Skip navigation

Will virus/trojan in mail transfer to a new computer.

9132 Views 71 Replies Latest reply: Feb 1, 2012 12:19 PM by BDAqua RSS
1 2 3 ... 5 Previous Next
V.A.P. Level 1 Level 1 (0 points)
Currently Being Moderated
Jan 24, 2012 1:52 PM

I believe I may have a virus (or trojan) on my mail. I have searched the discussions and tried a few things suggested but I understand that even deleting things can come back.

We have a very old system and I have always done the security updates, which are no longer available since 2009-005 (I believe). We are buying a new iMac and I want to be sure nothing gets transferred into it.

Any help? Thanks.

emac, Mac OS X (10.4.11), 700mHz, Power PC G4, Tiger
  • BDAqua Level 10 Level 10 (114,705 points)
    Currently Being Moderated
    Jan 24, 2012 2:12 PM (in response to V.A.P.)

    Well, yes, but unlikely it actually affects Macs.

     

    I think you could eliminate it with...

     

    ClamXAV, free Virus scanner...

    http://www.clamxav.com/

     

    Free Sophos...

     

    http://www.sophos.com/products/enterprise/endpoint/security-and-control/mac/

  • MadMacs0 Level 4 Level 4 (3,320 points)
    Currently Being Moderated
    Jan 24, 2012 3:35 PM (in response to V.A.P.)

    V.A.P. wrote:

     

    If found, will clamxav eliminate problem?

    Perhaps, but you haven't described the problem and I'm unaware of any Trojan (there are no Mac viruses) in e-mail that could cause any problems, but there is always that possibility. ClamXav should be able to locate any malware you have, but if it or any other AV software identifies anything in your e-mail, return here (or better yet, the ClamXav Forum) for instructions on how to deal with it without screwing up your e-mail. Do not move any e-mail around on your hard drive nor allow the AV software to do so (quarantine or delete/trash).

     

    One additional caution with ClamXav.  Read the notice on the Download page that the last version which supports Tiger is v2.2.1. Any later versions will not work properly.

    Have not heard of sophos (all of the attempts at finding info resulted in quite a bit of warning and am now nervous to click on anything), is price the main difference?

    They are both available for free. Some have found issues with both, but others still swear by them.

     

    Full disclosure, I do uncompensated Tech Support on the ClamXav Forum.

     

    Message was edited by: MadMacs0 to add link to ClamXav Forum

  • BDAqua Level 10 Level 10 (114,705 points)
    Currently Being Moderated
    Jan 24, 2012 4:15 PM (in response to V.A.P.)

    ClamXAV is the least bothersome one for the OS, but in my testing of hundreds of Malware laden eMails they both found the same exact ones, though I don't think I have any younger than 2-3 years, (I try to collect them).

     

    Either one should allow you to quarantine or get rid of them.

  • Klaus1 Level 8 Level 8 (43,350 points)
    Currently Being Moderated
    Jan 24, 2012 4:30 PM (in response to V.A.P.)

    VIRUSES

     

    No viruses that can attack OS X have so far been detected 'in the wild', i.e. in anything other than laboratory conditions.

     

    It is possible, however, to pass on a Windows virus to another Windows user, for example through an email attachment. To prevent this all you need is the free anti-virus utility ClamXav, which you can download for Tiger from:

     

    http://www.clamxav.com/download.php#tiger

     

    and for Leopard, Snow Leopard and Lion from here:

     

    http://www.clamxav.com/

     

    Note: If you wish to uninstall ClamXav: keep a copy of the disk image from when you downloaded it, or download it again - the uninstaller is included with the application. To uninstall, quit ClamXav Sentry (if you use it) and make sure it's not set to launch at log in. The uninstaller will remove the engine and any schedules you've got set up, then just drag ClamXav.app to the trash.

     

    If you are already using ClamXav: please ensure that you have installed all recent  Apple Security Updates  and that your version of ClamXav is the latest available.

     

    Do not install Norton Anti-Virus on a Mac as it can seriously damage your operating system. Norton Anti-Virus is not compatible with Apple OS X.

     

    FAKE ANTI-VIRUS SOFTWARE and associated MALWARE

     

    Do not be tricked by 'scareware' that tempts computer users to download fake anti-virus software that may itself be malware.

    Fake anti-virus software that infect PCs with malicious code are a growing threat, according to a study by Google. Its analysis of 240m web pages over 13 months showed that fake anti-virus programs accounted for 15% of all malicious software.

     

    Scammers trick people into downloading programs by convincing them that their PC is infected with a virus.

    Once installed, the software may steal data or force people to make a payment to register the fake product.

    Beware of PDF files from unknown sources. A security firm announced that by its counting, malicious Reader documents made up 80% of all exploits at the end of 2009.:

     

    http://www.computerworld.com/s/article/9157438/in which Rogue_PDFs_account_for_80_of_all_exploits_says_researcher

     

    TROJANS and RE-DIRECTION TO FAKE WEBSITES

     

    The appearance of Trojans and other malware that can possibly infect a Mac seems to be growing, but is a completely different issue to viruses.

     

    If you allow a Trojan to be installed, the user's DNS records can be modified, redirecting incoming internet traffic through the attacker's servers, where it can be hijacked and injected with malicious websites and pornographic advertisements. The trojan also installs a watchdog process that ensures the victim's  (that's you!)  DNS records stay modified on a minute-by-minute basis.

     

    You can read more about how, for example, the OSX/DNSChanger Trojan works (by falsely suggesting extra codecs are required for Quicktime) here:

     

    http://www.f-secure.com/v-descs/trojan_osx_dnschanger.shtml

     

    SecureMac has introduced a free Trojan Detection Tool for Mac OS X.  It's available here:

     

    http://macscan.securemac.com/

     

    First update the MacScan malware definitions before scanning. You can also contact their support team for any additional support - macsec@securemac.com

     

    The DNSChanger Removal Tool detects and removes spyware targeting Mac OS X and allows users to check to see if the trojan has been installed on their computer; if it has, the software helps to identify and remove the offending file. After a system reboot, the users' DNS records will be repaired.

     

    (Note that a 30 day trial version of MacScan can be downloaded free of charge from:

     

    http://macscan.securemac.com/buy/

     

    and this can perform a complete scan of your entire hard disk. After 30 days free trial the cost is $29.99. The full version permits you to scan selected files and folders only, as well as the entire hard disk. It will detect (and delete if you ask it to) all 'tracker cookies' that switch you to web sites you did not want to go to.)

  • BDAqua Level 10 Level 10 (114,705 points)
    Currently Being Moderated
    Jan 24, 2012 4:33 PM (in response to Klaus1)

    Great post Klaus1 !

  • Klaus1 Level 8 Level 8 (43,350 points)
    Currently Being Moderated
    Jan 24, 2012 4:44 PM (in response to BDAqua)

    Thanks BD!

     

    (That was the short economy version)

  • BDAqua Level 10 Level 10 (114,705 points)
    Currently Being Moderated
    Jan 24, 2012 5:02 PM (in response to Klaus1)

    I like the new pic of you too!

  • Klaus1 Level 8 Level 8 (43,350 points)
    Currently Being Moderated
    Jan 24, 2012 5:22 PM (in response to BDAqua)

    Not me - our cat Bailey. A friendlier face!

  • BDAqua Level 10 Level 10 (114,705 points)
    Currently Being Moderated
    Jan 24, 2012 5:47 PM (in response to Klaus1)

    Any cat owner should know that they are but an extension of the cat!

  • Klaus1 Level 8 Level 8 (43,350 points)
    Currently Being Moderated
    Jan 25, 2012 9:38 AM (in response to V.A.P.)

    I had a (favorite ever!) long hair orange cat named Bailey too.

     

    The one that ownes us is short haired!

     

    Bailey1.jpg

     

    I have ClamXav set to scan incoming emails, but nothing else.

     

    Message was edited by: Klaus1

  • BDAqua Level 10 Level 10 (114,705 points)
    Currently Being Moderated
    Jan 26, 2012 2:01 PM (in response to V.A.P.)

    Without Mail running.

     

    I'd get EasyFind...

     

    http://www.devon-technologies.com/download/

     

    Near the bottom of the page.

     

    Then Search for those names or partial names, move them to the Trash & empty the Trash.

1 2 3 ... 5 Previous Next

Actions

More Like This

  • Retrieving data ...

Bookmarked By (0)

Legend

  • This solved my question - 10 points
  • This helped me - 5 points
This site contains user submitted content, comments and opinions and is for informational purposes only. Apple disclaims any and all liability for the acts, omissions and conduct of any third parties in connection with or related to your use of the site. All postings and use of the content on this site are subject to the Apple Support Communities Terms of Use.