Q: What to do if malware or trojans found
-
Oct 14, 2014 9:50 PMby Barry Hemphill,I Am sorry to tell you you were taken. That junk you installed is BIG trouble. I would have the credit card reissued with a new number. I would also reinstall OS X from the recovery disk. I think reinstalling is easier than trying to clean out all that stuff.
A/V software is, IMHO, completely unnecessary as there are NO documented viruses that affect a Mac running OS X.
Barry
-
Oct 14, 2014 11:07 PMby babowa,Unfortunately, you were the victim of a scam; did you get the phone number after doing a Google search?
I agree with Barry; first call your credit card company and report the possibility of fraud. Make sure you back up your files. Then erase your hard drive using recovery and reinstall the OS. Do NOT reinstall MacKeeper - it is of no use. You can move your files back, but do so one by one and test each one to see if it is problem free.
-
Oct 15, 2014 12:40 AMby speakerzzzzz,Completely agree with the others on the points of reporting fraud to institution and restore a healthy backup from time machine. There is no need for anti-virus on Mac. I've seen quite a bit of Mackeeper ads around, but never dare to try it. Because the way it forcing ads open in popup windows alerts me.
Im interested to know how you get contacted by the scums, and whether they "fixed" your yahoo email issue or not. Maybe u can share the story, so others can learn from it to protect themselves, if you are in the mood.
If you need help to delete some apps that root deeply in the system, you can try "cleanapp ". I only use it to delete apps and their data. It has served that purpose well. Other than that, I think Mac is pretty much maintenance free.
-
Oct 15, 2014 4:45 PMby Telisha,Thank you everyone for your suggestions. I did as you suggested and cancelled my credit card. No charges had been made thus far so no loss there. As for my Yahoo mail, it still doesn't work. I get a repeated error message saying yahoo server not responding and is "offline". I can't seem to find anyone at Yahoo to help and it's been several days. Their automated voice help line says to call back in operating hours and hangs up. Real helpful during midday during the week. That is why I goggled "yahoo technical support" and found these numbers: 1-888-858-2728 and 1-888-318-0612. Now I assume neither are actually Yahoo but scammers. After I called them and explained my that Yahoo mail was not working, they had a "Microsoft certified technician" call me back from this number 1-844-332-7016 and that is when they began the "search" for the virus on my computer. The reason I followed through their scam was because they made me think I had a virus and they said someone applied for loan with my information and they could help clear it all up. All I had to do was pay $130 for a one time fix and all is good. Unfortunately I fell for the scam, but fortunately discovered they were fake and cancelled my card before it was used. I then erased my hard drive and reloaded a backup I had from several days prior, hoping to eliminate any malware or trojans that might have been on my computer. Is there any software to safely detect and remove such things? I only heard of MacKeeper and from what you all are saying is that is it not to be trusted either. Any suggestion as to what to use to discover if I have a problem? Again, I thank you for your responses.
-
Oct 15, 2014 5:08 PMby Barry Hemphill,If the backup you loaded was made before the scam, you should be fine. As I said, A/V software is, IMHO, useless on a Mac running OS X.
It will be obvious if you have Malware or Adware. The best way to be safe us to stay away from strange sites and never download anything from unknown sources.
Barry
-
Oct 15, 2014 5:59 PMby etresoft,Based on internet reports of this scam, they do not typically install malware, especially on a Mac where there is so little to install. They are more likely to randomly delete files to further destabilize your machine and extort more money. Actual malware is not likely, but remote control and key loggers are a possibility.
I wrote a little diagnostic program to help show what is running in the background on your machine. Download EtreCheck from http://www.etresoft.com/etrecheck, run it, and paste the results here. EtreCheck is perfectly safe to run, does not ask for your password to install, and is signed with my Apple Developer ID.
Disclaimer: Although EtreCheck is free, there are other links on my site that could give me some form of compensation, financial or otherwise.
-
Oct 15, 2014 7:32 PMby speakerzzzzz,Thanks for sharing the story. I understand that people sometimes are just carried away by the scams under frustrating circumstances. So it is always good to know the plots to be preventative.
There are some big name antivirus companies like AVG and Avast that release mac edition products. But there are both pros and cons, for which you could search in several major mac user forums. There is also ClamXav that is designed for mac from open source antivirus engine. I actually tried it back in 2007. Never had it caught any virus though, so it didn't last too long in my system. I haven't heard any exemplified antivirus software or malware removal tools on OSX. I think at least part of reason is because there is few virus or malware in the wild. Any security holes will rise public attention then get fixed soon enough by Apple itself or third parties. If you want a peace of mind, you could try ClamXav. It is free and open source. I recommend it because I actually used it myself for months and know it will not cause any major lag or damage system files.
I think you should also investigate into Yahoo server and Mail app to see if the problem is on server side or client side. Maybe there is some change on server side that causes the issue. If nothing is wrong or changed on server side, then maybe there is some change in mail app... It is always a pain to look through these things. Some are really too technical for avg users. Mail gave me problems in the past, while I didn't touch any settings at all. Don't get me started on that... But after all, if there is really a vicious malware or virus damaging your system, there should be evidence.
-
Oct 14, 2015 2:55 AMby AlpacaJackie,I had this problem as well. Yahoo mail sent spam mail to all my contacts. Phoned what i thought was Yahoo help. Same thing. I had to download Team Viewer so they had remote access to my computer and they downloaded MacKeeper. They wanted payment and I said I had no money in my bank account (true) so I would pay by PayPal. They said their company didn't accept PayPal but would phone me back. Twenty minutes later they phoned back and said that they could now take PayPal . They gave me an email address of a person and their bank details. I sent them £150 by Pay Pal. This company had remote access and I left them to it while I went out. When I came back my computer had shut down. I started it up and ran MacKeeper to see if my computer had been cleaned and it showed me the same page as the company had shown me....serious ! At this point I realised I had been scammed. Funnily enough I had a phone call from the company the following day to ask if everything was Ok. I let rip!! They told me to email billing@techy-9.co.uk and explain situation and they would refund my money. I also notified PayPal and now have a dispute settlement going on. I managed eventually to remove Mackeeper and Clean my Mac and Team Viewer off my computer. Changed my Yahoo password and installed the new operating system El Cantino.?
The company deleted all my emails and my contact list which I have now reinstalled from the cloud?? This morning I have opened my Yahoo mail and the top banner ad is for MacKeeper. I am now so wary about any sites giving me details of how to get rid of malware, trojans, pop up ads.
HELP
