This discussion is archived
2678 Views 45 Replies Latest reply: Feb 28, 2006 4:38 PM by Badunit
It may be a new variant of "OSX.Inqtana.A", based on the original.
You should check to see if Sophos has new virus definitions for this or contact them.
Author: Troubleshooting Mac® OS XPM G5 Dual 2.3GHz, iBook 700, more!, Mac OS X (10.4.4)
What Antivirus program should we all be using? Norton or Intego? I don't want one that slows down the computer to a crawl or cause OS issues.
Now that Macs are unsafe as a PC/Windows. Buyers don't really see the advantage of having a Mac anymore.PowerBook AL 1.67 GHZ. HR (Hardly Reliable), Mac OS X (10.4.4), 1.67 GHz, 1 GB RAM
Currently Being ModeratedFeb 21, 2006 9:00 AM (in response to SuperSizeIt)"Now that Macs are unsafe as a PC/Windows. Buyers don't really see the advantage of having a Mac anymore. "
There is, at this time, a world of difference between the safety and security of Windows and those using the Mac OS. While no one knows how long it will last we still don't face the constant and unending barrage of viruses, trojans, worms and other malware that is released for Windows users every single day. That may change, but for now it still holds true that the Mac is far far safer and vastly more secure than Windows.
I believe the advantages of owning a Mac, other than security, play more of a part in the purchasing decision that you are giving credit for.G-4 933, 2.0 Ghz G-5 iMac, G-3 Graphite iMac, 1.25Ghz eMac, Mac OS X (10.4.3)
Currently Being ModeratedFeb 21, 2006 9:07 AM (in response to Al Van Malsen)I think your wrong there. Just about everyone who I know that has switched to Mac considers security as a purchasing factor. Anyway, which one is the most compatible nowadays with Apple? Intego or Norton? Or is there another brand?PowerBook AL 1.67 GHZ. HR (Hardly Reliable), Mac OS X (10.4.4), 1.67 GHz, 1 GB RAM
I came in this morning and saw the same thing. It's not the Inqtana-A virus.
This one is listed as Inqtana-B. I can't open any Microsoft programs. Illustrator won't open. Sophos is scanning right now.
I had Sophos delete a ton of Microsoft Office 2004 file, so many that I can no longer use Office unless I reinstall. Just for curiosity, I ran the immediate scan and about 2/3 through it's found 145 instances of OSX/Inqtana-B.
Personally, I'm going to call BS on this because I have not had Bluetooth on and that is supposedly how the virus / worm is spread. I'm going to look at the log files when this thing is done running, then I'll check to see how badly this thing messed up my computer. I'll report back in a bit.PowerBook 15 1.67GHZ, Mac OS X (10.4.5)
Currently Being ModeratedFeb 21, 2006 9:29 AM (in response to SuperSizeIt)OSX/Inqtana-B, from Sophos' website.
SuperSizelt, I would go with Intego's products, because they aren't intrusive and that many people have reported issues with Symantec products, including products from the Norton family.
dj john, Bluetooth is this wrom/virus' way of spreading automatically, however, it can very well have spread manually, if it was contained in an Office document that you got by email, for example.
Edit : Who are BS, by the way ?Mac mini1.25 Ghz G41 GB RAM40 GB HDDAirPort Extreme, Mac OS X (10.4.5), External 250 GB LaCie HDDLaCie FW DVD-RW DL 16x20 GB iPod w/Color Display
I also have this virus message coming up today and I have no idea how to get rid of it. If it is true that it is spread when bluetooth is on then that would make sense because I always leave mine on.
Please tell me how to get rid of it!Powerbook G4, Mac OS X (10.4.5)
This can turn out to be a potential major issue for Mac users. I hope Apple sends a patch or fix right away.
http://www.macintouch.com/#tips.2006.02.21PowerBook AL 1.67 GHZ. HR (Hardly Reliable), Mac OS X (10.4.4), 1.67 GHz, 1 GB RAM
Currently Being ModeratedFeb 21, 2006 10:01 AM (in response to SuperSizeIt)I think this is a Sophos issue. I sent them an email and here's what I got back:
It's probably a false positive in the detection. We are going pull that
detection until we can correct the matter."
I noticed that Sophos updated the IDE file shortly after they posted the original. I'm guessing there isn't a problem. If you don't have Sophos set to delete the files automatically, you can drag them back into your Applications > Microsoft Office _ > Office folder and it should work. I don't know about any other programs.
I'm going to reinstall my OS tonight just to be safe, but I think this was a MAJOR issue coming from Sophos.PowerBook 15 1.67GHZ, Mac OS X (10.4.5)
Currently Being ModeratedFeb 21, 2006 10:02 AM (in response to SuperSizeIt)Okay, so OS X is just as insecure as Windows because there are a couple of trojans that require manual user intervention to run and spread, while Windows has literally tens of thousands of viruses that can install and spread themselves without user intevention or even knowledge?!
So with this B variant, my count of total OS X trojans is now up to 6, and still 0 viruses for OS X. And these latest ones use pure social engineering; no system vulnerabilities are exploted at all. Really insecure...
The Safari thing they're talking about today is an actual vulnerability, although as far we know no one has made an exploit for it yet.
We should all be careful about what files we download and run, and maybe we're arriving at the point that we need to run anti-malware software, but OS X is a far cry from being as vulnerable as Windows.2.0GHz 20 iMac G5, Mac OS X (10.4.4)
Wow is it that easy to wipe out your drive with a simple modification of this virus?
I found this post on ZDNET:
"Do you know how easy it would be to change the example's shell script into one that deletes all of a user's personal files? Let me help:
rm -rf ~/"PowerBook AL 1.67 GHZ. HR (Hardly Reliable), Mac OS X (10.4.4), 1.67 GHz, 1 GB RAM