My Mac is hacked! Encryption help please!

My Mac Pro is hacked, and this is confirmed by the engineers. Because the Mail app and even online ISP mail did not work if good PSI hunted hackers. I found files fragmented on 240 and 480 GB Intel SSD drives into the slots of the T2 drive: files named "sparse disk image...". ' and ' package of rare records...' appeared in the root of the readers. I could easily remove them. But I never put there. At the same time, Apple Mail app kept resetting ports 993/587 (course) to ports 143/25 (very insecure). Post font size 23pt appeared, ads corrupted font, file extensions book would not appear or would disappear, etc, etc, etc. The internet connection was bad too, so I called my ISP. ISP found twelve 12 computers in windows using various applications on my system. None of the computers used found languages where I live. Pirates. I also have an airport with a cap of 2 TB, and it is probably also diverted. Nothing in my system is encrypted. I just use firewall, even if it does not get somehow.

Advise main suggested Apple should I encrypt my records. But these fragmented files were already there. Which indicates that someone somewhere on Earth was already encrypt files on my system. The adviser said fragmented files are a pretty good indication that its time to get more proactive. If my plan is to use disk utility to wipe my internal drive OS, OS X Extended (journaled encrypted). Then install OS X on the disc encrypted EAS - 256 bit.

For those who have experience of encryption Mac

1.) encrypt and install OS X on the encrypted drive wise?

2.) how to clear all present airport Time Capsule content, encrypt Time Capsule and use it with my encrypted system?

3.) how to encrypt external disks and use them with encrypted Time Capsule and encrypted internal drive?

(4.) how to manually copy files from encrypted disks (mainly SSD external drives) of other backup disks which are normally cold (disconnected) for monthly backups of cold. "

5.) monthly cold copies remain unencrypted?

I worked with Mac since the 1980s. You can ignore it, but here are my thoughts: encrypt just the disk won't do much. I am surprised that the Apple engineer suggested this. If your Mac is compromised (depending on the ISP see Windows for access to the you that seems reasonable) the things MOST IMPORTANT to do is eliminate the hack code. If you encrypt the disk with the hack still there it is more likely will always have access to the data. Before going that all keep in mind that you probably allowed the hack in installation of the software on the web or by opening an attachment with the hack. So everything you try to remember what helped you ensure that you wouldn't do it again.

You should consult your application package to see if there is something that you don't recognize or recently installed before the problem and remove before you try anything because it is possible the cut is integrated into an application. Remember that almost all hacks are hidden in the system and not easily seen so you probably won't find it. My approach is to install a charge/clean OS X, then copy your applications and your data.

There are many approaches to this problem, but here's what I think, this is the simplest approach IF you have access to a second mac AND hack code doesn't do not part of one of your applications.  You said not what type of Mac you have or the system or if you have access to other Macs. My proposal would be based on that. Since you are in a jam here are a few options:

If you have more than one Mac and an external hard drive:

1. start the mac infected in target mode: restart and as soon as it chimes hold "T".

2 connect the Mac, because I know you can't tell how. You can google it.

3 format an external hard drive to use as a target of installation for El Capitan.

4 download and install El Capitan on the Apple App store and install it on the external drive.

5. after starting upwards, when asked if you want to copy applications and data to another Mac say Yes and let it copy the applications and data from the infected Mac internal drive.

6. Once installation is complete it should start from the outside, test your system for ensure that everything works, you have all your dataand see if the problems are eliminated.

7. If it's good, when it is started from the outside:

8 download Super Duper or carbon copy. (I use SD).

9. use disk utility in the folder utilities to clear the internal drive.

10. copy your external drive to the internal drive, it will be deleted.

11. when the copy is complete, stop the Mac and disconnect the external hard drive.

12. start the Mac, go to Preferences-> floppy boot, then selected your internal drive system, she might want to restart. This step is optional, but if the boots aren't made can be more slow that the Mac external drive first.

If you have access to an external hard drive:

Remember that although it would probably be fine, there is a slight possibility that this can infect a connected drive, this is the case, you must use multiple macs above approach. But it's something you can try if you don't have a second mac.

* Skip steps 1-2 above and do the rest on the infected mac.

If you do not have an external drive, you can use a large USB but it will be much slower. Good luck, I hope that others will come to the top with options. But it's what I would do.

Tags: Mac OS & System Software

Similar Questions

Maybe you are looking for