

Never download software from untrusted sites, and never believe those virus scan sites, it is not possible to remotely scan your computers hard drive from a webpage

Member of the Month September 2008 & August 2012 | Found advice useful? use the rep system
QUOTE Thanks
Gargantua

 
Member Since: Aug 12, 2007
Location: Chicagoland
Posts: 37
Gargantua is on a distinguished road
Mac Specs: White Macbook 2.16ghz

Gargantua is offline
Whew. Ok. I knew something just didn't look right. So as far as cutting out the MacScan download half way thru I should be ok? This is strange because I don't remember what site I was at but it wasn't something I would typically associate with Malware or Spyware (like porn).
QUOTE Thanks
louishen

 
louishen's Avatar
 
Member Since: Oct 22, 2007
Location: London
Posts: 8,931
louishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant future
Mac Specs: Mac Mini Core i7 2012 | White 2009 MacBook 2 Ghz | 733 Mhz G4 Quicksilver

louishen is offline
Also, notice the poor English on their site, (and in the dialogues) a sure sign of scammers

Member of the Month September 2008 & August 2012 | Found advice useful? use the rep system
QUOTE Thanks
Gargantua

 
Member Since: Aug 12, 2007
Location: Chicagoland
Posts: 37
Gargantua is on a distinguished road
Mac Specs: White Macbook 2.16ghz

Gargantua is offline
A few other things tipped me off: notice how the address in the address bar states "promo" and the bad grammar in the first screenshot dialog box "They can cause data loss and file DAMAGES and need to be CURED..." Rather tortured syntax.
QUOTE Thanks
Gargantua

 
Member Since: Aug 12, 2007
Location: Chicagoland
Posts: 37
Gargantua is on a distinguished road
Mac Specs: White Macbook 2.16ghz

Gargantua is offline
Sorry, looks like we were both thinking the same thing at the same time! Long and short: should I be looking to change passwords or should I do any sort of scan on my drives to be sure there is no problem?
QUOTE Thanks
Gargantua

 
Member Since: Aug 12, 2007
Location: Chicagoland
Posts: 37
Gargantua is on a distinguished road
Mac Specs: White Macbook 2.16ghz

Gargantua is offline
Don't leave me hanging guys! I'm still just trying to make sure that there are no other preventative measures I should be taking like scanning my drives or something.
QUOTE Thanks
bobtomay

 
bobtomay's Avatar
 
Member Since: Dec 22, 2006
Location: Texas, where else?
Posts: 24,993
bobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond repute
Mac Specs: 15" MBP 2.33 C2D 256 4GB, MBA 13" i7 1.8, MB 2.0 2GB, Nano 4th, 3GS, iPad 1

bobtomay is offline
edit:

Quote:
Ignore the fake scan and its alerts that OS X has somehow been infected (with windows malware???)

You are not infected and do not need MacScan (which is legit software but not needed at this point)
louishen has already gotten it right - not sure how much reassurances you need.

If you need to appease your own mind, download ClamXav.

I cannot be held responsible for the things that come out of my mouth.
In the Windows world, most everything folks don't understand is called a virus.
QUOTE Thanks
scathe

 
scathe's Avatar
 
Member Since: Jan 12, 2009
Location: Prague, Czech Republic
Posts: 1,096
scathe is a jewel in the roughscathe is a jewel in the rough
Mac Specs: 2,4Ghz 15" unibody

scathe is offline
funny what these people won't think about, many Windows users will fall for that without noticing anything strange
QUOTE Thanks
dtravis7

 
dtravis7's Avatar
 
Member Since: Jan 04, 2005
Location: Modesto, Ca.
Posts: 27,475
dtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond repute
Mac Specs: iMac 2.4 C2D 10.9.4, iMac 2.16 C2d 10.6.8, Macbook2007 10.8.4, Mac Mini 10.8.4, iPhone 3GS Note 8!!

dtravis7 is offline
Quote:
Originally Posted by scathe View Post
funny what these people won't think about, many Windows users will fall for that without noticing anything strange

Very true and many do who's systems I later repair.

Mac users though take note, look at the hard drives, C, D. OSX does not use Drive letters. OSX does not have a registry to scan either which most of those fake online scanning things show.
QUOTE Thanks
bobtomay

 
bobtomay's Avatar
 
Member Since: Dec 22, 2006
Location: Texas, where else?
Posts: 24,993
bobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond repute
Mac Specs: 15" MBP 2.33 C2D 256 4GB, MBA 13" i7 1.8, MB 2.0 2GB, Nano 4th, 3GS, iPad 1

bobtomay is offline
The last tech support call I got, a friend 'A' had another friend 'B' over.
Last time I fixed A's machine, I put on AVG and had Spybot's Teatimer running on it.

Well, 'B' had never heard of AVG and decided that 'A' needed Norton on his machine. So now he's got 2 anti-virus apps running. 'B' had gone mucking about in the Norton settings and now 'A' had no internet connection. He had Norton setup so good, they couldn't even access the router.

He wanted me to fix Norton. Told him I hadn't used Norton in maybe 10 years, but yeah, I'd fix it all right. Had him remove it and then proclaimed "all fixed".

I cannot be held responsible for the things that come out of my mouth.
In the Windows world, most everything folks don't understand is called a virus.
QUOTE Thanks
Gargantua

 
Member Since: Aug 12, 2007
Location: Chicagoland
Posts: 37
Gargantua is on a distinguished road
Mac Specs: White Macbook 2.16ghz

Gargantua is offline
Ok, thanks guys. REALLY appreciated. This is all good info to have.
QUOTE Thanks
louishen

 
louishen's Avatar
 
Member Since: Oct 22, 2007
Location: London
Posts: 8,931
louishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant futurelouishen has a brilliant future
Mac Specs: Mac Mini Core i7 2012 | White 2009 MacBook 2 Ghz | 733 Mhz G4 Quicksilver

louishen is offline
apparently, that is a member of a whole family of fake anti malware apps out there, their main purpose is to extract your money (and probably credit card details)

MS Antivirus - Wikipedia, the free encyclopedia

Member of the Month September 2008 & August 2012 | Found advice useful? use the rep system
QUOTE Thanks

Post Reply New Thread Subscribe


« How to Keep Installed Programs on Macbook | DSL suddenly not working on Mac, Working fine on Windows »
Thread Tools

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off
Forum Jump

Similar Threads
Thread
Thread Starter
Forum
Replies
Last Post
Mac Trojan Horse found in pirated copies of iWork '09 cwa107 Apple Rumors and Reports 33 02-24-2009 06:00 PM
Trojan Horse warning!!!! Kilted1 OS X - Operating System 37 07-15-2008 07:48 PM
first mac , i'm not pleased lilmill Switcher Hangout 34 12-17-2007 09:05 PM
error message during weekly maintenance ajresovsky Schweb's Lounge 0 06-18-2006 05:11 PM
Intego warns of first Mac OS X Trojan Horse Murlyn OS X - Operating System 38 04-15-2004 10:07 AM

All times are GMT -4. The time now is 03:42 AM.

Powered by vBulletin
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
X

Welcome to Mac-Forums.com

Create your username to jump into the discussion!

New members like you have made this community the ultimate source for your Mac since 2003!


(4 digit year)

Already a member?