virus discovered called osx.Exploit.Iosjailbreak

Question

Level 1

4 points

virus discovered called osx.Exploit.Iosjailbreak

I have never had any issues with viruses until I got my iphone 5. I sync my phone with my mac mini and laptop. Thankfully my clamXav sentry virus scan software isolated and quarantined a virus called "osx.Exploit.Iosjailbreak". Does anyone have any information on this and how to protect against this? It also got into our network via the ios and again our network is protected by clamxav senty. Please advise.

Thanks

Annie

iPhone 5, iOS 6.0.2, 16 GB.

Posted on Feb 7, 2013 12:38 PM

Reply

Answer 1

wjosten

Level 10

95,321 points

Feb 7, 2013 12:46 PM in response to CoachAnnieG

That's not a virus, or even Malware for that matter. I believe that some anti-virus vendors have added that to their database in response to the release of jailbreaking tools that have recently been released. Is it a virus? No.

What software picked this up?

Reply

Answer 2

CoachAnnieG Author

Level 1

4 points

Feb 7, 2013 12:48 PM in response to wjosten

Well clamxav seems to think it is a virus, has quarantined it. What is this file?

Reply

Answer 3

CoachAnnieG Author

Level 1

4 points

Feb 7, 2013 12:50 PM in response to CoachAnnieG

Once I secure erased the file the first time it was discovered, it came back again and again.

Reply

Answer 4

wjosten

Level 10

95,321 points

Feb 7, 2013 1:01 PM in response to CoachAnnieG

Yea, I've read that ClamAV has updated their database to show this as a virus. While jailbreaking an iPhone is not supported by Apple & does compromise the iOS, this is not a virus. Any jailbroken iPhones using your network? If so, that's most likely why this came up.

Or, anyone downloaded something like Evasi0n on their computer?

Message was edited by: wjosten

Reply

Answer 5

CoachAnnieG Author

Level 1

4 points

Feb 7, 2013 12:59 PM in response to wjosten

I have not unlocked my phone. I don't have anyone else using an iphone on my network other than me.

Reply

Answer 6

CoachAnnieG Author

Level 1

4 points

Feb 7, 2013 1:02 PM in response to CoachAnnieG

Let me be even clearer. No one is using any phone connected to our network other than me. My phone has never been jailbroken which I assume is the same thing as being unlocked, correct?

Reply

Answer 7

wjosten

Level 10

95,321 points

Feb 7, 2013 1:03 PM in response to CoachAnnieG

Or, anyone downloaded something like Evasi0n on their computer? Remember, ClamAV is scanning your computer.

Reply

Answer 8

CoachAnnieG Author

Level 1

4 points

Feb 7, 2013 1:03 PM in response to wjosten

No one has ever downloaded that Evasi0n on any computer we have. Is this a pc program or mac?

Reply

Answer 9

wjosten

Level 10

95,321 points

Feb 7, 2013 1:05 PM in response to CoachAnnieG

It's a tool used to jailbreak iPhones...just released.

Reply

Answer 10

CoachAnnieG Author

Level 1

4 points

Feb 7, 2013 1:06 PM in response to wjosten

does it work?

Reply

Answer 11

wjosten

Level 10

95,321 points

Feb 7, 2013 1:09 PM in response to CoachAnnieG

We can really discuss that stuff here, Apple owns/runs this forum, and Apple does not support jailbreaking. Thus, I can't really post anymore other that what I've already posted.

I suspect someone on your network has downloaded this or similar & ClamAV has detected such. But, is this a virus? No.

Reply

Answer 12

CoachAnnieG Author

Level 1

4 points

Feb 7, 2013 1:22 PM in response to wjosten

I understand now that I know what the file is HOWEVER I assure you no one has downloaded that file. so how did it find it's way onto our network and why is clamxav calling it a virus?

Reply

Answer 13

wjosten

Level 10

95,321 points

Feb 7, 2013 1:25 PM in response to CoachAnnieG

I'm gonna request our resident Virus/ClamAv guru post to this thread. Perhaps Thomas can shed more light & correct any errors in my posts & hopefully answer your questions.

Stay tuned.

Reply