Certificate Authenticity for TinyOwl.com

Hi Everyone -

I recently installed Kaspersky Internet Security and keep getting a message stating that the certificate of authenticity for TinyOwl.com is invalid despite never attempting to visit the site or any similar site. The message seems to pop up randomly when I'm browsing the web and then eventually goes away automatically:

In addition, the company seems to have gone out of business in 2016. Can someone help me to explain why Kaspersky keeps warning me about the site despite my having never tried to visit it? Is it the sign of a virus or a compromised machine? Thanks again

Uninstall Kaspersky. It is not need and it may cause problems.

Hello cbg2115,

You might have adware that is trying to connect to that URL. I wrote a little diagnostic program to help show what adware is installed. Download EtreCheck from https://www.etrecheck.com, run it, and paste the results here. EtreCheck is perfectly safe to run, does not ask for your password to install, and is signed with my Apple Developer ID. When you are done, EtreCheck can be thrown in the trash.

If adware is installed, EtreCheck will help you remove it, although you may have to supply a password. If you aren’t comfortable with that, just post the EtreCheck report here and other helpers can tell you exactly what files need to be deleted and how to do so.

Disclaimer: Although EtreCheck is free, there are other links on my site that could give me some form of compensation, financial or otherwise.

Hello,

Thank you for your reply

The following includes the report:

EtreCheck version: 3.4.2 (436)

Report generated 2017-08-10 21:56:05

Download EtreCheck from https://etrecheck.com

Runtime: 3:57

Performance: Good

Click the [Lookup] links for more information from Apple Support Communities.

Click the [Details] links for more information about that line.

Problem: Other problem

Description:

It seems as if my computer has been compromised by a hacker

Hardware Information: ⓘ

MacBook Pro (Retina, 15-inch, Late 2013)

[Technical Specifications] - [User Guide] - [Warranty & Service]

MacBook Pro - model: MacBookPro11,3

1 2.3 GHz Intel Core i7 (i7-4850HQ) CPU: 4-core

16 GB RAM Not upgradeable

BANK 0/DIMM0

8 GB DDR3 1600 MHz ok

BANK 1/DIMM0

8 GB DDR3 1600 MHz ok

Bluetooth: Good - Handoff/Airdrop2 supported

Wireless: en0: 802.11 a/b/g/n/ac

Battery: Health = Replace Soon - Cycle count = 1138

Video Information: ⓘ

Intel Iris Pro - VRAM: 1536 MB

NVIDIA GeForce GT 750M - VRAM: 2048 MB

Color LCD 2880 x 1800

Disk Information: ⓘ

APPLE SSD SM0512F disk0: (500.28 GB) (Solid State - TRIM: Yes)

[Show SMART report]

(disk0s1) <not mounted> [EFI]: 210 MB

(disk0s2) <not mounted> [CoreStorage Container]: 499.42 GB

(disk0s3) <not mounted> [Recovery]: 650 MB

USB Information: ⓘ

USB30Bus

Apple Inc. Apple Internal Keyboard / Trackpad

Apple Inc. BRCM20702 Hub

Apple Inc. Bluetooth USB Host Controller

Thunderbolt Information: ⓘ

Apple Inc. thunderbolt_bus

Virtual disks: ⓘ

Macintosh HD (disk1 - Journaled HFS+) / [Startup]: 499.06 GB (356.64 GB free)

Encrypted AES-XTS Unlocked

Physical disk: disk0s2 499.42 GB Online

System Software: ⓘ

OS X El Capitan 10.11.6 (15G1611) - Time since boot: about 2 hours

Gatekeeper: ⓘ

Mac App Store and identified developers

Kernel Extensions: ⓘ

/Library/Application Support/Citrix Receiver

[not loaded] com.citrix.kext.gusb (12.4.0 - SDK 10.9) [Lookup]

/Library/Application Support/IPVanish-OpenVPNHelper/bin

[not loaded] foo.tap (20111101) [Lookup]

[not loaded] foo.tun (20111101) [Lookup]

/Library/Application Support/Kaspersky Lab/KAV/Bases/Cache

[loaded] com.kaspersky.kext.kimul.46 (46) [Lookup]

[loaded] com.kaspersky.kext.mark.1.0.6 (1.0.6 - SDK 10.9) [Lookup]

/Library/Extensions

[loaded] at.obdev.nke.LittleSnitch (4.0.2 - SDK 10.11) [Lookup]

[loaded] com.kaspersky.kext.klif (3.5.1a7) [Lookup]

[loaded] com.kaspersky.nke (2.1.0) [Lookup]

System Launch Agents: ⓘ

[not loaded] 7 Apple tasks

[loaded] 156 Apple tasks

[running] 76 Apple tasks

System Launch Daemons: ⓘ

[not loaded] 48 Apple tasks

[loaded] 156 Apple tasks

[running] 86 Apple tasks

Launch Agents: ⓘ

[loaded] 6H4HRTU5E3.com.avast.passwords.Agent.plist (AVAST Software a.s. - installed 2017-02-17) [Lookup]

[running] at.obdev.LittleSnitchHelper.plist (Objective Development Software GmbH - installed 2017-08-10) [Lookup]

[running] at.obdev.LittleSnitchUIAgent.plist (Objective Development Software GmbH - installed 2017-08-10) [Lookup]

[loaded] com.citrix.AuthManager_Mac.plist (? 1ce99fae d10bd3ad - installed 2017-01-12) [Lookup]

[running] com.citrix.ReceiverHelper.plist (? bbfad3f1 7e1c3222 - installed 2017-01-12) [Lookup]

[running] com.citrix.ServiceRecords.plist (? 8e6543d 27768e09 - installed 2017-01-12) [Lookup]

[running] com.kaspersky.kav.gui.plist (Kaspersky Lab UK Limited - installed 2017-08-06) [Lookup]

Launch Daemons: ⓘ

[running] at.obdev.littlesnitchd.plist (Objective Development Software GmbH - installed 2017-08-10) [Lookup]

[loaded] com.adobe.fpsaud.plist (? 2afb3af7 85012398 - installed 2017-07-24) [Lookup]

[loaded] com.citrix.ctxusbd.plist (? 44dc9c9f 7c15dcb9 - installed 2016-11-09) [Lookup]

[loaded] com.ipvanish.helper.openvpn.plist (Mudhook Marketing, Inc. - installed 2016-10-07) [Lookup]

[loaded] com.ipvanish.helper.pppd.plist (Mudhook Marketing, Inc. - installed 2016-10-07) [Lookup]

[running] com.ipvanish.osx.vpnhelper.plist (Mudhook Marketing, Inc. - installed 2017-03-30) [Lookup]

[running] com.kaspersky.kav.plist (Kaspersky Lab UK Limited - installed 2017-06-28) [Lookup]

[running] com.malwarebytes.HelperTool.plist (Malwarebytes Corporation - installed 2017-06-14) [Lookup]

[loaded] com.microsoft.office.licensing.helper.plist (? 6d8cb30e 7ca9944 - installed 2015-06-04) [Lookup]

User Launch Agents: ⓘ

[loaded] com.google.keystone.agent.plist (Google, Inc. - installed 2017-07-10) [Lookup]

User Login Items: ⓘ

iTunesHelper Application (Apple, Inc. - installed 2017-08-05)

(/Applications/iTunes.app/Contents/MacOS/iTunesHelper.app)

Internet Plug-ins: ⓘ

SharePointBrowserPlugin: 14.7.1 (installed 2017-01-29) [Lookup]

CitrixICAClientPlugIn: 12.4.0 (installed 2017-01-12) [Lookup]

QuickTime Plugin: 7.7.3 (installed 2017-08-05)

Flash Player: 26.0.0.151 (installed 2017-08-08) [Lookup]

FlashPlayer-10.6: 26.0.0.151 (installed 2017-08-08) [Lookup]

Default Browser: 601 (installed 2016-07-08)

User internet Plug-ins: ⓘ

thinkorswim plugin_x86_64: thinkorswim_x86_64 1.0.0.0 (installed 2017-08-10) [Lookup]

tossc plugin_x86_64: TOS Sharing Center plugin_x86_64 1.0.0.0 (installed 2017-08-10) [Lookup]

WebEx64: 1.0 (installed 2017-01-30) [Lookup]

Safari Extensions: ⓘ

[enabled] AdBlock - BetaFish, Inc. - https://getadblock.com (installed 2017-01-18)

3rd Party Preference Panes: ⓘ

Flash Player (installed 2017-07-24) [Lookup]

Time Machine: ⓘ

Time Machine not configured!

Top Processes by CPU: ⓘ

62% JavaApplicationStub

18% Little Snitch Network Monitor

17% WindowServer

3% kernel_task

2% Google Chrome

Top Processes by Memory: ⓘ

1.07 GB kernel_task

868 MB JavaApplicationStub

713 MB com.apple.WebKit.WebContent

639 MB Safari

583 MB Google Chrome Helper

Top Processes by Energy Use: ⓘ

21.78 JavaApplicationStub

19.14 WindowServer

9.26 Little Snitch Network Monitor

3.84 Dock

Virtual Memory Information: ⓘ

2.12 GB Available RAM

81 MB Free RAM

13.88 GB Used RAM

2.04 GB Cached files

0 B Swap Used

Software installs: ⓘ

Adobe Flash Player: (installed 2017-07-12)

Kaspersky Internet Security: (installed 2017-08-06)

Adobe Flash Player: (installed 2017-08-08)

Kaspersky Secure Connection: 1.0.2 (installed 2017-08-10)

Install information may not be complete.

Diagnostics Information: ⓘ

2017-08-10 19:21:32 Last shutdown cause: 3 - Hard shutdown

Standard users cannot read /Library/Logs/DiagnosticReports.

Run as an administrator account to see more information.

Thank you for your help

In addition, I received a "The Certificate for this server is invalid" message from Kaspersky for "SYMANTEC.COM.SSL.D1.SC.OMTRDC.NET" as well when browsing chrome even though I never entered anything similar into the URL bar. I've received these warnings a couple of times now.

Uninstall AVAST and Kaspersky for the same reason I provided in my post above.

Hello again cbg2115,

I see no evidence of any hacking activity. It may be just a bug in Kapersky. That IP address resolved to Amazon. The reverse DNS lookup is probably invalid. You have some app or ad that connect to AWS (AKA the internet) and is being incorrectly reported as connecting to tinyowl.com.

Thank you for the feedback.

Do you know anything about "SYMANTEC.COM.SSL.D1.SC.OMTRDC.NET"? I read online that it may be malicious but haven't found anything definitive.

"Uninstall AVAST and Kaspersky for the same reason I provided in my post above."

I did uninstall Avast (or atleast tried to) but how would uninstalling Kaspersky and having no anti virus at all make my computer safer?

Your Mac already has antivirus software from Apple. It is included in the operating system.

Symantec is another antivirus company. You do not need AVAST, Kaspersky, nor Symantec. Uninstall all these third party apps and do not install any if you are thinking about it.

BobTheFisherman - I don't have Symantec Antivirus installed - I just sometimes get the certificate warning for "SYMANTEC.COM.SSL.D1.SC.OMTRDC.NET" when I'm searching the web and I don't know why

Also, in the Web Antivirus report section of Kaspersky, it says that the program name related to www.tinyowl.com is com.apple.Webkit.Networking. Does anyone know what this means?

Thanks again

I'll try once more, uninstall all third party antivirus apps. They are not needed, they may cause problems, they may report false information.

最後更新：2017-08-23 23:31:29

Certificate Authenticity for TinyOwl.com

上一篇： Voice to text translation

下一篇： Chrome tells me my printer is not installed cor...

相關內容

熱門內容

最新內容