Hi all,
Please forgive me if this is in the wrong forum. I couldn't find a forum just for security issues.
I have a 17" Macbook Pro (c. 2009), 2.5 GHz, running 10.6.8. It's been running slow and freezing up, so I repaired Permissions (a whole lot of them) and also had to repair the disk. Right after I repaired the disk successfully, I ran the permissions again. It seemed like there were just as many permission problems as before. I again repaired them and all but one was repaired. It said: Warning: SUID file "System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/MacOS/ARDAgent" has been modified and will not be repaired.
I presume SUID stands for System User ID. And Remote Management? Does this mean someone can--or HAS!--taken over my computer? Why wasn't it repaired? Who modified it?
I ran ClamXav and it said I had 18 infected files. Most were .exe or .exe.part files, but there were three "InstallGenieo.dmg -- Osx.Trojan.Genieo" files and one "InstallGenieo.dmg -- Osx.Adware.Geonei-9" file as well as three email phishing files. I quarantined all the files except the Genieo files. I trashed those.
I have previous Time Machine Backups (a Seagate GoFlex 1TB external drive) for the last two months, but new backups fail. I verified the TM Drive and it, too, needs to be repaired. I will do this just as soon as I get all my music (nearly 3,000 songs) and some other stuff backed up onto another drive.
I'm sorry this is so long, but I'm very worried and afraid to use my Mac for any business/banking, etc. Also, I just got an iPhone 4S and I'm afraid to sync it with my calendar, which is what I really need it for. What do I have to do to make sure my Mac is secure?
Thanks very much for your assistance.
Sunshine
Please forgive me if this is in the wrong forum. I couldn't find a forum just for security issues.
I have a 17" Macbook Pro (c. 2009), 2.5 GHz, running 10.6.8. It's been running slow and freezing up, so I repaired Permissions (a whole lot of them) and also had to repair the disk. Right after I repaired the disk successfully, I ran the permissions again. It seemed like there were just as many permission problems as before. I again repaired them and all but one was repaired. It said: Warning: SUID file "System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/MacOS/ARDAgent" has been modified and will not be repaired.
I presume SUID stands for System User ID. And Remote Management? Does this mean someone can--or HAS!--taken over my computer? Why wasn't it repaired? Who modified it?
I ran ClamXav and it said I had 18 infected files. Most were .exe or .exe.part files, but there were three "InstallGenieo.dmg -- Osx.Trojan.Genieo" files and one "InstallGenieo.dmg -- Osx.Adware.Geonei-9" file as well as three email phishing files. I quarantined all the files except the Genieo files. I trashed those.
I have previous Time Machine Backups (a Seagate GoFlex 1TB external drive) for the last two months, but new backups fail. I verified the TM Drive and it, too, needs to be repaired. I will do this just as soon as I get all my music (nearly 3,000 songs) and some other stuff backed up onto another drive.
I'm sorry this is so long, but I'm very worried and afraid to use my Mac for any business/banking, etc. Also, I just got an iPhone 4S and I'm afraid to sync it with my calendar, which is what I really need it for. What do I have to do to make sure my Mac is secure?
Thanks very much for your assistance.
Sunshine
