Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

macOS Momentum App 2.4.20 Malware report. What next?

Intego VirusBarrier Scanner V1.2 (malware definitions 2/12/21)

Reports Malware OSX/Adload.ext

Location

Macintosh HD > Applications Momentum > Contents > MacOS > Momentum

I downloaded this App from the macOS App Store on October 14 and last used it on November 3 as it was not useful. It is does not load on boot up.

Intego VirusBarrier Scanner is set for a daily scan and this is the first day it has reported this malware.


I am out of my depth here as I don't understand the Momentum file within MacOS.


I am happy to delete everything recommended - I am just not sure what.


Secondly; do I inform anyone?


MacBook Pro (Retina, 15-inch, Mid 2015)

Model Identifier: MacBookPro11,4

2.2 GHz Intel Core i7

16 GB 1600 MHz DDR3

Intel Iris Pro 1536 MB

Processor Name: Intel Core i7

MacOS 12.0.1

MacBook Pro (2020 and later)

Posted on Dec 3, 2021 6:07 PM

Reply
Question marked as Top-ranking reply

Posted on Dec 4, 2021 3:52 AM

"This site contains user submitted content, comments and opinions and is for informational purposes only." Right from the footer

That much is evidently clear from the chatter here.

Apple can easily comment on their overall security. Given the need for security updates macOS is future-proofed from being sued unless they knowingly with-held an update. And Apple didn't sell me Intego Virus Barrier for their 30% of nothing. It is a free download so they can email you about their suite of cleaners, washes and wipers until you unsubscribe.


So Yer_Mon needs to read Apple's T &Cs


P. Phillips speaks with opinions and links to hundreds of postings - so that's not helpful.


So here is a direct link https://support.apple.com/en-au/guide/mac-help/mh40596/12.0/mac/12.0

"All the developers of apps in the Mac App Store are identified by Apple, and each app is reviewed before it’s accepted. macOS checks the app before it opens the first time to be certain it hasn’t been modified since the developer shipped it. If there’s ever a problem with an app, Apple removes it from the Mac App Store."


Due Diligence is important but there is a limit to one's resources. I note, in particular, the constant refrain of:

"the underling UNIX  Foundation and Permission Limitation". And I guess that makes sense. But it is not an absolute if it is an unreferenced opinion.


Beyond due diligence are Consumer Protection Laws. "Businesses are not allowed to make statements that are incorrect or likely to create a false impression." Australian Competition & Consumer Commission. Consumer rights & guarantees, Advertising & promotions [https://www.accc.gov.au/consumers/advertising-promotions].

The ACCC has taken action against Apple in the past and are currently reviewing their alleged anti-competition practices - in which I am on Apple's side.


But that is just my opinion and we've had enough of that.

Consider this topic closed.

Similar questions

15 replies
Question marked as Top-ranking reply

Dec 4, 2021 3:52 AM in response to PRP_53

"This site contains user submitted content, comments and opinions and is for informational purposes only." Right from the footer

That much is evidently clear from the chatter here.

Apple can easily comment on their overall security. Given the need for security updates macOS is future-proofed from being sued unless they knowingly with-held an update. And Apple didn't sell me Intego Virus Barrier for their 30% of nothing. It is a free download so they can email you about their suite of cleaners, washes and wipers until you unsubscribe.


So Yer_Mon needs to read Apple's T &Cs


P. Phillips speaks with opinions and links to hundreds of postings - so that's not helpful.


So here is a direct link https://support.apple.com/en-au/guide/mac-help/mh40596/12.0/mac/12.0

"All the developers of apps in the Mac App Store are identified by Apple, and each app is reviewed before it’s accepted. macOS checks the app before it opens the first time to be certain it hasn’t been modified since the developer shipped it. If there’s ever a problem with an app, Apple removes it from the Mac App Store."


Due Diligence is important but there is a limit to one's resources. I note, in particular, the constant refrain of:

"the underling UNIX  Foundation and Permission Limitation". And I guess that makes sense. But it is not an absolute if it is an unreferenced opinion.


Beyond due diligence are Consumer Protection Laws. "Businesses are not allowed to make statements that are incorrect or likely to create a false impression." Australian Competition & Consumer Commission. Consumer rights & guarantees, Advertising & promotions [https://www.accc.gov.au/consumers/advertising-promotions].

The ACCC has taken action against Apple in the past and are currently reviewing their alleged anti-competition practices - in which I am on Apple's side.


But that is just my opinion and we've had enough of that.

Consider this topic closed.

Dec 4, 2021 1:18 AM in response to robertdownunder

There are no known Windows-like Viruses in the wild that self replicate and affect macOS, because of the underling UNIX  Foundation and Permission Limitation. 


The The Built in Security  is all that is required to protect the computer.


Are there any AntiVirus, Disk Cleaner, Optimizers, Un-installers, etc installed which should be removed as per Developers Instructions. They are useless, unneeded, cause havoc and interfere with the normal operation of the OS and may even Corrupt the OS requiring a Reinstallation. 

Dec 4, 2021 1:56 AM in response to robertdownunder

Since one appears to believe, because an Application is offered on the Apple Apps Store it automatically mean the Application is safe to use.


That is a total fallacy.


By example only, a disk Cleaner Application call "CleanMyMac" is also offered on the Apple Apps Store .


On these ASC Forums, it is known to be destructive and harmful application that should also, like the AV Software under discussion, be remove as per the Developers Instructions.


A testament of CMM on the First 600 posting - https://discussions.apple.com/search?q=cleanmymac


A testament to Intego AV software https://discussions.apple.com/search?q=Intego%20VirusBarrier%20Scanner%20&page=1&content=filterDiscussions

Dec 4, 2021 12:13 PM in response to robertdownunder

robertdownunder wrote:

Glad to be a source of humour for etresoft, even if it is at my expense.

What? You setup the joke and then complain when I deliver the punchline?

Iiiasss has provided a link about this malware which was first detected by Intego VirusBarrier.

There were two links. The first link was an ad for the SpyHunter antivirus tool. The second was an ad for Intego.

Intego produced the virus software that I downloaded from the App Store.

The Mac App Store has a lot of problems. I'm not denying any of those. But notably, it does not have a malware problem. Obviously that is a false positive.


Normally, I don't automatically recommend that people uninstall antivirus apps. Apple's operating systems contain built-in protection against malware. However, Apple always allows the end user to override these protections. That's where the problem comes in. Apple only protects the system against malware. Users who find themselves repeatedly being tricked into installing malware may benefit from 3rd party antivirus apps that protect the system against the user.


I only recommend uninstalling antivirus apps when they are obviously causing some problem and/or aren't working. Clearly this is a false positive. Your legitimate Mac App Store app is not malware. You said the Momentum app was a Mac App Store app. The icon in your screen shot matches the app's page on the Mac App Store. Perhaps your antivirus is confusing this app with the Momentum botnet or perhaps the Momentum usenet client, which has been associated with some malicious activity. You might assume that antivirus scanners are somehow more sophisticated that just looking for a string like "momentum" in the executable. I can tell you from direct, personal experience that they are not.


So, since you were confused about the false positive and came here asking for help, I consider that causing a problem. So I suggested the best solution. Ironically enough, my solution is even better than I thought originally. Apparently, you are also using the version of Intego downloaded from the Mac App Store. The technical limitations that Apple imposes on all Mac App Store apps makes antivirus functionality impossible. A Mac App Store app cannot even see the entire disk. Those few places it can access, it can't modify. So how is it supposed to protect you?


What I do not understand is why Apple place antivirus software in their App Store - where I downloaded it. Apple have not given such a clear indication themselves about the utility or not of antivirus software. At least not in the last 13 years that I have been looking. I shall have to try and engage Apple over this issue.

It isn't a question of utility, but of lawyers. Mac App Store apps aren't going to do any harm. The worst they can do is scam you into some subscription, which you can easily cancel when you realize you've been had. But Apple does allow major antivirus vendors to have products in the store as a form of advertisement.

Dec 4, 2021 1:33 AM in response to lllaass

Glad to be a source of humour for etresoft, even if it is at my expense. They obviously have a need for it humiliating others.

Iiiasss has provided a link about this malware which was first detected by Intego VirusBarrier. Intego produced the virus software that I downloaded from the App Store. But again more humour is provided at my expense as Iiiasss appears to contradict the very article quoted. It is

obviously a bad day for the “Apple Community”. It’s a shame that what was intended to be a support site has become Schadenfreudesque.


Dec 4, 2021 1:58 AM in response to PRP_53

Thanks P Phillips. Much of what is said in the article you linked is just common sense. The serious threats from phishing attempts are so plainly stupid that they are obvious.

What I do not understand is why Apple place antivirus software in their App Store - where I downloaded it. Apple have not given such a clear indication themselves about the utility or not of antivirus software. At least not in the last 13 years that I have been looking. I shall have to try and engage Apple over this issue.

Dec 4, 2021 2:12 AM in response to robertdownunder

Can not speak directly to why Apple does or does not placing any type of warning on this or any other Application in the Apple Apps Store.


IMHO - The most important is Due Diligence on the part of the User, that is " just common sense ".


As stated early " There are no known Windows-like Viruses in the wild that self replicate and affect macOS, because of the underling UNIX  Foundation and Permission Limitation.  "


In effect - a Non Existent issue on macOS and paying AU Dollars is money down the rabbit hole with zero return except software issues and empty pockets.

Dec 4, 2021 4:18 AM in response to robertdownunder

Unfortunately, Apple cannot 100% guarantee ... well, anything. There will always be exceptions.


Is it now the case, and always has been, for a user to be aware of everything he/she does and the consequences of any and all actions.


Apple does far better than many, especially compared to its main contender for desktop computer systems. But, you can always achieve 100% security (or nearly so) if you really want it, but that will pretty much take away freedoms you enjoy. It's on the user to decide what mix of security and freedom is acceptable.


One way to achieve security approaching 100% is to never use the internet. Millions of us did it for decades; you can too.



Dec 4, 2021 5:05 AM in response to robertdownunder

It is a commendable effort plus time and " limit to one's resources " put this together.


Though, if one were to use the same amount of effect to research the Application, in question , before installing it - the computer may not have reached this compromised state.


All the information on this specific application is readily available and requires very little effort, on the user part, to uncover it.


macOS Momentum App 2.4.20 Malware report. What next?

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.