Jump to content

Got my very first virus through an unusual way, possible FP?


Recommended Posts

Hello,

 

I was backing up my dad's Iphone 4s today via itunes 11.1 when all of a sudden my Avast Internet Security started beeping like crazy and began blocking the backup  process. I thought it was just a false positive so I ignored it and continued the process. However, much to my suprise, I found 4 viruses (all related to the backup) after running a full scan with my Malwarebytes Pro.

 

Could this be a false positive? I've never heard of  anyone getting a virus while backing up their Iphone. Also, this is the first virus I've recieved since using Malwarebytes Pro+ Avast for 4 years.

 

 

Thanks!

Link to post
Share on other sites

Oops sorry, I forgot to post the malwarebytes log:

 

 

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Database version: v2013.10.04.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Mark :: MARK-HP [administrator]

Protection: Enabled

10/4/2013 1:30:36 AM
mbam-log-2013-10-04 (01-30-36).txt

Scan type: Full scan (C:\|D:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 365877
Time elapsed: 31 minute(s), 58 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 4
C:\Users\Mark\AppData\Roaming\Apple Computer\MobileSync\Backup\064cc740e5b8084760e5d3ee593dbec9194827f4\602dc30f7df98257fc82198a7c33af89d974a923 (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Users\Mark\AppData\Roaming\Apple Computer\MobileSync\Backup\064cc740e5b8084760e5d3ee593dbec9194827f4\9c41e811b9760b3cfcbca4914bbd65aa7a19c792 (PUP.Optional.Bandoo) -> Quarantined and deleted successfully.
C:\Users\Mark\AppData\Roaming\Apple Computer\MobileSync\Backup\064cc740e5b8084760e5d3ee593dbec9194827f4\a2b5d708699050811808f52eb3e77bd5ff16687e (Rootkit.0Access.ED) -> Quarantined and deleted successfully.
C:\Users\Mark\AppData\Roaming\Apple Computer\MobileSync\Backup\064cc740e5b8084760e5d3ee593dbec9194827f4\f02777b24ab165689d0efa9d8127d082cb51c62d (PUP.Optional.Amonetize.AS) -> Quarantined and deleted successfully.

(end)
 

Link to post
Share on other sites

If both avast and Malwarebytes see it as an infection then I doubt its a false positive.

 

Hi Advanced Setup,

 

I suspected as much, even Superantispyware found a trojan.downloader via a safe mode scan. Can I please ask for your assistance, if you can, to make sure my laptop is 100% clean? I would reformat it but but I currently do not have a storage device and all my school/work files are here.

 

Also, should I restore my dad's phone back to default? Although, I still don't understand how he got with a virus though. I always thought Iphones were impervious to viruses/malware and his Iphone has never been jailbroken before.

 

Thanks!

Link to post
Share on other sites

  • Root Admin

It probably really has nothing to do with the iPhone and is just some files or entries on the computer that are causing it to be flagged.

No operating system is impervious to infections but is certainly less likely to be attacked than a PC.

 

I would suggest following the advice from the topic here Available Assistance for Possibly Infected Computers and having one of the Experts assist you with looking into your issue.

If you want me to assist you then just post that in your new topic and send me  PM with the link to your new topic.

 

Thanks

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.