W32.Downadup.B

Archive
1

Hi, 

My Mac has been infected with W32.Downadup.B 

Every resource says that this infection is only for PC's and offers solutions to resolve it on PC's.  I need to remove it, because it is slowing down my browser and other computers on my network.  I really just want to watch netflix without rediculous load times. 

 

Freddrick

2

Nu2it-   From what I have been able to understanding reading the many posts and the helpful feedback I get from everyone here is this-

 

Norton (NAV or NIS) should protect you from any malicious stuff if the stuff has been added to their definitions and if you are updated quickly

 

Boys- Am I right?   :)

3
NY1986 wrote:

 

Norton (NAV or NIS) should protect you from any malicious stuff if the stuff has been added to their definitions and if you are updated quickly

 

Good answer.

4

As my Signature states, symantec have Released Virus Definitions for this and Users should Run Norton LiveUpdate to get Virus Definitions for this Detection.

5

Thansk Red. So even if I had remote access on, my Norton would protect me from this known malice, correct? Just verifying

6
Nu2it wrote:
Thansk Red. So even if I had remote access on, my Norton would protect me from this known malice, correct? Just verifying

 

Hi, Nu2it,

 

You're welcome!  :D

 

Yes your Norton Product will Protect you; just make sure you keep your Norton Product up-to-date and you should be fine.  Any Issues, you know where to find us!  =D

7

This threat is Windows-only. It will not run on your Mac. 

 

How do you know that your Mac has been infected by this threat? If Norton AntiVirus/Norton Internet Security alerted you, then the alert has already been resolved and no other action is necessary.

8

Hi, I appreciate the response.  NAV keeps telling me that it detects w32.Downadup.B  And i definitely have a Mac.

9

what i have read so far, is that a Mac running PC programs can be infected.

10

Is this being detected on a USB thumbdrive?

11

Certainly a Windows infector is a threat when running Windows under a VM (BootCamp, Parallels, or VMWare Fusion).  Is that the case?  If so you may need to get the Windows version of NAV to protect that environment.

 

Also, where is it being detected, and does NAV claim to be repairing it, or is there some problem with the repair?

12

it is on the computer

 

13

i'm not running Windows on a VM, but i do have Windos Media Video Player.  

 

The history says that it was deleted on the 5th and 6th of this month during autoscan, multiple times within the day.  On the tenth of this month it said that it detected it.

14

Can you find the full path to the files?  You should be able to view it in the History window (Show History from the main page).  Select one of the detections and then do a Get Info from the tools popup (gear at top left of History).

 

That may give us something to go on.

15

scan path

library/application support/symantec/antivirus/qtfiles

16

There is a known problem with a migration tool that can cause this (the fact that it's in QTFiles indicates this).  if you do the following it should stop the repeated detections:

 

1. Run the Terminal application (from /Applications/Utilities/Terminal)

2. Enter this command:

sudo rm /usr/bin/MigrateQTF

(you will be prompted for your admin password, enter it and hit return)

17

i did what was recommended and it said: command not found

 

18

Could you copy and paste the terminal command and the result message here?

 

Thanks,

Lee

 

19

sudo: rm/usr/bin/migrateqtf: command not found
Freddricks-MacBook-Pro:~ freddrickdouglas$ sudo rm/usr/bin/MigrateQTF
sudo: rm/usr/bin/MigrateQTF: command not found
Freddricks-MacBook-Pro:~ freddrickdouglas$

20

You missed the space character that is needed after the rm command.