ciao a tutti
è un pò di giorni che ho qualche problemino sul mio mac ma niente di preoccupante, più che altro curiosando nella libreria ho trovato delle cartelle sospette create da pochi giorni e controllando su monitoraggio attività ho notato che avevo un'utente sconosciuto chiamato zenonian che attivava processi sul mio computer che facevano capo a queste cartelle:
adhesive
hinderment
campylodrome
impanation
palaeophile
ho cominciato a cercare su google ma non ho trovato nulla, poi ho fatto ricerche più generiche e ho installato malwarebytes, ho staccato il wifi (ora sto usando un'altro mac) e l'ho avviato
malwarebytes ha trovato vari adware che ha eliminato
ho riavviato e controllato se fossero sparite anche quelle cartelle ma sono ancora lì e controllando su monitoraggio attività i processi ci sono ancora solo che ora fanno capo all'utente unestimableness
quindi ho seguito il vostro consiglio a un'altro utente e ho scaricato etrecheck
ho lanciato il check e questo è il risultato:
----------
EtreCheck version: 2.9.12 (265)
Report generated 2016-06-04 15:34:41
Download EtreCheck from
https://etrecheck.com" onclick="window.open(this.href);return false;
Runtime 1:26
Performance: Excellent
Click the [Support] links for help with non-Apple products.
Click the [Details] links for more information about that line.
Click the [Remove] links to remove adware.
Click the [Check files] link for help with unknown files.
Problem: Apps are crashing
Hardware Information: ⓘ
27" iMac (Late 2013)
[Technical Specifications] - [User Guide] - [Warranty & Service]
iMac - model: iMac14,2
1 3.5 GHz Intel Core i7 CPU: 4-core
16 GB RAM Upgradeable - [Instructions]
BANK 0/DIMM0
8 GB DDR3 1600 MHz ok
BANK 1/DIMM0
8 GB DDR3 1600 MHz ok
BANK 0/DIMM1
Empty
BANK 1/DIMM1
Empty
Bluetooth: Good - Handoff/Airdrop2 supported
Wireless: en1: 802.11 a/b/g/n/ac
Video Information: ⓘ
NVIDIA GeForce GTX 780M - VRAM: 4096 MB
iMac 2560 x 1440
System Software: ⓘ
OS X Mavericks 10.9.5 (13F1808) - Time since boot: less than an hour
Disk Information: ⓘ
APPLE SSD SM0256F disk0 : (251 GB) (Solid State - TRIM: Yes)
EFI (disk0s1) <not mounted> : 210 MB
Macintosh HD (disk0s2) / : 250.14 GB (56.29 GB free)
Recovery HD (disk0s3) <not mounted> [Recovery]: 650 MB
USB Information: ⓘ
SanDisk U3 Cruzer Micro 16,05 GB
DAG_CRUZER (disk1s1) /Volumes/DAG_CRUZER : 16.05 GB (14.00 GB free)
Apple Inc. FaceTime HD Camera (Built-in)
Apple Inc. BRCM20702 Hub
Apple Inc. Bluetooth USB Host Controller
Thunderbolt Information: ⓘ
Apple Inc. thunderbolt_bus
Gatekeeper: ⓘ
Mac App Store and identified developers
Adware: ⓘ
/Library/LaunchDaemons/com.enigmatizationUpd.plist
/Library/LaunchDaemons/com.retinochorioiditisUpd.plist
2 adware files found. [Remove]
Unknown Files: ⓘ
/Library/LaunchDaemons/com.adhesive.plist
/etc/adhesive.sh
/Library/LaunchDaemons/com.campylodrome.plist
/etc/campylodrome.sh
/Library/LaunchDaemons/com.hinderment.plist
/etc/hinderment.sh
/Library/LaunchDaemons/com.impanation.plist
/etc/impanation.sh
/Library/LaunchDaemons/com.palaeophile.plist
/etc/palaeophile.sh
/Library/LaunchDaemons/com.usysir.plist
6 unknown files found. [Check files]
Kernel Extensions: ⓘ
/Applications/Toast 11 Titanium/Spin Doctor.app
[not loaded] com.hzsystems.terminus.driver (4 - 2014-05-14) [Support]
/System/Library/Extensions
[loaded] com.nvidia.CUDA (1.1.0 - 2016-06-02) [Support]
[not loaded] com.roxio.BluRaySupport (1.1.6 - 2016-06-02) [Support]
[not loaded] com.sony.filesystem.prodisc_fs (2.3.2d12 - SDK 10.0 - 2016-06-02) [Support]
[not loaded] com.sony.protocol.prodisc (2.3.2d12 - SDK 10.0 - 2016-06-02) [Support]
[loaded] com.vara.driver.VaraAudio (1.0.3 - 2016-06-02) [Support]
[not loaded] com.wdc.driver.1394HP (1.0.11 - SDK 10.4 - 2016-06-02) [Support]
[not loaded] com.wdc.driver.1394_64HP (1.0.1 - SDK 10.6 - 2016-06-02) [Support]
[not loaded] com.wdc.driver.USBHP (1.0.11 - 2016-06-02) [Support]
[not loaded] com.wdc.driver.USB_64HP (1.0.0 - SDK 10.6 - 2016-06-02) [Support]
[not loaded] jp.panasonic.iokit.AJMPD1ProtocolService (1.0.1 - SDK 10.8 - 2016-06-02) [Support]
[not loaded] jp.panasonic.iokit.p2drivefamily (3.1.7 - SDK 10.7 - 2016-06-02) [Support]
/System/Library/Extensions/P2DriveFamilyDriver.kext/Contents/PlugIns
[not loaded] jp.panasonic.iokit.P2FireWireSBP2 (4.2.0 - SDK 10.7 - 2014-08-27) [Support]
[not loaded] jp.panasonic.iokit.PCD35Device (2.0.4 - SDK 10.7 - 2014-08-27) [Support]
~/Library/Services/ToastIt.service/Contents/MacOS
[not loaded] com.roxio.TDIXController (2.0 - 2014-05-14) [Support]
System Launch Agents: ⓘ
[not loaded] 4 Apple tasks
[loaded] 148 Apple tasks
[running] 32 Apple tasks
System Launch Daemons: ⓘ
[not loaded] 47 Apple tasks
[loaded] 142 Apple tasks
[running] 59 Apple tasks
Launch Agents: ⓘ
[not loaded] com.adobe.AAM.Updater-1.0.plist (2015-06-21) [Support]
[failed] com.adobe.ARMDCHelper.cc24aef4a1b90ed56a...plist (2016-06-02) [Support]
[loaded] com.divx.dms.agent.plist (2014-11-17) [Support]
[loaded] com.divx.update.agent.plist (2014-05-19) [Support]
[loaded] com.google.keystone.agent.plist (2016-04-07) [Support]
[loaded] com.nvidia.CUDASoftwareUpdate.plist (2016-06-04) [Support]
[loaded] com.panasonic.p2csvc.plist (2013-06-24) [Support]
[not loaded] com.teamviewer.teamviewer.plist (2015-03-02) [Support]
[not loaded] com.teamviewer.teamviewer_desktop.plist (2015-03-02) [Support]
Launch Daemons: ⓘ
[running] com.adhesive.plist (2016-06-03) [Support]
[loaded] com.adobe.ARMDC.Communicator.plist (2016-06-02) [Support]
[loaded] com.adobe.ARMDC.SMJobBlessHelper.plist (2016-06-02) [Support]
[loaded] com.adobe.fpsaud.plist (2016-05-10) [Support]
[loaded] com.apple.aelwriter.plist
[not loaded] com.apple.athechyer.plist (2016-05-26) - Executable not found!
[running] com.apple.qmaster.qmasterd.plist
[not loaded] com.apple.saml.plist (2016-05-16) - Executable not found!
[running] com.campylodrome.plist (2016-06-02) [Support]
[loaded] com.enigmatizationUpd.plist (2015-11-10) Adware! [Remove]
/etc/run_upd.sh
[loaded] com.google.keystone.daemon.plist (2016-04-07) [Support]
[running] com.hinderment.plist (2016-06-04) [Support]
[running] com.impanation.plist (2016-06-02) [Support]
[loaded] com.malwarebytes.MBAMHelperTool.plist (2016-06-04) [Support]
[loaded] com.noiseindustries.FxFactory.plist (2014-09-10) [Support]
[loaded] com.nvidia.cuda.launcher.plist (2014-09-26) [Support]
[running] com.palaeophile.plist (2016-06-02) [Support]
[not loaded] com.retinochorioiditisUpd.plist (2016-06-02) Adware! [Remove]
[loaded] com.teamviewer.Helper.plist (2015-03-02) [Support]
[not loaded] com.teamviewer.teamviewer_service.plist (2015-03-02) [Support]
[not loaded] com.usysir.plist (2016-05-10) [Support]
User Launch Agents: ⓘ
[loaded] com.adobe.AAM.Updater-1.0.plist (2014-09-26) [Support]
[failed] com.adobe.ARM.[...].plist (2014-12-05) [Support]
Other Apps: ⓘ
[failed] /Library/usysir/usysir.app/Contents/MacOS/usysir
[running] [0x0-0x21021].com.etresoft.EtreCheck
[running] [0x0-0x4004].com.malwarebytes.antimalware
[running] com.adobe.PDApp.AAMUpdatesNotifier.97536.BC6E27CB-F50F-4B8B-8489-5CE7B0BF2B14
[running] com.malwarebytes.Malwarebytes-Anti-Malware-Service
[running] com.panasonic.p2csvc.156672
[loaded] retinochorioiditisUpd.plist
[loaded] 449 Apple tasks
[running] 278 Apple tasks
Internet Plug-ins: ⓘ
FlashPlayer-10.6: 21.0.0.242 - SDK 10.6 (2016-06-02) [Support]
QuickTime Plugin: 7.7.3 (2016-06-02)
AdobePDFViewerNPAPI: 15.016.20039 - SDK 10.11 (2016-05-03) [Support]
AdobePDFViewer: 15.016.20039 - SDK 10.11 (2016-05-03) [Support]
DivX Web Player: 3.2.4.1250 - SDK 10.6 (2014-11-26) [Support]
Flash Player: 21.0.0.242 - SDK 10.6 (2016-06-02) Cannot contact Adobe
Default Browser: 537 - SDK 10.9 (2014-09-24)
Google Earth Web Plug-in: 7.1 (2016-04-07) [Support]
OVSHelper: 1.1 (2014-11-26) [Support]
Flip4Mac popoWMV Plugin: 2.4.0.11 (2014-05-14) [Support]
Silverlight: 4.0.60531.0 (2014-05-14) [Support]
User internet Plug-ins: ⓘ
Picasa: 1.0 - SDK 10.6 (2015-10-13) [Support]
Audio Plug-ins: ⓘ
DVCPROHDAudio: 1.3.2 (2014-05-14)
3rd Party Preference Panes: ⓘ
CUDA Preferences (2014-08-01) [Support]
Flash Player (2016-05-10) [Support]
Flip4Mac WMV (2011-06-30) [Support]
Tuxera NTFS (2011-06-20) [Support]
Time Machine: ⓘ
Time Machine not configured!
Top Processes by CPU: ⓘ
6% fontd
3% WindowServer
2% kernel_task
1% Dock
1% p2csvc
Top Processes by Memory: ⓘ
854 MB kernel_task
147 MB WindowServer
131 MB com.apple.IconServicesAgent
98 MB mds_stores
82 MB Finder
Virtual Memory Information: ⓘ
13.00 GB Free RAM
2.86 GB Used RAM (2.47 GB Cached)
0 B Swap Used
Diagnostics Information: ⓘ
Jun 4, 2016, 03:01:50 PM Self test - passed
Jun 4, 2016, 03:01:11 PM ~/Library/Logs/DiagnosticReports/p2csvc_2016-06-04-150111_[redacted].crash
com.panasonic.p2csvc - /Users/Shared/*/p2csvc.app/Contents/MacOS/p2csvc
Jun 4, 2016, 12:52:28 PM ~/Library/Logs/DiagnosticReports/p2csvc_2016-06-04-125228_[redacted].crash
Jun 4, 2016, 12:46:19 PM /Library/Logs/DiagnosticReports/adhesive_2016-06-04-124619_[redacted].crash
/Library/adhesive/*/adhesive
Jun 3, 2016, 07:22:19 PM ~/Library/Logs/DiagnosticReports/p2csvc_2016-06-03-192219_[redacted].crash
Jun 2, 2016, 11:46:29 PM ~/Library/Logs/DiagnosticReports/p2csvc_2016-06-02-234629_[redacted].crash
Jun 2, 2016, 06:43:15 PM ~/Library/Logs/DiagnosticReports/p2csvc_2016-06-02-184315_[redacted].crash
Jun 2, 2016, 06:35:39 PM ~/Library/Logs/DiagnosticReports/p2csvc_2016-06-02-183539_[redacted].crash
Jun 2, 2016, 06:15:36 PM /Library/Logs/DiagnosticReports/palaeophile_2016-06-02-181536_[redacted].crash
/Library/palaeophile/*/palaeophile
Jun 2, 2016, 03:53:08 PM ~/Library/Logs/DiagnosticReports/p2csvc_2016-06-02-155308_[redacted].crash
Jun 2, 2016, 01:25:06 AM ~/Library/Logs/DiagnosticReports/p2csvc_2016-06-02-012506_[redacted].crash
----------
da quel poco che capisco ho ancora dei malware e forse posso eliminarli anche con etrecheck, giusto?
comunque cosa mi consigliate?
grazie mille a tutti