S
Schubladenzieher
Mitglied
Thread Starter
- Dabei seit
- 01.04.2021
- Beiträge
- 90
- Reaktionspunkte
- 15
Ich habe da ein wenig Sorge, dass ich mir eine Malware eingefangen habe. Kann da jemand vielleicht über den Code drüberschauen (besonders im Bereich Launch Daemons & Agents?) Vielen lieben Dank! Ich finde auch "ChemDraw Web Clipboard" irgendwie nicht, obwohl unten gelistet...
Code:
EtreCheckPro version: 6.8.4 (68040)
Report generated: 2024-02-07 00:38:39
Download EtreCheckPro from https://etrecheck.com
Runtime: 4:50
Performance: Below Average
Problem: No problem - just checking
Major Issues:
Anything that appears on this list needs immediate attention.
Battery failure - Your battery is reporting that it needs to be serviced.
Obsolete hardware - This computer may be considered obsolete.
Minor Issues:
These issues do not need immediate attention but they may indicate future problems or opportunities for improvement.
System extensions installed - This computer has system extensions installed. System extensions can be difficult to uninstall.
Configuration profiles found - This computer may have configuration profiles installed.
High battery cycle count - Your battery may be losing capacity.
Unsigned files - There are unsigned software files installed. These files could be old, incompatible, and cause problems. They should be reviewed.
Low performance - EtreCheck report took an unusually long time to run.
Kernel extensions present - This computer has kernel extensions that may not work in the future.
Hardware Information:
MacBook Pro (Retina, 13-inch, Late 2013)
Status: Obsolete
MacBook Pro Model: MacBookPro11,1
2,4 GHz Dual-Core Intel Core i5 (i5-4258U) CPU: 2-core
8 GB RAM - Not upgradeable
BANK 0/DIMM0 - 4 GB DDR3 1600
BANK 1/DIMM0 - 4 GB DDR3 1600
Battery: Health = Service Battery - Cycle count = 2282
Video Information:
Intel Iris - VRAM: 1536 MB
Color LCD (built-in) 2560 x 1600
Drives:
disk0 - APPLE SSD SM0256F 251.00 GB (Solid State - TRIM: Yes)
Internal PCI 5.0 GT/s x2 Serial ATA
disk0s1 - EFI (MS-DOS FAT32) [EFI] 210 MB
disk0s2 [APFS Container] 250.79 GB
disk1 [APFS Virtual drive] 250.79 GB (Shared by 6 volumes)
disk1s1 - Z**********n (APFS) [APFS Virtual drive] (151.34 GB used)
disk1s2 - Preboot (APFS) [APFS Preboot] (788 MB used)
disk1s3 - Recovery (APFS) [Recovery] (624 MB used)
disk1s4 - VM (APFS) [APFS VM] (1 MB used)
disk1s5 (APFS) [APFS Container] (15.33 GB used)
disk1s5s1 - Z**E (APFS) [APFS Snapshot] (15.33 GB used)
disk1s6 - Update (APFS) (24 MB used)
Mounted Volumes:
disk1s1 - Z**********n [APFS Virtual drive]
Filesystem: APFS
Mount point: /System/Volumes/Data
Encrypted
Used: 151.34 GB
Shared values
Size: 250.79 GB
Free: 82.55 GB
Available: 84.80 GB
disk1s2 - Preboot [APFS Preboot]
Filesystem: APFS
Mount point: /System/Volumes/Preboot
Used: 788 MB
Shared values
Size: 250.79 GB
Free: 82.55 GB
disk1s4 - VM [APFS VM]
Filesystem: APFS
Mount point: /System/Volumes/VM
Used: 1 MB
Shared values
Size: 250.79 GB
Free: 82.55 GB
disk1s5s1 - Z**E [APFS Snapshot]
Filesystem: APFS
Mount point: /
Read-only: Yes
Used: 15.33 GB
Shared values
Size: 250.79 GB
Free: 82.55 GB
Available: 84.80 GB
disk1s6 - Update
Filesystem: APFS
Mount point: /System/Volumes/Update
Used: 24 MB
Shared values
Size: 250.79 GB
Free: 82.55 GB
USB:
USB30Bus
Apple Inc. - Apple Internal Keyboard / Trackpad
Apple Inc. - BRCM20702 Hub
Apple Inc. - Bluetooth USB Host Controller
Network:
Interface en0: Wi-Fi
802.11 a/b/g/n/ac
Proxy Auto Discovery
Interface en3: Bluetooth PAN
Interface bridge0: Thunderbolt Bridge
iCloud Quota: 34.32 GB available
iCloud Status: one pending file
System Software:
macOS Big Sur 11.7.10 (20G1427)
Time since boot: Less than an hour
Configuration Profiles:
com.apple.wifi.managed
EAPClientConfiguration/EAPFastProvisionPACAnonymously
EAPClientConfiguration/TLSAllowTrustExceptions
EAPClientConfiguration/UserPassword
EAPClientConfiguration/PayloadCertificateAnchorUUID[0]
EAPClientConfiguration/OuterIdentity
EAPClientConfiguration/EAPFASTProvisionPAC
ProxyType
SSID_STR
HIDDEN_NETWORK
EAPClientConfiguration/OneTimeUserPassword
EAPClientConfiguration/UserName
EAPClientConfiguration/TLSTrustedServerNames[0]
EAPClientConfiguration/TTLSInnerAuthentication
EAPClientConfiguration/AcceptEAPTypes[0]
ProxyPACFallbackAllowed
EncryptionType
EAPClientConfiguration/EAPFASTUsePAC
Notifications:
EtreCheckPro.app
one notification
Security:
Gatekeeper: App Store and identified developers
System Integrity Protection: Enabled
Antivirus software: Apple and Malwarebytes
Unsigned Files:
Apps: 2
System Extensions:
[Blocked] Cisco AnyConnect Socket Filter Extension - version 4.10.07061 (Cisco - 2023-08-13)
Application: /Applications/Cisco/Cisco AnyConnect Socket Filter.app - version 4.10.07061 (Cisco - 2023-08-13)
Description: This system extension provides socket filter capabilities.
Kernel Extensions:
/Library/Application Support/Cisco/AnyConnect Secure Mobility Client
[Not Loaded] acsock.kext - com.cisco.kext.acsock (Cisco, 4.10.10 - SDK 12)
System Launch Daemons:
[Not Loaded] 38 Apple tasks
[Loaded] 199 Apple tasks
[Running] 129 Apple tasks
[Other] One Apple task
System Launch Agents:
[Not Loaded] 19 Apple tasks
[Loaded] 206 Apple tasks
[Running] 112 Apple tasks
Launch Daemons:
[Loaded] com.adobe.ARMDC.Communicator.plist (Adobe Inc. - installed 2023-12-13)
Executable: /Library/PrivilegedHelperTools/com.adobe.ARMDC.Communicator
[Loaded] com.adobe.ARMDC.SMJobBlessHelper.plist (Adobe Inc. - installed 2023-12-13)
Executable: /Library/PrivilegedHelperTools/com.adobe.ARMDC.SMJobBlessHelper
[Running] com.bitgapp.eqmac.helper.plist (Bitgapp Ltd. - installed 2023-07-26)
Executable: /Library/PrivilegedHelperTools/com.bitgapp.eqmac.helper/Contents/MacOS/com.bitgapp.eqmac.helper
[Running] com.cisco.anyconnect.vpnagentd.plist (Cisco - installed 2023-04-28)
Command: /opt/cisco/anyconnect/bin/vpnagentd -execv_instance
[Running] com.malwarebytes.mbam.rtprotection.daemon.plist (Malwarebytes Corporation - installed 2023-10-04)
Command: /Library/Application Support/Malwarebytes/MBAM/Engine.bundle/Contents/PlugIns/RTProtectionDaemon.app/Contents/MacOS/RTProtectionDaemon -i 8A09D71C-9CC8-4750-B1A0-3309558F38BA.pkg
[Running] com.malwarebytes.mbam.settings.daemon.plist (Malwarebytes Corporation - installed 2023-10-04)
Executable: /Library/Application Support/Malwarebytes/MBAM/Engine.bundle/Contents/PlugIns/SettingsDaemon.app/Contents/MacOS/SettingsDaemon
[Loaded] us.zoom.ZoomDaemon.plist (Zoom Video Communications, Inc. - installed 2024-01-28)
Executable: /Library/PrivilegedHelperTools/us.zoom.ZoomDaemon
Launch Agents:
[Other] com.adobe.ARMDCHelper.cc24aef4a1b90ed56a725c38014c95072f92651fb65e1bf9c8e43c37a23d420d.plist (Adobe Inc. - installed 2023-12-13)
Executable: /Library/Application Support/Adobe/ARMDC/Application/Acrobat Update Helper.app/Contents/MacOS/Acrobat Update Helper
[Not Loaded] com.apple.AuthenticationServicesCore.AuthenticationServicesAgent.plist (Apple - installed 2023-09-26)
Executable: /Library/Apple/System/Library/CoreServices/SafariSupport.bundle/Contents/MacOS/AuthenticationServicesAgent
[Loaded] com.cisco.anyconnect.gui.plist (Cisco - installed 2023-08-13)
Command: /usr/bin/open --wait-apps '/Applications/Cisco/Cisco AnyConnect Secure Mobility Client.app'
[Loaded] com.cisco.anyconnect.notification.plist (Cisco - installed 2023-08-13)
Command: /usr/bin/open --wait-apps '/opt/cisco/anyconnect/bin/Cisco AnyConnect Secure Mobility Client Notification.app'
[Running] com.malwarebytes.mbam.frontend.agent.plist (Malwarebytes Corporation - installed 2023-10-04)
Executable: /Library/Application Support/Malwarebytes/MBAM/Engine.bundle/Contents/PlugIns/FrontendAgent.app/Contents/MacOS/FrontendAgent
User Launch Agents:
[Loaded] com.dropbox.DropboxMacUpdate.agent.plist (Dropbox, Inc. - installed 2024-01-24)
Command: ~/Library/Dropbox/DropboxMacUpdate.app/Contents/MacOS/DropboxMacUpdate -check periodic
User Login Items:
[Running] Dropbox (Dropbox, Inc. - installed 2024-01-25)
Application
/Applications/Dropbox.app
[Not Loaded] StartUpHelper (Spotify - installed 2022-11-08)
Modern Login Item
/Applications/Spotify.app/Contents/Library/LoginItems/StartUpHelper.app
[Not Loaded] WhatsApp Login Helper (App Store - installed 2024-01-31)
Modern Login Item
/Applications/WhatsApp.app/Contents/Library/LoginItems/WhatsApp Login Helper.app
[Not Loaded] LaunchAtLoginHelper (Bitgapp Ltd. - installed 2023-03-02)
Modern Login Item
/Applications/eqMac.app/Contents/Library/LoginItems/LaunchAtLoginHelper.app
Applications:
337 apps
14 x86-only apps
5 unsigned apps
App Extensions:
Finder sync extensions:
Dropbox Finder Extension - /Applications/Dropbox.app
Action services:
Share to Notability - /Applications/Notability.app
LaTeXiT App Extension - /Applications/TeX/LaTeXiT.app
Share services:
Dropbox Transfer - /Applications/Dropbox.app
QuickLook Previews (legacy):
BibDesk - /Applications/TeX/BibDesk.app
net.sourceforge.bibdesk.ris *.ris
net.sourceforge.bibdesk.bdsksearch *.bdsksearch
net.sourceforge.bibdesk.webofscience
org.tug.tex.bibtex *.bib
net.sourceforge.bibdesk.bdskcache *.bdskcache
DVI - /Applications/TeX/TeX Live Utility.app
net.sourceforge.skim-app.dvi
org.tug.tex.dvi *.dvi
com.mac.amaxwell.dvi
Internet Plug-ins:
AdobePDFViewer: 21.005.20058 (Adobe Systems, Inc. - installed 2021-06-26)
AdobePDFViewerNPAPI: 17.012.20098 (Adobe Systems, Inc. - installed 2021-06-26)
Audio Plug-ins:
eqMac: 2.4.3 (Bitgapp Ltd. - installed 2023-07-26)
Backup:
Time Machine Not Configured!
Performance:
System Load: 25.03 (1 min ago) 20.77 (5 min ago) 9.49 (15 min ago)
Nominal I/O usage: 0.27 MB/s
File system: 38.30 seconds
Write speed: 538 MB/s
Read speed: 707 MB/s
CPU Usage Snapshot:
Type Overall
System: 10 %
User: 22 %
Idle: 68 %
Top Processes Snapshot by CPU:
Process (count) CPU (Source - Location)
firefox 47.02 % (Mozilla Corporation)
plugin-container (13) 34.50 % (Mozilla Corporation)
WindowServer 20.54 % (Apple)
mdbulkimport (2) 11.98 % (Apple)
kernel_task 10.75 % (Apple)
Top Processes Snapshot by Memory:
Process (count) RAM usage (Source - Location)
plugin-container (13) 940 MB (Mozilla Corporation)
firefox 408 MB (Mozilla Corporation)
Dropbox (3) 407 MB (Dropbox, Inc.)
EtreCheckPro 279 MB (Etresoft, Inc.)
kernel_task 271 MB (Apple)
Top Processes Snapshot by Network Use:
Process Input / Output (Source - Location)
firefox 12 MB / 521 KB (Mozilla Corporation)
Dropbox 16 KB / 110 KB (Dropbox, Inc.)
trustd 56 KB / 4 KB (Apple)
mDNSResponder 23 KB / 21 KB (Apple)
apsd 8 KB / 11 KB (Apple)
Top Processes Snapshot by Energy Use:
Process (count) Energy (0-100) (Source - Location)
firefox 6 (Mozilla Corporation)
WindowServer 4 (Apple)
plugin-container (13) 3 (Mozilla Corporation)
mds_stores 1 (Apple)
Dropbox (3) 1 (Dropbox, Inc.)
Virtual Memory Information:
Physical RAM: 8 GB
Free RAM: 14 MB
Used RAM: 4.02 GB
Cached files: 3.96 GB
Available RAM: 3.98 GB
Swap Used: 0 B
Software Installs (past 60 days):
Install Date Name (Version)
2023-12-12 ChemDraw Web Clipboard
2023-12-13 ARMDC Agent Installer (1.0.0)
2024-01-05 Adobe Acrobat Reader (23.008.20458) (23.008.20458)
2024-01-17 Adobe Acrobat Reader (23.008.20470) (23.008.20470)
2024-01-28 Zoom (5.17.5.29101)
2024-01-31 WhatsApp (2.2353.68)
2024-02-06 XProtectPlistConfigData (2184)
2024-02-06 XProtectPayloads (125)
Diagnostics Information (past 60 days):
2024-02-02 19:42:42 FrontendAgent.app - Crash (2 times)
First occurrence: 2024-02-02 19:43:17
Executable: /Library/Application Support/Malwarebytes/*/Engine.bundle/Contents/PlugIns/FrontendAgent.app
2024-01-31 17:31:09 Preview.app - Hang (2 times)
First occurrence: 2024-01-31 17:31:40
Executable: /System/Applications/Preview.app
Details:
objc_msgSend() selector name: _cfTypeID
dyld3 mode
2024-01-31 15:45:24 com.apple.WebKit.WebContent - Crash
First occurrence: 2024-01-31 15:45:45
Executable: /Library/Apple/*/WebKit.framework/Versions/A/XPCServices/com.apple.WebKit.WebContent.xpc/Contents/MacOS/com.apple.WebKit.WebContent
Details:
Bundle controller class:
BrowserBundleController
2024-01-29 01:47:00 signpost_reporter - High CPU Use (4 times)
First occurrence: 2024-01-24 00:00:27
Executable: /usr/libexec/signpost_reporter
End of report