[MacTUG] A look at Apple's Flashback removal tool | MacFixIt v1.1
Marlon A. Griffith
m3griffi at engmail.uwaterloo.ca
Fri Apr 13 14:40:03 EDT 2012
If you were like me and a bit confused about how to check if the tool worked.
Marlon
-----------------
"""
When you download either the Java for OS X Lion 2012-003 or Java for Mac OS X 10.6 Update 8, the updater will install a small program called MRTAgent to your /System/Library/CoreServices/ folder.
In addition to this program, the system will install a small command-line tool called MRT to /usr/libexec/, and will place a couple of launcher files in the following locations:
/System/Library/LaunchAgents/com.apple.mrt.uiagent.plist
/System/Library/LaunchDaemons/com.apple.mrt.plist
Malware Removal tool components
A look within the Java update package shows the MRT tool and its support components.
(Credit: Screenshot by Topher Kessler/CNET)
These launcher files will work together to keep the MRTAgent program running when you have loaded OS X, until the program successfully exits. When they run, the programs will scan for and remove any installations of the Flashback malware that it finds, and will upload a log of the findings to Apple's servers.
Upon completion of its scan, the MRT command line tool, the MRTAgent program, and the launch agent scripts used for it will be deleted from your system.
http://reviews.cnet.com/8301-13727_7-57413354-263/a-look-at-apples-flashback-removal-tool/
"""
More information about the MacTUG
mailing list