_reportmemoryexception is a normal Unix function that is part of the BSD distribution of Unix the Mac OS is built over.
https://www.unix.com/man-page/mojave/8/reportmemoryexception
_nearbyd I'm not sure about, other than the d at the end normally signifies it loads as a daemon at startup.
As in the thread you refer to, if you have a suspicion that you may have been hacked (which you almost certainly were NOT):
Please run Etrecheck and post its full report here. Use the "additional text" button and paste the report into the text box.
The report will flag possible issues, including files suspected of being malware.
By posting the report here, more experienced users will be able to look at it and help you fix things or - more likely - help you be confident that things are fine.
Never mind. I just listed the user accounts on my Mac where I have a (mostly) clean install of Catalina. _nearbyd is normal.
Suggestion: Stop spending so much of your time looking for gremlins.
What you did was help a loser infect Excel with an unwanted macro. Never, never, ever enable macros on a Word or Excel document you don't know the origin of.
Every Excel file you create or open from this point on will possibly have this macro attached to it. These are virtually all Windows malware macros that can't do any harm to a Mac, but you may now a carrier.
Close Excel. Go to this folder in your user account:
/Users/your_account/Library/Group Containers/UBF8T346G9.Office/User Content/
Open these two subfolders:
Chart Templates
Templates
Delete any files with an Excel icon. A template for Excel is typically named Book1.xltx. The number 1 will increment. But it will probably be whatever the crook named it. This assuming Excel automatically saved the template after opening the infected file.
Normal.dotm is Word's template. You don't need to remove that.
If you've opened and resaved any of your own Excel documents, or created new ones since opening the garbage file in the email, open those. If they ask to load a macro, deny it. Open a new, blank document. Copy/paste the data from the infected document into the blank one. Save that and then close and throw the old one away.
Thank you. I will definitely try that.
See what happened was, I opened a spam email, from a real company which said I owed money and they were sending me my statement on an excel sheet. This excel sheet was password protected; they did provide the password. So instead of catching that it was a spam I fell for it and opened it. It then asked me to enable macros, which I did. I couldn’t see the actual statement as there was this message in a box that said to click on the yellow bar on top to “enable editing”. However, there was no yellow bar so I couldn’t proceed. I thought it was an error on my end so I closed it down and tried again, this time I did not enable macros. When that also didn’t work, I just closed it out again. I called the number under the email’s signature. The lady who answered told me it was probably spam and that I should change my password. Which I did. Anyhow, I panicked after and searched the web. I came across this article,
and now I’m just trying to make sure nothing was actually download it to my Mac. Is there anything else I should be checking?
Under "Chart Templates" there was nothing, and under "Templates", aside from the Word template you mentioned, I also have "NormalEmail.dotm", is that a normal one too?
When this happened I had multiple excel sheets already open (before I opened the spam one), honestly I'm not sure if they saved after, since an Apple rep had me restart the computer; I just closed everything out and don't remember if I hit save or not (I was too busy panicking). I'll reopen all and see if they ask me to load a macro. If they don't, they should be fine? Or should I still Copy/paste into a new one, just in case?
Yes, the email template is also normal.
As far as the other Excel spreadsheets you had open at the time, all you need to do is open them again. If none say anything about loading macros, you don't need to do anything else.
Thank you so much for your help!! I truly appreciate it!!! I wish i woulda posted my question here first! Woulda saved me multiple hours on the phone with Apple; not to mention 2 days of panic.
Thanks again!!! :)
Thank you so much! I’ve been panicking over possible malware or spyware on my Mac since I fell for that spam email.
You're welcome. 🙂
Hacked or is this normal
