Habe einige Ungereimtheiten auf meinem Mac Book gefunden (z. Bsp. Fragilepottery - was immer das ist) und mal den EtreCheck gemacht, kann mir jemand was dazu sagen, bzw. wie kann ich reine machen!?
Vielen Dank schon mal im voraus
REPORT:
Vielen Dank schon mal im voraus
REPORT:
Code:
EtreCheck version: 4.3.6 (4D041)
Report generated: 2018-09-04 20:54:12
Download EtreCheck from https://etrecheck.com
Runtime: 3:21
Performance: Good
Problem: Other problem
Major Issues:
Anything that appears on this list needs immediate attention.
Time Machine backup out-of-date - The last Time Machine backup is over 10 days old.
Adware - Adware detected.
Minor Issues:
These issues do not need immediate attention but they may indicate future problems.
Kernel extensions blocked - There are blocked kernel extensions awaiting user approval.
Corrupt filesystem - This machine shut down due to a corrupt filesystem.
Small backup drive - Time Machine backup drive is too small.
Unsigned files - There are unsigned software file installed. They appear to be legitimate but should be reviewed.
Abnormal shutdown - Your machine shut down abnormally.
Hardware Information:
MacBook Pro (13-inch, Mid 2012)
MacBook Pro Model: MacBookPro9,2
1 2,5 GHz Intel Core i5 (i5-3210M) CPU: 2-core
10 RAM - Upgradeable
BANK 0/DIMM0 - 2 GB DDR3 1600 ok
BANK 1/DIMM0 - 8 GB DDR3 1600 ok
Battery: Health = Normal - Cycle count = 299
Video Information:
Intel HD Graphics 4000 - VRAM: 1536 MB
Color LCD 1280 x 800
Drives:
disk0 - Samsung SSD 850 EVO 500GB 500.11 GB (Solid State - TRIM: No)
Internal SATA 6 Gigabit Serial ATA
disk0s1 - EFI (MS-DOS FAT32) [EFI] 210 MB
disk0s2 499.90 GB
disk1s1 - S**********E (APFS) 499.90 GB (469.98 GB used)
disk1s2 - Preboot (APFS) [APFS Preboot] 499.90 GB (22 MB used)
disk1s3 - Recovery (APFS) [Recovery] 499.90 GB (519 MB used)
disk1s4 - VM (APFS) [APFS VM] 499.90 GB (3.22 GB used)
disk2 - Disk Image 102 MB (Disk Image)
External Disk Image
disk2s1 [Partition Map] 32 KB
disk2s2 - U*********r (Journaled HFS+) 102 MB
Mounted Volumes:
disk1s1 - S**********E 499.90 GB (25.99 GB free)
APFS
Mount point: /
disk1s4 - VM [APFS VM] 499.90 GB (25.99 GB free)
APFS
Mount point: /private/var/vm
Network:
Interface en0: Ethernet
Interface fw0: FireWire
Interface en1: Wi-Fi
802.11 a/b/g/n
One IPv4 address
2 IPv6 addresses
Interface en3: Bluetooth PAN
Interface bridge0: Thunderbolt Bridge
Interface en4: iPhone
Interface en8: iPhone
Interface en7: iPhone 3
Interface en6: iPhone 2
Interface en5: iPad
iCloud Quota: 4.79 GB available
System Software:
macOS High Sierra 10.13.6 (17G65)
Time since boot: About a day
System Load: 1.97 (1 min ago) 1.82 (5 min ago) 1.85 (15 min ago)
Security:
System Status
Gatekeeper Mac App Store and identified developers
System Integrity Protection Enabled
Adware:
Launchd: ~/Library/LaunchAgents/Fragilepottery.dolnwoad.plist
Executable: ~/Library/Application Support/Fragilepottery/Fragilepottery.app/Contents/MacOS/AppSO -trigger download -isDev 0 -installVersion 1276 -firstAppId 1432562856541100 -sig SAMIOFFER_SIGNATURE -identity Fragilepottery
Reason: Adware name match
Launchd: ~/Library/LaunchAgents/Fragilepottery.btvlit.plist
Executable: ~/Library/Application Support/Fragilepottery/Fragilepottery.app/Contents/MacOS/AppSO -trigger ltvbit -isDev 0 -installVersion 1276 -firstAppId 1432562856541100 -identity Fragilepottery
Reason: Adware name match
Launchd: ~/Library/LaunchAgents/Fragilepottery.AppVemoral.plist
Executable: ~/Library/Application Support/Fragilepottery/Fragilepottery.app/Contents/MacOS/AppSO -trigger AppRemoval -isDev 0 -installVersion 1276 -firstAppId 1432562856541100 -identity Fragilepottery
Reason: Adware name match
Launchd: ~/Library/LaunchAgents/gUpdater.plist
Executable: /Applications/Zip Devil.app/Contents/Resources/appUpdater zd 1002
Reason: Adware name match
Launchd: ~/Library/LaunchAgents/Fragilepottery.uadpte.plist
Executable: ~/Library/Application Support/Fragilepottery/Fragilepottery.app/Contents/MacOS/AppSO -trigger update -isDev 0 -installVersion 1276 -firstAppId 1432562856541100 -identity Fragilepottery -sig SAMIOFFER_SIGNATURE -agentUpdate 0
Reason: Adware name match
Launchd: ~/Library/LaunchAgents/Fragilepottery.disable.plist
Executable: ~/Library/Application Support/Fragilepottery/Fragilepottery.app/Contents/MacOS/AppSO -trigger disable -isDev 0 -installVersion 1276 -firstAppId 1432562856541100 -identity Fragilepottery
Reason: Adware name match
Launchd: ~/Library/LaunchAgents/Smokyashan.isengard.plist
Executable: ~/Library/Application Support/Smokyashan/Smokyashan.app/Contents/MacOS/AppNOS -trigger update -isDev 0 -installVersion 1175 -firstAppId 1434976216979282 -identity Smokyashan -sig NOSIGNATURE_SIGNATURE -agentUpdate 2
Reason: Adware name match
Safari Extension: Feelbegin
Reason: Adware name match
Safari Extension: Fragilepottery
Reason: Adware name match
Unsigned Files:
Launchd: ~/Library/LaunchAgents/com.nchsoftware.expressaccounts.agent.plist
Executable: ~/Library/NCH Software/ExpressAccounts/ExpressAccountsAgent -service
Details: Exact match found in the whitelist - probably OK
Launchd: /Library/LaunchDaemons/com.microsoft.office.licensing.helper.plist
Executable: /Library/PrivilegedHelperTools/com.microsoft.office.licensing.helper
Details: Exact match found in the whitelist - probably OK
Launchd: ~/Library/LaunchAgents/com.nchsoftware.expressinvoice.agent.plist
Executable: ~/Library/NCH Software/ExpressInvoice/ExpressInvoiceAgent -service
Details: Exact match found in the whitelist - probably OK
Kernel Extensions:
/Library/Application Support/Malwarebytes/MBAM/Kext
[Blocked] MB_MBAM_Protection.kext (3.4 - SDK 10.13)
/Library/Extensions
[Not Loaded] MBBDataCardECMDriver_10_9.kext (5.00.00.00 - SDK 10.8)
[Not Loaded] ZTEUSBCDC_10.10.kext (4.2.1 - SDK 10.9)
[Not Loaded] ZTEUSBCDCECMControl_10.10.kext (4.2.1 - SDK 10.9)
[Not Loaded] ZTEUSBCDCECMData_10.10.kext (4.2.1 - SDK 10.9)
/Library/Extensions/MBBDataCardECMDriver_10_9.kext/Contents/PlugIns
[Not Loaded] MBBAppUSBCDCECMControl.kext (4.2.1 - SDK 10.8)
[Not Loaded] MBBAppUSBCDCECMData.kext (4.2.1 - SDK 10.8)
System Launch Agents:
[Not Loaded] 7 Apple tasks
[Loaded] 155 Apple tasks
[Running] 69 Apple tasks
[Killed] 61 Apple tasks
[Other] 2 Apple tasks
System Launch Daemons:
[Not Loaded] 35 Apple tasks
[Loaded] 171 Apple tasks
[Running] 85 Apple tasks
[Killed] 45 Apple tasks
Launch Agents:
[Loaded] com.microsoft.update.agent.plist (Microsoft Corporation - installed 2018-03-16)
[Not Loaded] com.teamviewer.teamviewer_desktop.plist (TeamViewer GmbH - installed 2018-09-03)
[Not Loaded] com.teamviewer.teamviewer.plist (TeamViewer GmbH - installed 2018-09-03)
[Other] com.adobe.ARMDCHelper.cc24aef4a1b90ed56a725c38014c95072f92651fb65e1bf9c8e43c37a23d420d.plist (Adobe Systems, Inc. - installed 2018-02-13)
[Running] com.malwarebytes.mbam.frontend.agent.plist (Malwarebytes Corporation - installed 2018-08-06)
Launch Daemons:
[Loaded] com.adobe.ARMDC.SMJobBlessHelper.plist (Adobe Systems, Inc. - installed 2018-02-13)
[Running] com.malwarebytes.mbam.settings.daemon.plist (Malwarebytes Corporation - installed 2018-08-06)
[Loaded] com.microsoft.autoupdate.helper.plist (Microsoft Corporation - installed 2018-03-16)
[Not Loaded] com.teamviewer.teamviewer_service.plist (TeamViewer GmbH - installed 2018-09-03)
[Loaded] com.apple.installer.osmessagetracing.plist (Apple - installed 2018-07-04)
[Loaded] com.teamviewer.Helper.plist (TeamViewer GmbH - installed 2017-12-18)
[Running] com.malwarebytes.mbam.rtprotection.daemon.plist (Malwarebytes Corporation - installed 2018-08-06)
[Loaded] com.microsoft.office.licensing.helper.plist (? 6d8cb30e - installed 2010-08-31)
[Loaded] com.adobe.ARMDC.Communicator.plist (Adobe Systems, Inc. - installed 2018-02-13)
[Other] ch.tripmode.nke.TripMode.plist (Apple - installed 2018-08-22)
[Loaded] jp.co.canon.MasterInstaller.plist (? d0637166 - installed 2017-09-19)
[Loaded] com.microsoft.office.licensingV2.helper.plist (Microsoft Corporation - installed 2017-08-05)
User Launch Agents:
[Running] com.nchsoftware.expressaccounts.agent.plist (? 0 - installed 2017-09-18)
[Loaded] com.dropbox.DropboxMacUpdate.agent.plist (Dropbox, Inc. - installed 2018-08-21)
[Loaded] gUpdater.plist (Adware - installed 2015-12-20)
[Loaded] Fragilepottery.disable.plist (Adware - installed 2018-08-13)
[Loaded] Smokyashan.isengard.plist (Adware - installed 2018-08-15)
[Loaded] Fragilepottery.uadpte.plist (Adware - installed 2018-08-13)
[Loaded] Fragilepottery.dolnwoad.plist (Adware - installed 2018-08-13)
[Loaded] Fragilepottery.btvlit.plist (Adware - installed 2018-08-13)
[Running] com.nchsoftware.expressinvoice.agent.plist (? 0 - installed 2017-08-29)
[Loaded] Fragilepottery.AppVemoral.plist (Adware - installed 2018-08-13)
User Login Items:
WhatsApp Programm (WhatsApp Inc. - installed 2018-09-01)
(/Applications/WhatsApp.app)
CheatSheet Programm (Stefan Fuerst - installed 2018-02-01)
(/Applications/CheatSheet.app)
HiddenMe Helper SMLoginItem (Mac App Store - installed 2018-07-18)
(/Applications/HiddenMe.app/Contents/Library/LoginItems/HiddenMe Helper.app)
WunderlistHelper SMLoginItem (Mac App Store - installed 2018-05-03)
(/Applications/Wunderlist.app/Contents/Library/LoginItems/WunderlistHelper.app)
iTranslateHelper SMLoginItem (Mac App Store - installed 2018-06-05)
(/Applications/iTranslate.app/Contents/Library/LoginItems/iTranslateHelper.app)
N4RA379GBW.com.busymac.busycal3.alarm SMLoginItem (Busy Apps FZE - installed 2018-09-04)
(/Applications/BusyCal.app/Contents/Library/LoginItems/N4RA379GBW.com.busymac.busycal3.alarm.app)
PixelSchedulerHelper SMLoginItem (Mac App Store - installed 2016-06-14)
(/Applications/PixelScheduler.app/Contents/Library/LoginItems/PixelSchedulerHelper.app)
Internet Plug-ins:
AdobePDFViewerNPAPI: (installed 2018-08-15)
QuickTime Plugin: (installed 2018-07-25)
AdobePDFViewer: (installed 2018-08-15)
SharePointBrowserPlugin: (installed 2010-09-01)
User Internet Plug-ins:
CitrixOnlineWebDeploymentPlugin: (installed 2013-04-26)
Safari Extensions:
Fragilepottery.safariextz - Adware - http://www.fragilepottery.com/faq#fragilepottery (installed 2016-09-21)
OpenIE.safariextz - Parallels - http://www.parallels.com (installed 2018-01-24)
s1h2m3o4o5p6i.safariextz - Adware - http://www.feelbegin.com/faq#feelbegin (installed 2016-05-21)
Browser-Add-on zur Deaktivierung von Google Analytics.safariextz - Google, Inc. - http://tools.google.com/dlpage/gaoptout (installed 2018-05-01)
Time Machine:
Skip System Files: No
Mobile backups: Yes
Auto backup: Yes
Volumes being backed up:
S**********E: Disk size: 499.90 GB - Disk used: 473.91 GB
Destinations:
T**E [Local] (Last used)
Total size: 930.50 GB
Total number of backups: 18
Oldest backup: 2017-05-23 22:14:05
Last backup: 2018-08-14 11:34:38
Top Processes by CPU:
Process (count) Source % of CPU Location
com.apple.WebKit.WebContent (22) Apple 14
WindowServer Apple 9
firefox Mozilla Corporation 2
kernel_task Apple 2
kextd Apple 2
Top Processes by Memory:
Process (count) Source RAM usage Location
kernel_task Apple 1.05 GB
com.apple.WebKit.WebContent (22) Apple 882 MB
plugin-container (5) Mozilla Corporation 824 MB
firefox Mozilla Corporation 437 MB
mdworker (12) Apple 240 MB
Top Processes by Network Use:
Process Source Input Output Location
Mail Apple 12 MB 469 KB
mDNSResponder Apple 5 MB 2 MB
netbiosd Apple 239 KB 46 KB
com.apple.WebKit.Networking Apple 132 KB 32 KB
WhatsApp WhatsApp Inc. 65 KB 20 KB
Top Processes by Energy Use:
Process (count) Source Energy (0-100) Location
com.apple.WebKit.WebContent (22) Apple 5
WindowServer Apple 3
firefox Mozilla Corporation 2
Safari Apple 1
plugin-container (5) Mozilla Corporation 1
Virtual Memory Information:
Available RAM 2.68 GB
Free RAM 41 MB
Used RAM 7.32 GB
Cached files 2.64 GB
Swap Used 555 MB
Software Installs (past 30 days):
Name Version Install Date
Trello 2.10.7 2018-08-13
Adobe Acrobat Reader DC (18.011.20058) 18.011.20058 2018-08-15
TripMode 252 2018-08-22
Spark 2.0.10 2018-08-27
Magnet 2.3 2018-09-04
VPN Unlimited 4.24 2018-09-04
BusyCal 340418 2018-09-04
Malwarebytes for Mac 1.0 2018-09-04
Diagnostics Information (past 7 days):
2018-09-04 10:36:03 cloudd Crash
/System/Library/PrivateFrameworks/CloudKitDaemon.framework/Support/cloudd
*** Terminating app due to uncaught exception 'NSInternalInconsistencyException', reason: 'Path /Users/***/Library/Caches/*/MMCS deleted/renamed, crashing.'
terminating with uncaught exception of type NSException
abort() called
2018-09-04 10:09:30 BusyCal.app CPU
/Applications/BusyCal.app
2018-09-03 10:53:08 Last Shutdown Cause: -60 - Corrupt filesystem
2018-08-30 10:09:13 coreaudiod Crash
/usr/sbin/coreaudiod
End of report
