On Apr 18, 2009, at 1:19 PM, Len Gerstel wrote:
> > > On Apr 18, 2009, at 2:02 PM, Wendell Mendell wrote: > >> >> I read this group regularly and have seen the discussions about virus >> protection or not and the caution that screwups by the user are the >> main way to get bad stuff. I may have just done that. >> >> I have a new Mini running Leopard. I am new to Leopard, and I see >> dialogs and windows with which I am not familiar. My kids, who do >> not have Administrator accounts, have been getting me to authorize >> downloads of their programs - animation, games, Darwine for running >> Windows programs, etc. I just logged into my wife's (Administrator) >> account and was greeted by a narrow rectangular window that said new >> software was ready for my computer. Without thinking, I authorized >> the brief download and then realized that this was not the usual >> Software Update window. In fact, it had no information. >> >> I immediately searched the computer for visible and invisible files >> that had been modified today. The only thing that showed up was >> iMovie at about the right time and two listings of .DS_store (sp?). >> I then logged out of her account and into mine and downloaded >> Clamxav. >> >> I am scanning Applications right now. What else should I scan? Any >> other suggestions? >> >> Wendell Mendell > > 1) It would not hurt to scan everything. Just make sure the Clamxav > has the latest definitions. > > 2) ... iMovie at the right time... Does this mean it was modified > when you downloaded the update? Or that you recently used it and the > time shown is when you used it? > > 3) As long as no one has been hitting the torrents, it is most likely > a genuine update. There was recently an article about some malware > infected copies of iWork and Photoshop spread through torrent sites > creating a Mac Botnet (an iBotNet?). However, I seriously doubt that > these would ask for a password to install an update. > > If you go to Main HD->Library->Receipts you will see a list of most > installed updates. See if there is anything listed around the time of > the update window. > > HTH, > Len > iMovie was modified at 12:17. In the Receipts folder are 2 subfolders with the same modification time. The folder db has one file, <a.receiptdb>. The folder bom has no files with the folder modification time, but the most recent file in it is <com.apple.pkg.iMovie_802.bom>, dated April 9. (Today is April 17.) If I need to read the file in db, please suggest an application to open it. I can open it with Textwrangler, but it is not wrapped and I don't want to try to wrap it without know what I am doing. thanks. Wendell --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed Low End Mac's G3-5 List, a group for those using G3, G4, and G5 desktop Macs - with a particular focus on Power Macs. The list FAQ is at http://lowendmac.com/lists/g-list.shtml and our netiquette guide is at http://www.lowendmac.com/lists/netiquette.shtml To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/g3-5-list?hl=en Low End Mac RSS feed at feed://lowendmac.com/feed.xml -~----------~----~----~----~------~----~------~--~---
