Well, I ran the check and appear to be clean.
Granted, I have Xcode so it looks like even if I tried installing the trojan it would just abort itself.
Edit:
I've owned a Mac for about seven years.
So, I've read this story, got concerned and looked to put it right but I simply don't understand what to do. I've never used Terminal and have no idea how to perform the instructions outlined. Other than running 'Software Update', I don't know how to see if I have it nor how to get rid of it.
If Macs are going to start getting malware/trojans/viruses or whatever, Apple need to create an easy-to-use, foolproof system of detecting and removing them.
If you don't have a technical job (IE, you develop on/for Macs or are an IT guy managing Macs,) you probably haven't heard of Terminal and probably never need to use it.
Here's a quick explanation of the instructions:
1. Run the following command in Terminal:
This assumes you actually have Terminal open. It should be installed in Applications => Utilities. Alternatively, just search for it with spotlight (top right corner of the screen.)
defaults read /Applications/Safari.app/Contents/Info LSEnvironment
Copy that, paste it into terminal (wherever the cursor already is. Terminal probably printed a little bit of stuff already when it launched,) and hit enter.
It should now have a message or two below that. I got some gibberish ending with the phrase, "does not exist". The instructions say:
3. Proceed to step 8 if you got the following error message:
"The domain/default pair of (/Applications/Safari.app/Contents/Info, LSEnvironment) does not exist"
Yeah, that's the gibberish I got. So I skipped to step 8.
8. Run the following command in Terminal:
defaults read ~/.MacOSX/environment DYLD_INSERT_LIBRARIES
So just copy and paste that directly into terminal, again, wherever it has left the cursor, and then hit enter.
It spits out some more gibberish, again ending in "does not exist".
9. Take note of the result. Your system is already clean of this variant if you got an error message similar to the following:
"The domain/default pair of (/Users/joe/.MacOSX/environment, DYLD_INSERT_LIBRARIES) does not exist"
Ah, yes, that's what I see. So my system is clean.
Now, why isn't there any easier way of doing this? Because there's no need for it. Apple has an automated malware remover in Mac OS X that will periodically update itself and remove malware for you. These instructions are for if you don't want to wait a day for the automated malware remover to handle it for you. Or if you're paranoid. Apple doesn't want you paranoid (because that makes your experience subpar), so they don't even tell you about any of it. Because really, you'd have to be paranoid. You really don't have to worry about it as long as you're not giving random people/applications your computer's password so that they can install whatever they like. If they don't have your password, they can't install anything behind your back. Thus why it's a trojan, and not a virus, because you have to actually hand over your password for it to work.