Can please anyone help? I have 2 files detected with AVG for mac, but does not delete them, does anyone know if bit defender will? or any other app? or how to manual remove this bug from my macbook pro late 2011 Thank you!
MacBook Pro, OS X Mavericks (10.9.2), boot/turning on
It's a Word exploit, from 1997, so unless you have a very old copy of Word for Windows on your Mac (unlikely) it will do nothing.
Get rid of AVG, it is junk, it will keep warning you about harmless things.
Thank you! Csound1
I do understand it will not do anything since it is an old malware or trojan? Intended to get windows OS. So I get rid of AVG for Mac then do you actually recommend to have an AV installed in OS X? I keep reading there is and have been vulnerabilities in OS X for sometime now, the last was today here is the articule, your advise will be greatly appreciated. See art http://www.digitaltrends.com/computing/can-macs-get-viruses/
What do you think about Bit Defender? Download from app store is available
I do not recommend any at all, I will recommend that you go to this site and read. The Safe Mac
I will read up, I have read in this site before, but I will pay closer attention, any other sites you would recommend reading on?
Thanks for your time Csound1 is appreciated.
One more question if you would... How if the bug is in my external HD and this is where I direct back ups with time machine?
Thanks again!
It shouldn't affect your Time Machine backup if that is what you are asking.
If you have the name of the 2 files, try using EasyFind to find them.
It seems to me that Mr. Botezatu isn't much of an expert. He cites one "virus", the Flashback malware. It does depend on how technical you want to get with that example.
1) Flashback did indeed behave exactly like a virus in that it infected a computer without any assistance from the user. But, it only worked if you had Java installed, and it was enabled in your web browser. If you didn't have Java installed or enabled, then a loaded site would pop up a message to try and get you to manually agree to install something. Which is Trojan activity. You have to allow it.
2) Flashback was never an OS X virus. It was a Java exploit. So from that technical aspect, OS X itself has still never been infected with a virus.
The KitM.A backdoor he mentions was spread as a link or attachment in an email. So again, not a virus. It's a Trojan you had to download and install.
Rootpipe isn't malware at all, of any kind. It's a long standing flaw in OS X's underlying Unix code that was just fairly recently discovered.
So once again, an "expert" is throwing the words virus and OS X around as if it means something, when they are, once again, wrong.
I will try that, but the AVG does not have user access to log files, so I will have to scan again to get file names and location.
Thank You! Eric Root
Thanks Kurt Lang,
It does seem to have some not regular behaviors, such as, yesterday I was doing an on line work and at some point open a "java site" asking me to download it and last week it did change my opening page in safari and firefox to yahoo search, I did fix both and is working fine, but it seems a bug is residing in here. Do you recommend any AV such Bit Defender to actually find and delete this unwanted guests.
Thanks for your time!
There's no way for us to tell what you downloaded and installed. All AV software is essentially useless. The only one I'd even consider recommending is the free ClamXav. It may, or may not find whatever was installed. Do you remember what site you were on that asked you to download the file?
Just to note, never, ever download anything a third party web site tells you to install. If a site says you need a Java update, get it only from Oracle. If a site claims you need to update Flash, get it only from Adobe. If a site claims you need a "codec" to view a video or anything else, it's just a flat out lie.
fgmanta wrote:
Thank you! Csound1
I keep reading there is and have been vulnerabilities in OS X for sometime now, the last was today here is the articule, your advise will be greatly appreciated. See art http://www.digitaltrends.com/computing/can-macs-get-viruses/
What would you expect an employee of an A-V software vendor to say, "Don't use our product?"
OS X will protect you from all currently known malware as long as you keep it fully up-to-date (so I hope you aren't still running OS X 10.9.2 as it says in your profile) and don't disable the capability.
Adware is a slightly different problem, but you can avoid that by simply reading what you are being told when you install any software and if there is something you don't want, opt-out (uncheck the box).
Thank you for your time Mr. Lang
I did get a fishing e-mail, I was doing at the time stuff with the very same company I got the fishing mail so with out thinking I click on a link there and as it was setting the address bar had a ru at the end, so I close the browser, did not click on any thing else or nothing, I actually shut up the machine, si I did not thing I got anything from there but I have questions on my careless action, anyway I do not usually do that, I am careful and always ask if I know the sender of the e-mail if they did indeed send such a thing then I paste the address, but I guess you can't never be to thin.
All I notice it was a java site, so I close it. it seems behavior is somehow back to regular. I thank you for your explanations and time, I appreciate it.
Mucha appreciate it your time MadMacs0
I see your point, I do update OS X overtime is up there to do. Thank you so much for your advise and time.
I do have a better idea of what happen and what to do.
Given your description, it's unlikely you have anything to worry about. The attachment was what Csound1 explained; an old Word macro virus that only affects Word. And then only if you have the option on to allow macros to load without checking. The default is to let you know a Word doc contains a macro:
You then have the option to disallow the macro to load/run, or just not open the document.
It's easy at times to get caught with an email you weren't expecting. Spoofing is very easy to do. Which means the sender name isn't necessarily where the email actually came from. In this case, it probably did, but was caused by a Windows email virus on their end. Typically, these types of viruses send out the same email to everyone on that computer's contact list. On the Mac, that can't happen. The email hits your inbox and stops since the virus can't run on your OS. So no one in your email contact list gets anything forwarded to them.
Yes I have the default setting, so I am ok there. Thank you for your advise & time. To add, all of you guys were on it about the AV apps, they all indeed sock, they do show different results of things detected, is actually interesting. Anyway hanks to you and all!
W97M/Generic spyware that will actually delete it, or any one knows how to manual remove it, please help? Macbook pro, late 2011
