Kaspersky/Kaspersky Secure Connection/Kaspersky Safe KidsĮSET Cyber Security/ESET Cyber Security Pro
If you see Uninstall App or App Uninstaller, double-click it.įollow the on-screen instructions to uninstall the app.Īfter completing the uninstall, restart your Mac and install Norton.įor more information about removing a non-Norton security software on Mac, refer to the following support links: If the app is in a folder, open the app's folder to check for an Uninstaller. If an app isn't in a folder or doesn't have an Uninstaller, drag the app from the Applications folder to the Trash, then choose Finder > Empty Trash. On the menu bar, click Go > Applications. Click the Finder icon in the Dock to be in the Finder.I've seen countless of systems getting effected because people just have to double-click on "some_", "greetings-card.exe" or "dhl_tracking.exe" even with an up-to-date Anti-Virus.Uninstall the third-party security software If you want to be really safe re-flash the BIOS using the manufacturers instruction in-between the two.Ī lot of work given it's just an assumption based on some tech who hasn't put hands on the system to see whats going on…
boot from the Live CD and run a full system scan reconnect only the hard drive (and CD/DVD drive if you disconnected it too)ĩ.
download a Live Anti-Virus Rescue Disk e.g. enable the BIOS flash protection (see manual)Ħ. * usually done by removing the battery or a jumper on the motherboard and powering on (see manual)Ĥ.
disconnect all storage devices from the computer, hard drive, flash drives. If sophisticated enough it could write a backup copy into other parts of the computer, other hardware, like the hard drives boot sector, even firmware or NVRAM of other PCI devices.ġ. Since the BIOS is executed first thing at boot (even before you get to flash it) the virus could store itself in the buffer and rewrite itself back after the flash. using the Mac, or wipe them before connecting.Īll of this may come at some loss of data but then again, if you have to re-install once a week because of an infection you don't have much use for data anyway.
Only use original CD/DVDs, download and install drivers from the manufacturers homepage, download and install software & tools from the developers page.ĭon't connect and use any external mass storage device until you have an up to date anti-virus installed to scan them, better scan them e.g. The best suggestion I can give besides of that: One decent choice to scan everything would be ClamXav which detects both, Win & Mac malware.
However, it is worth noting that most Mac Anti Virus tools do not detect Windows malware. Your system is listed as Mac so that's already a good place to do such a thing as Windows malware usually doesn't effect OS X. So there are already multitude of places you will want to scan with an up to date anti-virus, better even wipe entirely. to install certain software, an external hard drive, USB memory stick, SD storage card, maybe even on another storage/computer within your network ~ I have seen malware infecting every single network location the system had write-access to. In my opinion/experience it is more likely the malware is hiding on some burned CD/DVD you are using e.g.
Then boot from this floppy disk (yes, floppy disk) and perform the flash as described by the vendor. If that isn't the case you will have to create a DOS boot disk with the BIOS flash utility suggested by the vendor and the BIOS file. If you are lucky the board has some easy-to-use flash utility built in and all you have to do is copy the BIOS file from the vendors page to a floppy disk or USB flash drive, reboot your system, press a certain key to access the flash utility and follow the instructions. Then get the make and model of your motherboard, visit the vendors support page and read about flashing the bios. Getting rid of it isn't rocket science, but does require some work.įirst of all you should boot your system, enter the BIOS and do enable the flash/write protection so it cannot be infected from within Windows again. It requires the BIOS to actually be write-able from within Windows which isn't always the case. To actually flash the BIOS from within Windows it needs to first bypass your Windows security like being run as an administrator which UAC should inform you of and your anti-virus (Windows Defender which is built into Win 8.1 or third-party).ģ. Honestly, I doubt the virus/trojan is coming from your BIOS.Ģ.