How to Manually Remove the Flashback Trojan Virus

Step-by-Step Guide

1. 1

   Step 1: Run the following command in Terminal:defaults read /Applications/Safari.app/Contents/Info LSEnvironment.

   Your system is already clean of this variant if you get an error message similar to the following: "The domain/default pair of (/Users/joe/.MacOSX/environment, DYLD_INSERT_LIBRARIES) does not exist". ,,,,, And use it for daily purpose like checking emails and surfing internet (the account that is generally created by default and you use has admin rights).
2. 2

   Step 2: Take note of the value

   It is recommended to use Google Chrome as it got a sandboxing plus and it also comes with a sandboxed flash player of its own. ,, Note:
   As you have default Google Chrome you no longer need the default flash player as Chrome comes with the updated flash player. , Apple does not regularly update Java
   - it generally does after months since the release of it, and it's not possible to manually update it on Mac.
   
   So if you don’t want to uninstall it because you use some java web applets, it is recommended that you at least disable it from Safari browser. ,, And update and run the antivirus from time to time. , It is a firewall program that shows you which application is trying to use the network and offers you to allow or block that application to connect to network.
3. 3

   Step 3: DYLD_INSERT_LIBRARIES.

4. 4

   Step 4: Proceed to Step 8 if you get the following error message: "The domain/default pair of (/Applications/Safari.app/Contents/Info

5. 5

   Step 5: LSEnvironment) does not exist".

6. 6

   Step 6: Otherwise

7. 7

   Step 7: run the following command in Terminal:grep -a -o ‘__ldpath__*’ %path_obtained_in_step2%.

8. 8

   Step 8: Take note of the value after “__ldpath__”.

9. 9

   Step 9: Run the following commands in Terminal (first make sure there is only one entry

10. 10

    Step 10: from Step 2):sudo defaults delete /Applications/Safari.app/Contents/Info LSEnvironmentsudo chmod 644 /Applications/Safari.app/Contents/Info.plist.

11. 11

    Step 11: Delete the files obtained in Steps 2 and 5.

12. 12

    Step 12: Run the following command in Terminal:defaults read ~/.MacOSX/environment DYLD_INSERT_LIBRARIES.

13. 13

    Step 13: Take note of the result.

14. 14

    Step 14: Otherwise

15. 15

    Step 15: run the following command in Terminal:grep -a -o ‘__ldpath__*’ %path_obtained_in_step9%.

16. 16

    Step 16: Take note of the value after “__ldpath__”.

17. 17

    Step 17: Run the following commands in Terminal:defaults delete ~/.MacOSX/environment DYLD_INSERT_LIBRARIESlaunchctl unsetenv DYLD_INSERT_LIBRARIES.

18. 18

    Step 18: Finally

19. 19

    Step 19: delete the files obtained in Steps 9 and 11.

20. 20

    Step 20: Create a non admin account in your Mac.

21. 21

    Step 21: Download and use a secure browser.

22. 22

    Step 22: After you have downloaded and installed the new browser don't forget to make it your default browser.

23. 23

    Step 23: Uninstall or update the default flash player (Apple does not update the flash player regularly).

24. 24

    Step 24: Uninstall/Disable Java.

25. 25

    Step 25: Update your Mac software on a regular basis

26. 26

    Step 26: it won't cost you a dime but will save you from known vulnerabilities.

27. 27

    Step 27: Install a good antivirus for Mac.

28. 28

    Step 28: Install the Little Snitch.

Detailed Guide

About the Author