LizT1976
Level 1 (0 points)

Q: Bitdefender - how long does it take to scan entire system?

Been advised to do this, that's fine. It's been running half an hour. Does anyone know how long it'll take in total? I'm not a huge fan of leaving my Mac on overnight but I will if I have to. Any advice gratefully received.

MacBook Pro (15-inch Early 2011), OS X Mavericks (10.9.2)

Posted on Aug 28, 2014 11:17 AM

by Linc Davis,Solvedanswer
Linc Davis Linc Davis
Level 10 (207,963 points)
Applications
A:

It's deleted what might (or might not) be Windows malware attachments, which can't affect OS X, and possibly it has corrupted your email database in the process. That's in addition to wasting your time.

Mac users often ask whether they should install "anti-virus" software. The answer usually given on ASC is "no." The answer is right, but it may give the wrong impression that there is no threat from what are loosely called "viruses." There  is a threat, and you need to educate yourself about it.

1. This is a comment on what you should—and should not—do to protect yourself from malicious software ("malware") that circulates on the Internet and gets onto a computer as an unintended consequence of the user's actions. It does not apply to software, such as keystroke loggers, that may be installed deliberately by an intruder who has hands-on access to the computer, or who has been able to log in to it remotely. That threat is in a different category, and there's no easy way to defend against it.

The comment is long because the issue is complex. The key points are in sections 5, 6, and 10.

OS X now implements three layers of built-in protection specifically against malware, not counting runtime protections such as execute disable, sandboxing, system library randomization, and address space layout randomization that may also guard against other kinds of exploits.

2. All versions of OS X since 10.6.7 have been able to detect known Mac malware in downloaded files, and to block insecure web plugins. This feature is transparent to the user. Internally Apple calls it "XProtect."

The malware recognition database used by XProtect is automatically updated; however, you shouldn't rely on it, because the attackers are always at least a day ahead of the defenders.

The following caveats apply to XProtect:

☞ It can be bypassed by some third-party networking software, such as BitTorrent clients and Java applets.

☞ It only applies to software downloaded from the network. Software installed from a CD or other media is not checked.

As new versions of OS X are released, it's not clear whether Apple will indefinitely continue to maintain the XProtect database of older versions such as 10.6. The security of obsolete system versions may eventually be degraded. Security updates to the code of obsolete systems will stop being released at some point, and that may leave them open to other kinds of attack besides malware.

3. Starting with OS X 10.7.5, there has been a second layer of built-in malware protection, designated "Gatekeeper" by Apple. By default, applications and Installer packages downloaded from the network will only run if they're digitally signed by a developer with a certificate issued by Apple. Software certified in this way hasn't necessarily been tested by Apple, but you can be reasonably sure that it hasn't been modified by anyone other than the developer. His identity is known to Apple, so he could be held legally responsible if he distributed malware. That may not mean much if the developer lives in a country with a weak legal system (see below.)

Gatekeeper doesn't depend on a database of known malware. It has, however, the same limitations as XProtect, and in addition the following:

☞ It can easily be disabled or overridden by the user.

☞ A malware attacker could get control of a code-signing certificate under false pretenses, or could simply ignore the consequences of distributing codesigned malware.

☞ An App Store developer could find a way to bypass Apple's oversight, or the oversight could fail due to human error.

Apple has so far failed to revoke the codesigning certificates of some known abusers, thereby diluting the value of Gatekeeper and the Developer ID program. These failures don't involve App Store products, however.

For the reasons given, App Store products, and—to a lesser extent—other applications recognized by Gatekeeper as signed, are safer than others, but they can't be considered absolutely safe. "Sandboxed" applications may prompt for access to private data, such as your contacts, or for access to the network. Think before granting that access. Sandbox security is based on user input. Never click through any request for authorization without thinking.

4. Starting with OS X 10.8.3, a third layer of protection has been added: a "Malware Removal Tool" (MRT). MRT runs automatically in the background when you update the OS. It checks for, and removes, malware that may have evaded the other protections via a Java exploit (see below.) MRT also runs when you install or update the Apple-supplied Java runtime (but not the Oracle runtime.) Like XProtect, MRT is effective against known threats, but not against unknown ones. It notifies you if it finds malware, but otherwise there's no user interface to MRT.

5. The built-in security features of OS X reduce the risk of malware attack, but they are not, and never will be, complete protection. Malware is a problem of human behavior, and a technological fix is not going to solve it. Trusting software to protect you will only make you more vulnerable.

The best defense is always going to be your own intelligence. With the possible exception of Java exploits, all known malware circulating on the Internet that affects a fully-updated installation of OS X 10.6 or later takes the form of so-called "Trojan horses," which can only have an effect if the victim is duped into running them. The threat therefore amounts to a battle of wits between you and the scam artists. If you're smarter than they think you are, you'll win. That means, in practice, that you always stay within a safe harbor of computing practices. How do you know when you're leaving the safe harbor? Below are some warning signs of danger.

Software from an untrustworthy source

☞ Software of any kind is distributed via BitTorrent, or Usenet, or on a website that also distributes pirated music or movies.

☞ Software with a corporate brand, such as Adobe Flash Player, doesn't come directly from the developer’s website. Do not trust an alert from any website to update Flash, or your browser, or any other software.

☞ Rogue websites such as Softonic and CNET Download distribute free applications that have been packaged in a superfluous "installer."

☞ The software is advertised by means of spam or intrusive web ads. Any ad, on any site, that includes a direct link to a download should be ignored.

Software that is plainly illegal or does something illegal

☞ High-priced commercial software such as Photoshop is "cracked" or "free."

☞ An application helps you to infringe copyright, for instance by circumventing the copy protection on commercial software, or saving streamed media for reuse without permission.

Conditional or unsolicited offers from strangers

☞ A telephone caller or a web page tells you that you have a “virus” and offers to help you remove it. (Some reputable websites did legitimately warn visitors who were infected with the "DNSChanger" malware. That exception to this rule no longer applies.)

☞ A web site offers free content such as video or music, but to use it you must install a “codec,” “plug-in,” "player," "downloader," "extractor," or “certificate” that comes from that same site, or an unknown one.

☞ You win a prize in a contest you never entered.

☞ Someone on a message board such as this one is eager to help you, but only if you download an application of his choosing.

☞ A "FREE WI-FI !!!" network advertises itself in a public place such as an airport, but is not provided by the management.

☞ Anything online that you would expect to pay for is "free."

Unexpected events

☞ A file is downloaded automatically when you visit a web page, with no other action on your part. Delete any such file without opening it.

☞ You open what you think is a document and get an alert that it's "an application downloaded from the Internet." Click Cancel and delete the file. Even if you don't get the alert, you should still delete any file that isn't what you expected it to be.

☞ An application does something you don't expect, such as asking for permission to access your contacts, your location, or the Internet for no obvious reason.

☞ Software is attached to email that you didn't request, even if it comes (or seems to come) from someone you trust.

I don't say that leaving the safe harbor just once will necessarily result in disaster, but making a habit of it will weaken your defenses against malware attack. Any of the above scenarios should, at the very least, make you uncomfortable.

6. Java on the Web (not to be confused with JavaScript, to which it's not related, despite the similarity of the names) is a weak point in the security of any system. Java is, among other things, a platform for running complex applications in a web page, on the client. That was always a bad idea, and Java's developers have proven themselves incapable of implementing it without also creating a portal for malware to enter. Past Java exploits are the closest thing there has ever been to a Windows-style virus affecting OS X. Merely loading a page with malicious Java content could be harmful.

Fortunately, client-side Java on the Web is obsolete and mostly extinct. Only a few outmoded sites still use it. Try to hasten the process of extinction by avoiding those sites, if you have a choice. Forget about playing games or other non-essential uses of Java.

Java is not included in OS X 10.7 and later. Discrete Java installers are distributed by Apple and by Oracle (the developer of Java.) Don't use either one unless you need it. Most people don't. If Java is installed, disable itnot JavaScript—in your browsers.

Regardless of version, experience has shown that Java on the Web can't be trusted. If you must use a Java applet for a task on a specific site, enable Java only for that site in Safari. Never enable Java for a public website that carries third-party advertising. Use it only on well-known, login-protected, secure websites without ads. In Safari 6 or later, you'll see a lock icon in the address bar with the abbreviation "https" when visiting a secure site.

Stay within the safe harbor, and you’ll be as safe from malware as you can practically be. The rest of this comment concerns what you should not do to protect yourself.

7. Never install any commercial "anti-virus" (AV) or "Internet security" products for the Mac, as they are all worse than useless. If you need to be able to detect Windows malware in your files, use one of the free security apps in the Mac App Store—nothing else.

Why shouldn't you use commercial AV products?

☞ To recognize malware, the software depends on a database of known threats, which is always at least a day out of date. This technique is a proven failure, as a major AV software vendor has admitted. Most attacks are "zero-day"—that is, previously unknown. Recognition-based AV does not defend against such attacks, and the enterprise IT industry is coming to the realization that traditional AV software is worthless.

☞ Its design is predicated on the nonexistent threat that malware may be injected at any time, anywhere in the file system. Malware is downloaded from the network; it doesn't materialize from nowhere. In order to meet that nonexistent threat, commercial AV software modifies or duplicates low-level functions of the operating system, which is a waste of resources and a common cause of instability, bugs, and poor performance.

☞ By modifying the operating system, the software may also create weaknesses that could be exploited by malware attackers.

☞ Most importantly, a false sense of security is dangerous.

8. An AV product from the App Store, such as "ClamXav," has the same drawback as the commercial suites of being always out of date, but it does not inject low-level code into the operating system. That doesn't mean it's entirely harmless. It may report email messages that have "phishing" links in the , or Windows malware in attachments, as infected files, and offer to delete or move them. Doing so will corrupt the Mail database. The messages should be deleted from within the Mail application.

An AV app is not needed, and cannot be relied upon, for protection against OS X malware. It's useful, if at all, only for detecting Windows malware, and even for that use it's not really effective, because new Windows malware is emerging much faster than OS X malware.

Windows malware can't harm you directly (unless, of course, you use Windows.) Just don't pass it on to anyone else. A malicious attachment in email is usually easy to recognize by the name alone. An actual example:

London Terror Moovie.avi [124 spaces] Checked By Norton Antivirus.exe

You don't need software to tell you that's a Windows trojan. Software may be able to tell you which trojan it is, but who cares? In practice, there's no reason to use recognition software unless an organizational policy requires it. Windows malware is so widespread that you should assume it's in everyemail attachment until proven otherwise. Nevertheless, ClamXav or a similar product from the App Store may serve a purpose if it satisfies an ill-informed network administrator who says you must run some kind of AV application. It's free and it won't handicap the system.

The ClamXav developer won't try to "upsell" you to a paid version of the product. Other developers may do that. Don't be upsold. For one thing, you should not pay to protect Windows users from the consequences of their choice of computing platform. For another, a paid upgrade from a free app will probably have all the disadvantages mentioned in section 7.

9. It seems to be a common belief that the built-in Application Firewall acts as a barrier to infection, or prevents malware from functioning. It does neither. It blocks inbound connections to certain network services you're running, such as file sharing. It's disabled by default and you should leave it that way if you're behind a router on a private home or office network. Activate it only when you're on an untrusted network, for instance a public Wi-Fi hotspot, where you don't want to provide services. Disable any services you don't use in the Sharing preference pane. All are disabled by default.

10. As a Mac user, you don't have to live in fear that your computer may be infected every time you install software, read email, or visit a web page. But neither can you assume that you will always be safe from exploitation, no matter what you do. Navigating the Internet is like walking the streets of a big city. It's as safe or as dangerous as you choose to make it. The greatest harm done by security software is precisely its selling point: it makes people feel safe. They may then feel safe enough to take risks from which the software doesn't protect them. Nothing can lessen the need for safe computing practices.

Posted on Aug 28, 2014 1:38 PM

Close
LizT1976

Q: Bitdefender - how long does it take to scan entire system?

  • All replies
  • Helpful answers

first Previous Page 5 of 12 last Next

  • by Csound1,

    Csound1 Csound1 Aug 31, 2014 1:49 PM in response to LizT1976
    Level 9 (50,412 points)
    Desktops
    Aug 31, 2014 1:49 PM in response to LizT1976

    LizT1976 wrote:

     

    I'm sure I'll learn how to live with that. You've been pretty snarky toward me since page 1, unlike everyone else contributing to this thread. Not to worry though eh?

     

    This was your very first reply in your thread, not to me of course, you were 'snarky' long before that.

    LizT1976 wrote:

     

    Do you have a helpful suggestion, mr glass half empty?

    Good luck.

  • by LizT1976,

    LizT1976 LizT1976 Aug 31, 2014 2:03 PM in response to Csound1
    Level 1 (0 points)
    Aug 31, 2014 2:03 PM in response to Csound1

    I asked Linc if he had a helpful and constructive response and you will see that he immediately provided useful and brilliant information. As has MadMacs0. Both very helpful gentlemen employing the right tone.

  • by MadMacs0,

    MadMacs0 MadMacs0 Aug 31, 2014 3:12 PM in response to LizT1976
    Level 5 (4,791 points)
    Aug 31, 2014 3:12 PM in response to LizT1976

    LizT1976 wrote:

     

    MadMacs0

     

    ...I got MPlayer from the App store, which I thought was safe. I’ve gotten rid now, I don’t need it. If I need a simple file to play there’s always VLC.

    That's even more surprising then. I can't help but wonder why the latest version (1.0.22.1) isn't available there (they even posted that it isn't) but a the reviews are almost all very positive, with only a handful saying it crashed for them when playing certain media. I have VLC as well, but my media playing needs are minimal so QuickTime almost always takes care of that for me.

    do I need more AV software? Can one be too paranoid or overdo it? Which ones do you use?

    I doubt that you need more than one, especially if disk space is an issue, just make sure that only one is scanning in real time, and if that starts slowing your Mac I would adjust or disable that, as well. I currently have BitDefender, ClamXav, Dr.Web Light, MacScan, Sophos, VirusBarrier Express (still supported but no longer available) installed and I don't use any of them except for testing. I feel comfortable the the current threat and my personal computer practices don't require it and none of those apps has ever found anything that I didn't already know about (several test files, false positive phishing e-mail detections and an isolated collection of malware samples).

    I looked at the Spigot link and there’s nothing in Application Support (bc Safe Mac deleted it!) but there IS a lot of crap I don’t recognise. Not sure what to do about that. I've taken screen shots: http://tinypic.com/r/mm4j09/8http://tinypic.com/r/30m2vwi/8 Are either of these lists troublesome? Is there anything there that shouldn't be there?

    This is the primary location that Apple recommends all developers store extra files and I believe they demand that for AppStore apps, but now you've opened up another can of worms. I don't have time to research all of what I see right now, but feel I should start with some basics on how to uninstall software on a Mac. Simply dragging the app to your trash can should always be a last resort.

     

    Anything you download from the AppStore should be uninstalled in accordance with Apple's instructions in OS X Mavericks: Install, update, and uninstall apps:

    Uninstall apps

    • To uninstall apps you purchased from the Mac App Store, hold down an app’s icon in Launchpad until all the icons begin to jiggle. Click an app’s delete button (x).

    That should ensure that both the app and it's support files are fully removed.

     

    For all other third party apps, consult the developer for instructions on properly uninstalling their software. They are the only ones that are truly familiar enough with where they scattered files to tell you the best way to get rid of it all. Often they provide an uninstaller app or script, either with the initial download or as a separate download from their site. Sometimes they simply give you a list of where everything is and leave it to you to find and remove them all. Occasionally you can get away with simply trashing the app, which will leave behind some very small and inactive preference files that probably aren't worth searching for.

     

    DivX is one that included a "Uninstall DivX for Mac" app in /Applications/DivX/. Since you previously told us that the "Genius" with the advise was the one that got rid of it for you, I'm now in total agreement that he doesn't deserve the title. I can tell by looking at the Uninstall app that it would have removed the /Library/Applications Support/DivX/ folder along with several others elsewhere on your Mac that are probably still there. Here is a map to most of them:

    Screen Shot 2014-08-31 at 3.03.05 PM.png

    One last thing that I need to strongly encourage you to get rid of is CleanMyMac, if you haven't done it already. It can permanently damage both your OS and several applications if you don't use it properly. I realize you probably think it will help you with these current issues but believe me when I say it can cause more harm than good. You already know enough about cleaning things up without further exacerbating your problems with that. Developer instructions are to use the app itself to remove it as outlined in How To Uninstall CleanMyMac 2?, if that's the version you have, and I know from experience that it has worked for me, but others in this forum claim it didn't fully remove it, so you may have to conduct a search afterward, to be certain.

  • by LizT1976,

    LizT1976 LizT1976 Sep 1, 2014 5:47 AM in response to MadMacs0
    Level 1 (0 points)
    Sep 1, 2014 5:47 AM in response to MadMacs0

    First, I want to thank you again for being so very helpful. I felt like a fool last week and I’m trying to educate myself - just from chatting to you I’ve learned loads :-)

     

    Back from the Apple store - battery installed in an hour. Pleasing result!

     

    Disk space is fine - 311GB left out of 499. Loads of space. I got ClamXav - that seems to be the one whose name is coming up the most. I found more DivX stuff in Library/Preferences and deleted them. :-/

     

    In System Preferences I can see Java at the bottom (but I don’t have it!) and it won’t delete from the Preferences Pane, it says. What to do? Found these in Library/Preferences also:

    com.oracle.java.JavaAppletPlugin

    com.oracle.javadeployment

    net.java.openjdk.cmd

     

    Delete?

     

    As for CleanMyMac - I don’t have it in Applications or does it live elsewhere? There’s just this one folder in Application Support, should I delete that?

  • by Csound1,

    Csound1 Csound1 Sep 1, 2014 6:03 AM in response to LizT1976
    Level 9 (50,412 points)
    Desktops
    Sep 1, 2014 6:03 AM in response to LizT1976

    You can not remove CMM just by deleting the bits you can see, and it will not undo the damage that it has already done. The developer offers an uninstaller, but it is a fake, it won't properly uninstall. You have been scammed.

     

    Backup the Mac, then you can start searching for 'bits' of CMM to remove.

     

    In order to make this easier it is time for some hard information about what is actually running on your Mac. Download Etrecheck (please seek other opinions if you are worried about downloading something) it is safe and will tell us exactly how much your Mac has been 'modified'. (No personal information will be included in the report)

     

     

    Be prepared for a full erase, CMM does damage.

  • by LizT1976,

    LizT1976 LizT1976 Sep 1, 2014 6:22 AM in response to Csound1
    Level 1 (0 points)
    Sep 1, 2014 6:22 AM in response to Csound1

    EasyFind has, horrifyingly, found LOADS of DivX and CMM stuff, all now deleted. Incredible and insidious how this stuff gets into your Mac and sits there; most people have no clue about all of this crap, and neither did I til last week! :-/

     

    There’s tons of files in: Library/Application Support/Google/Chrome/Default/Pepper Data/Shockwave Flash/WritableRoot/#SharedObjects/459C3EQ6/macromedia.com/support/flashplayer/s ys

     

    Something to worry about?

     

    I am now free of CMM and DivX - anything else I should be looking for that’s damaging?

     

    Thank you :-)

  • by Csound1,

    Csound1 Csound1 Sep 1, 2014 6:37 AM in response to LizT1976
    Level 9 (50,412 points)
    Desktops
    Sep 1, 2014 6:37 AM in response to LizT1976

    You have not supplied enough info to know.

     

    Please perform the investigative diagnosis I asked for, right now neither you nor I know what is running. Too much guesswork going on here.

     

    FYI: DIVX is in no way damaging, it did not need removal.

  • by LizT1976,

    LizT1976 LizT1976 Sep 1, 2014 6:47 AM in response to Csound1
    Level 1 (0 points)
    Sep 1, 2014 6:47 AM in response to Csound1

    Ah, understood - I didn't see that part of the post, sorry about that! (btw, since I deleted all of this stuff, the slowness that has plagued me for months is over. It's all running nicely now, at least I think so. You wrote this: "You downloaded any malware when you downloaded DIVX, it's a common technique, bundle something bad with something good and rely on the user not bothering to check (most don't)". So DivX, even if in itself is not trouble, it brings trouble!

     

    Here's the report:

     

    EtreCheck version: 1.9.15 (52)

    Report generated 1 September 2014 14:42:59 BST

     

    Hardware Information: ?

      MacBook Pro (15-inch, Early 2011) (Verified)

      MacBook Pro - model: MacBookPro8,2

      1 2 GHz Intel Core i7 CPU: 4 cores

      4 GB RAM

     

    Video Information: ?

      Intel HD Graphics 3000 - VRAM: 384 MB

      Color LCD 1440 x 900

      AMD Radeon HD 6490M - VRAM: 256 MB

     

    System Software: ?

      OS X 10.9.4 (13E28) - Uptime: 0 days 1:40:37

     

    Disk Information: ?

      Hitachi HTS545050B9A302 disk0 : (500.11 GB)

      S.M.A.R.T. Status: Verified

      EFI (disk0s1) <not mounted>: 209.7 MB

      Liz's Mac (disk0s2) / [Startup]: 499.25 GB (317.2 GB free)

      Recovery HD (disk0s3) <not mounted>: 650 MB

     

      MATSHITADVD-R   UJ-898 

     

    USB Information: ?

      Apple Inc. FaceTime HD Camera (Built-in)

      Apple Inc. Apple Internal Keyboard / Trackpad

      Apple Inc. BRCM2070 Hub

      Apple Inc. Bluetooth USB Host Controller

      Apple Computer, Inc. IR Receiver

     

    Thunderbolt Information: ?

      Apple Inc. thunderbolt_bus

     

    Configuration files: ?

      /etc/hosts - Count: 128

     

    Gatekeeper: ?

      Mac App Store and identified developers

     

    Kernel Extensions: ?

      [not loaded] com.devguru.driver.SamsungACMControl (1.4.20 - SDK 10.6) Support

      [not loaded] com.devguru.driver.SamsungACMData (1.4.20 - SDK 10.6) Support

      [not loaded] com.devguru.driver.SamsungComposite (1.4.20 - SDK 10.6) Support

      [not loaded] com.devguru.driver.SamsungMTP (1.4.20 - SDK 10.5) Support

      [not loaded] com.devguru.driver.SamsungSerial (1.4.20 - SDK 10.6) Support

     

    Startup Items: ?

      ChmodBPF: Path: /Library/StartupItems/ChmodBPF

     

    Launch Daemons: ?

      [loaded] com.adobe.fpsaud.plist Support

     

    User Launch Agents: ?

      [loaded] com.adobe.ARM.[...].plist Support

      [running] com.amazon.music.plist Support

     

    User Login Items: ?

      None

     

    Internet Plug-ins: ?

      DirectorShockwave: Version: 11.6.8r638 Support

      o1dbrowserplugin: Version: 5.4.2.18903 Support

      Default Browser: Version: 537 - SDK 10.9

      OfficeLiveBrowserPlugin: Version: 12.3.1 Support

      AdobePDFViewerNPAPI: Version: 10.1.10 Support

      FlashPlayer-10.6: Version: 14.0.0.176 - SDK 10.6 Support

      Silverlight: Version: 5.1.30214.0 - SDK 10.6 Support

      Flash Player: Version: 14.0.0.176 - SDK 10.6 Support

      iPhotoPhotocast: Version: 7.0 - SDK 10.7

      CitrixICAClientPlugIn: Version: 11.8.2 - SDK 10.7 Support

      googletalkbrowserplugin: Version: 5.4.2.18903 Support

      AdobePDFViewer: Version: 10.1.10 Support

      QuickTime Plugin: Version: 7.7.3

      SharePointBrowserPlugin: Version: 14.4.4 - SDK 10.6 Support

      JavaAppletPlugin: Version: Java 8 Check version

     

    Safari Extensions: ?

      AdBlock

     

    Audio Plug-ins: ?

      BluetoothAudioPlugIn: Version: 1.0 - SDK 10.9

      AirPlay: Version: 2.0 - SDK 10.9

      AppleAVBAudio: Version: 203.2 - SDK 10.9

      iSightAudio: Version: 7.7.3 - SDK 10.9

     

    iTunes Plug-ins: ?

      Quartz Composer Visualizer: Version: 1.4 - SDK 10.9

     

    User iTunes Plug-ins ?

      AudioScrobbler: Version: 3.0.4 Support

     

    User Internet Plug-ins ?

      fbplugin_1_0_3: Version: (null) Support

     

    3rd Party Preference Panes: ?

      Flash Player  Support

      Java  Support

      MacFUSE  Support

      Perian  Support

     

    Time Machine: ?

      Mobile backups: ON

      Auto backup: YES

      Volumes being backed up:

      Liz's Mac: Disk size: 464.96 GB Disk used: 169.55 GB

      Destinations:

      Time Machine Backups [Local] (Last used)

      Total size: 931.17 GB

      Total number of backups: 85

      Oldest backup: 2012-01-13 14:42:05 +0000

      Last backup: 2014-08-28 16:24:57 +0000

      Size of backup disk: Adequate

      Backup size 931.17 GB > (Disk used 169.55 GB X 3)

      Time Machine details may not be accurate.

      All volumes being backed up may not be listed.

     

    Top Processes by CPU: ?

          28% Google Chrome

          10% WindowServer

          4% Google Chrome Helper

          3% hidd

          1% iTunes

     

    Top Processes by Memory: ?

      176 MB iTunes

      168 MB Microsoft Word

      147 MB mds_stores

      147 MB com.apple.IconServicesAgent

      123 MB Google Chrome

     

    Virtual Memory Information: ?

      415 MB Free RAM

      1.54 GB Active RAM

      1008 MB Inactive RAM

      1.05 GB Wired RAM

      1.48 GB Page-ins

      320 KB Page-outs

  • by Csound1,Helpful

    Csound1 Csound1 Sep 1, 2014 7:07 AM in response to LizT1976
    Level 9 (50,412 points)
    Desktops
    Sep 1, 2014 7:07 AM in response to LizT1976

    So DivX, even if in itself is not trouble, it brings trouble!

    No, and you need to understand that you caused the download of any attached malware first by choosing to download DIVX from some 3rd party (CNET et al), and second by not reading the terms of the download. Had you downloaded it from an honest site (such as the vendors, divx.com) it would not have happened. The best way to stay safe is (no offence intended) to examine the choices you make or this will continue to happen.

     

    Before you download anything, know why you want it,, know how to remove it and read the download terms carefully, it takes less time than removing anything unwanted does. And only download from the vendors own website.

     

    Having said that your ET report is pretty clean, CMM is not running (even if there are bits left) and BitDefender appears to be inactive, but. MacFuse is not properly compatible with Mavericks, it should be uninstalled (and if you need the ability to write to an NTFS drive purchase a copy of Paragon NTFS) Chrome is using almost a third of your processor (32% including helper) an awful lot for a browser but that is Chrome. You could use an increase in your Ram, your Mac is swapping to disk (not a lot, yet) a sign that the Ram is being over used.

  • by LizT1976,

    LizT1976 LizT1976 Sep 1, 2014 7:18 AM in response to Csound1
    Level 1 (0 points)
    Sep 1, 2014 7:18 AM in response to Csound1

    Obviously, while I don’t remember when I downloaded DivX I did so from its website. I have never downloaded anything from CNet et al. You’re right about the terms - I can’t be the only person guilty of not reading small print, but lesson thoroughly learned now. I will not be downloading anything from strange sources again, believe me. Once bitten…

     

    How do I get rid of MacFuse? I found this https://code.google.com/p/macfuse/downloads/detail?name=MacFUSE-2.0.3%2C2.dmg&ca n=2&q= but that seems to put it on, not take it off. I have been considering getting 8 Ram, up from 4. I think the issue is how much to spend on a Mac I’ve had for 3 years that was refurbished in the first place. I'm very close to the 4GB tho - which is amazing really considering I use Chrome and Word and nothing else.

  • by Csound1,

    Csound1 Csound1 Sep 1, 2014 7:37 AM in response to LizT1976
    Level 9 (50,412 points)
    Desktops
    Sep 1, 2014 7:37 AM in response to LizT1976

    LizT1976 wrote:

     

    Obviously, while I don’t remember when I downloaded DivX I did so from its website. I have never downloaded anything from CNet et al. You’re right about the terms - I can’t be the only person guilty of not reading small print, but lesson thoroughly learned now. I will not be downloading anything from strange sources again, believe me. Once bitten…

    You're certainly not alone, we have all done it, until we learn not to

     

    How do I get rid of MacFuse? I found this https://code.google.com/p/macfuse/downloads/detail?name=MacFUSE-2.0.3%2C2.dmg&ca n=2&q= but that seems to put it on, not take it off. I have been considering getting 8 Ram, up from 4. I think the issue is how much to spend on a Mac I’ve had for 3 years that was refurbished in the first place. I'm very close to the 4GB tho - which is amazing really considering I use Chrome and Word and nothing else.

    I am unsure, let me check, I believe that it is as simple as deleting the preference pane, but I'll verify that. 8GB is a nice spot, 4GB is (in the real world) very much a minimum.

     

    Chrome is a hog, an unruly, old, 32bit app running in a 64bit world, Word always used a decent amount as well. Put more Ram in if Chrome is your way.

     

    A quick look at that report that will show that even when you are 'only' running Chrome and Word, you are running a lot of other things too.

     

    So it's not quite as simple as I thought, but it's all done from the Preference Pane in System Preferences.

     

    Q 2.3. How can I uninstall MacFUSE?


    A: Launch the Mac OS X System Preferences application and go to the MacFUSE preference pane. Click on the "Remove MacFUSE" button. This will uninstall all MacFUSE components except the preference pane itself.

    You can keep the MacFUSE preference pane around should you decide to install MacFUSE again in the future. If you do wish to remove it, you do it just like how you would remove any other non-Apple preference pane: In System Preferences, control-click (right-click) on the MacFUSE icon and you will see "Remove ..." as an action.

     

    Only if you had the "Show Beta Versions" button checked in the MacFUSE prefpane, you'll have a property list (plist) file remaining at this point:/Library/Preferences/com.google.macfuse.plist. To remove it, you should uncheck the button before you remove the prefpane as described above.

     

    Note that an official (correct) MacFUSE installation will have a preference pane if you have MacFUSE 2.0 or later installed. If you have an older version of MacFUSE, you can post back and I'll look that up.

  • by LizT1976,

    LizT1976 LizT1976 Sep 1, 2014 7:46 AM in response to Csound1
    Level 1 (0 points)
    Sep 1, 2014 7:46 AM in response to Csound1

    It’s been a serious wake up call and has burst my arrogant ‘Macs are safe’ balloon! Word is horrible beyond words but I'm an editor/proofreader so 95% of my work is done through it.

     

    TSM didn’t find any trouble. ClamXav is running and taking forever, expectedly. I’m going to give going up to 8GB some thought; it’d fly along if I did that…

     

    Got rid of MacFuse (checked for more in EasyFind - loads, all deleted), ta for the info! What about the Java Preference Pane? I tried the normal Ctrl Click Remove action and it says an error occurred. It really doesn’t want to go. On that panel Flash Player is there (I need that, I’m sure) and so is Perian, whatever that is.

  • by LizT1976,

    LizT1976 LizT1976 Sep 1, 2014 7:51 AM in response to Csound1
    Level 1 (0 points)
    Sep 1, 2014 7:51 AM in response to Csound1

    As before, ClamXav is finding trojan infections in Mail/V2. I did as told last week and when I checked Mail (for that client) I deleted messages and then emptied the Trash. I know they're Windows trojans so not harmful but it's still jarring. Am going to post a screen grab when ClamXav is done.

  • by LizT1976,

    LizT1976 LizT1976 Sep 1, 2014 7:58 AM in response to LizT1976
    Level 1 (0 points)
    Sep 1, 2014 7:58 AM in response to LizT1976

    http://tinypic.com/r/1zz6grs/8

     

    It's not finished yet but you get the idea. All this crap living in V2. These emlx files - what are they? How can I (do I need to) get rid of them? 43 infections and counting :-/

  • by Csound1,

    Csound1 Csound1 Sep 1, 2014 8:14 AM in response to LizT1976
    Level 9 (50,412 points)
    Desktops
    Sep 1, 2014 8:14 AM in response to LizT1976

    An emlx file is an email, quite normally found in mail subfolders. Nothing on that list is any risk to you (this is why I don't recommend using any commercial AV software beyond that supplied by Apple) now your work will be affected by unfounded anxieties.

     

    Ignore it, remove clamXav

first Previous Page 5 of 12 last Next