Apple Event: May 7th at 7 am PT

Learn more

Add to your calendar 

Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: BillA1016
BillA1016 Author
User level: Level 1
1 points

TENCENT QQ Trojan on Mac

Hi,

After researching on Google, my friend and I have determined that I have the Tencent QQ trojan. I'm not surprised that its a QQ trojan because I use QQ (an instant messenger service in China). Apparently, the company openly recognizes that they put malware on your computer, but I never investigated it, never knew it, and assumed it could never happen on a Mac. My situation now is that I have this trojan (which exists on a Mac, according to several pages I found on Google) and I don't know what to do. Right now, I'm running ClamXAv to see what it finds. MacScan found nothing. Any help would be appreciated. Thanks.

MacBook Pro, Mac OS X (10.5.2)

Posted on Mar 16, 2008 9:41 PM

Reply
38 replies
User profile for user: dechamp
dechamp
User level: Level 4
3,495 points

Mar 18, 2008 10:21 PM in response to Chris Noble

Yet another trojan panic bites the dust. Do you really think a trojan can invade MacOS, control the actions of multiple web browsers, survive a format and be the first of it's kind, and be found in a Chinese Dorm? Call CNN!

I read the white page document that was referenced earlier. 2 thirds of it were the history of Virus' on the Mac, like any of that matters at all. There were several examples and some recommendations of possible changes, but no meat.

Where's the beef. No OS is perfect, but it's going to take more than 1 person and a "knowledgeable" expert friend to convince me that I've got something to worry about. Maybe somebody with a security credential and experience working with network security or a teenage programmer in India 🙂

If you download and install a program that is crap, it's still crap, not a virus or trojan. If you believe a web page has scanned your Mac and found problems you should just move on. If your ISP controls your browsing, it's still not a Trojan or Virus - at best it's Malware.
Reply
User profile for user: yksoft1
yksoft1
User level: Level 1
15 points

Mar 18, 2008 11:31 PM in response to BillA1016

What you have seen may be a type of so-called "ARP viruses". They use ARP spoofing attack method to hijack any HTTP packets in the LAN its host computer on, to insert malware code (usually some Javascript code that use the bugs in Windows, Internet Explorer and some third-party ActiveX) to download and run trojan horse software, including the ARP virus itself, on Windows machines. They are usually harmless to Mac OS X machines, except they may associate a lot of memory thus slow down/crash the system.
你看到的是一种“ARP病毒”。它们使用ARP攻击,劫持它所在的计算机所在的局域网中所有的HTTP数据包,插入恶意代码(通常是一串利用 Windows、IE或者某些第三方ActiveX控件漏洞的JavaScript),以便下载和运行恶意软件(包括该病毒自己)。它们对于Mac OS X通常无害,但是它们可能需要分配大量的内存空间,使系统运行减慢甚至出错。
Reply
User profile for user: BillA1016
BillA1016 Author
User level: Level 1
1 points

Mar 18, 2008 11:43 PM in response to yksoft1

Well then I guess this isn't my problem. I guess I'll just wait the network problems out. There are only 3 Mac users here, so its possible that it was just me. The fact that about 75% of the PCs here are affected makes me think its not me!

And to whoever posted it, no, I was not stupid enough to download QQ again immediately after my reinstall (I'm not the most savvy user in the world, but I can get by without being an idiot).

I'll keep people posted on what happens.

Thanks again, and any other suggestions would be great!
Reply

TENCENT QQ Trojan on Mac

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up