Malware can be determined by many things, one key is no uninstall options.
Install any google application on your mac, and in comes googles software updater via ksfetch
Fair enough right ? Not if you have a care as to how many times per day / hour this script accesses and does 'whatever' it does.
After watching this beast attempt to send information outbound day in day out , little snitch complaining literally several times and hour , and blocking it does not work.
I found this script for whatever reason , changes ports, what else are you aware of the for seemingly no reason , changes ports when one port is blocked ? Little math needs done there.
Why would google want so desperately to send out information from my machine ? That it re installs itself when you track down it's home and remove it ? That means it's somewhere else as well. Again , what else are you aware of that acts like this ?
At any rate, after it's installation , of itself mind you I went searching for others asking the same thing.
A little google found many people are not too thrilled either.
So a patch to stop this malware for now , is to chmod the existing directory to 000 no access. /User/you user name/Library/Google
Interestingly enough I have three separate drives attached via USB, clones and backups , each one of these buggers was trying to access the outside world. So this is four attempts several times per hour each, all changing ports attempting one thing or another.
If anyone has an actual fix for the worst virus / malware to hit OS X please post up.