Previous 1 2 Next 15 Replies Latest reply: Mar 11, 2010 8:42 AM by ~Bee
jgizz Level 1 Level 1 (0 points)
ever since I tried to watch a tv show online. the website I was directed to was one of those survey websites. thats where I think they got me. might be something on my computer now and I don't know how to get rid of it. any suggestions?
I have even tried switching to firefox as my browser (which is what I normally use now). Please help. thank you very much!

imac, Mac OS X (10.4.11)
  • Carolyn Samit Level 10 Level 10 (95,995 points)
    HI,

    From the Safari Menu Bar click Safari / Block Pop Up Windows.

    Go here for help with

    Detecting and avoiding malware and spyware











    Carolyn

    Message was edited by: Carolyn Samit
  • jgizz Level 1 Level 1 (0 points)
    Thank you very much for the reply, however my browser already has that checked. I will reset it and see if that helps.
    The link you provided looks like there are conflicting ideas as to whether installing antivirus/antispyware software is needed or recommended. What do you recommend?
  • ~Bee Level 7 Level 7 (31,130 points)
    jgizz --
    I use GlimmerBlocker, which is free,
    and blocks all ads and garbage like that.
    No pop-ups, pop-unders, nothing.

    I'm very happy with it.
    It's probably a tracking cookie.
    You could get rid of all your cookies, but I think Glimmer will fix it for you.

    IMHO, you do not need AV, etc.
    I've been using multiple Macs for years, and not one problem, and no AV apps.
  • Klaus1 Level 8 Level 8 (46,080 points)
    there are conflicting ideas as to whether installing antivirus/antispyware software is needed or recommended. What do you recommend?

    Only amongst developers trying to sell you next-to-useless anti-virus ware!

    No viruses that can attack OS X have so far been detected 'in the wild', i.e. in anything other than laboratory conditions.

    Do not be tricked by 'scareware' that attempts computer users to download fake anti-virus software that may itself be malware. More on that here:

    http://news.bbc.co.uk/1/hi/technology/8313678.stm

    It is possible, however, to pass on a Windows virus to another Windows user, for example through an email attachment. To prevent this all you need is the free anti-virus utility ClamXav, which you can download from:

    http://www.clamxav.com/

    (Note: ClamAV adds a new user group to your Mac. That makes it a little more difficult to remove than some apps. You’ll find an uninstaller link in ClamXav’s FAQ page online.)

    However, the appearance of Trojans and other malware that can possibly infect a Mac seems to be growing, but is a completely different issue to viruses.

    If you allow a Trojan to be installed, the user's DNS records can be modified, redirecting incoming internet traffic through the attacker's servers, where it can be hijacked and injected with malicious websites and pornographic advertisements. The trojan also installs a watchdog process that ensures the victim's (that's you!) DNS records stay modified on a minute-by-minute basis.

    You can read more about how, for example, the OSX/DNSChanger Trojan works here:

    http://www.f-secure.com/v-descs/trojanosxdnschanger.shtml

    SecureMac has introduced a free Trojan Detection Tool for Mac OS X. It's available here:

    http://macscan.securemac.com/

    The DNSChanger Removal Tool detects and removes spyware targeting Mac OS X and allows users to check to see if the trojan has been installed on their computer; if it has, the software helps to identify and remove the offending file. After a system reboot, the users' DNS records will be repaired.

    (Note that a 30 day trial version of MacScan can be downloaded free of charge from:

    http://macscan.securemac.com/buy/

    and this can perform a complete scan of your entire hard disk. After 30 days free trial the cost is $29.99. The full version permits you to scan selected files and folders only, as well as the entire hard disk. It will detect (and delete if you ask it to) all 'tracker cookies' that switch you to web sites you did not want to go to.)

    A white paper has recently been published on the subject of Trojans by SubRosaSoft, available here:

    http://www.macforensicslab.com/ProductsAndServices/index.php?mainpage=document_general_info&cPath=11&productsid=174

    Also, beware of MacSweeper:

    MacSweeper is malware that misleads users by exaggerating reports about spyware, adware or viruses on their computer. It is the first known "rogue" application for the Mac OS X operating system. The software was discovered by F-Secure, a Finland based computer security software company on January 17, 2008

    http://en.wikipedia.org/wiki/MacSweeper

    On June 23, 2008 this news reached Mac users:

    http://www.theregister.co.uk/2008/06/23/mac_trojan/

    More on Trojans on the Mac here:

    http://www.technewsworld.com/story/63574.html?welcome=1214487119

    This was published on July 25, 2008:

    Attack code that exploits flaws in the net's addressing system are starting to circulate online, say security experts.

    The code could be a boon to phishing gangs who redirect web users to fake bank sites and steal login details.

    In light of the news net firms are being urged to apply a fix for the loop-hole before attacks by hi-tech criminals become widespread.

    Net security groups say there is anecdotal evidence that small scale attacks are already happening.

    Further details here: http://news.bbc.co.uk/2/hi/technology/7525206.stm

    A further development was the Koobface malware that can be picked up from Facebook (already a notorious site for malware, like many other 'social networking' sites), as reported here on December 9, 2008:

    http://news.bbc.co.uk/newsbeat/hi/technology/newsid_7773000/7773340.stm

    You can keep up to date, particularly about malware present in some downloadable pirated software, at the Securemac site:

    http://www.securemac.com/

    There may be other ways of guarding against Trojans, viruses and general malware affecting the Mac, and alternatives will probably appear in the future. In the meantime the advice is: be careful where you go on the web and what you download!

    If you think you may have acquired a Trojan, and you know its name, you can also locate it via the Terminal:

    http://theappleblog.com/2009/04/24/mac-botnet-how-to-ensure-you-are-not-part-of- the-problem/

    As to the recent 'Conficker furore' affecting Intel-powered computers, MacWorld recently had this to say:

    http://www.macworld.co.uk/news/index.cfm?email&NewsID=25613

    Although any content that you download has the possibility of containing malicious software, practising a bit of care will generally keep you free from the consequences of anything like the DNSChanger trojan.
    1. Avoid going to suspect and untrusted Web sites, especially p'orn'ography sites.

    2. Check out what you are downloading. Mac OS X asks you for you administrator password to install applications for a reason! Only download media and applications from well-known and trusted Web sites. If you think you may have downloaded suspicious files, read the installer packages and make sure they are legit. If you cannot determine if the program you downloaded is infected, do a quick Internet search and see if any other users reported issues after installing a particular program.

    3. Use an antivirus program like ClamXav. If you are in the habit of downloading a lot of media and other files, it may be well worth your while to run those files through an AV application.

    4. Use Mac OS X's built-in Firewalls and other security features.

    5. Stop using LimeWire. LimeWire (and other peer-to-peer sharing applications) are hotbeds of potential software issues waiting to happen to your Mac. Everything from changing permissions to downloading trojans and other malicious software can be acquired from using these applications. Similar risks apply to using Facebook, Twitter, YouTube and similar sites which are prone to malicious hacking: http://news.bbc.co.uk/1/hi/technology/8420233.stm

    6. Resist the temptation to download pirated software. After the release of iWork '09 earlier this year, a Trojan was discovered circulating in pirated copies of Apple's productivity suite of applications (as well as pirated copies of Adobe's Photoshop CS4). Security professionals now believe that the botnet (from iServices) has become active. Although the potential damage range is projected to be minimal, an estimated 20,000 copies of the Trojan have been downloaded. SecureMac offer a simple and free tool for the removal of the iBotNet Trojan available here:

    http://macscan.securemac.com/files/iServicesTrojanRemovalTool.dmg

    Last but not least, there is the potential for having your entire email contact list stolen for use for spamming:

    http://www.nytimes.com/2009/06/20/technology/internet/20shortcuts.html?_r=1
  • jgizz Level 1 Level 1 (0 points)
    Thank you very much for your time and knowledge on the subject, it is much appreciated...
  • jgizz Level 1 Level 1 (0 points)
    Thank you very much, I think this will solve my problem however I tried to download and it requires mac os 10.5
    I have 10.4, any other suggestions or recommendations?
  • powerbook1701 Level 3 Level 3 (555 points)
    I have been using VirusBarrier X4 and then later X5, however, with the recent X6 version, I plan on dumping. The X4 version was simple to use, X5 was a little bit more complicated, but X6 just bloated it up. Snow Leopard has a build in (all though minor) scanner of it's own that is automatic, but at least it is there.

    I was wondering however, Klaus1, are there any dangers in using ClamXav? I have never used a "free" version of anything before that didn't cause issues. Do you recommend that, and if so, have you had any issues with it with SL?
  • Klaus1 Level 8 Level 8 (46,080 points)
    are there any dangers in using ClamXav?

    None whatever. It is free because it is open source. Highly recommended by nearly all users here - the exceptions being those who feel that the Mac does not need any anti-virus software at all!

    BUT, I have no experience with Snow Leopard, so check on their website for any compatibility issues.
  • ~Bee Level 7 Level 7 (31,130 points)
    powerbook --ClamX is fine if you feel you need some kind of AV.
    http://www.versiontracker.com/dyn/moreinfo/macosx/52238
    Article on latest version for SL:
    http://reviews.cnet.com/8301-13727_7-10352009-263.html

    I'm on Snow Leopard, but do not use any AV.
    I'm just careful about where I go on the net.
    And am very conservative about downloading anything.

    Message was edited by: ~Bee
  • powerbook1701 Level 3 Level 3 (555 points)
    I thought I read somewhere that ClamXav user groups were already preinstalled or setup with 10.4 and higher??
    What do you think of ClamXav?? Besides running updates, is it pretty mainteance free? Does the updater part pull in both new versions of the app and defs?
  • Klaus1 Level 8 Level 8 (46,080 points)
    ClamXav was, I believe, preinstalled with the server versions of Tiger and Leopard, but I have no idea if they still are.

    Updates update the virus definitions database.
  • ~Bee Level 7 Level 7 (31,130 points)
    Klaus, it was never pre-installed on my Tiger or Leopard. . .
    Maybe pre-installed on Apple Servers???
    AT any rate,
    I know it was highly recommended by many top-notch Mac users.
  • Klaus1 Level 8 Level 8 (46,080 points)
    Yes, as I recall only on the server versions.
  • Winters75 Level 1 Level 1 (0 points)
    " I use GlimmerBlocker, which is free,
    and blocks all ads and garbage like that.
    No pop-ups, pop-unders, nothing."

    Glimmerblocker doesnt stop pop-unders. It says so on their description

    "Because GlimmerBlocker doesn't hack Safari, there is a few things it isn't able to do: adding a block by right-clicking an image, stopping pop-unders,..."
Previous 1 2 Next