How to find out how a computer acquired a virus

My wife has a very new iMac 21.5. Today she swarmed three times: twice with the DrodZp-A malware and once with the horse of Trojan DocDl-LAO.

I checked her email, she received no e-mail on or all the time, Sophos detected the virus. I even recorded in gmail directly for watch emails on the server. I looked at the history of his browser. Yet once, nothing suggests that she has picked up a virus by watching a Flash movie.

How can I determine how it got infested with his computer? I don't seem to be able to correlate the time stamp in a meaningful way. I looked at the system logs, and again nothing seems out of place.

Ideally, I would like to be able to isolate the incident which is the cause so I can tell him, "don't do that".

Most likely it is Sophos issuing false positives.

Since the first is a Phishing attempt, it could be spam. It also has no effect on a Mac.

The second is also a threat to Windows, completely benign on your Mac.

Tags: Mac OS & System Software

Similar Questions

  • I've had an iPad for when they released first. How can I find out what operating system, I have to be able to update at the following system?

    I had an Apple iPad since when they went out first;  How can I know what version I have so I can upgrade to the latest version, I can use?  I also have a desktop computer Apple which is older than the iPad?  Thank you

    Parameters

    General

    On

    If you have had since it first came out, then it is very possible that you have a first generation iPad (if your ipad has no camera it's a first gen). If this is the case iOS 5.1.1 is the highest iOS, you can run

    If you have a newer version than the one you can do your research. Update to the latest iOS may require that you run the latest version of iTunes, but I know that mac set out operating systems often and cannot run the latest versions. So I would research before accidentally yourself updating you in a corner (some people update their live iPad (which came with iOS 6 I believe) and then find out that their computer can not run the most recent iTunes they need to synchronize their iPad to their mac.)

  • HP15-g036cy: How can I find out how much ram I can put in my computer

    How can I find out the maximum ram that held my computer

    Repair:

    Manual

    It should read a little bit carefully. Since yours is AMD there's a single memory slot and he holds a module up to 8 GB in capacity. See page 1-2

    See also page 65, which shows how very difficult to access the memory location it is. You must remove the motherboard.

    If your laptop seems slow, it's because he has a very low CPU; the APU E1-2100 of 1.0 GHz AMD. This processor is frankly more like something in a good smartphone or tablet. Increase the RAM probably not make the system faster.

    If it's 'the Answer' please click on 'Accept as Solution' to help others find it.

  • How can I find out what programs I should have started and what are the programs I can start myself to my computer to run correctly when starting?

    * Original title: startup

    How can I find out what programs I should have started and what are the programs I can start myself to my computer to run correctly when starting?

    Hello

    I understand you want to learn about programs, you should start your Windows startup. I will certainly help you to question.

    When you start Windows by using a normal startup startup, several applications and services automatically, and then run in the background. These programs include the base system, antivirus software, utility applications processes system and other software that was previously installed. These applications and services may cause interference when you install or run a program.

    The system configuration is a tool that can help identify problems that might prevent Windows from starting correctly. You can start Windows with common services and startup programs turned off and then reactivate them, one at a time.

    I suggest you to refer to the links below and check if this is useful:

    Using the Configuration System (msconfig)

    Perform a clean boot to determine if background programs interfere with your game or program

    Hope this information helps.

    Please get back to us with an update on the issue, we will be happy to help you.

  • How can I find out what programs start or stop to start the computer?

    How can I find out what programs start or stop to start the computer? Now there's like 68 programs that start at startup of the computer, I know that this is the way to much, I just need if bought a laptop with windows7premium installed and the problem im having is that for a lot of programs running at startup the computer does runslow and being online is difficult. Can I just go back to the factory because im settings only to learn about computers. Any help would be late thanks all sorts niceome here

    Original title: need HELP

    Go in run and msconfig!

    Under the control of services tab hide all microsoft processes
    These are the programs that are running at startup you can go through the menu of your program and configure each individually to run at startup.
    If you decide it's not worth having to go to control panel and then programs and then decide to uninstall the program.
    If you decide to use your drive to factory restore do not forget to install the programs you need.

  • How find out who made changes to a virtual computer model?

    Greetings!

    We do turn several ESXi 5 boxes under vCenter Server 5 and have several directors. A few days ago one of the admins made a change to a virtual computer model and we want to know how find out who.

    Thank you!

    Have you checked the tab tasks & events of the model?

  • How can I find out if there are viruses on my laptop and how do I clean them

    How can I find out if there are viruses on my laptop and how do I clean them?

    Please provide details as to why you feel that there is a virus on your computer.

  • How to find out the Windows Update Agent version I am running

    Anyone know how I can find out which version of the Windows Update Agent I use?  I checked everything and no menu where only allows me to check the version.  This link http://support.microsoft.com/kb/949104 tell me how to get the latest version, but it is not to tell me how do I know if I am running on the latest version.
     
    And what makes it reset my of update windows components?  I read this link (http://support.microsoft.com/kb/971058#appliesto) and understand how to reset components, but I'm not clear on how this will affect my windows update.

    I have Windows Vista Home, SP2.

    Thank you very much!

    Ohanna Hello,

    Thank you for using the Microsoft answers Forums.

    Determine the current Version of WUA:

    Determine the version of Windows Update Agent (WUA) before using it. The current version of WUA is determined by the version of the c:\windows\system32\wuaueng.dll that runs in the current installation of Windows \System32 directory. If the c:\windows\system32\wuaueng.dll is version 5.4.3790.1000 or a later version, WUA is installed. A version earlier than 5.4.3790.1000 indicates that the Software Update Services (SUS) 1.0 is installed.

    When a call is made for SUS 1.0 using the API INTERFACE, an HRESULT of WU_E_AU_LEGACYSERVER is returned.

    You can also use the IWindowsUpdateAgentInfo::GetInfo method to retrieve the latest version of file of the c:\windows\system32\wuapi.dll that runs on a computer. The IWindowsUpdateAgentInfo interface is not supported in WUA 1.0.

    For more information, see update the Windows Update Agent.

    Thank you.

    UDAY $012 please let me know that whether the solution worked or not, I thank you and appreciate your comments.

  • How to prevent others to jump out of my computer at home, my computer is not secure. My neighbors are using my internet

    How can I change my private computer to keep other form jump out of my internet

    Hello

    Check with your router manufacturer and their forums because they usually have great information.
    Set up a good password for the router and use WPA/WPA2 security.

    Better to use WPA/WPA2 security if they are available and you can hide the SSID that will help
    help others to see the network (note on some routers more hide the SSID)
    causes of connection problems and if they find out the name he is more useful).

    Wireless network general recommendations of security for individuals
    http://theillustratednetwork.MVPs.org/LAN/SoHoWirelessSecurity.html

    Introduction to wireless network security
    http://netsecurity.about.com/od/Hackertools/a/aa072004b.htm

    10 tips for Wireless Home Network Security
    http://compnetworking.about.com/od/wirelesssecurity/TP/wifisecurity.htm

    Securing your wireless network
    http://www.practicallynetworked.com/support/wireless_secure.htm

    How to secure your router Linksys Wireless - similar can be used for other routers
    http://www.pctipguys.com/index.php?option=com_content&task=view&ID=57&Itemid=36

    What are the different wireless network security methods?
    http://windowshelp.Microsoft.com/Windows/en-us/help/b385cc8a-AF25-489e-a82e-decf6df26b681033.mspx#EZB

    I hope this helps.

    Rob Brown - Microsoft MVP<- profile="" -="" windows="" expert="" -="" consumer="" :="" bicycle=""><- mark="" twain="" said="" it="">

  • How and where should I go to find out how to configure my joystick so I can use the joystick to use the flight simulation game that I bought from microsoft?

    I can't find out how to configure my joy (attack3) stick to play Flight Simulator. I don't want to use the keyboard on my computer to steal the game... Where can I find the instructions on how to configure and use the joystick?

    Hello

    1. what happens when you connect the joy stick?

    2. do you get an error message?

    3. what version of Windows are you using?

    Perform the steps mentioned below and check if that helps:

    Step 1:

    Flight Simulator x: using a gamepad

    http://www.Microsoft.com/en-US/Download/details.aspx?ID=16624

    Step 2:
    Usually, vista Windows 7 will find and automatically install the necessary drivers when you plug your game controller into your computer.

    (a) connect the joystick to the USB port via the adapter.

    (b) see if it is detected.

    (c) Windows should recognize the new hardware and set in place to work properly.

    If this isn't the case, install the relevant drivers for gamepad for the manufacturers Web site.

    Step 3:

    I suggest the following steps and check for the device.

    1. in Control Panel, open game controllers. To do this, use one of the following methods:

    a. click Start, typejoy.cpl in the Search box and press ENTER.

    2. click on your game controller, and then click Properties.

    3. on the Test tab, test the game controller to verify functionality.

    Here is the link:

    http://support.Microsoft.com/kb/831361

    I hope this helps.

  • How can I find out which updates installs successfully on stop and then install?

    My (6) updates are not installed when I shut down my computer. This has happened for several weeks. I do not force stop or unplug it. I can't understand who (s) update by installing does not correctly. How can I find out which updates won't install correctly and then install them?

    View update history.

    For Windows Vista:
    http://Windows.Microsoft.com/en-us/Windows-Vista/see-which-Windows-updates-are-installed

    For Windows 7:
    http://Windows.Microsoft.com/en-us/Windows7/see-which-Windows-updates-are-installed

    For Windows Vista:

    http://Windows.Microsoft.com/en-us/Windows-Vista/troubleshoot-problems-with-installing-updates

    For Windows 7:

    http://Windows.Microsoft.com/en-us/Windows7/troubleshoot-problems-with-installing-updates

    TaurArian [MVP] 2005-2011 - Update Services

  • How can I find out what programs to uninstall?

    I am wanting to uninstall programs to increase the effectiveness of my computer. How can I find out what programs to uninstall and what are municipal for daily use?

    No one can answer this question but you.  The programs I use several times a day may be meaningless to you.  But in most cases, uninstalling software will not more 'effective' computer - only free up hard drive space.

    "papesow1987" wrote in the new message: * e-mail address is removed from the privacy... *

    I am wanting to uninstall programs to increase the effectiveness of my computer. How can I find out what programs to uninstall and what are municipal for daily use?

  • I try to use windows excel for windows vista and am asked for a product key. How can I find out what order to use the product?

    I try to use windows excel for windows vista and asks me to enter a product key. I am the sole owner of the computer but have no installation CD for recharge Excel. How can I find out what order to use the product? From now the product doesn't let me do anything. Help, please!

    Hello

    Did you pay for Office (including Excel) in a packaging separated when you bought your computer?

    Office is not included with your purchase of computer for free.

    Most new computers come with a trial version of Office that lets 'x' number of days usuage.

    After this test times out, you will have to buy Office.

    And the product key on the computer case or laptop for the operating system, not for the desktop Suite.

    Here is the link for the Microsoft Store to Office products:

    http://www.microsoftstore.com/store/msstore/HTML/pbPage.Office_Category_Page?ICID=Home_4up_1_OfficeCatPage

    And you might be interested in the free Open Office Suite of Office Applications.

    http://www.OpenOffice.org/

    For any other question about Office, please repost in the Office Forums:

    http://answers.Microsoft.com/en-us/Office

    See you soon.

  • don't know how to find out the server for my email information.

    I had to reinstall Windows Vista (my computer was a mess), and now I don't know how to get information on the mail server

    I don't know how to find out the server information I need

    to set up my email again.

    Also, my pictures 'lost' since I have done this?

    Hello

    Contact your ISP (Internet Service Provider); They provide your broadband / dial connection.

    Ask them to:

    1. your username with them

    2. your password with them.

    3 incoming mail POP3 server.

    4. the outgoing mail SMTP server

    All the settings that you need to come from them, not Microsoft; and they are usually happy to help you set up your e-mail program.

    You can use this guide to set up Windows Mail, too:

    http://Windows.Microsoft.com/en-us/Windows-Vista/Windows-mail-setting-up-an-account-from-start-to-finish

    @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

    A relocation normally wipes the hard clean everything, as part of the resettlement process.

    Two things you can try:

    1. find a windows.old folder (depends how you reinstalled Vista)

    "How to restore your personal files after performing an installation of Windows Vista or Windows 7"

    http://support.Microsoft.com/kb/932912

    2. This program has had good results in data recovery in circumstances similar to yours.

    http://www.Piriform.com/Recuva

    See you soon.

  • How can I find out what files are multiplying?

    More about 700 meg hard drive / day.    How can I find out what files are multiplying?   I have the total space 1 t, exhausted 600 g.   Is there a directory command in w7?

    Tried to reset in time earlier, but had «system restore did not finish sucsessfully.»  Your computer setttings, unmodified files.   unspecified error has occurred (Oxc0000022)

    Recently installed WD backup items and ran about 4 times, but says backup windows no backup has never been run.

    Thanks for any help:

    http://answers.Microsoft.com/en-us/newThread?Forum=Windows&threadtype=questions&cancelurl=%2Fen-us%2Fwindows

    Investigating disk space use to download, install and run Treesize (freeware) as an administrator.
    http://www.Jam-software.com/treesize_free/

    Place a Treesize shortcut on your desktop, right-click on the icon and select run as administrator to open Treesize. You must run as administrator to see all the files.

    Information about Treesize
    http://www.Jam-software.com/treesize_free/

    When you open Treesize scan select in the Menu and you will see a list of drives. Click on C and it will generate a list of files. Display names and 6 larger files sizes and the total at the top of the list.

Maybe you are looking for

  • Acer logo appears 2 times then starts windows.

    Hi entire community of Acer.I recently bought an Acer S670MG or computer M679G of office with the following specifications.Processor Intel core 2 due 3.1 ghz. 6 MB of L2 cache.6 GB of ram ddr3 to bus 1066 mhzNVIDIA Geforce 9800GT 512 MB/256bits exter

  • No imput to monitor

    HP G60 - 44OUS Notebook PC, the monitor, or the original screen went bad and I am using an external monitor that works very well. Today, I can't get the feedback on the external screen. I connected it to my TV. There work it very well. Today, it has

  • Smart phone BlackBerry Smartphones my BB does not start

    Hello BlackBerry, I'm having a problem, since this morning, my BB is not booting, I had removed the battery and tried to start, but just to show the logo of your BB with a white background as the image set: And I am currently in such a place for my w

  • what needs the permission of files program be on?

    Hey guys... every time I have to install an application on my windows 7, you can run it at first, but when I shutdown my laptop and turn it on, I cannot open the file: it is said there is a problem of permission, access denied (or something like that

  • How can I install the creative in a second computer cloud when Adobe do not recognize my adobe ID account?

    HelloI applied for a subscription Creative cloud € 59.99 for 1 year. I installed it on my laptop. I would like to install on my iMac, but when I try to do, window Adobe tell me that it does not recognize my adobe account ID. So I propose to buy the c