Skip navigation

HT5244: About Flashback malware

Learn about About Flashback malware

HT5244 Does this apply to Mountain Lion 10.8.1?

407 Views 7 Replies Latest reply: Aug 27, 2012 3:48 PM by MadMacs0 RSS
VoilaMagic Level 1 Level 1 (0 points)
Currently Being Moderated
Aug 27, 2012 8:46 AM

Do we need this in Mountain Lion 10.8.1. ?

MacBook Pro, OS X Mountain Lion (10.8.1), non-retina
  • hpr3 Level 5 Level 5 (5,700 points)
    Currently Being Moderated
    Aug 27, 2012 9:23 AM (in response to VoilaMagic)


  • MadMacs0 Level 4 Level 4 (3,315 points)
    Currently Being Moderated
    Aug 27, 2012 9:34 AM (in response to VoilaMagic)

    VoilaMagic wrote:


    Great. How do I remove it (it's not located in the applications/utilities list), I installed it when the recent malware/hacking was in the press. It installed on Mountain Lion.

    I'm guessing that your are referring to one of the Flashback Malware Removal Tools, but you didn't really tell us that.


    If so, then it removed itself after checking and not finding anything. It's a one-time thing.


    Also, Flashback has not been observed for several months now, so it's should probably not be of any concern to you. If Apple determines that you need it you will find it posted as a Software Update. There should be no need to download it again.

  • MadMacs0 Level 4 Level 4 (3,315 points)
    Currently Being Moderated
    Aug 27, 2012 11:25 AM (in response to MadMacs0)

    VoilaMagic wrote:


    The dmg states "MalwareRemoval.dmg". I'm sure your explaination is correct, regardless of the .dmg name.

    Actually, I'm not certain that it does. The Apple document HT5244 refers to a couple of Java updates for Snow Leopard and Lion as well as a standalone tool for Lion users that do not have Java installed. That tool can be downloaded from DL1517 and the file itself is called FlashbackMalwareRemover.dmg.


    So you must have something else. I thought I had all such tools, but I can't find anything with that name on my hard drive and when I Google that term the only place I find it is your entry above.  Any idea where you got it from?

  • MadMacs0 Level 4 Level 4 (3,315 points)
    Currently Being Moderated
    Aug 27, 2012 3:48 PM (in response to VoilaMagic)

    VoilaMagic wrote:


    I have 3 versions, I only download from I hope they are all the same- just for different OS X versions.


    For Four Macs (3 malware versions?), Here they are:


    1. Snow Leopard, Macbook Pro The dmg  is "MalwareRemoval.dmg" was downloaded from (2010 or 2011?).

    Ahh, memory lane. That came out in the Spring of 2011 to remove the MacDefender malware (which had a lot of other names) at the time. The only trace I can find was How to avoid or remove Mac Defender malware. It was in the Snow Leopard 10.6.7 time frame and Security Update 2011-003 was the next step which implemented a somewhat buggy XProtect System the was subsequently fixed by OS X 10.6.8. There are signatures in XProtect for all known variants of MacDefender and I believe the developers are mostly behind bars at this time, so it looks like the answer to your question is a definite no.

    I do not see any of these in the Utilities nor Applications.

    And the earlier version behaved exactly as I described for the Flashback versions. They do a scan and remove any of the malware they were programmed to find, then delete all traces of themselves. They aren't even installed in Applications or Utilities during the few seconds they are active, but are tucked away within the system.

    I am having some battery problems with my new Macbook Pro and the 2008 Macbook Air (speed/response problems), so I researched the Malware download, as an Apple person advised that some people use malware products that scan all files and it can drain the battery quickly. When I did this reasearch, I found this article and posed the question, as you see.

    Unlikely to be any form of malware. I suggest you start a new thread describing your issues in more detail and I'll guarantee you'll get more advice on how to clear this up than you can stand.


More Like This

  • Retrieving data ...

Bookmarked By (0)


  • This solved my question - 10 points
  • This helped me - 5 points
This site contains user submitted content, comments and opinions and is for informational purposes only. Apple disclaims any and all liability for the acts, omissions and conduct of any third parties in connection with or related to your use of the site. All postings and use of the content on this site are subject to the Apple Support Communities Terms of Use.