Skip navigation

Fedex virus forcing me to restart  Waring urgent !!!!!!!!!

963 Views 9 Replies Latest reply: Dec 1, 2012 6:25 PM by diveactive RSS
diveactive Level 1 Level 1 (0 points)
Currently Being Moderated
Dec 1, 2012 5:10 AM

been waiting for percil from e bay USA but got this fedex e mail  opened OMG forcing me to shut down re star . I ran mac leaner and Keaspersy AV

 

still came back emptied all mail and deleted mail . done back up .

 

came back took photo of screen as well as screen shot of this.

 

Done another clean my mac and now running Ant virus again . this did not pick this trogen up.  All sords of windows come open with errors. Screen Shot 2012-12-01 at 20.15.14.png  is my mac clean or is the a fix for this ???

MacBook Pro, iOS 5.1, Lion 8 gb ram Custom HD screen. 750
  • Lanny Level 5 Level 5 (4,165 points)

    Oh please. It's an obvious fake. Look at the email address, "@newyork.com," and the Bcc addresses.

     

    Grammar error: To receive a parcel, go to the nearest our office and show this postal receipt.

     

    All signs of a fake.

  • thomas_r. Level 7 Level 7 (26,920 points)

    All current FedEx e-mail scams involve Windows malware, and cannot affect your Mac. I'm not sure how it forced you to restart, but that was not related to any kind of malware infection. Just delete the e-mail message and you should be fine.

     

    Note that using software like MacCleaner is an extremely bad idea. Macs do not need cleaning. See The myth of the dirty Mac. Also, Kaspersky is not very good on the Mac. Some recent testing I did shows that it does quite poorly at recognizing Mac malware. See Mac anti-virus detection rates. Both of those programs should be uninstalled.

     

    Finally, in the future, pay very close attention to the details in e-mail messages like this one. Any official communication from a company like FedEx should come from an e-mail address ending in "fedex.com" and the name that preceeds the address definitely shouldn't say "UPS logistics!" Even then, though, it's possible to forge the e-mail address on the To: line of an e-mail message, so you should exercise caution opening any attachments. Legitimate e-mail messages of this sort should not contain any attachments that you are asked to open.

  • Kurt Lang Level 7 Level 7 (31,450 points)

    Just because it looks official doesn't mean it is. It's no effort at all to copy a company's logo from their site and build a convincing looking email.

     

    I got one supposedly from Inuit (QuickBooks, Quicken, etc.) that at first glance looked fairly genuine. The big giveaway though was about 6 links on a single email all saying you need to click here. The text said one went to their site, another to customer service and various other links.

     

    Here's one trick to figuring these out. I right clicked on each link and chose "Copy Link". I then pasted the result into a TextEdit document. Every single one went to the same place. Something obviously out of the country like:

     

    /weven.ar/toreav/agent.html

     

    The above is something I randomly typed, so it won't go anywhere, but you get the idea. The repeated link very clearly had nothing to do with Intuit.

  • thomas_r. Level 7 Level 7 (26,920 points)

    That is a kernel panic, and those are caused by hardware issues, bad third-party kernel extensions or a badly corrupt system. Note that I believe Kaspersky installs a kernel extension, so that's the first thing I would consider as being responsible. If you can post the latest kernel panic log, though, we can give you more information.

Actions

More Like This

  • Retrieving data ...

Bookmarked By (0)

Legend

  • This solved my question - 10 points
  • This helped me - 5 points
This site contains user submitted content, comments and opinions and is for informational purposes only. Apple disclaims any and all liability for the acts, omissions and conduct of any third parties in connection with or related to your use of the site. All postings and use of the content on this site are subject to the Apple Support Communities Terms of Use.