iservices trojan
iServices Trojan Removal Tool 1.1
Removes iWork & Photoshop trojan horse spyware. more>>
iServices Trojan Removal Tool 1.1 allows you to remove the iWorkServices Trojan horse from infected Macintosh computers running Mac OS X. This tool is in response to a new spyware trojan horse (OSX.Trojan.iServices.A) in the wild that comes bundled with pirated copies of Apple's (AAPL) iWork 09. When infected copies of the iWork 09 installer are run, they install a hidden trojan program called iWorkServices with full access rights to the target computer. Once the trojan is installed, it will attempt to connect to a remote server and provide the server with the infected computer's network location. It then listens for further instructions from the remote server, which may include instructions to download additional components. iWorkServices Trojan removal tool will remove this malware.
Trojan Wrangler 1.0
Trojan Wrangler is a simple to use, yet sophisticated utility which scans media files for the resources that Mac OS X uses to locate code. more>>
Trojan Wrangler 1.0 is a simple to use, yet sophisticated utility which scans media files for the resources that Mac OS X uses to locate code. There's some concern that Trojan horse programs can be hidden in certain media files (MP3, AAC, GIF, JPEG). There are plenty of other ways to disguise programs as other sorts of files so unsuspecting users can be tricked into running them, but if this particular issue is a concern Trojan Wrangler will let you scan any downloaded media files for hidden code.
nhTrojanDetector 1.0
nhTrojanDetector is such a small yet very useful application that helps to detect Trojan Horses, malign programs disguised in files. more>>
nhTrojanDetector 1.0 is such a small yet very useful application that helps to detect Trojan Horses, malign programs disguised in files. Usually a Trojan Horse has an extension of type .mp3 or .jpg, etc., to mislead the user.
- Mac OS X 10.2 or later.
Zebra scanner 2.0.2
Zebra scanner - Scan your Mac for trojans more>>
Zebra scanner is intended to search for applications, hidden behind another extension than app . It checks if any of the files in the selected folder(s) has either the real extension .app or the file type APPL. In Mac OS >= 10.3 the program also checks if the item is considered an executable by the OS which can be activated by double-click or otherwise.
The program is meant to be a fast and easy way to retrieve trojan viruses, disguised as an image, MP3, movie, folder etc. thus avoiding that a hidden application can be double clicked by accident and do damage to your Computer. Zebra scanner can also examine classic data.
Enhancements:
- Tiger compatibility.
Zebra Scanner is a userfriendly, secure and reliable application to trace down trojan viruses ... to trace down trojan viruses. Trojans, description; A Trojan refers to a program that appearsPPSee 1.21
PPSee is a software for creating picture galleries of photos taken by the digital camera, scanner etc more>>
Main features:
- the program uses national languages.
- the photo album provides automatic picture projection - slide show
- to move among the pictures in the photo album you can use navigation keys.
- each of the pictures can contain your description, which is saved for later use.
- you can rotate images without any modification of the original file
- photo album is based on a valid code XHTML 1.0 Strict
- the photo album does not need support from any server.
- the program has many attributes affecting the look of the created photo album.
- support of the scripting language BeanShell for greater latitude when creating the photo album.
- you can create their own templates of the photo album.
- registered users can use a batch mode from a command line
- the program can read EXIF information.
- the program runs on the systems such as Windows, Linux, MacOS, OS/2 and Solaris, as well as the photo album.
- registered users can also use new versions of the program.
- the author does not insert into program any form of malware, including: spyware, trojans and backdoors.
Enhancements:
- Photo album is created by a standard XHTML 1.0 Strict.
- You can rotate images without any modification of the original file.
- Bug fixing.
hardscan 1.0
Utility to detect open ports if netstat may be compromised more>> Utility to detect open ports if netstat may be compromised
Hardscan is a local netstat replacement that scans for open ports the hard way: by binding to each of them and attempting to handshake with itself.
Hardscan is meant to be useful in a situation where you may have been rooted, rendering the output of netstat and other security tools untrustworthy.
If the program is unable to handshake with itself, for whatever reason (perhaps something intercepted the handshake, perhaps something was already running on that port, etc) it is an indicator that tcp or udp port being checked is already in use.
Although this could be a trojan, virus, or hacker connection, it is also quite possible that it is a legitimate connection.
As the "Ephemeral" high-numbered ports are scanned as well, there is a chance that any outgoing activity (for instance browsing the web while the scan is running) will be picked up.
Of particular note in this program is "--fast" mode. In this state, the scanner does not attempt to handshake with itself, and thusly is not detecting as rigorously.
In theory the OS could be lying to the scanner and simply saying that the socket was opened succesfully, but in practice most trojans are not going to be that sophisticated. Fast mode trades off this verification in order to run much, much, much faster.
System requirements:
- Python
Cerberius 1.0
Cerberius - Makes sure files are not hidden executables more>>
Every time a file is downloaded, it checks whether the file put into its folder really is what it claims to be.
The download folder must be set to be this folder. Other shady files from other sources (CD-ROM, file sharing...) can be dropped into the Cerberius folder to be checked. When a file cannot be trusted, it is placed in the Trash; the user is then notified, and can empty the Trash if they wish so.
TCstripper 1.1
TCstripper scans files for inappropriate Type & Creator (potential trojan horses) more>>
TCstripper is an AppleScript droplet to check if files with document file extensions (eg. MP3, PDF, JPG) contain Mac OS Type & Creator information which enables the file to execute potentially malicious code if openend by double clicking or Cmd-O in the Finder.
TCstripper allows to check multiple files, folders, and nested folders at once by drag&drop.
TCstripper identifies suspicious files and then offers to trash it or to deactivate the inappropriate Type & Creator info so the file can be openend without the ability to execute code which can be hidden in ID3 tags of MP3 files for example.
Enhancements:
- Added: Ability to process nested folders
- Added: Ability to trash files
- Added: Ability to skip files
- Added: Quit dialog
- Added: ReadMe.
Virex 6 Virus Definitions 5/1/07
Virex 6 Virus Definitions - Virus defs for Virex 6.2 more>>
To protect yourself against these virus threats, download and install the latest Virus Update file every month.
They hold information that allows the program Virex to eliminate the newest viruses, trojan horses, and other harmful things on your computer.
KirkyKitty Screensaver 1
KirkyKitty Screensaver is a program showing Bubbles from aqua plants and wandering cute fishes on the desktop. more>>
KirkyKitty Screensaver 1 is a program showing Bubbles from aqua plants and wandering cute fishes on the desktop. This is a freeware screensaver. This application does not contain viruses, trojan horses or any code which can damage your Operating System and do not steal any data from your computer.
Virex 7 Virus Definitions 08/01/07
Virex 7 Virus Definitions - Update Virex for Mac OS X with the latest virus definitions more>>
Virex Virus Definitions are released as needed. Also known as a DAT file, they hold information that allows the program Virex to eliminate the newest viruses, trojan horses, and other harmful things on your computer.
This update package replaces the virus definition (DAT) files and the virus-scanning engine within your Virex 7 installation.
These items help Virex to keep your Apple computer free of viruses, Trojan horses and other malicious code.
eliminate the newest viruses, trojan horses, and other harmful things on your computer. This ... These items help Virex to keep your Apple computer free of viruses, Trojan horses and otherLicense:Freeware
whatPorts 1.1
whatPorts is a multi-threaded port scanner written in cocoa more>>
The scanner will cycle the ports on the host entered, and report back any ports that are open, attempting to match the port with its registered port database to determine the service that is most likely running on that port.
If the service can be determined, then it will inform you, otherwise, it will tell that it is unknown. Tests have shown that this scanner tends to run significantly faster than the scanner shipped with OS X, also, it goes one step beyond by telling you what service is most likely running on that port.
Enhancements:
- This version added a descriptive progress indicator, a port lookup database to determine the service running on a given port, and a tighter scanning algorythm.
- Also now allows any host to be scanned, not just the local host.
Bye_Leap-A 1.0
Bye_Leap-A - Automator script to defeat Leap-A more>>
Thanks to Macworld.com for the removal process.
Enhancements:
- Initial Release.
ChkRootKit_MacOSX 0.47.5
ChkRootKit - Detect worms/trojans/viruses more>>
For extended explanations, consult web site of "chkrootkit" - http://www.chkrootkit.org/
CheckMate 1.0 Beta3
Generate and compare secure MD5 checksums of critical files more>>
Checkmate is a preference pane for MacOS X 10.1 or higher that allows you to generate and compare secure MD5 checksums of critical files. This can be used to detect whether these files have been altered by viruses, root kits, trojan horses, or other possibly malicious programs.
NOTE: The choice of files that are checked by default was derived by examining a number of other file system checksumming (or tripwire-type) systems on other UNIX-like platforms. If you believe that there are other OSX-specific files that should get checked for malicious alteration, please send me your suggestions for possible inclusion.
Major Features:
- Checksum validation can be run manually from inside the preference pane, and/or scheduled to run hourly, daily, weekly, monthly, or each time you restart.
- If the validation process finds any files whose checksums don't match the values stored, several notification options can be triggered, including a popup dialog and email.
- In addition to the default list of files that are included for validation, you can easily add and remove additional files that you wish to validate.
- You can also export the list of file checksums to a file to be stored somewhere other than the computer it was made on (such as on your iDisk).
- You can then later load this externally-stored file back into the preferences panel to verify that the checksum
This can be used to detect whether these files have been altered by viruses, root kits, trojan- Page: 1 of 2
- 1
- 2
