JS:Redirector-BOB [Trj] - Infection Detected - Avast! Web shield has detected a treat.

The threat is a JavaScript redirecting Google Chrome's web page to another site that you did not specifically request. Those actions may or may not be legitimate in themselves. Often the malicious website to which your browser is redirected will be a "phishing" site, or an unwanted and intrusive advertisement. Other than containing potentially resource-hungry code, attempting to deceive you into downloading something you do not want, or convincing you to reveal personal information, the web page itself cannot harm your Mac.

Your Mac isn't infected with anything other than Avast. Get rid of it since Avast will accomplish nothing other than to report innumerable false positives, which it will do with reckless abandon.

No. I recommend using the tools OS X already includes to protect itself from viruses and malware. Keep it updated with software updates from Apple.

Snow Leopard, assuming that's what you are using, includes nearly all of Apple's latest security enhancements. Upgrading to more recent OS X versions improves upon Snow Leopard's existing malware checks with Gatekeeper. Each succeeding OS X release has included incremental low-level improvements in protecting itself from viruses and other malware intrusion, so the best strategy is to upgrade OS X to the extent your equipment is able.

A much better question is "how should I protect my Mac":

• Never install any product that claims to "speed up", "clean up", "optimize", or "accelerate" your Mac. Without exception, they will do the opposite.
• Never install pirated or "cracked" software, software obtained from dubious websites, or other questionable sources. Illegally obtained software is almost certain to contain malware.
• Don’t supply your password in response to a popup window requesting it, unless you know what it is and the reason your credentials are required.
• Don’t open email attachments from email addresses that you do not recognize, or click links contained in an email:
  • Most of these are scams that direct you to fraudulent sites that attempt to convince you to disclose personal information.
  • Such "phishing" attempts are the 21st century equivalent of a social exploit that has existed since the dawn of civilization. Don’t fall for it.
  • Apple will never ask you to reveal personal information in an email. If you receive an unexpected email from Apple saying your account will be closed unless you take immediate action, just ignore it. If your iTunes or App Store account becomes disabled for valid reasons, you will know when you try to buy something or log in to this support site, and are unable to.
• Don’t install browser extensions unless you understand their purpose. Go to the Safari menu > Preferences > Extensions. If you see any extensions that you do not recognize or understand, simply click the Uninstall button and they will be gone.
• Don’t install Java unless you are certain that you need it:
  • Java, a non-Apple product, is a potential vector for malware. If you are required to use Java, be mindful of that possibility.
  • Disable Java in Safari > Preferences > Security.
  • Despite its name JavaScript is unrelated to Java. No malware can infect your Mac through JavaScript. It’s OK to leave it enabled.
• Block browser popups: Safari menu > Preferences > Security > and check "Block popup windows":
  • Popup windows are useful and required for some websites, but popups have devolved to become a common means to deliver targeted advertising that you probably do not want.
  • Popups themselves cannot infect your Mac, but many contain resource-hungry code that will slow down Internet browsing.
  • If you ever see a popup indicating it detected registry errors, that your Mac is infected with some ick, or that you won some prize, it is 100% fraudulent. Ignore it.
• Ignore hyperventilating popular media outlets that thrive by promoting fear and discord with entertainment products arrogantly presented as "news". Learn what real threats actually exist and how to arm yourself against them:
  • The most serious threat to your data security is phishing. To date, most of these attempts have been pathetic and are easily recognized, but that is likely to change in the future as criminals become more clever.
  • OS X viruses do not exist, but intentionally malicious or poorly written code, created by either nefarious or inept individuals, is nothing new.
  • Never install something without first knowing what it is, what it does, how it works, and how to get rid of it when you don’t want it any more.
  • If you elect to use "anti-virus" software, familiarize yourself with its limitations and potential to cause adverse effects, and apply the principle immediately preceding this one.
  • Most such utilities will only slow down and destabilize your Mac while they look for viruses that do not exist, conveying no benefit whatsoever - other than to make you "feel good" about security, when you should actually be exercising sound judgment, derived from accurate knowledge, based on verifiable facts.
• Do install updates from Apple as they become available. No one knows more about Macs and how to protect them than the company that builds them.

Summary: Use common sense and caution when you use your Mac, just like you would in any social context. There is no product, utility, or magic talisman that can protect you from all the evils of mankind.

i wouldn't have understood your answer three days ago, but thanks to your patience ( and some other's too ) i'm beginning to.

Hello Mr. Galt,

Following up on this conversation -

I have old machine that cannot upgrade OS and I am stuck with X, thus I cannot update for new security issues - the automatic clock has been disabled. Now that over a year has passed since Mac was first stated as potentially vulnerable to security threats previously relegated to world of PC's, are there any recommendations for maintaining a secure environment against redirection? I have received two notifications today of potential redirects - Yikes...!

senzapon wrote:

Hello Mr. Galt,

Following up on this conversation -

I have old machine that cannot upgrade OS and I am stuck with X, thus I cannot update for new security issues - the automatic clock has been disabled. Now that over a year has passed since Mac was first stated as potentially vulnerable to security threats previously relegated to world of PC's, are there any recommendations for maintaining a secure environment against redirection? I have received two notifications today of potential redirects - Yikes...!

Please create your own thread, you are attempting to revive a thread that is over 1 year old. Also please post the verison of OS X installed on your computer. You can easily find this by clicking the Apple symbol in the upper left of the display and clicking About this Mac. Post all the information from that window EXCEPT the serial number of your computer.

Good luck.

Thank you - I didn't follow your letter to a t, but hope it sufficient