elleinaus

Q: Using ClamXav, please help

Hello, I am using a 2013 MacBook Air and have recently noticed some issues that, having done some research, indicate that I could have a "virus". These include:

- Many pop-up ads on Chrome where previously I had none

- Search engine being automatically changed from google to bing on Chrome

- MacKeeper running on my computer without me (willingly or knowingly) having installed it

- Chrome shutting down but not in the usual way where an error message is shown on reopening "Chrome shut down unexpectedly".

I went ahead and installed ClamXav and ran some scans which produced items with high and medium level concern which I quickly deleted. I learnt that this is inadvisable after the fact but not being a particularly savvy computer user, I freaked out and thought the best course of action was to remove them.

My issue, that I hope someone could help me with, is that I have 3 items remaining on ClamXav that cannot be quarantined or deleted and I am not sure what it means. Please see below.

Screen Shot 2016-09-16 at 11.40.44 am.png

Any advice regarding what sort of situation I have found myself in and what I should do next would be greatly appreciated.

Thank you.

MacBook Air, OS X Mavericks (10.9.5)

Posted on Sep 15, 2016 7:12 PM

Close

Q: Using ClamXav, please help

  • All replies
  • Helpful answers

  • by Niel,

    Niel Niel Sep 15, 2016 7:17 PM in response to elleinaus
    Level 10 (312,953 points)
    Mac OS X
    Sep 15, 2016 7:17 PM in response to elleinaus

    Use MalwareBytes for Mac to remove the adware.

     

    (144661)

  • by elleinaus,

    elleinaus elleinaus Sep 15, 2016 7:31 PM in response to Niel
    Level 1 (4 points)
    Mac OS X
    Sep 15, 2016 7:31 PM in response to Niel

    Thank you for the quick response.

    Where should I download this from, I have read that some sources are unsafe?

  • by Niel,

    Niel Niel Sep 15, 2016 7:38 PM in response to elleinaus
    Level 10 (312,953 points)
    Mac OS X
    Sep 15, 2016 7:38 PM in response to elleinaus

    Click here.

     

    (144662)

  • by MadMacs0,

    MadMacs0 MadMacs0 Sep 15, 2016 11:45 PM in response to elleinaus
    Level 5 (4,791 points)
    Sep 15, 2016 11:45 PM in response to elleinaus

    I thought I saw a ClamXav Helpdesk Ticket asking this same question?

     

    Pirrit infections are more difficult than most to remove and you should be receiving instructions from the support staff shortly on how to remove all remaining portions of it.

  • by elleinaus,

    elleinaus elleinaus Sep 16, 2016 1:23 AM in response to MadMacs0
    Level 1 (4 points)
    Mac OS X
    Sep 16, 2016 1:23 AM in response to MadMacs0

    It wouldn't have been in the clamxav disscuion forum as you can no longer post but I did submit a form to their support. They have given me some advice, thanks for your help.

  • by MadMacs0,

    MadMacs0 MadMacs0 Sep 16, 2016 1:48 AM in response to elleinaus
    Level 5 (4,791 points)
    Sep 16, 2016 1:48 AM in response to elleinaus

    elleinaus wrote:

     

    It wouldn't have been in the clamxav disscuion forum as you can no longer post

    Yes, since ClamXav has gone commercial, we are in the process of shutting down the Forum, having replaced it with a formal Help Desk. The Forum still has some useful information in it and current members are still discuss matters among themselves.

     

    I see all the Support Ticket requests when they are submitted, so that's why it sounded familiar. The advise you got has helped at least two others with the same infection, so you should be OK. An updated version is in test which should make the task easier shortly.

  • by elleinaus,

    elleinaus elleinaus Sep 16, 2016 6:12 AM in response to MadMacs0
    Level 1 (4 points)
    Mac OS X
    Sep 16, 2016 6:12 AM in response to MadMacs0

    Sorry didn't realise you were associated with ClamXav. Yes, it was very helpful, I got a response within a couple of hours and having followed the instructions I was just now able to get a clean scan without downloading any anti-malware. Happy to post the instructions in the future if anyone runs into this issue.