Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: judyfromlyon
judyfromlyon Author
User level: Level 1
14 points

potential adware/malware

Hello,

I noticed a "searchmydial" tab kept coming up when I used Chrome for my browser. And I was getting alot of popup ads and kept getting "Aw Snap!" messages on Chrome since downloading apps yesterday (which I will never do again--other than from the Apple store!)

I researched on net for solutions and ultimately used 'Etrecheck' and 'Adwaremedic' for analysis and for removing adware. The tab is not coming up now when using Chrome.

But, this is a brand new laptop and I am a new user to the MAC. So I want to make sure everything is "clean" on it and there isn't anything else lurking in the background.

Below is my Etrecheck Report. Any suggestions for further investigation?

THANKS!!!

Etrecheck Report

Problem description:

adware removal


EtreCheck version: 2.2 (132)

Report generated 5/21/15, 7:53 PM

Download EtreCheck from http://etresoft.com/etrecheck


Click the [Click for support] links for help with non-Apple products.

Click the [Click for details] links for more information about that line.


Hardware Information: ℹ️

MacBook Air (13-inch, Early 2014) (Technical Specifications)

MacBook Air - model: MacBookAir6,2

1 1.4 GHz Intel Core i5 CPU: 2-core

4 GB RAM Not upgradeable

BANK 0/DIMM0

2 GB DDR3 1600 MHz ok

BANK 1/DIMM0

2 GB DDR3 1600 MHz ok

Bluetooth: Good - Handoff/Airdrop2 supported

Wireless: en0: 802.11 a/b/g/n/ac

Battery: Health = Normal - Cycle count = 113 - SN = C0141560F2QF90MA7


Video Information: ℹ️

Intel HD Graphics 5000

Color LCD 1440 x 900


System Software: ℹ️

OS X 10.9.5 (13F1077) - Time since boot: 0:0:42


Disk Information: ℹ️

APPLE SSD SD0128F disk0 : (121.33 GB)

EFI (disk0s1) <not mounted> : 210 MB

Macintosh HD (disk0s2) / : 120.47 GB (87.85 GB free)

Recovery HD (disk0s3) <not mounted> [Recovery]: 650 MB


USB Information: ℹ️

Apple Internal Memory Card Reader

Apple Inc. BRCM20702 Hub

Apple Inc. Bluetooth USB Host Controller


Thunderbolt Information: ℹ️

Apple Inc. thunderbolt_bus


Gatekeeper: ℹ️

Mac App Store and identified developers


Launch Agents: ℹ️

[loaded] com.google.keystone.agent.plist [Click for support]

[running] com.trusteer.rapport.rapportd.plist [Click for support]


Launch Daemons: ℹ️

[loaded] com.adobe.fpsaud.plist [Click for support]

[loaded] com.google.keystone.daemon.plist [Click for support]

[loaded] com.microsoft.office.licensing.helper.plist [Click for support]

[running] com.trusteer.rooks.rooksd.plist [Click for support]


User Launch Agents: ℹ️

[loaded] com.bittorrent.BitTorrent.plist [Click for support]

[loaded] Texiday.download.plist [Click for support]

[loaded] Texiday.ltvbit.plist [Click for support]

[loaded] Texiday.update.plist [Click for support]


User Login Items: ℹ️

iTunesHelper Application (/Applications/iTunes.app/Contents/MacOS/iTunesHelper.app)

Google Chrome Application Hidden (/Applications/Google Chrome.app)


Internet Plug-ins: ℹ️

SharePointBrowserPlugin: Version: 14.5.0 - SDK 10.6 [Click for support]

FlashPlayer-10.6: Version: 17.0.0.188 - SDK 10.6 [Click for support]

Flash Player: Version: 17.0.0.188 - SDK 10.6 [Click for support]

QuickTime Plugin: Version: 7.7.3

Default Browser: Version: 537 - SDK 10.9


3rd Party Preference Panes: ℹ️

Flash Player [Click for support]

Trusteer Endpoint Protection [Click for support]


Time Machine: ℹ️

Skip System Files: NO

Mobile backups: ON

Auto backup: YES

Volumes being backed up:

Macintosh HD: Disk size: 120.47 GB Disk used: 32.62 GB

Destinations:

Seagate Backup Plus Drive [Local]

Total size: 999.53 GB

Total number of backups: 6

Oldest backup: 2015-05-11 11:28:31 +0000

Last backup: 2015-05-15 11:47:19 +0000

Size of backup disk: Excellent

Backup size 999.53 GB > (Disk size 120.47 GB X 3)


Top Processes by CPU: ℹ️

95% rapportd

26% Google Chrome Helper(10)

4% WindowServer

3% fontd

2% mds_stores


Top Processes by Memory: ℹ️

1.05 GB Google Chrome Helper(10)

366 MB kernel_task

135 MB Google Chrome

90 MB mdworker(6)

86 MB mds_stores


Virtual Memory Information: ℹ️

675 MB Free RAM

3.34 GB Used RAM

0 B Swap Used


Diagnostics Information: ℹ️

May 21, 2015, 07:51:50 PM Self test - passed

May 20, 2015, 06:41:56 PM /Users/[redacted]/Library/Logs/DiagnosticReports/Microsoft Office Setup Assistant_2015-05-20-184156_[redacted].crash

May 20, 2015, 06:04:55 PM /Users/[redacted]/Library/Logs/DiagnosticReports/AppBS_2015-05-20-180455_[redac ted].crash

May 20, 2015, 05:41:17 PM /Users/[redacted]/Library/Logs/DiagnosticReports/Microsoft Office Setup Assistant_2015-05-20-174117_[redacted].crash

May 20, 2015, 04:56:26 PM /Users/[redacted]/Library/Logs/DiagnosticReports/AppBS_2015-05-20-165626_[redac ted].crash

May 20, 2015, 04:30:43 PM /Library/Logs/DiagnosticReports/Microsoft Outlook_2015-05-20-163043_[redacted].hang

May 20, 2015, 03:27:21 PM /Users/[redacted]/Library/Logs/DiagnosticReports/SearchProtection_2015-05-20-15 2721_[redacted].crash

May 20, 2015, 03:27:09 PM /Users/[redacted]/Library/Logs/DiagnosticReports/SearchProtection_2015-05-20-15 2709_[redacted].crash

MacBook Air, OS X Mavericks (10.9.5)

Posted on May 21, 2015 11:45 AM

Reply
3 replies
User profile for user: thomas_r.
thomas_r.
User level: Level 7
31,989 points

May 21, 2015 5:40 PM in response to judyfromlyon

You actually appear to still have some Genieo-related files installed that have only just recently appeared, and that I have just added to AdwareMedic's definitions. Run AdwareMedic again and it should find and remove those last three items (three "Texiday" LaunchAgents).


I'd also agree with dominic23, both BitTorrent and Trusteer Rapport need to be removed.

Reply

potential adware/malware

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up