files being scanned and I can't find them through spotlight. Oddity two, in Intego scan I saw 100+ opr00. Changed the Firewall to strong and installed Little snitch to be doubly sure. I deleted them anyway (right click and disable). When MacScan found the file, I quickly went to Intego Internet secutity/firewall to see whats happening, and saw atleast 10 items that were allowed to access internet but had no application names against them and were slightly greyed out as if embedded into the menu. So finaly, Macscan finds this one file, none of the other find the same file even though its still on desktop in a MacScan folder for quaratined files !
NEFARIOUS IANTIVIRUS FOR MAC
I then ran Sophos for Mac and it found 3 files in mail/spam box from a year ago which I knew were phishing links and a couple of files (from an year ago) that were in my external drive as trojans (.exe files I think) I have never used the files ever and they've been scanned by Intego atleast 10 times. ClamXav also crashed but but 60% into the scan hadn't found anything. I ran Avast and ClamXav and they couldn't finish the scans, Avast showed 10000+ errors like err13, no threats but errors and then crashed. files in the scan but I couldn't find the location where it was scanning and when i search in spotlight they don't show up I did see intego scan like a 100+ of these Opr00. Intego had a few oddities I will tell you later. I have since then ran : IAntivirus and Intego InternetSecurity suite (Intego is always on my MBP)- and they didn't find anything. I ran MacScan again and it didn't find anything new. (three dots are random 3 alphabets in files name) Anyway its one file only and its a 4kb file which opens with TextEdit and has funny 10 or so charcters in it. Stupidly enough I didn't check the location where it found it and am still regretting it. I ran MacScan 2.6 - 2 days ago on my UMBP 17" and it picked up a keylogger and identified it as DutyWatch 1.3 and asked me to isolate the file, which I did. The spyware is called DutyWatch 1.3a and is briefly listed on MacScan website under the Last tab at the top.
NEFARIOUS IANTIVIRUS INSTALL
I am wondring that I would need to install all applications/programme again manually because just simply restoring the applications folder is the highest risk ? When I am getting the data back either through any one of the backups I have taken above, how can I make sure I don't get the damn spyware back ? Tonight I will reinstal (wipe and intall) OSX. I have taken a time machine backup (of the suspect hard disk), another backup using an utility called IBackup and am also selecting particular folders (Document, Library, Music, Pictures, Zinio - digital magazines) and copying them over to a new disk. I have new question (assuming no way out and a fresh/clean install of OSX is the only way out) I have appended the original thread below.
0 kommentar(er)
