A mac virus?

You have 3 entirely different computer all on one network and all have the same internet related problem. I believe this has been said before, but here goes again. It could be something on those sites, of it could be something spoofing the DNS server either in your router or your ISPs DNS.

If it doesn't happen if you don't visit those sites, then it is site problem.
Otherwise, you can reset your router and you can try using another DNS server like OpenDNS.

I'm getting the exact same fricken' thing going on with my iPad. It all started when I was on my iGoogle acct and I was adding applications to my iGoogle page, if I am remembering correctly. I will get that blank white page with heading http........epoclick.c..../& whatever numbers or the Yellow pages. It only started for me last nite. I, myself only use my iPad & my iPad only. My boyfriend uses the laptop. I haven't linked my iPad to my laptop since......, dang i'd have to say I think May or June. I actually upgraded my iPad on my friends mac 3 weeks ago. I figured it might be quicker through a Mac opposed to my Windows XP, I was wrong, same amount of time. By the way it took Fricken' 4 Mother Lovin' (Not Really The Choice Of Words I Truly Would Perfer To Use, But You Get The Idea). but I digress.
I do not want this to become a problem, as it seems from the previous posts, it will. Please somebody out there. IS THERE A SOLUTION? Also I am not sure if this has been an issue with my laptop yet, hopefully not.

Desperately Seeking Sue... (Oh wait that's a title to something else....ehh..emm awful).
Desperately Grasping for a Solution, (ī ^,ī)
An APP-oholic 2Q2Top. (0_~)

Did you bother to read this thread at all? The same possibilities - and solutions - have been re-stated numerous times already. Nobody's going to sum it up for you just so you don't have to read it. Plus this isn't even an iPad forum.

Geez, I think I've gotta quit watching this thread... all the goofy replies are making me cranky!

Hi John & Other Readers!

See if the Proposed Solution Here works for you.

Good Luck & I'll Keep My !

ali b

Oh ! dns - that might be a possibility eh.

Ok I am the one with the Windows System, so that may not directly help you if you are on a Mac

With the help of an antivirus support forum I succeded in removing this (forever I hope).

It is an infection on the computer. This virus even bothered to block me from accessing certain sites with anitvirus information (had to use a different PC to read these)

It is *NOT on the router*. I can say this for sure because in our household there are two PCs which use the same router and both connect to it via WLAN. One PC was perfectly normal, while the other behaved strangely as described above.

I wish you all success in getting your systems straigthened out too.

It is an infection on the computer.

It was with your Windows machine. This is common in the Windows world, where viruses are rampant. However, as has been said multiple times, there is only one known Mac DNS changer: RSPlug. It is rare, it is a trojan (not a virus, so you have to install it yourself) and the quarantine function in Snow Leopard will protect you from it (unless you bypass it). Since anyone reading here should be running Snow Leopard, it's extremely unlikely for these problems to be caused by RSPlug. All this and more, including a description of RSPlug, is spelled out in the [Mac Virus guide|http://www.reedcorner.net/thomas/guides/macvirus> I posted a link to in my very first post on this thread.

Of course, since most of the descriptions here are very unclear and just seem to involve a pop-up window in a browser, malware is not a necessary explanation. Again, I said all this in my very first reply.

The fix identified in my prior post is working one day later. So, make sure you are using a good DNS address and lock your preferences.

What I don't know is how to find and get rid of this bug. I do run Snow Leopard but had the problem prior to Snow Leopard. As I mentioned earlier, the Apple Genius ran the full Norton suite and found nothing.

That's great 🙂

it's just possible that you had malware on Leopard - described at http://www.macworld.com/article/60823/2007/10/trojanhorse.html which altered your dns, and then Snow Leopard removed the malware, but didn't alter the dns back.

Perhaps, when they "reinstalled everything", that included Network settings, or even some software that reinstated the numbers.

Very subjectively, rogue dns crops up on 10.6.x infrequently, but often enough to suppose that something is out there, catching the unwary & not stopped entirely by Snow's quarantiney stuff..

it's just possible that you had malware on Leopard \[...] which altered your dns, and then Snow Leopard removed the malware, but didn't alter the dns back.

Snow Leopard's malware protection doesn't remove malware, so installing SL would not remove anything, unless you wiped the drive clean and made it a fresh install. See my [Mac Virus guide|http://www.reedcorner.net/thomas/guides/macvirus> for information about how SL's malware protection works.

Very subjectively, rogue dns crops up on 10.6.x infrequently, but often enough to suppose that something is out there, catching the unwary & not stopped entirely by Snow's quarantiney stuff..

Unlikely. There are ways around quarantine in SL, as described in my [Mac Virus guide|http://www.reedcorner.net/thomas/guides/macvirus>, as is a method for testing whether or not your software used for downloads is bypassing quarantine. However, the vast majority of Mac users are not likely to be both bypassing quarantine and downloading (from a thoroughly untrustworthy site and voluntarily installing) a "video codec" for playing web-based skin flicks.

As I mentioned very, very early on in this thread, DNS servers themselves can be compromised. This can be fixed by changing to more trustworthy servers, like the OpenDNS servers. However, it is important to note that this problem has nothing whatsoever to do with the end-user's computer.

I really do wish folks would read some of the previous posts... we seem to be treading the same ground over and over and over and over...

we seem to be treading the same ground over and over and over and over...

yes, you keep referring us to your guide 😉

something is out there, catching the unwary & not stopped entirely by Snow's quarantiney stuff..

Unlikely... <snip >

<sigh> I said infrequently and not entirely - meaning not widespread & not affecting the vast majority, blah blah...


Everyone should read the Mac Virus guide

yes, you keep referring us to your guide 😉

Well, nobody on this thread seems to be reading it... I keep seeing questions and comments that could be answered by going there. I'm not trying to toot my own horn, but I wrote that guide in part to make it easier to answer questions I kept answering repeatedly. 🙂

It is happening on my MacBook Pro using Safari. It happens in multiple locations on different networks so I don't think it's as simple as the routers DNS.

I am starting to think this is a router thing, but I don't have experience resetting a router. Does anyone have advice specifically about that?

These details may be useful information for this thread:
My husband and I have three computers, *one Dell PC laptop, one eee PC laptop, and my four-year-old MacBook running OS 10.4.11.*

All three of these have been hijacked by epoclick.com, google-adservice.com, google-analytics.com, etc. Not only do these sites forward us repeatedly to other sites, but I even have trouble seeing sites like Facebook and Twitter. It seems to happen more often when starting with a Google or Yahoo search.

Now, here's the real kicker. I brought home a *Macbook Pro running 10.6.4* from work to use while I erase my personal MacBook and install a newer system. I opened it up, went to Facebook, and an epoclick.com window popped under my browser!!!

Also, does it help to say we're using Comcast cable Internet service? I asked the Comcast support people and they said they've never heard of a router problem. My husband says we bought the router ourselves, and it's a Netgear WNDR3300.

Any help would be greatly appreciated.