1 2 Previous Next 16 Replies Latest reply: May 7, 2012 10:53 AM by 2rodee
Illtown Level 1 Level 1 (0 points)

I have this auto updater popping-up on start-up for Adobe Acrobat. Looks like this trojan worm.

 

How do I get rid of it?

 

I've clicked on 'no' to update whenever it pops up.

 

Will it infiltrate my system eventually?

 

Thx


PowerMac, Mac OS X (10.5.8), Quad-Core Intel Xeon 2 x 2.8 GHz
  • 1. Re: Is there a security fix or update for 10.5.8?
    Linc Davis Level 10 Level 10 (118,415 points)

    You may be infected with the Flashback malware. It takes advantage of a defect in the Java web plugin to install itself when you visit a contaminated website. No fix is available from Apple for your obsolete version of the Mac OS. If you are infected, you may be able to clear the infection by running the removal tool developed by a third party:

     

    Flashback Removal Tool - F-Secure

     

    Back up all data before you take this step. If the tool detects and removes the malware, change every Internet password you have, starting with banking passwords, and check all financial accounts for unauthorized transactions.

     

    Disable Java (not JavaScript) in the settings of all your web browsers, and leave it disabled as long as you're running Mac OS 10.5.x. To disable Java in Safari, select Safari ▹ Preferences ▹ Security and uncheck the box labeled Enable Java.

  • 2. Re: Is there a security fix or update for 10.5.8?
    MrHoffman Level 6 Level 6 (12,470 points)

    That could well be a legitimate updater; recent Adobe Flash Player installations can maintain themselves.  Or it could possibly be some malware, particularly if your system is already somewhat infested.  Go to the Adobe web site, and get the current bits. 

     

    Irrespective of whether or not that's a real Adobe Flash Player update...

     

    If you want Apple software support, upgrade to at least Snow Leopard 10.6.8, if your hardware supports that.

     

    There is no fix available for Leopard 10.5, and whether or not there will be is not known.   (Apple typically only releases fixes for the current and previous releases; that's presently for 10.7 and 10.6.)

     

    Pending any update from Apple, you're left to maintain your own Adobe Flash Player install by accessing and downloading Flash Player updates directly from the Adobe web site (or to entirely remove Adobe Flash Player from your OS X configuration), and also to disable Java access from within all of your web browsers.

  • 3. Re: Is there a security fix or update for 10.5.8?
    2rodee Level 1 Level 1 (15 points)

    I just hate it when an expensive  2-3 year old computer is labeled "obsolete." 

     

    It's not that some of us didn't try to update our OS systems. My iMac froze up almost immediately after installing SL, just trying to get to Lion.  If you know of a fix - I'm all ears. 

     

    What I'm stuck with is an iMac on 10.5.8 that can't be "upgraded" to Lion...  which means no iCloud, which means I have to find alternative ways to sync my MBP, my iphone, and my iPad.  Now there is a virus..  that's just great.   I'd go buy a new MAC, except there are many brand new machines that are freezing up right out of the box.  That worries me..

     

    @Linc and MrHoffman,  I do appreciate the tips you provided.  I'll certainly look into those.

  • 4. Re: Is there a security fix or update for 10.5.8?
    Linc Davis Level 10 Level 10 (118,415 points)

    The computer isn't obsolete; the operating system is. If you had trouble installing an upgrade, you should start a discussion to address it.

  • 5. Re: Is there a security fix or update for 10.5.8?
    WZZZ Level 6 Level 6 (12,225 points)

    Linc Davis wrote:

     

    The computer isn't obsolete; the operating system is. If you had trouble installing an upgrade, you should start a discussion to address it.

     

    Forced obsolescence: that Apple no longer supports 10.5 does not make it "obsolete."

  • 6. Re: Is there a security fix or update for 10.5.8?
    2rodee Level 1 Level 1 (15 points)

    You are correct.  The operating system (Leopard) that came with the 2 year old computer is obsolete.  Bummer for me.

     

    *I* didn't install the new OS.. The Apple store installed Snow Leopard for me (after they replaced the rarely used optical drive.)  There is a 117+ page thread on this already... which I watch hoping that someone has come up with a patch, or a common problem to help identify the problem.

     

    I came to this thread looking for information on the Flashback issue.  I am hoping that my 2 year old obsolete OS system that can't be updated doesn't get a virus..  that's all.   I have since run the utility terminal and determined that I don't have the virus.. at least for now. 

     

    Excuse my crankyiness, but it has been a frustrating  6+ months.   I love my Macs.. I know Apple will get it all worked out. 

  • 7. Re: Is there a security fix or update for 10.5.8?
    twtwtw Level 5 Level 5 (4,690 points)

    1. This is 2012, so a two-year-old iMac would come from 2009/10.  Mountain Lion supports iMacs from mid-2007; Lion from 2006.  What makes you think your machine is not supported?  There's either something you're not telling us or something you don't know. Plus, since you have Snow Leopard, it costs under $30 to upgrade to Lion. In context, that's about what you'd pay these days to treat a date to a decent movie (and if that's all you spent it would be a cheap date). 

     

    2. The solution to the java problem in 10.5.x (or in any version) is simple: turn off Java unless you need it.  You will not notice that it's turned off unless you try to use some third-party java-based app (usually an internet utility going for low-budget cross-platformness) or visit a thoroughly old-school website.

     

    3. It's a trojan, not a virus, which means you can avoid it merely by being careful.  So should all else fail - be careful...

     

    I'm sorry you've been frustrated for 6 months; there's no need for it, because this is not that difficult or urgent a problem. I'm sorry that Leopard is starting to lose support; 10.5 is 5 years old now, and that's venerable for an operating system.  Remember that Leopard was the last OS to support PPCs, and the first to drop classic (OS 9) support, and if you think there weren't people upset at those transitions too, think again.  My apologies on behalf of the world at large, but life is inevitably like that sometimes. 

     

    My advice to you is to throw out your Leopard disks (or put them on the shelf next to your Moody Blues albums, for all the fond memories), skip a date night so you can buy yourself Lion, and then dedicate the next six months to thinking happy thoughts.

  • 8. Re: Is there a security fix or update for 10.5.8?
    2rodee Level 1 Level 1 (15 points)

    @twtwtw - I mean no disrespect to anyone that tries to help us end users with our troubles... NONE.  So please keep that in mind..  This may be a whole different thread..  But like I tried to explain, I was just trying to find out about the virus, which is how I landed here.  

     

    1. This is 2012, so a two-year-old iMac would come from 2009/10.  Mountain Lion supports iMacs from mid-2007; Lion from 2006.  What makes you think your machine is not supported? "No fix is available from Apple for your obsolete version of the Mac OS." from Linc Davis in a previous response... which is what I was referring to. 

     

    There's either something you're not telling us or something you don't know.   ????   What would I not be telling you?  .Plus, since you have Snow Leopard, No, I actually had to go back to  Leopard.. it costs under $30 to upgrade to Lion. In context, that's about what you'd pay these days to treat a date to a decent movie (and if that's all you spent it would be a cheap date). POINT??

     

    2. The solution to the java problem in 10.5.x (or in any version) is simple: turn off Java unless you need it. I only need it for certain programs for work. You will not notice that it's turned off unless you try to use some third-party java-based app (usually an internet utility going for low-budget cross-platformness) or visit a thoroughly old-school website. WHICH, when I  go there it is strictly work related..  NOT blaming Apple.

     

    3. It's a trojan, not a virus, which means you can avoid it merely by being careful.  So should all else fail - be careful... Thanks.. the nicest thing you've said.. all thread.

     

    I'm sorry you've been frustrated for 6 months; there's no need for it, because this is not that difficult or urgent a problem. I don't use my computer to just read emails, or play games and get on Facebook. I run a very successful business, upgraded to Sl hoping to get to Lion... upgraded my Quickbooks ($300+)  Adobe PhotoSho ($$$)  plus purchased and downloaded other business apps anticipating LION.. not to mention numerous Mac computer people hired..and hired an "APPLE GENIUS"  (after hours) to come look at office my setup.. I'm sorry that Leopard is starting to lose support; 10.5 is 5 years old now, and that's venerable for an operating system.  Remember that Leopard was the last OS to support PPCs, and the first to drop classic (OS 9) support, and if you think there weren't people upset at those transitions too, think again.  My apologies on behalf of the world at large, but life is inevitably like that sometimes. ...All of that doesn't fix the fact that a 2 year old OS becomes "obsolete" without an opportunity to update. It's not like I bought a 10 year old computer and am looking for a fix, for God's sake!


     

    My advice to you is to throw out your Leopard disks (or put them on the shelf next to your Moody Blues albums  , for all the fond memories, skip a date night so you can buy yourself Lion, (***?) and then dedicate the next six months to thinking happy thoughts.  

     

    If you are near Dallas Texas, I would invite you to come to my office and help me.  Send me your email addy for my phone number.  I am dead serious.  Somehow my friend, I don't think you would be capable to help.    I want this fixed... As a longtime Apple share holder, I'd like us to never have these issues.


    In case you think I'm kidding about the others that are having problems upgrading to Lion.. read on..

    some computers are brand new, right off the shelf.  What do you make of that?

     

    (Sorry Linc)

     

    https://discussions.apple.com/message/18126498#18126498   

     

    Helen In Texas

  • 9. Re: Is there a security fix or update for 10.5.8?
    twtwtw Level 5 Level 5 (4,690 points)

    Helen, I'm not trying to be mean.  I'm simply pointing out the things I know and the things you haven't told us. 

     

    What I know is that this trojan is not a major threat, and is reasonably easy to defend against even in 10.5.  If you are careful about how you use java, you will not have a problem.

     

    The main thing that you have not told us is why you had to go back to Leopard.  Was Snow Leopard not working on your machine, did you have applications that didn't work under SL (and if so, which?), or was there some other problem?  Your answer to this will be the key to solving your problem, so please be detailed.  It would also be helpful to know the model number of your machine (you can get that from system profiler: 'model identifier' on the hardware overview page).

     

    If I were in Texas I would happily come over and fix things up.  Since it's unlikely you'll fly me out from the west coast, however we'll have to make do here.  Please be patient.

  • 10. Re: Is there a security fix or update for 10.5.8?
    MadMacs0 Level 4 Level 4 (3,735 points)

    2rodee wrote:

     

    I came to this thread looking for information on the Flashback issue.  I am hoping that my 2 year old obsolete OS system that can't be updated doesn't get a virus..  that's all.   I have since run the utility terminal and determined that I don't have the virus.. at least for now.

    I'm not sure what "utility terminal" you used, but there are over two dozen variants of Flashback and none of the lists of terminal commands I've seen will find all of the variants. There are several indicators that Flashback may be present, but again those are somewhat different for most variants. If you have any reason to suspect you may be infected, let us know.

  • 11. Re: Is there a security fix or update for 10.5.8?
    2rodee Level 1 Level 1 (15 points)

    WARNING - THIS RESPONSE IS SORT OF OFF TOPIC BUT A REPLY TO TW.  Sorry.

     

    Thank you..

    Here is what I have:

     

    iMac - 10.5.8  Leopard 

    MacBook Pro - 10.5.8  Leopard

    iPhone 4

    iPad 2

    ScanSnap Scanner (Fujitsu)

    Maxtor 750 HD Backup Drive

    Brother Laser Printer HL 4570 CWL

    HP Printer J6480

    Wireless Router Lincsys E2500

    APC Back-UPS XS 1000

    Mobile Me user for at least 2-3 years, now a limited user because I can't get to Lion.  :-((

    HP Laptop Windows Vista (only for certain work programs)

     

    All Mac data backed up on time machine external HD, Carbonite, Mobile Me/iCloud.  I made a cloned copy and it's on a flash drive.

     

     

     

     

    Model Name:iMac
      Model Identifier:iMac7,1
      Processor Name:Intel Core 2 Duo
      Processor Speed:2 GHz
      Number Of Processors:1
      Total Number Of Cores:2
      L2 Cache:4 MB
      Memory:6 GB
      Bus Speed:800 MHz
      Boot ROM Version:IM71.007A.B03
      SMC Version (system):1.20f4

     

    Leopard trying to get to Lion..  Apple store replaced optical drive and installed Snow Leopard Nov 2011

    Under Snow, iMac froze, crashed, and got hot (top left area.)  For example I would go to the applications folder on the toolbar to open it, when I did that, the display/graphics was messed up - (i.e.  white where it should be black..or just random spots or squares would show up)  The mouse and keyboard would become unresponsive, and the monitor became VERY hot (top left.)  Sometimes I would get a grey screen with white lines in it.  Sometimes the spinning beach ball.

     

    Suggested causes were bad graphics card, permissions, damaged directory, bad logic card, dying hard disk, fan not working, virus,  third party software.. to name a few.  Bought Disk Warrior and fixed a damaged directory (I don't even know how it got damaged..?)

     

    After a month of total frustration.. I moved Snow Leopard to an external drive, then reformated the imac HD and did a clean install of Leopard.  When I boot up in Leopard, no problems at all. 

     

    How could a perfectly performing  iMac start freezing up immediately after the switchover to Snow L.   Then... revert back to it's perfectly flawless self after going back to the original OS?  If it were a hardware issue (graphics card, hard drive, logic card.. etc.) how did that faulty card  "repair" itself?  If a graphics card is broken.. It would stay broken, I would think.  I would be more inclined to think that the "card or ??" couldn't handle the work load of SL.. that's why it gets hot..??? 

     

    Every so often I try to boot up into Snow L and run permissions and updates..  in case there has been a patch/fix.  Not yet, still hopeful. 

     

    As far as Java goes, the Java Plugin Add-On has been blocked by Mozilla - so it is inactive.  But on Firefox preferences, it shows "JavaScript Enabled"  Not sure what the difference is.  Should both be turned off?  Is there an alternative to Java? 

     

    Yeah, my Apple techs here might not appreciate you coming all this way to show them up.  I'm happily gimping along here until I can walk in a store and buy a new machine that will run everything I need.  Right now, that is not the case.  Some people are having my same issues with one week old computers running Lion..  I haven't heard how Mountain Lion is doing.  That may be the ultimate fix.   But you can see, I can't get there from here.

     

    I'm not really looking to fix this computer anymore... I'm just trying to protect it.

     

    Thanks again..

    Helen

  • 12. Re: Is there a security fix or update for 10.5.8?
    2rodee Level 1 Level 1 (15 points)

    Thanks MadMacs0..  I was following instructions on another virus thread.  It had said to go to Utilities, then terminal and type in something.  The advice was from a long time poster here (lots of dots, and a level 7)  LOL!

     

    I did read about going to a free website.. but I don't like going to an outside link for help if I can help it.  I think it was Russian..  No thanks. 

     

    I don't notice any quirks on here, so I doubt I have the virus.  Of course my Windoze associates couldn't wait to tell me that the Mac's had been compromised.   I'm a long time Mac user that catches flack because at our work programs are not Mac friendly....at all.

     

    I'm good for now - Thanks!

  • 13. Re: Is there a security fix or update for 10.5.8?
    twtwtw Level 5 Level 5 (4,690 points)

    Ok, your iMac is a mid-2007 model (it's a 5 year old computer, not 2).  However, purely on specs your mahine ought to handle everything up through Lion, and possibly even Mountain Lion.  The machine is functional under Leopard, so we can rule out intrinsic hardware problems pro tem.

     

    In regards to your symptoms: if I'm understanding your description correctly, it sounds as though the computer boots perfectly fine under Snow.  By that I mean that it gets all the way to the point where you see the desktop and you can navigate with keyboard/mouse to the extent that you can open a folder, and it's only at that point that things start to go sideways.  My next question would be when this behavior happens: when you try to open the application folder? When you try to open a folder from the sidebar? After a certain period of time regardless of what you're doing? Something else?  Knowing that would help narrow things down.

     

    The best explanations for this are (in order of likelyhood):

    1. Incompatable or outdated third-party software.  This may be something hidden away, like preference panes, background applications, device drivers, etc.
    2. The replacement optical drive is misinstalled, defective, or not to spec.  One of the things the system does when it tries to open a new Finder window is check the drives, and if there's something screwy with the optical drive that check could lead to a crash.
    3. A bad or misseated ram stick.  Snow is more ram intensive than Leopard, and bad ram can have al sorts of flakey results.

    The fixes I would try if I were there would be as follows:

    1. Create a fresh partition on an external drive and install a clean version of Snow Leopard, and run Software Update first thing (assuming you can).  If that works smoothly then the problem is almost certainly third-party software; then it's a problem of identifying what software is gumming the works.
    2. Check the optical drive (Disk Burning in system profiler).  It should be a Matshita DVD-R UJ-85J.  Insert a disk and make sure the disk mounts under Leopard. 
    3. Turn off the computer, remove the ram cover, and (gently) take out all the ram sticks then (gently) put them back in in a different order, making sure they are seated properly.  if you have sticks from different manufacturers, note how they are installed and keep sticks of the same kind paired together (that's not urgent; you get some mild performance improvements if logically paired sticks are the same size and speed). 

    I'm banking on #1.  If that works out post back, and we'll do the next step (figuring out the third-party problem).

  • 14. Re: Is there a security fix or update for 10.5.8?
    2rodee Level 1 Level 1 (15 points)

    Hmmm  I bought this computer 3 years ago, in the fall.  I don't know how to check the "real" age.  At the time these problems started.. it was 2 years old to me.  Sorry..

     

    In regards to your symptoms: if I'm understanding your description correctly, it sounds as though the computer boots perfectly fine under Snow.  By that I mean that it gets all the way to the point where you see the desktop and you can navigate with keyboard/mouse to the extent that you can open a folder, and it's only at that point that things start to go sideways.  Correct

    My next question would be when this behavior happens: when you try to open the application folder? THE APPLICATION FOLDER ACTUALLY OPENS, BUT WHEN I ATTEMPT TO SCROLL DOWN TO OPEN A FOLDER THAT DEEPER, THAT'S WHEN IT FREEZES (MOUSE WILL MOVE, BUT NOTHING OPENS WHEN I CLICK IT. 

    When you try to open a folder from the sidebar? NOT SURE WHAT YOU MEAN BY SIDEBAR.

    After a certain period of time regardless of what you're doing? NO.. I WOULDN'T SAY IT IS TIME RELATED.. MORE LIKE TASK RELATED.  IF I WERE TO BOOT UP AND JUST LEAVE IT ON OVERNIGHT... IT WOULD BE FINE..  UNTIL I GO TO OPEN SOMETHING.  Something else?  Knowing that would help narrow things down.

     

    The best explanations for this are (in order of likelyhood):

    1. Incompatable or outdated third-party software.  This may be something hidden away, like preference panes, background applications, device drivers, etc.
    2. The replacement optical drive is misinstalled, defective, or not to spec.  One of the things the system does when it tries to open a new Finder window is check the drives, and if there's something screwy with the optical drive that check could lead to a crash. HERE IS WHAT THE APPLE STORE INSTALLED: 

    OPTIARC DVD RW AD-5630A:

     

      Firmware Revision:    2BH1

      Interconnect:    ATAPI

      Burn Support:    Yes (Apple Shipping Drive)

      Cache:    2048 KB

      Reads DVD:    Yes

      CD-Write:    -R, -RW

      DVD-Write:    -R, -R DL, -RW, +R, +R DL, +RW

      Write Strategies:    CD-TAO, CD-SAO, CD-Raw, DVD-DAO

      Media:

      Type:    CD-ROM

      Blank:    No

      Erasable:    No

      Overwritable:    No

      Appendable:    No

    1. A bad or misseated ram stick.  Snow is more ram intensive than Leopard, and bad ram can have al sorts of flakey results.

    I ADDED THE ADDITIONAL RAM AFTER THE SNOW ATTEMPT.. THINKING MAYBE IT NEEDED MORE - BUT HERE IS WHAT I HAVE:

    Memory Slots:

     

      ECC:    Disabled

     

    BANK 0/DIMM0:

     

      Size:    4 GB

      Type:    DDR2 SDRAM

      Speed:    667 MHz

      Status:    OK

      Manufacturer:    0x7F7F7F7F7FF70000

      Part Number:    0x00004B363435315536344535363637460000

      Serial Number:    0x00000000

     

    BANK 1/DIMM1:

     

      Size:    2 GB

      Type:    DDR2 SDRAM

      Speed:    667 MHz

      Status:    OK

      Manufacturer:    0x7F7F9E0000000000

      Part Number:    0x565332475344533636374432202020202020

      Serial Number:    0x00000000

     

    The fixes I would try if I were there would be as follows:

    1. Create a fresh partition on an external drive and install a clean version of Snow Leopard, and run Software Update first thing (assuming you can).  OK.. but I'll have to move some files off of there to make SURE I have room and a fresh start.  If that works smoothly then the problem is almost certainly third-party software; then it's a problem of identifying what software is gumming the works.   I will try to video the issue once I get Snow set up.  That way you can see what I'm talking about.  i'll do this in a little bit when I come back - have a  meeting.  ugh.  
      Check the optical drive (Disk Burning in system profiler).  It should be a Matshita DVD-R UJ-85J.  Insert a disk and make sure the disk mounts under Leopard. 
    2. Turn off the computer, remove the ram cover, and (gently) take out all the ram sticks then (gently) put them back in in a different order, making sure they are seated properly.  if you have sticks from different manufacturers, note how they are installed and keep sticks of the same kind paired together (that's not urgent; you get some mild performance improvements if logically paired sticks are the same size and speed). I will do this too, but just so you know, I didn't add the additional RAM until after the Snow attempt - probably a month after.. 

    I'm banking on #1.  If that works out post back, and we'll do the next step (figuring out the third-party problem).

     

    I'll be back in a bit..  Thank you!

1 2 Previous Next