Safari öffnet ungewollt neue Fenster!!! Was ist da los??

Hey Leute,

ich habe auch ständig Probleme mit Malware. Malwarebytes findet aber nichts. Ich habe jetzt mal EtreCheck installiert und wollte fragen ob ihr mir damit helfen könnt? Der Mac soll komplett entmüllt werden. Malwarebytes und Cleanmymac habe ich eigentlich schon deinstalliert und finde auch keine Datei mehr davon auf meinem Mac. EtreCheck zeigt es aber trotzdem noch an.

Hier der Report. Danke euch schonmal!

Code:
EtreCheck version: 5.4 (5038)
Report generated: 2019-10-05 11:44:55
Download EtreCheck from https://etrecheck.com
Runtime: 2:34
Performance: Excellent
Sandbox: Enabled
Full drive access: Disabled

Problem: Other problem

Major Issues:
  Anything that appears on this list needs immediate attention.
  More than one antivirus app - This machine has multiple antivirus apps installed.

Minor Issues:
  These issues do not need immediate attention but they may indicate future problems or opportunities for improvement.
  High battery cycle count - Your battery may be losing capacity.
  Unsigned files - There are unsigned software files installed. They appear to be legitimate but should be reviewed.
  Heavy I/O usage - Your system is under heavy I/O use. This will reduce your performance.
  32-bit Apps - This machine has 32-bits apps will not work after macOS 10.14 “Mojave”.
  Limited drive access - More information may be available with Full Drive Access.

Notifications:
  Notifications not available without Full Drive Access.

Security:
  System Status
  Gatekeeper: Enabled
  System Integrity Protection: Enabled

  Antivirus apps: CleanMyMac and MalwareBytes

Unsigned Files:
  Launchd: /Library/LaunchDaemons/org.macosforge.xquartz.privileged_startx.plist
    Executable: /opt/X11/lib/X11/xinit/privileged_startx -d /opt/X11/lib/X11/xinit/privileged_startx.d
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchDaemons/com.cisco.anyconnect.vpnagentd.plist
    Executable: /opt/cisco/anyconnect/bin/vpnagentd -execv_instance
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchDaemons/com.adobe.SwitchBoard.plist
    Executable: /Library/Application Support/Adobe/SwitchBoard/SwitchBoard.app/Contents/MacOS/launch.switchboard
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchDaemons/org.virtualbox.startup.plist
    Executable: /Library/Application Support/VirtualBox/LaunchDaemons/VirtualBoxStartup.sh restart
    Details: Exact match found in the whitelist - probably OK

  Launchd: ~/Library/LaunchAgents/com.cisco.videoguardmonitor.plist
    Executable: /bin/sh -c $HOME/Library/Cisco/VideoGuardPlayer/VideoGuardMonitor/VideoGuardMonitor.bundle/Contents/Resources/launch.sh
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchDaemons/com.microsoft.office.licensing.helper.plist
    Executable: /Library/PrivilegedHelperTools/com.microsoft.office.licensing.helper
    Details: Exact match found in the whitelist - probably OK

  Launchd: ~/Library/LaunchAgents/com.cisco.videoguard10.plist
    Executable: /bin/sh -c $HOME/Library/Cisco/VideoGuardPlayer/VideoGuard10/VideoGuard10.bundle/Contents/Resources/setupServer.sh
    Details: Exact match found in the whitelist - probably OK

  Launchd: ~/Library/LaunchAgents/com.BlueStacks.AppPlayer.UninstallWatcher.plist
    Executable: /bin/sh ~/Library/BlueStacks/UninstallWatcher
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchAgents/com.cisco.anyconnect.gui.plist
    Executable: '/Applications/Cisco/Cisco AnyConnect Secure Mobility Client.app'
    Details: Exact match found in the whitelist - probably OK

  Launchd: ~/Library/LaunchAgents/com.macpaw.CleanMyMac2Helper.diskSpaceWatcher.plist
    Executable: '~/Library/Application Support/CleanMyMac 2/CleanMyMac 2 Helper.app' --args -watchDiskSpace
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchAgents/com.paragon-software.NTFS.fsnotifyagent.plist
    Executable: /Library/PreferencePanes/ParagonNTFS.prefPane/Contents/Resources/fsnotifyagent.app/Contents/MacOS/fsnotifyagent
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchAgents/org.macosforge.xquartz.startx.plist
    Executable: /opt/X11/lib/X11/xinit/launchd_startx /opt/X11/bin/startx -- /opt/X11/bin/Xquartz
    Details: Exact match found in the whitelist - probably OK

  Launchd: ~/Library/LaunchAgents/com.cisco.videoguard10.uninstall.plist
    Executable: /bin/sh ~/.cisco/VideoGuard/uninstall/cisco_videoguard10/condUninstall.sh
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchAgents/com.paragon-software.facebook.agent.plist
    Executable: /Library/Application Support/Paragon Software/Paragon Software Facebook Agent.app/Contents/MacOS/Paragon Software Facebook Agent
    Details: Exact match found in the whitelist - probably OK

  Safari Extension: ExpressVPN for Safari

Launch Agents:
  [Not Loaded] com.adobe.AAM.Updater-1.0.plist (? ffb65062  - installed 2017-12-11)
  [Running] com.adobe.GC.AGM.plist (Adobe Systems, Inc. - installed 2019-10-03)
  [Not Loaded] com.adobe.GC.Invoker-1.0.plist (Adobe Systems, Inc. - installed 2019-10-03)
  [Loaded] com.cisco.anyconnect.gui.plist (? 40bd3462  - installed 2014-10-16)
  [Loaded] com.microsoft.update.agent.plist (Microsoft Corporation - installed 2018-10-11)
  [Running] com.paragon-software.NTFS.fsnotifyagent.plist (? 9bb873bc  - installed 2015-10-25)
  [Loaded] com.paragon-software.facebook.agent.plist (? 95fb0bd4  - installed 2016-07-04)
  [Loaded] com.paragon.updater.plist (Paragon Software GmbH - installed 2016-07-04)
  [Loaded] org.macosforge.xquartz.startx.plist (? d225a7da  - installed 2013-11-11)

Launch Daemons:
  [Loaded] com.BlueStacks.AppPlayer.bstservice_helper.plist (BlueStack Systems, Inc. - installed 2017-12-02)
  [Loaded] com.adobe.SwitchBoard.plist (? 856489a3  - installed 2013-02-16)
  [Running] com.adobe.agsservice.plist (Adobe Systems, Inc. - installed 2019-10-03)
  [Loaded] com.adobe.fpsaud.plist (Adobe Systems, Inc. - installed 2019-08-27)
  [Not Loaded] com.apple.installer.osmessagetracing.plist (Apple - installed 2019-09-21)
  [Loaded] com.charlessoft.pacifist.helper.plist (? af18ad2  - installed 2013-10-30)
  [Running] com.cisco.anyconnect.vpnagentd.plist (? a7cbca7  - installed 2014-10-16)
  [Loaded] com.macpaw.CleanMyMac2.Agent.plist (? 753d8be6  - installed 2019-08-20)
  [Loaded] com.malwarebytes.HelperTool.plist (Malwarebytes Corporation - installed 2017-05-18)
  [Loaded] com.microsoft.autoupdate.helper.plist (Microsoft Corporation - installed 2018-10-11)
  [Loaded] com.microsoft.office.licensing.helper.plist (? 6d8cb30e  - installed 2010-08-31)
  [Loaded] com.microsoft.office.licensingV2.helper.plist (Microsoft Corporation - installed 2015-12-06)
  [Loaded] com.nordvpn.NordVPN.Helper.plist (TEFINKOM & CO S.A - installed 2018-03-03)
  [Not Loaded] com.oracle.java.Helper-Tool.plist (? 0  - installed )
  [Loaded] com.paragon.NTFS.launch.plist (Apple - installed 2019-09-21)
  [Running] me.hide.osxhelper.plist (EVENTURE LTD. - installed 2017-07-24)
  [Loaded] org.macosforge.xquartz.privileged_startx.plist (? 65395f14  - installed 2013-11-11)
  [Not Loaded] org.virtualbox.startup.plist (? 700b9385  - installed 2019-01-20)

User Launch Agents:
  [Loaded] com.BlueStacks.AppPlayer.UninstallWatcher.plist (? 0  - installed 2017-12-02)
  [Loaded] com.adobe.AAM.Updater-1.0.plist (? 0  - installed 2013-02-15)
  [Loaded] com.adobe.ARM.***.plist (Adobe Systems, Inc. - installed 2013-02-16)
  [Loaded] com.cisco.videoguard10.plist (? 0  - installed 2018-12-08)
  [Loaded] com.cisco.videoguard10.uninstall.plist (? 0  - installed 2018-12-08)
  [Running] com.cisco.videoguardmonitor.plist (? 0  - installed 2018-12-08)
  [Loaded] com.google.keystone.agent.plist (Google, Inc. - installed 2019-10-03)
  [Loaded] com.google.keystone.xpcservice.plist (Google, Inc. - installed 2019-10-03)
  [Loaded] com.macpaw.CleanMyMac2Helper.diskSpaceWatcher.plist (? 0  - installed 2015-03-01)


Safari Extensions:
  ExpressVPN for Safari - Unknown (installed )

3rd Party Preference Panes:
  Flash Player (installed 2019-08-27)
  FUSE for OS X (OSXFUSE) (installed 2016-01-18)
  MacFUSE (installed 2008-12-19)
  Native Instruments USB Audio (installed 2014-10-23)
  NTFS-3G (installed 2010-10-11)
  Paragon NTFS for Mac  OS X (installed 2016-07-13)

Time Machine:
  Time Machine information not available without Full Drive Access.

Performance:
  System Load: 21.18 (1 min ago) 10.15 (5 min ago) 4.12 (15 min ago)
  Nominal I/O speed: 11.98 MB/s
  File system: 30.12 seconds
  Write speed: 248 MB/s
  Read speed: 450 MB/s

CPU Usage Snapshot:
  Type Overall
  System 1 %
  User 2 %
  Idle 97 %

Top Processes Snapshot by Memory:
  Process (count) RAM usage (Source - Location)
  EtreCheck 639 MB (App Store)
  Finder 196 MB (Apple)
  SafariQuickLookPreview 178 MB (Apple)
  Notes 131 MB (Apple)
  Preview 124 MB (Apple)

Virtual Memory Information:
  Physical RAM: 8 GB

  Free RAM: 3.21 GB
  Used RAM: 3.03 GB
  Cached files: 1.76 GB

Diagnostics Information (past 7 days):
  Directory /Library/Logs/DiagnosticReports is not accessible.
 
ich habe auch ständig Probleme mit Malware. Malwarebytes findet aber nichts. Ich habe jetzt mal EtreCheck installiert und wollte fragen ob ihr mir damit helfen könnt? Der Mac soll komplett entmüllt werden. Malwarebytes und Cleanmymac habe ich eigentlich schon deinstalliert und finde auch keine Datei mehr davon auf meinem Mac. EtreCheck zeigt es aber trotzdem noch an.

Hier der Report. Danke euch schonmal!

du müsstest man den festplattenvollzugriff in systemeinstellungen/sicherheit/datenschutz für etrecheck erlauben, damit der alle ordner scannen kann.

in dem report wird auch keine malware angezeigt, nur alt-lasten.
ntfs-3g und paragon ntfs muss man nicht beides zusammen haben.
xquartz aka X11 wird ja kaum noch in benutzung sein?
bei cleanmymac hast du den launchd agent nicht entfernt.
 
  • Gefällt mir
Reaktionen: Kev90
Danke für die schnelle Antwort. Habe jetzt den Vollzugriff erlaubt. Was kann ich gegen "heavy I/O usage" machen?

Code:
EtreCheck version: 5.4 (5038)
Report generated: 2019-10-05 12:47:29
Download EtreCheck from https://etrecheck.com
Runtime: 2:26
Performance: Excellent
Sandbox: Enabled
Full drive access: Disabled

Problem: No problem - just checking

Major Issues:
  Anything that appears on this list needs immediate attention.
  More than one antivirus app - This machine has multiple antivirus apps installed.

Minor Issues:
  These issues do not need immediate attention but they may indicate future problems or opportunities for improvement.
  Small backup drive - Time Machine backup drive is too small.
  High battery cycle count - Your battery may be losing capacity.
  Unsigned files - There are unsigned software files installed. They appear to be legitimate but should be reviewed.
  32-bit Apps - This machine has 32-bits apps will not work after macOS 10.14 “Mojave”.
  Limited drive access - More information may be available with Full Drive Access.

Hardware Information:
  MacBook Pro (Retina, 13-inch, Late 2012)
  MacBook Pro Model: MacBookPro10,2
  1 2,5 GHz Intel Core i5 (i5-3210M) CPU: 2-core
  8 RAM - Not upgradeable
    BANK 0/DIMM0 - 4 GB DDR3 1600
    BANK 1/DIMM0 - 4 GB DDR3 1600
  Battery: Health = Normal - Cycle count = 821

Video Information:
  Intel HD Graphics 4000 - VRAM: 1536 MB
    Color LCD 2560 x 1600

Drives:
  disk0 - APPLE SSD SM128E 121.33 GB (Solid State - TRIM: Yes)
  Internal SATA 6 Gigabit Serial ATA
    disk0s1 - EFI (MS-DOS FAT32) [EFI] 210 MB
    disk0s2 [APFS Container] 121.12 GB
      disk1 [APFS Virtual drive] 121.12 GB (Shared by 4 volumes)
        disk1s1 - Macintosh HD (APFS) (Shared - 92.82 GB used)
        disk1s2 - Preboot (APFS) [APFS Preboot] (Shared)
        disk1s3 - Recovery (APFS) [Recovery] (Shared)
        disk1s4 - VM (APFS) [APFS VM] (Shared - 1.07 GB used)

Mounted Volumes:
  disk1s1 - Macintosh HD
    121.12 GB (Shared - 92.82 GB used - 26.55 GB free)
    APFS
    Mount point: /

  disk1s4 - VM [APFS VM]
    121.12 GB (Shared - 1.07 GB used - 26.55 GB free)
    APFS
    Mount point: /private/var/vm

Network:
  Interface en3: Bluetooth PAN
  Interface bridge0: Thunderbolt Bridge
  Interface en0: Wi-Fi
    802.11 a/b/g/n
  Interface en4: iPhone

System Software:
  macOS Mojave 10.14.6 (18G103)
  Time since boot: About an hour

Notifications:
  Notifications not available without Full Drive Access.

Security:
  System Status
  Gatekeeper: Enabled
  System Integrity Protection: Enabled

  Antivirus apps: CleanMyMac and MalwareBytes

Unsigned Files:
  Launchd: ~/Library/LaunchAgents/com.macpaw.CleanMyMac2Helper.diskSpaceWatcher.plist
    Executable: '~/Library/Application Support/CleanMyMac 2/CleanMyMac 2 Helper.app' --args -watchDiskSpace
    Details: Exact match found in the whitelist - probably OK

  Launchd: ~/Library/LaunchAgents/com.cisco.videoguardmonitor.plist
    Executable: /bin/sh -c $HOME/Library/Cisco/VideoGuardPlayer/VideoGuardMonitor/VideoGuardMonitor.bundle/Contents/Resources/launch.sh
    Details: Exact match found in the whitelist - probably OK

  Launchd: ~/Library/LaunchAgents/com.cisco.videoguard10.uninstall.plist
    Executable: /bin/sh ~/.cisco/VideoGuard/uninstall/cisco_videoguard10/condUninstall.sh
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchDaemons/org.macosforge.xquartz.privileged_startx.plist
    Executable: /opt/X11/lib/X11/xinit/privileged_startx -d /opt/X11/lib/X11/xinit/privileged_startx.d
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchAgents/com.cisco.anyconnect.gui.plist
    Executable: '/Applications/Cisco/Cisco AnyConnect Secure Mobility Client.app'
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchDaemons/com.adobe.SwitchBoard.plist
    Executable: /Library/Application Support/Adobe/SwitchBoard/SwitchBoard.app/Contents/MacOS/launch.switchboard
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchDaemons/com.microsoft.office.licensing.helper.plist
    Executable: /Library/PrivilegedHelperTools/com.microsoft.office.licensing.helper
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchDaemons/com.cisco.anyconnect.vpnagentd.plist
    Executable: /opt/cisco/anyconnect/bin/vpnagentd -execv_instance
    Details: Exact match found in the whitelist - probably OK

  Launchd: ~/Library/LaunchAgents/com.BlueStacks.AppPlayer.UninstallWatcher.plist
    Executable: /bin/sh ~/Library/BlueStacks/UninstallWatcher
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchAgents/com.paragon-software.NTFS.fsnotifyagent.plist
    Executable: /Library/PreferencePanes/ParagonNTFS.prefPane/Contents/Resources/fsnotifyagent.app/Contents/MacOS/fsnotifyagent
    Details: Exact match found in the whitelist - probably OK

  Launchd: ~/Library/LaunchAgents/com.cisco.videoguard10.plist
    Executable: /bin/sh -c $HOME/Library/Cisco/VideoGuardPlayer/VideoGuard10/VideoGuard10.bundle/Contents/Resources/setupServer.sh
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchDaemons/org.virtualbox.startup.plist
    Executable: /Library/Application Support/VirtualBox/LaunchDaemons/VirtualBoxStartup.sh restart
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchAgents/org.macosforge.xquartz.startx.plist
    Executable: /opt/X11/lib/X11/xinit/launchd_startx /opt/X11/bin/startx -- /opt/X11/bin/Xquartz
    Details: Exact match found in the whitelist - probably OK

  Launchd: /Library/LaunchAgents/com.paragon-software.facebook.agent.plist
    Executable: /Library/Application Support/Paragon Software/Paragon Software Facebook Agent.app/Contents/MacOS/Paragon Software Facebook Agent
    Details: Exact match found in the whitelist - probably OK

  Safari Extension: ExpressVPN for Safari
 
Teil 2


Code:
32-bit Applications:
  39 32-bit apps

Kernel Extensions:
  /Library/Application Support/VirtualBox
    VBoxDrv.kext (5.0.10)
    VBoxNetAdp.kext (5.0.10)
    VBoxNetFlt.kext (5.0.10)
    VBoxUSB.kext (5.0.10)

  /Library/Extensions
    ufsd_NTFS.kext (14.0.543 - SDK 10.5)

  /System/Library/Extensions
    NIUSBGuitarRigMobile.kext (2.4.23 (R38))
    NIUSBAudioDriver.kext (2.4.23 (R38))

System Launch Agents:
  [Not Loaded]  16 Apple tasks
  [Loaded]  175 Apple tasks
  [Running]  109 Apple tasks

System Launch Daemons:
  [Not Loaded]  36 Apple tasks
  [Loaded]  190 Apple tasks
  [Running]  110 Apple tasks

Launch Agents:
  [Not Loaded] com.adobe.AAM.Updater-1.0.plist (? ffb65062  - installed 2017-12-11)
  [Running] com.adobe.GC.AGM.plist (Adobe Systems, Inc. - installed 2019-10-03)
  [Not Loaded] com.adobe.GC.Invoker-1.0.plist (Adobe Systems, Inc. - installed 2019-10-03)
  [Loaded] com.cisco.anyconnect.gui.plist (? 40bd3462  - installed 2014-10-16)
  [Loaded] com.microsoft.update.agent.plist (Microsoft Corporation - installed 2018-10-11)
  [Running] com.paragon-software.NTFS.fsnotifyagent.plist (? 9bb873bc  - installed 2015-10-25)
  [Loaded] com.paragon-software.facebook.agent.plist (? 95fb0bd4  - installed 2016-07-04)
  [Loaded] com.paragon.updater.plist (Paragon Software GmbH - installed 2016-07-04)
  [Loaded] org.macosforge.xquartz.startx.plist (? d225a7da  - installed 2013-11-11)

Launch Daemons:
  [Loaded] com.BlueStacks.AppPlayer.bstservice_helper.plist (BlueStack Systems, Inc. - installed 2017-12-02)
  [Loaded] com.adobe.SwitchBoard.plist (? 856489a3  - installed 2013-02-16)
  [Loaded] com.adobe.agsservice.plist (Adobe Systems, Inc. - installed 2019-10-03)
  [Loaded] com.adobe.fpsaud.plist (Adobe Systems, Inc. - installed 2019-08-27)
  [Not Loaded] com.apple.installer.osmessagetracing.plist (Apple - installed 2019-09-21)
  [Loaded] com.charlessoft.pacifist.helper.plist (? af18ad2  - installed 2013-10-30)
  [Running] com.cisco.anyconnect.vpnagentd.plist (? a7cbca7  - installed 2014-10-16)
  [Loaded] com.macpaw.CleanMyMac2.Agent.plist (? 753d8be6  - installed 2019-08-20)
  [Loaded] com.malwarebytes.HelperTool.plist (Malwarebytes Corporation - installed 2017-05-18)
  [Loaded] com.microsoft.autoupdate.helper.plist (Microsoft Corporation - installed 2018-10-11)
  [Loaded] com.microsoft.office.licensing.helper.plist (? 6d8cb30e  - installed 2010-08-31)
  [Loaded] com.microsoft.office.licensingV2.helper.plist (Microsoft Corporation - installed 2015-12-06)
  [Loaded] com.nordvpn.NordVPN.Helper.plist (TEFINKOM & CO S.A - installed 2018-03-03)
  [Not Loaded] com.oracle.java.Helper-Tool.plist (? 0  - installed )
  [Loaded] com.paragon.NTFS.launch.plist (Apple - installed 2019-09-21)
  [Running] me.hide.osxhelper.plist (EVENTURE LTD. - installed 2017-07-24)
  [Loaded] org.macosforge.xquartz.privileged_startx.plist (? 65395f14  - installed 2013-11-11)
  [Not Loaded] org.virtualbox.startup.plist (? 700b9385  - installed 2019-01-20)

User Launch Agents:
  [Loaded] com.BlueStacks.AppPlayer.UninstallWatcher.plist (? 0  - installed 2017-12-02)
  [Loaded] com.adobe.AAM.Updater-1.0.plist (? 0  - installed 2013-02-15)
  [Loaded] com.adobe.ARM.***.plist (Adobe Systems, Inc. - installed 2013-02-16)
  [Loaded] com.cisco.videoguard10.plist (? 0  - installed 2018-12-08)
  [Loaded] com.cisco.videoguard10.uninstall.plist (? 0  - installed 2018-12-08)
  [Running] com.cisco.videoguardmonitor.plist (? 0  - installed 2018-12-08)
  [Loaded] com.google.keystone.agent.plist (Google, Inc. - installed 2019-10-03)
  [Loaded] com.google.keystone.xpcservice.plist (Google, Inc. - installed 2019-10-03)
  [Loaded] com.macpaw.CleanMyMac2Helper.diskSpaceWatcher.plist (? 0  - installed 2015-03-01)

Internet Plug-ins:
  AdobeAAMDetect: AdobeAAMDetect 1.0.0.0 (? - installed 2017-12-11)
  FlashPlayer-10.6: 32.0.0.255 (Adobe Systems, Inc. - installed 2019-09-14)
  AdobePDFViewerNPAPI: 11.0.23 (Adobe Systems, Inc. - installed 2017-12-11)
  AdobePDFViewer: 11.0.23 (Adobe Systems, Inc. - installed 2017-12-11)
  Flash Player: 32.0.0.255 (Adobe Systems, Inc. - installed 2019-09-14)
  SharePointBrowserPlugin: 14.3.8 (? - installed 2013-10-28)
  Silverlight: 5.1.50901.0 (? - installed 2018-09-27)

Audio Plug-ins:
  AppleTimeSyncAudioClock: 1.0 (Apple - installed 2019-06-20)
  BluetoothAudioPlugIn: 6.0.14 (Apple - installed 2019-08-01)
  AirPlay: 2.0 (Apple - installed 2019-08-01)
  AppleAVBAudio: 760.6 (Apple - installed 2019-08-01)
  BridgeAudioSP: 5.52 (Apple - installed 2019-09-27)
  iSightAudio: 7.7.3 (Apple - installed 2019-08-01)

Safari Extensions:
  "Open In" button for Internet Explorer.safariextz - Parallels - http://www.parallels.com (installed 2018-09-27)
  AdBlock.safariextz - BetaFish, Inc. - https://getadblock.com (installed 2018-10-04)
  ExpressVPN for Safari - Unknown (installed )

3rd Party Preference Panes:
  Flash Player (installed 2019-08-27)
  FUSE for OS X (OSXFUSE) (installed 2016-01-18)
  MacFUSE (installed 2008-12-19)
  Native Instruments USB Audio (installed 2014-10-23)
  NTFS-3G (installed 2010-10-11)
  Paragon NTFS for Mac  OS X (installed 2016-07-13)

Time Machine:
  Time Machine information not available without Full Drive Access.

Performance:
  System Load: 1.85 (1 min ago) 1.58 (5 min ago) 1.18 (15 min ago)
  Nominal I/O speed: 3.77 MB/s
  File system: 33.99 seconds
  Write speed: 271 MB/s
  Read speed: 435 MB/s

CPU Usage Snapshot:
  Type Overall
  System 5 %
  User 4 %
  Idle 92 %

Top Processes Snapshot by CPU:
  Process (count) CPU (Source - Location)
  Other processes 18.39 % (?)
  EtreCheck 5.82 % (App Store)
  com.apple.WebKit.WebContent (10) 4.62 % (Apple)
  Safari 3.52 % (Apple)
  AppleSpell 0.18 % (Apple)

Top Processes Snapshot by Memory:
  Process (count) RAM usage (Source - Location)
  EtreCheck 663 MB (App Store)
  Finder 208 MB (Apple)
  Safari 207 MB (Apple)
  SafariQuickLookPreview 204 MB (Apple)
  Preview 135 MB (Apple)

Top Processes Snapshot by Network Use:
  Process (count) Input / Output (Source - Location)
  Spotlight 132 KB / 8 KB (Apple)
  Other processes 39 KB / 36 KB (?)
  com.apple.WebKit.Networking 36 KB / 1 KB (Apple)
  mdworker_shared 0 B / 0 B (Apple)
  spindump_agent 0 B / 0 B (Apple)

Virtual Memory Information:
  Physical RAM: 8 GB

  Free RAM: 668 MB
  Used RAM: 4.69 GB
  Cached files: 2.66 GB

  Available RAM: 3.31 GB
  Swap Used: 0 B

Software Installs (past 30 days):
  Install Date Name (Version)
  2019-09-14 Adobe Flash Player
  2019-09-27 Safari (13.0.1)
  2019-09-27 Disk Graph (2.1.9)
  2019-10-02 WhatsApp (0.3.4940)
  2019-10-02 Numbers (6.0)
  2019-10-02 Pages (8.0)
  2019-10-02 Keynote (9.0)
  2019-10-03 XProtectPlistConfigData (2106)
  2019-10-03 MRTConfigData (1.50)
  2019-10-05 EtreCheck (5.4)
  2019-10-05 Malwarebytes for Mac Deinstallationsprogramm

Diagnostics Information (past 7 days):
  Directory /Library/Logs/DiagnosticReports is not accessible.
  Enable Full Drive Access to see more information.

End of report
[/CODE]


Und es öffnet sich ständig ein Tab, dass auf meinem Computer Viren gefunden wurden. Deshalb dachte ich, ich hätte mir Malware eingefangen. Was kann das sein? Gibt es ein nützliches Virenprogramm, das ich installieren sollte, oder genügt das maceigene?
 
Zuletzt bearbeitet:
Virenwarnung siehe Anhang
 

Anhänge

  • Bildschirmfoto 2019-10-05 um 14.51.34.png
    Bildschirmfoto 2019-10-05 um 14.51.34.png
    55,6 KB · Aufrufe: 209
Betrug. Wegklicken und solche unseriöse Seiten meiden.
 
  • Gefällt mir
Reaktionen: Kev90, ekki161, dg2rbf und eine weitere Person
Werbung, Spam, JavaScript, was weiß ich. Willkommen im Internet.
 
  • Gefällt mir
Reaktionen: ekki161
Hallo, ich habe seit zwei Tagen auch das Problem, dass sich Seiten öffnen. Ich wollte in der Google Suche bei Safari eine Seite anklicken und dann öffneten sich zwei Seiten mit dem Text "Malware detected" und so weiter bei http://your-mac-security-analysis.net... Habe die Seiten beide normal geschlossen und dann meinen Mac neugestartet... Weil es mir komisch vorkam habe ich dann gestern Bitdefender installiert, der auch nichts gefunden hat. Leider öffnen sich nun in Safari Seiten wie mackeeper...
Kann mich jemand an die Hand nehmen und mir sagen was ich jetzt tun sollte? Zuerst Etrecheck installieren und den Bericht hier rein stellen?
 
  • Gefällt mir
Reaktionen: dg2rbf, ekki161, TMacMini und eine weitere Person
Mackeeper deinstallieren: https://www.heise.de/tipps-tricks/MacKeeper-deinstallieren-so-klappt-s-4190818.html
Dann das System mit Malwarebytes prüfen.

Wenn du das alles getan hast, kannst du dich gerne mal melden. Wenn du magst, schauen wird dann mal über dein System, ob alles sauber ist. Offenbar klickst du im Internet auf Dinge, auf die man nicht klicken sollte.


MacKeeper ist bei mir nicht installiert anscheinend, zumindest finde ich es bei Schritt 6 nirgends...
 

Anhänge

  • Bildschirmfoto 2019-10-09 um 19.31.16.png
    Bildschirmfoto 2019-10-09 um 19.31.16.png
    41,8 KB · Aufrufe: 178
  • Bildschirmfoto 2019-10-09 um 19.31.05.png
    Bildschirmfoto 2019-10-09 um 19.31.05.png
    41,5 KB · Aufrufe: 102
MacKeeper ist bei mir nicht installiert anscheinend, zumindest finde ich es bei Schritt 6 nirgends...
Lass mal EtreCheck laufen und teile uns hier das Ergebnis mit. Das ausgegebene Protokoll kannst du hier einfügen, indem du beim Erstellen eines Beitrags oben auf das +-Symbol klickst, und dann auf "</> Code".

bildschirmfoto2018-07mzc12.png



Gegebenenfalls musst du das Protokoll aufgrund der Länge in zwei oder mehrere Beiträge aufteilen.
 
  • Gefällt mir
Reaktionen: ekki161
Code:
EtreCheck version: 5.4.1 (5041)
Report generated: 2019-10-09 19:48:30
Download EtreCheck from https://etrecheck.com
Runtime: 3:03
Performance: Good
Sandbox: Enabled
Full drive access: Disabled

Problem: Other problem
Description:
Safari opens tabs itself

Major Issues:
    Anything that appears on this list needs immediate attention.

    No Time Machine backup - Time Machine backup not found.
    Unsigned files - There are unsigned software files installed that could be adware and should be reviewed.

Minor Issues:
    These issues do not need immediate attention but they may indicate future problems or opportunities for improvement.

    32-bit Apps - This machine has 32-bits apps will not work after macOS 10.14 “Mojave”.
    Limited drive access - More information may be available with Full Drive Access.

Hardware Information:
    MacBook Air (13-inch, Early 2015)
    MacBook Air Model: MacBookAir7,2
    1 1,6 GHz Dual-Core Intel Core i5 (i5-5250U) CPU: 2-core
    8 GB RAM - Not upgradeable
        BANK 0/DIMM0 - 4 GB DDR3 1600
        BANK 1/DIMM0 - 4 GB DDR3 1600
    Battery: Health = Normal - Cycle count = 118

Video Information:
    Intel HD Graphics 6000 - VRAM: 1536 MB
        Color LCD 1440 x 900
 
Code:
Drives:
    disk0 - APPLE SSD SM0256G 251.00 GB (Solid State - TRIM: Yes)
    Internal PCI 5.0 GT/s x4 Serial ATA
        disk0s1 - EFI (MS-DOS FAT32) [EFI] 210 MB
        disk0s2 [APFS Container] 250.79 GB
            disk1 [APFS Virtual drive] 250.79 GB (Shared by 5 volumes)
                disk1s1 - M******************n (APFS) [APFS Virtual drive] (Shared - 61.00 GB used)
                disk1s2 - Preboot (APFS) [APFS Preboot] (Shared)
                disk1s3 - Recovery (APFS) [Recovery] (Shared)
                disk1s4 - VM (APFS) [APFS VM] (Shared - 1.07 GB used)
                disk1s5 - Macintosh HD (APFS) (Shared - 10.62 GB used)

Mounted Volumes:
    disk1s1 - M******************n [APFS Virtual drive]
        250.79 GB (Shared - 61.00 GB used - 177.35 GB free)
        APFS
        Mount point: /System/Volumes/Data
        Encrypted

    disk1s4 - VM [APFS VM]
        250.79 GB (Shared - 1.07 GB used - 177.35 GB free)
        APFS
        Mount point: /private/var/vm

    disk1s5 - Macintosh HD
        250.79 GB (Shared - 10.62 GB used - 177.35 GB free)
        APFS
        Mount point: /
        Encrypted
        Read-only: Yes

Network:
    Interface en3: iPhone
    Interface en0: Wi-Fi
        802.11 a/b/g/n/ac
    Interface en2: Bluetooth PAN
    Interface bridge0: Thunderbolt Bridge

System Software:
    macOS Catalina 10.15 (19A583)
    Time since boot: About 3 hours
 
Code:
Notifications:
    Notifications not available without Full Drive Access.

Security:
    Gatekeeper: Enabled
    System Integrity Protection: Enabled

    Antivirus apps: Bitdefender

Unsigned Files:
    Launchd: /Library/LaunchDaemons/com.apple.installer.osmessagetracing.plist
        Executable: /System/Library/PrivateFrameworks/OSInstaller.framework/Resources/OSMessageTracer

    Safari Extension: TrafficLight
    Safari Extension: Anti-tracker Engine
    Safari Extension: Anti-tracker Icon

32-bit Applications:
    One 32-bit app

Kernel Extensions:
    /Library/Extensions
        FileProtect.kext (Bitdefender SRL, 1.1 - SDK 10.14)
        SelfProtect.kext (Bitdefender SRL, 1.2.12 - SDK 10.9)
        TMProtection.kext (Bitdefender SRL, 5.0.0 - SDK 10.14)

System Launch Agents:
    [Not Loaded] 16 Apple tasks
    [Loaded] 159 Apple tasks
    [Running] 134 Apple tasks

System Launch Daemons:
    [Not Loaded] 35 Apple tasks
    [Loaded] 178 Apple tasks
    [Running] 122 Apple tasks
    [Other] One Apple task

Launch Agents:
    [Running] com.bitdefender.antivirusformac.plist (Bitdefender SRL - installed 2019-10-02)
    [Loaded] com.microsoft.update.agent.plist (Microsoft Corporation - installed 2019-05-14)
    [Not Loaded] com.oracle.java.Java-Updater.plist (? 0 - installed )
 
Code:
Launch Daemons:
    [Loaded] com.apple.installer.osmessagetracing.plist (? dbb717cc - installed 2019-09-19)
    [Loaded] com.bitdefender.AuthHelperTool.plist (Bitdefender SRL - installed 2019-10-02)
    [Not Loaded] com.bitdefender.agent.plist (Bitdefender SRL - installed 2019-10-08)
    [Loaded] com.bitdefender.upgrade.plist (Bitdefender SRL - installed 2019-10-02)
    [Loaded] com.microsoft.autoupdate.helper.plist (Microsoft Corporation - installed 2019-05-14)
    [Loaded] com.microsoft.office.licensingV2.helper.plist (Microsoft Corporation - installed 2017-08-15)
    [Not Loaded] com.oracle.java.Helper-Tool.plist (? 0 - installed )
    [Loaded] jp.co.canon.MasterInstaller.plist (? d0637166 - installed 2019-02-02)

User Launch Agents:
    [Loaded] com.dropbox.DropboxMacUpdate.agent.plist (Dropbox, Inc. - installed 2019-08-24)
    [Loaded] com.google.keystone.agent.plist (Google, Inc. - installed 2019-10-04)
    [Loaded] com.google.keystone.xpcservice.plist (Google, Inc. - installed 2019-10-04)

User Login Items:
    Dropbox.app (Dropbox, Inc. - installed 2019-10-04)
        (Application - /Applications/Dropbox.app)

    StartUpHelper (Spotify - installed 2019-10-01)
        (Modern Login Item - /Applications/Spotify.app/Contents/Library/LoginItems/StartUpHelper.app)

Internet Plug-ins:
    EPPEX Plugin: 10.0 (? - installed 2018-01-16)

Safari Extensions:
    Anti-tracker Engine - Bitdefender SRL (installed 2019-10-08)
    Anti-tracker Icon - Bitdefender SRL (installed 2019-10-08)
    TrafficLight - Bitdefender SRL (installed 2019-10-08)

Time Machine:
    Time Machine Not Configured!

Performance:
    System Load: 2.68 (1 min ago) 2.28 (5 min ago) 2.06 (15 min ago)
    Nominal I/O speed: 0.88 MB/s
    File system: 76.25 seconds
    Write speed:  1095 MB/s
    Read speed:  1049 MB/s

CPU Usage Snapshot:
    Type Overall
    System 3 %
    User 3 %
    Idle 94 %
 
Code:
Top Processes Snapshot by CPU:
    Process (count) CPU (Source - Location)
    Other processes 16.12 % (?)
    EtreCheck 5.67 % (App Store)
    Dropbox 0.36 % (Dropbox, Inc.)
    cfprefsd 0.18 % (Apple)
    AntivirusforMac 0.18 % (Bitdefender SRL)

Top Processes Snapshot by Memory:
    Process (count) RAM usage (Source - Location)
    EtreCheck 522 MB (App Store)
    Dropbox 169 MB (Dropbox, Inc.)
    AppleSpell 113 MB (Apple)
    Finder 113 MB (Apple)
    accountsd 91 MB (Apple)

Top Processes Snapshot by Network Use:
    Process Input / Output (Source - Location)
    Other processes 513 KB / 319 KB (?)
    Dropbox 92 KB / 212 KB (Dropbox, Inc.)
    rapportd 773 B / 390 B (Apple)
    SystemUIServer 0 B / 192 B (Apple)
    routined 0 B / 0 B (Apple)

Virtual Memory Information:
    Physical RAM: 8 GB

    Free RAM: 17 MB
    Used RAM: 5.91 GB
    Cached files: 2.07 GB

    Available RAM: 2.09 GB
    Swap Used: 0 B

Software Installs (past 30 days):
    Install Date Name (Version)
    2019-09-19 Gatekeeper Configuration Data (181)
    2019-10-01 Pages (8.0)
    2019-10-01 Keynote (9.0)
    2019-10-07 BitMedic (3.1)
    2019-10-08 Safari (13.0.2)
    2019-10-08 XProtectPlistConfigData (2106)
    2019-10-08 MRTConfigData (1.50)
    2019-10-08 Bitdefender
    2019-10-08 avformac
    2019-10-09 EtreCheck (5.4.1)

Diagnostics Information (past 7 days):
    Directory /Library/Logs/DiagnosticReports is not accessible.
    Enable Full Drive Access to see more information.

End of report
 
Hier schon mal Dinge, die Du beachten solltest:


No Time Machine backup - Time Machine backup not found.

Unsigned files - There are unsigned software files installed that could be adware and should be reviewed.

More information may be available with Full Drive Access.




Etrecheck kann mehr untersuchen, wenn Du es dem Programm erlaubst.
 
Antivir for Mac kannst Du auch gleich wieder entfernen.
 
Hier schon mal Dinge, die Du beachten solltest:


No Time Machine backup - Time Machine backup not found.

Unsigned files - There are unsigned software files installed that could be adware and should be reviewed.

More information may be available with Full Drive Access.




Etrecheck kann mehr untersuchen, wenn Du es dem Programm erlaubst.


Wie erlaube ich dem Programm denn, mehr zu untersuchen? Ich kenne mich wirklich wirklich gar nicht mit sowas aus...

Und du meinst Bitdefender, oder?
 
Zurück
Oben Unten