485
Have I been hacked? Unrepairable SSD corruption...
Mid-2015 MBP (Retina MacBookPro11,5)
2.8 GHz i7-4980HQ 4-core
16 GB RAM
Summary of Issue:
- Noticed I started receiving a lot of spam calls
- FB account possibly hacked, so I took down FB
- Began noticing frequent crashes, duplicate apps, screen appearance constantly changing, problems w/ device syncing
- Recovery partition disappeared
- Frequently asked to update apps I had already updated on MacOS & iOS on a daily basis
- I had both FileVault and Firmware Password set, but was still able to boot using key-combos
- Running Disk Utility in Safe-Mode reported unrepairable corruption on disk (not volume), but returned status as ok when running repair via internet recovery. Rebooted into safe mode to verify that problem was actually fixed, but received unrepairable corruption message again.
- Began to try and fix the problem by:
- Disabling firmware protection using my password
- Disabling FileVault encryption using my password
- Re-running diagnostics (received same errors)
- Tried to reinstall Sierra (which I downloaded from AppStore)
- Tried to reinstall Sierra from internet recovery
STILL DID NOT FIX PROBLEM!!!
It seems like I have 2 installations of the OS (one existing in the boot partition and one on the volume).
Etre Check shows the following:
EtreCheck version: 3.4.4 (448)
Report generated 2017-08-29 18:37:59
Download EtreCheck from https://etrecheck.com
Runtime: 8:22
Performance: Below Average
Click the [Lookup] links for more information from Apple Support Communities.
Click the [Details] links for more information about that line.
Problem: Other problem
Description:
Unrepairable SSD corruption; suspected hacking; permissions
MacBook Pro (Retina, 15-inch, Mid 2015)
[Technical Specifications] - [User Guide] - [Warranty & Service]
MacBook Pro - model: MacBookPro11,5
1 2.8 GHz Intel Core i7 (i7-4980HQ) CPU: 4-core
16 GB RAM Not upgradeable
BANK 0/DIMM0
8 GB DDR3 1600 MHz ok
BANK 1/DIMM0
8 GB DDR3 1600 MHz ok
Handoff/Airdrop2: supported
Wireless: en0: 802.11 a/b/g/n/ac
Battery: Health = Normal - Cycle count = 16
Proxy: ProxyAutoConfig
Proxy: ProxyAutoDiscovery
iCloud Quota: 114.15 GB available
AMD Radeon R9 M370X - VRAM: 2048 MB
Color LCD 3360 x 2100
Intel Iris Pro - VRAM: 1536 MB
APPLE SSD SM1024G disk0: (1 TB) (Solid State - TRIM: Yes)
EFI (disk0s1 - MS-DOS FAT32) <not mounted> [EFI]: 210 MB
(disk0s2) <not mounted> [CoreStorage Container]: 999.70 GB
Recovery HD (disk0s3 - Journaled HFS+) <not mounted> [Recovery]: 650 MB
USB30Bus
Apple Inc. Apple Internal Keyboard / Trackpad
Broadcom Corp. Bluetooth USB Host Controller
Apple Inc. iPhone
Apple Inc. thunderbolt_bus
Apple Inc. Thunderbolt to Gigabit Ethernet Adapter
[redacted] (disk1 - Journaled HFS+) / [Startup]: 999.33 GB (145.29 GB free)
Physical disk: disk0s2 999.70 GB Online
OS X Install ESD (disk2s2 - HFS+) /Volumes/OS X Install ESD : 5.55 GB (514 MB free)
Physical disk: Disk Image 5.55 GB (514 MB free)
MacBook Pro Flash Storage FW Update (disk3s2 - HFS+) /Volumes/MacBook Pro Flash Storage FW Update : 136 MB (118 MB free)
Physical disk: Disk Image 136 MB (118 MB free)
macOS Sierra 10.12.6 (16G29) - Time since boot: about one day
/etc/hosts - Count: 1
Mac App Store and identified developers
/Applications/Parallels Access.app
[loaded] com.parallels.virtualhid (1.0.3 - SDK 10.9) [Lookup]
[loaded] com.parallels.virtualsound (1.0.36 - SDK 10.6) [Lookup]
/Applications/Parallels Desktop.app
[loaded] com.parallels.kext.hypervisor (13.0.0 42936 - SDK 10.9) [Lookup]
[loaded] com.parallels.kext.netbridge (13.0.0 42936 - SDK 10.9) [Lookup]
[not loaded] com.parallels.kext.usbconnect (13.0.0 42936 - SDK 10.9) [Lookup]
[loaded] com.parallels.kext.vnic (13.0.0 42936 - SDK 10.9) [Lookup]
/Library/Application Support/Kaspersky Lab/KAV/Bases/Cache
[loaded] com.kaspersky.kext.kimul (46) [Lookup]
[loaded] com.kaspersky.kext.mark.1.0.6 (1.0.6 - SDK 10.9) [Lookup]
/Library/Application Support/VirtualBox
[loaded] org.virtualbox.kext.VBoxDrv (5.1.26) [Lookup]
[loaded] org.virtualbox.kext.VBoxNetAdp (5.1.26) [Lookup]
[loaded] org.virtualbox.kext.VBoxNetFlt (5.1.26) [Lookup]
[loaded] org.virtualbox.kext.VBoxUSB (5.1.26) [Lookup]
/Library/Extensions
[not loaded] com.OWC.ThunderboltDockChargingSupport (1.0.1 - SDK 10.11) [Lookup]
[not loaded] com.caiaq.driver.NIUSBGuitarRigMobileDriver (2.6.0 (R82) - SDK 10.8) [Lookup]
[not loaded] com.caiaq.driver.NIUSBTraktorAudio2Driver (2.8.0 (R36) - SDK 10.9) [Lookup]
[not loaded] com.caiaq.driver.NIUSBTraktorKontrolS4Driver (2.8.0 (R36) - SDK 10.9) [Lookup]
[loaded] com.kaspersky.kext.klif (3.5.1a7) [Lookup]
[loaded] com.kaspersky.nke (2.1.0) [Lookup]
[not loaded] com.kensington.trackballworks.driver (1.3.0 - SDK 10.8) [Lookup]
[not loaded] com.motu.driver.FireWireAudio (1.6 71459 - SDK 10.6) [Lookup]
[not loaded] com.motu.driver.MicroBookAudio (1.6 71459 - SDK 10.6) [Lookup]
[not loaded] com.motu.driver.PCIAudio (1.6 71459 - SDK 10.6) [Lookup]
[not loaded] com.motu.driver.USBMidiKext (1.6 71459 - SDK 10.6) [Lookup]
[not loaded] com.paragon-software.filesystems.ntfs (14.2.288 - SDK 10.5) [Lookup]
[not loaded] com.seagate.driver.PowSecDriverCore (5.2.7 (26995) - SDK 10.4) [Lookup]
[not loaded] jp.co.zoom.d259 (2.1.0 - SDK 10.9) [Lookup]
/Library/Extensions/Seagate Storage Driver.kext/Contents/PlugIns
[not loaded] com.seagate.driver.PowSecLeafDriver_10_4 (5.2.7 (26995) - SDK 10.4) [Lookup]
[not loaded] com.seagate.driver.PowSecLeafDriver_10_5 (5.2.7 (26995) - SDK 10.5) [Lookup]
[not loaded] com.seagate.driver.SeagateDriveIcons (5.2.7 (26995) - SDK 10.4) [Lookup]
/System/Library/Extensions
[not loaded] com.caiaq.driver.NIUSBAudio2DJDriver (2.4.18) [Lookup]
[not loaded] com.caiaq.driver.NIUSBAudio4DJDriver (2.4.18) [Lookup]
[not loaded] com.caiaq.driver.NIUSBHardwareDriver (2.4.18) [Lookup]
[not loaded] com.caiaq.driver.NIUSBTraktorKontrolX1Driver (2.4.18) [Lookup]
[not loaded] com.ti.driver.TIVCPSerial (1.3.4 - SDK 10.11) [Lookup]
[not loaded] 7 Apple tasks
[loaded] 160 Apple tasks
[running] 115 Apple tasks
[not loaded] 38 Apple tasks
[loaded] 161 Apple tasks
[running] 116 Apple tasks
[loaded] 9ZTHPRB4MV.com.soundradix.TTLWrapperAgent.SL.plist (SOUND RADIX LTD - installed 2017-07-30) [Lookup]
[loaded] 9ZTHPRB4MV.com.soundradix.TTLWrapperAgent.plist (SOUND RADIX LTD - installed 2017-07-30) [Lookup]
[loaded] 9ZTHPRB4MV.com.soundradix.TTLWrapperSandbox.SL.plist (SOUND RADIX LTD - installed 2017-07-30) [Lookup]
[loaded] 9ZTHPRB4MV.com.soundradix.TTLWrapperSandbox.plist (SOUND RADIX LTD - installed 2017-07-30) [Lookup]
[not loaded] com.adobe.AAM.Updater-1.0.plist (Adobe Systems, Inc. - installed 2017-08-23) [Lookup]
[failed] com.adobe.ARMDCHelper.cc24aef4a1b90ed56a725c38014c95072f92651fb65e1bf9c8e43c37a2 3d420d.plist (Adobe Systems, Inc. - installed 2017-07-25) [Lookup]
[running] com.adobe.AdobeCreativeCloud.plist (Adobe Systems, Inc. - installed 2017-07-31) [Lookup]
[running] com.kaspersky.kav.gui.plist (? 6b215336 2ee1db3f - installed 2017-08-28) [Lookup]
[running] com.motu.MOTULauncher.plist (? ? ? - installed 2016-10-26) [Lookup]
[running] com.paragon-software.NTFS.fsnotify.agent.plist (? dcda45f4 848b1897 - installed 2017-08-22) [Lookup]
[loaded] com.paragon-software.facebook.agent.plist (? 95fb0bd4 e9648c48 - installed 2017-08-22) [Lookup]
[running] com.parallels.mobile.prl_deskctl_agent.launchagent.plist (Parallels, Inc. - installed 2017-08-15) [Lookup]
[running] com.synology.PhotoUploaderFinderSync.plist (? 3e95a14e 972d69d5 - installed 2017-08-19) [Lookup]
[loaded] com.synology.SynoSIMBL_RefreshFinder.plist (Apple, Inc. - installed 2017-08-19)
[running] jp.co.zoom.TAC-2MixEfxLaunchDaemon.plist (? ad1f53a3 a6d7d855 - installed 2017-07-29) [Lookup]
[loaded] com.acronis.1_2.plist (Shell Script d151c63d - installed 2017-08-29) [Lookup]
[loaded] com.acronis.acep.plist (? a09a396a 135acb0a - installed 2017-08-15) [Lookup]
[running] com.acronis.mms_mini.plist (? 8cfe4a0 96968605 - installed 2017-08-15) [Lookup]
[running] com.acronis.mobile_backup_server.plist (? 85a58a71 a5df4c86 - installed 2017-08-15) [Lookup]
[running] com.acronis.mobile_backup_status_server.plist (? b734f673 76d2353a - installed 2017-08-15) [Lookup]
[loaded] com.acronis.startup.plist (? aef9c908 c014c6e2 - installed 2017-08-29) [Lookup]
[loaded] com.adobe.ARMDC.Communicator.plist (Adobe Systems, Inc. - installed 2017-07-25) [Lookup]
[loaded] com.adobe.ARMDC.SMJobBlessHelper.plist (Adobe Systems, Inc. - installed 2017-07-25) [Lookup]
[running] com.adobe.adobeupdatedaemon.plist (Adobe Systems, Inc. - installed 2017-07-31) [Lookup]
[running] com.adobe.agsservice.plist (Adobe Systems, Inc. - installed 2017-07-25) [Lookup]
[not loaded] com.apple.installer.cleanupinstaller.plist (? ? ? - installed 2017-08-26)
[loaded] com.apple.installer.osmessagetracing.plist (Apple, Inc. - installed 2017-07-14)
[running] com.bombich.ccchelper.plist (Bombich Software, Inc. - installed 2017-08-27) [Lookup]
[running] com.kaspersky.kav.plist (Kaspersky Lab UK Limited - installed 2017-08-28) [Lookup]
[loaded] com.microsoft.autoupdate.helper.plist (Microsoft Corporation - installed 2017-08-22) [Lookup]
[loaded] com.microsoft.office.licensingV2.helper.plist (Microsoft Corporation - installed 2017-08-15) [Lookup]
[loaded] com.native-instruments.NativeAccess.Helper2.plist (Native Instruments GmbH - installed 2017-07-26) [Lookup]
[running] com.paceap.eden.licensed.plist (PACE Anti-Piracy, Inc. - installed 2017-07-27) [Lookup]
[running] com.paragon-software.NTFS.fsnotify.daemon.plist (? 66744841 b1cb5590 - installed 2016-08-29) [Lookup]
[not loaded] com.paragon.NTFS.launch.plist (Apple, Inc. - installed 2017-07-14)
[running] com.parallels.mobile.dispatcher.launchdaemon.plist (Parallels, Inc. - installed 2017-08-15) [Lookup]
[loaded] com.parallels.mobile.kextloader.launchdaemon.plist (Apple, Inc. - installed 2017-08-15)
[loaded] com.rogueamoeba.instanton-agent.plist (Rogue Amoeba Software, LLC - installed 2017-07-24) [Lookup]
[running] com.seagate.TBDecorator.plist (? 595582c 212092b1 - installed 2015-11-02) [Lookup]
[not loaded] org.virtualbox.startup.plist (Shell Script 700b9385 - installed 2017-08-12) [Lookup]
[running] com.acronis.monitor.plist (? a85a9efd 99231467 - installed 2017-08-15) [Lookup]
[running] com.parallels.mobile.startgui.launchagent.plist (Parallels, Inc. - installed 2017-08-28) [Lookup]
[loaded] com.rogueamoeba.loopbackd.plist (Rogue Amoeba Software, LLC - installed 2017-08-25) [Lookup]
[running] com.spotify.webhelper.plist (Spotify - installed 2017-08-24) [Lookup]
iTunesHelper Application - Hidden (Apple, Inc. - installed 2017-07-22)
(/Applications/iTunes.app/Contents/MacOS/iTunesHelper.app)
SpeechSynthesisServer Application - Hidden
(/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks /SpeechSynthesis.framework/Versions/A/SpeechSynthesisServer.app)
CCC User Agent Application - Hidden (Bombich Software, Inc. - installed 2017-08-21)
(/Applications/Carbon Copy Cloner.app/Contents/Library/LoginItems/CCC User Agent.app)
AdobeResourceSynchronizer Application - Hidden
(/Applications/Adobe Acrobat DC/Adobe Acrobat.app/Contents/Helpers/AdobeResourceSynchronizer.app)
NIHardwareAgent Application - Hidden
(/Library/Application Support/Native Instruments/Hardware/NIHardwareAgent.app)
TrackballWorksHelper Application - Hidden
(/Library/PreferencePanes/TrackballWorks.prefPane/Contents/Resources/TrackballW orksHelper.app)
Parallels Toolbox Application - Hidden
(/Applications/Parallels Toolbox.app)
SoundSource Application - Hidden
(/Applications/SoundSource.app)
OnScreen Control Application - Hidden
(/Applications/OnScreen Control.app)
NIHostIntegrationAgent Application - Hidden
(/Library/Application Support/Native Instruments/Hardware/NIHostIntegrationAgent.app)
AdobePDFViewerNPAPI: 17.012.20095 (installed 2017-08-14) [Lookup]
AdobePDFViewer: 17.012.20095 (installed 2017-08-14) [Lookup]
QuickTime Plugin: 7.7.3 (installed 2017-07-14)
AdobeAAMDetect: 3.0.0.0 (installed 2017-07-31) [Lookup]
[enabled] OneNote Web Clipper - Microsoft Corporation - https://www.onenote.com/clipper (installed 2017-07-23)
[not loaded] Open in Internet Explorer - Parallels - https://www.parallels.com (installed 2017-08-24)
[enabled] Translate - SideTree.com - Apps for Mac - https://SideTree.com/extensions.html (installed 2017-08-29)
[enabled] LastPass - LastPass - https://lastpass.com/ (installed 2017-08-06)
[enabled] AdBlock Ultimate - Secure Download - https://adblockultimate.net/ (installed 2017-07-23)
TrackballWorks (installed 2017-07-29) [Lookup]
Native Instruments USB Audio (installed 2017-07-26) [Lookup]
Paragon NTFS for Mac® (installed 2017-08-22) [Lookup]
Seagate Dashboard for Mac OSX (installed 2017-08-22) [Lookup]
Time Machine not configured!
5% WindowServer
3% kernel_task
2% photolibraryd
2% com.apple.WebKit.WebContent
1% coreaudiod
3.50 GB com.apple.WebKit.WebContent
1.87 GB kernel_task
552 MB Safari
389 MB com.apple.BKAgentService
352 MB com.apple.WebKit.WebContent
Top Processes by Network Use: ⓘ
Input Output Process name
100 MB 459 KB mDNSResponder
934 KB 2 MB mms_mini
657 KB 622 KB apsd
533 KB 30 KB netbiosd
176 KB 147 KB kav
Top Processes by Energy Use: ⓘ
7.76 WindowServer
5.06 com.apple.WebKit.WebContent
2.80 com.apple.WebKit.WebContent
2.20 com.apple.WebKit.Networking
3.41 GB Available RAM
83 MB Free RAM
12.59 GB Used RAM
3.33 GB Cached files
275 MB Swap Used
Seagate Dashboard: (installed 2017-08-01)
Seagate Dashboard: (installed 2017-08-01)
Seagate Dashboard: (installed 2017-08-01)
Paragon NTFS for Mac ® OS X: (installed 2017-08-07)
Seagate Dashboard: (installed 2017-08-07)
Things: 3.1.2 (installed 2017-08-07)
OneDrive: 17.3.6945 (installed 2017-08-07)
Thor Antivirus: 1.3.6 (installed 2017-08-07)
Seagate Dashboard: (installed 2017-08-07)
Seagate Dashboard: (installed 2017-08-07)
Seagate Dashboard: (installed 2017-08-07)
Seagate Dashboard: (installed 2017-08-07)
Paragon NTFS for Mac ® OS X: (installed 2017-08-07)
Seagate Dashboard: (installed 2017-08-07)
Paragon NTFS for Mac ® OS X: (installed 2017-08-07)
Adobe Acrobat DC (17.012.20093): (installed 2017-08-10)
SoundCloud: 1.3.2 (installed 2017-08-12)
MPlayerX: 1.0.14 (installed 2017-08-12)
Deliveries: 3.0.3 (installed 2017-08-12)
Oracle VM VirtualBox: 5.1.26 (installed 2017-08-12)
Adobe Acrobat DC (17.012.20095): (installed 2017-08-14)
Microsoft OneNote: 15.37 (installed 2017-08-15)
Kaspersky Internet Security: (installed 2017-08-15)
Synology Cloud Station Backup: (installed 2017-08-19)
Synology Cloud Station Drive: (installed 2017-08-19)
SynologyPhotoStationUploader: (installed 2017-08-19)
Synology Presto: (installed 2017-08-19)
Mactracker: 7.6.6 (installed 2017-08-19)
Audulus 3: 3.4.1 (installed 2017-08-21)
Things: 3.1.3 (installed 2017-08-21)
Nuendo 8: (installed 2017-08-21)
Bear: 1.2.4 (installed 2017-08-22)
+Poker Ultimate Edition: 1.0.0 (installed 2017-08-22)
Disc Cover: 3.1.3 (installed 2017-08-22)
MailRaider: 3.11 (installed 2017-08-22)
SoundLoadz: 1.0 (installed 2017-08-22)
Mixlr: 2.9 (installed 2017-08-22)
Trackhunter: 1.15.2 (installed 2017-08-22)
LaCie Desktop Manager: (installed 2017-08-22)
PXHCD: (installed 2017-08-22)
Paragon NTFS for Mac ® OS X: (installed 2017-08-22)
Seagate Dashboard: (installed 2017-08-22)
Microsoft Office 2016 for Mac: (installed 2017-08-22)
Seagate Dashboard: (installed 2017-08-22)
Seagate Dashboard: (installed 2017-08-22)
Seagate Dashboard: (installed 2017-08-22)
Seagate Dashboard: (installed 2017-08-22)
Seagate Dashboard: (installed 2017-08-22)
Adobe Gaming SDK 1.4: (installed 2017-08-23)
Adobe® Scout: (installed 2017-08-23)
Microsoft OneNote: 15.37 (installed 2017-08-26)
Slack: 2.7.1 (installed 2017-08-26)
Time Out: 2.2.1 (installed 2017-08-26)
Easy File Hider: 1.1.1 (installed 2017-08-26)
SerialTerminal: 1.6 (installed 2017-08-26)
Twitter: 4.3.2 (installed 2017-08-26)
SkySafari: 1.8 (installed 2017-08-26)
Radiation Island: 1.0.4 (installed 2017-08-26)
feedly: 1.1 (installed 2017-08-26)
Microsoft OneNote: 15.37 (installed 2017-08-26)
Microsoft OneNote: 15.37 (installed 2017-08-26)
Things: 3.1.4 (installed 2017-08-28)
Install information may not be complete.
2017-08-28 08:38:04 Disk Utility.app Crash [Open]
Cause: Crashing on exception: appendBezierPathWithArcWithCenter:radius:startAngle:endAngle:clockwise:: illegal angle argument
2017-08-24 23:26:01 - /Library/LaunchAgents/com.lacie.LaCieDesktopManagerAgent.plist - Unknown
2017-08-24 23:26:01 - /Library/LaunchDaemons/com.lacie.LaCieDesktopManagerDaemon.plist - Unknown
2017-08-25 15:44:24 - ~/Library/LaunchAgents/org.virtualbox.vboxwebsrv.plist - Unknown
Anything look unusual? Any advice would be appreciated! Thank you.
It sounds more your drive is in trouble, possibly with damage to the directory structure. If you have a bootable external drive, have you tried booting from that? Repairing from another drive would have more chance of success, if the problem is not with the hardware.
Anything look unusual?
No, nothing unusual. You have installed all the usual suspects that cause long-term damage and instability:
Kaspersky
Thor
various hard drive software
SIMBL
最后更新:2017-08-30 10:55:30
上一篇:
Macbook Air front edge too sharp?
下一篇: Dictionary "Content Not Available"
- database sqlite3 file in trash?
- can i be approved for financing with bad credit?
- developer tools needs to take control? Just sta...
- External Hard Drive Not Showing Up in Finder
- Time Capsule with Orbi
- iMac running slow
- Cannot answer calls from bluetooth headset
- An112233
- computer keeps telling me I need to modify my c...
- offline maps
相关内容
- "com.apple.installer.pagecontroller error
- any idea what error 3503 is?
- Underallocation Detected on Main device
- The operation couldn’t be completed. (BKA...
- is ctoid.exe a virus on my ipad safari browser?
- iTunes Error: Declined to authorize this image ...
- Keep High Efficiency Original if Available Chec...
- iTunes 12.7 cannot edit playlist
- High Sierra Stuck & Decryption paused
- Need to unlock iphone 5 to reactivate the phone...
热门内容
- Christian Music Removed From Itunes
- I'm being billed twice every month for Apple Mu...
- iMac running slow
- Fix disappearing album art after moving iTunes
- Activation Locked iWatch
- Can I change the iwatch to miles instead of kil...
- I keep seeing the "You don't have permission to...
- can't read any menus macbook air
- iPad 2, iOs9.3, taking days to restore
- charges made under itune memeberships