New malware?

Thank you for the answers, I will try your suggestions. I already ran Apple Hardware Test and it says everything is OK. I always used Airport for wireless Internet connection, but when the problem occured, I tried it with ethernet wire, and the result is the same, the computer stops working properly as soon as it attemps to connect to the Internet.

Since Dropbox never asked for admin password before, and it happened at the same time that the Internet problem, I thought it was suspicious. Maybe this message appeared because the modem was reset, and I had to configuer the Internet connection as if it was the first time.

I ran extended Apple Hardware Test that took an hour, and no problem is found.

Then I did a Safe Boot and ran Disk Utility. I verified the disk, and it says "The volume Mac HD appears to be OK".

But the "Verify Disk Permissions" test revealed plenty of errors. About 40 permission errors, for exemple:

- Permissions differ on "System/Library/Frameworks/JavaVM.frameworkl/Versions/A/Resources/Deploy.bundle /Contents/Home/lib/security/cacerts" should be -rw-r--r--, they are lrwxr-xr-x

- Permissions differ on "System/Library/CoreServices/MenuExtras/RemoteDesktop.menu/Contents/Resources/k o.lproj/RemoteDesktopMenu.nib" should be drwxr-xr-x, they are -rw-r--r--

5 user errors, for exemple:

- User differs on "provate/var/at" should be 0, user is 1

- User differs on "System/Library/Frameworks/JavaVm.framework/Versions/1.6.0/libraries" should be 95, user is 0

3 group errors, for exemple:

- Group differs on "System/Library/Cose Services/Finder.app/Contents/Resources/English.lproj/InfoPlist.strings" should be 0, group is 20

1 warning:

SUD file "System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/MacOS/ARD" Agent has been modified and will not be repared

What does it all mean?..

So now I should repair permissions and repeat the test?

Thanks again for your help.

Permissions repared.

The problem is still there, even after Safe boot. After regular boot, as soon as there is Internet connection, if I try to open Safari or any other application, it takes forever and finally nothing happens (or maybe it would take hours...). In Safe mode most applications open normally but for Safari it takes about 10 minutes to load. And all other applications freeze during this time. So it is better in Safe mode but still doesn't work properly.

In safe mode, with Ethernet cable connected, I ran Network Diagnostics, all lights in Ethernet Network Status are

green, and it says that no problem is detected.

In Safe mode I was able to install and run ClamXaV. It is still running and found HTML.Spy.IMG in one Jpeg file. Is it a PC virus?

What else could I do?..

Scan is finished, and nothing else was found. HTML.Spy.IMG was found in a real Jpeg image that I saved to the Pictures folder about 2 years ago. I guess I should just delete it?

Nothing else to show you...

In the Scan summary window, before the scan results, it says "LibClamAV Error: fmap_readpage: pread error: Input/output error". And in scan results it also says "Total errors: 1101"

Can I do anything else to see where the problem comes from? Any other tests?

Maybe to reset the modem again? (though it works fine with a PC)

BDAqua suggested in the first post:

Also look in these if they exist, some are invisible...

/private/var/run/StartupItems

/Library/StartupItems

/System/Library/StartupItems

/System/Library/LaunchDaemons

/Library/LaunchDaemons

What exactly should I look for? And how can I see invisible folders?

Ok.

/private/var/run/StartupItems

- folder doesn't exist.

/Library/StartupItems

- folder "EmagicA26A62mFirmwareLoader" containing items: StartupParameters.plist, Daemonizer,

EmagicA26A62mFirmwareLoader, EmagicA26A62mFW

- folder "Jaksta" containing items: StartupParameters.plist, Jaksta (application "Jaksta" is not installed on my computer)

- folder "Qmaster" (see screenshot):

/System/Library/StartupItems

- folder is empty

/Library/LaunchDaemons

- 5 items, see screenshot:

/System/Library/LaunchDaemons

- 164 items, see screenshots:

Is there anything that should not be there?

Thank you!

I deleted this folder.

The problem stays, and also today I noticed that the computer is loading very slowly when the Wireless Magic Mouse is on. Blue screen stays for 5-10 minutes before the desktop appears. This happens even with Ethernet cable unplugged, and it didn't happen when I first started my post.

So at the moment it boots very slowly showing gray screen for a long time, and the blue screen for a very long time when:

- Ehternet cable is plugged in and the modem is on;
- Ethernet cable is unplugged but Wireless Magic Mouse is on.

And it works all right if I boot it while the modem is off and a USB mouse is connected (or no mouse is connected during startup, and I switch on the Wireless Magic Mouse after the boot is done).