User profile for user: jbingle
jbingle Author
User level: Level 1
4 points

how to I find the Private/VAR/folders

I use Sophos antivirus and it has detected Troj/Dyreza-GB malware and has asked me to manually delete it from the private/var/folders


MacBook Air, macOS 13.6

Posted on Sep 25, 2023 12:37 PM

Reply
Question marked as Top-ranking reply
User profile for user: Old Toad
Old Toad
User level: Level 10
214,314 points

Posted on Sep 26, 2023 09:46 AM

First, there is no reason to ever install or run any 3rd party "cleaning", "optimizing", "speed-up", anti-virus, VPN or security apps on your Mac.  This documents describe what you need to know and do in order to protect your Mac: Effective defenses against malware and other threats - Apple Community and Recognize and avoid phishing messages, phony support calls, and other scams - Apple Support.  


There are no known viruses, i.e. self propagating, for Macs.  There are, however, adware and malware which require the user to install although unwittingly most of the time thru sneaky links, etc.   


Anti Virus developers try to group all types as viruses into their ad campaigns of fear.  They do a poor job of the detecting and isolating the adware and malware.  Since there are no viruses these apps use up a lot of system resources searching for what is non-existent and adversely affect system and app performance.


There is one app, Malwarebytes, which was developed by a long time contributor to these forums and a highly respected member of the computer security community, that is designed solely to seek out adware and known malware and remove it.  The free version is more than adequate for most users.  


Uninstall Sophos according to the develop's instructions. The A/V apps are prone to false positives so I wouldn't rely on them at all.


View in context

Similar questions

13 replies
Question marked as Top-ranking reply
User profile for user: Old Toad
Old Toad
User level: Level 10
214,314 points

Sep 26, 2023 09:46 AM in response to jbingle

First, there is no reason to ever install or run any 3rd party "cleaning", "optimizing", "speed-up", anti-virus, VPN or security apps on your Mac.  This documents describe what you need to know and do in order to protect your Mac: Effective defenses against malware and other threats - Apple Community and Recognize and avoid phishing messages, phony support calls, and other scams - Apple Support.  


There are no known viruses, i.e. self propagating, for Macs.  There are, however, adware and malware which require the user to install although unwittingly most of the time thru sneaky links, etc.   


Anti Virus developers try to group all types as viruses into their ad campaigns of fear.  They do a poor job of the detecting and isolating the adware and malware.  Since there are no viruses these apps use up a lot of system resources searching for what is non-existent and adversely affect system and app performance.


There is one app, Malwarebytes, which was developed by a long time contributor to these forums and a highly respected member of the computer security community, that is designed solely to seek out adware and known malware and remove it.  The free version is more than adequate for most users.  


Uninstall Sophos according to the develop's instructions. The A/V apps are prone to false positives so I wouldn't rely on them at all.


Reply
User profile for user: HWTech
HWTech
User level: Level 9
66,806 points

Sep 27, 2023 10:56 AM in response to jbingle

The Premium paid version is to allow real time scanning of the system which is not necessary and possibly automatic updates. The only time you need to scan your Mac is when you believe you have accidentally been infected with malware which should be extremely rare if you practice safe computing habits which @Old Toad mentioned with their previous links. Once you scan the system, you really don't need to have MalwareBytes anymore so just go to the MalwareBytes' "Help" menu and select the "Uninstall" option (I believe that is how it can be uninstalled).


Even though MalwareBytes is less intrusive than other anti-virus apps, it still installs a low level component into macOS which will interfere with the normal operation of macOS to some extent. For system stability & reliability, it is best practice to minimize apps which do this....and a malware scanning app is not something that is needed to be running 24/7.

Reply
User profile for user: HWTech
HWTech
User level: Level 9
66,806 points

Sep 26, 2023 09:42 AM in response to jbingle

I don't even recommend any third party anti-virus apps when using Windows either since many of them tend to collect & sell personal information, have advertising, and have been known to have vulnerabilities. Windows' built-in Defender anti-virus (or whatever they call it today) is good enough for most people these days and is the least intrusive on Windows.


As the others have mentioned, the same is true for macOS which has its own built-in malware protection tools and generally better security than Windows although Windows has improved over the years.


Besides every tool will have stuff which gets past it since the whole security field is a game of whack-a-mole. Besides relying on the default built-in security of the OS, the user just needs to do their own part by practicing safe computing habits such as those mentioned in the links provided by @dialabrain.

Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

how to I find the Private/VAR/folders

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up