Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Unknown files


  • Please log in to reply
1 reply to this topic

#1 taytay93

taytay93

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:08:29 AM

Posted 03 December 2012 - 08:15 PM

After downloading something from the internet, I noticed a file saying 'sockets.log'. I put it in the trash and emptied it, but the same file came back again the next day.

Then I went on youtube to find out how to permanently delete files: 'how to permanently delete files' I opened up terminal and trash. In terminal I typed ''sudo rm -R '' and dragged the ''socket.log'' file from the trash to the terminal. After pressing enter it required a password. So I thought I needed to reset the password. So I restarted the computer, and held command s. Then I typed ''mount -uw /'' new line: ''rm /var/db/.AppleSetupDone'' new line: shutdown -h now''. Then I made a new administrator account but made sure it didn't have a password. When I logged in on this new account, I went to system preferences, accounts to remove the password on the original account. Then I logged into the original account and deleted the new administrator account.

So now that I thought that no password would be required, I tried to delete the file again the same way I did before: typed ''sudo rm -R'' into terminal and then dragged the .socket file from the trash into terminal, but again it required a password.

After this I went on google to find ways of removing viruses, but I think I may have visited a malicious site. I have a screenshot of it in my history, but I'm not sure how to put it on this post. Since visiting this site I saw a file saying ''user guides and information'' which contains weird things like 'airport regulatory certificate' which I am quite worried about because I'm travelling on Wednesday. I also noticed when going on my grandfathers ipad it asked for the password of his 'yahoo email' and knowing him, he would put it in. This laptop also seems to running slower than before.

If you could please tell me what I should do next, I'd really appreciate it. My email is [email]EDIT:removed to protect from Spambots~boopme

Edited by boopme, 03 December 2012 - 08:23 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,917 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:29 AM

Posted 03 December 2012 - 08:40 PM

Hello, these fiels are created by an application namedutorrent.


Avoid peer-to-peer (P2P) file sharing programs (i.e. Limewire, eMule, Kontiki, BitTorrent, BitComet, uTorrent, BitLord, BearShare). They too are a security risk which can make your computer susceptible to malware infections. File sharing networks are thoroughly infected and infested with malware according to Senior Virus Analyst, Norman ASA. Malicious worms, backdoor Trojans IRCBots, and rootkits spread across P2P file sharing networks, gaming, porn and underground sites. Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads and malicious Flash ads that install viruses, Trojans, and spyware. Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users. The best way to reduce the risk of infection is to avoid these types of web sites and not use any P2P applications.


Although some uses are legitimate most are for pirating software and these files are commonly infected.. Thet trade you free software for malware as they want to steal info.

This is most likely where the infections are from as it is hard to infect a MAC.

I would remove the Torrent app and scan with this free Antivirus. SOPHOS

Edited by boopme, 03 December 2012 - 08:41 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users