| |
| |||||||
Alles rund um Mac OSX & Linux: Vermutlich Maleware oder Trojaner auf MacbookWindows 7 Für alle Fragen rund um Mac OSX, Linux und andere Unix-Derivate. |
 |
20.12.2014, 17:54
| #1 |
 |  Vermutlich Maleware oder Trojaner auf Macbook Hallo Moderatoren, seit einigen Wochen ist mein Macbook Pro Mid 2012 etwas langsam geworden, trotz SSD und 8 GB RAM. Als Browser verwendete ich Chrome und da sind immer wieder von alleine Fenster aufgepoppt mit myBet Seiten. Ich hab den Chrome dann komplett gelöscht und bin auf Firefox umgestiegen inkl. Addon Adblock Plus und Ghostery. Diese Seiten ploppen jetzt nicht mehr auf, aber die Arbeitsgeschwindigkeit ist nach wie vor niedrig. Könnt ihr mir bitte helfen? |
|
21.12.2014, 06:27
| #2 |
| /// Mac Expert    | Vermutlich Maleware oder Trojaner auf Macbook Hallo Nasivin,
__________________Bitte laden Dir EtreCheck herunter: hxxp://www.etresoft.com/download/EtreCheck.zip Entpacke es und verschiebe die app in den Programm-Ordner. Starte EtreCheck und füge den Inhalt des Logs bitte in "Code-Tags" hier ein. Gruß, -dante |
|
21.12.2014, 09:31
| #3 |
| | Vermutlich Maleware oder Trojaner auf MacbookCode:
ATTFilter EtreCheck version: 2.1.5 (108)
Report generated 21. Dezember 2014 09:29:29 MEZ
Click the [Support] links for help with non-Apple products.
Click the [Details] links for more information about that line.
Click the [Adware] links for help removing adware.
Hardware Information: ℹ️
MacBook Pro (13-inch, Mid 2012) (Verified)
MacBook Pro - model: MacBookPro9,2
1 2.5 GHz Intel Core i5 CPU: 2-core
8 GB RAM Upgradeable
BANK 0/DIMM0
4 GB DDR3 1600 MHz ok
BANK 1/DIMM0
4 GB DDR3 1600 MHz ok
Bluetooth: Good - Handoff/Airdrop2 supported
Wireless: en1: 802.11 a/b/g/n
Video Information: ℹ️
Intel HD Graphics 4000
Color LCD 1280 x 800
System Software: ℹ️
OS X 10.10.1 (14B25) - Uptime: one day 16:29:33
Disk Information: ℹ️
Samsung SSD 840 PRO Series disk0 : (512,11 GB)
EFI (disk0s1) <not mounted> : 210 MB
Macintosh HD (disk0s2) / : 435.25 GB (99.30 GB free)
Recovery HD (disk0s3) <not mounted> [Recovery]: 650 MB
BOOTCAMP (disk0s4) /Volumes/BOOTCAMP : 76.00 GB (46.10 GB free)
WDC WD10JPVT-00MS8T0 disk1 : (1 TB)
EFI (disk1s1) <not mounted> : 210 MB
Daten (disk1s2) /Volumes/Daten : 999.86 GB (798.80 GB free)
USB Information: ℹ️
Apple Inc. FaceTime HD Camera (Built-in)
Apple Inc. BRCM20702 Hub
Apple Inc. Bluetooth USB Host Controller
Apple Inc. Apple Internal Keyboard / Trackpad
Apple Computer, Inc. IR Receiver
Thunderbolt Information: ℹ️
Apple Inc. thunderbolt_bus
Gatekeeper: ℹ️
Mac App Store and identified developers
Kernel Extensions: ℹ️
/Library/Application Support/Avast/components/fileshield/unsigned
[loaded] com.avast.AvastFileShield (2.1.0 - SDK 10.9) [Support]
/Library/Application Support/Avast/components/proxy/unsigned
[loaded] com.avast.PacketForwarder (2.0 - SDK 10.9) [Support]
/System/Library/Extensions
[not loaded] com.FTDI.driver.FTDIUSBSerialDriver (2.2.18 - SDK 10.6) [Support]
[not loaded] com.Huawei.driver.HuaweiDataCardDriver (4.0.8) [Support]
[loaded] com.Logitech.Control Center.HID Driver (3.3.0) [Support]
[not loaded] com.Logitech.Unifying.HID Driver (1.2.0) [Support]
[not loaded] com.devguru.driver.SamsungComposite (1.2.61 - SDK 10.6) [Support]
[not loaded] com.mice.driver.Wireless360Controller (1.0.0d10) [Support]
[not loaded] com.mice.driver.WirelessGamingReceiver (1.0.0d10) [Support]
[not loaded] com.mice.driver.Xbox360Controller (1.0.0d10) [Support]
[loaded] com.usboverdrive.driver.hid (3.0.1) [Support]
/System/Library/Extensions/USBOverdrive.kext/Contents/PlugIns
[not loaded] com.usboverdrive.driver.hid.safe (3.0.1) [Support]
/System/Library/Extensions/ssuddrv.kext/Contents/PlugIns
[not loaded] com.devguru.driver.SamsungACMControl (1.2.61 - SDK 10.6) [Support]
[not loaded] com.devguru.driver.SamsungACMData (1.2.61 - SDK 10.6) [Support]
[not loaded] com.devguru.driver.SamsungMTP (1.2.61 - SDK 10.5) [Support]
[not loaded] com.devguru.driver.SamsungSerial (1.2.61 - SDK 10.6) [Support]
Startup Items: ℹ️
360ControlDaemon: Path: /Library/StartupItems/360ControlDaemon
ChmodBPF: Path: /Library/StartupItems/ChmodBPF
Startup items are obsolete in OS X Yosemite
Launch Agents: ℹ️
[not loaded] com.adobe.AAM.Updater-1.0.plist [Support]
[failed] com.adobe.CS4ServiceManager.plist [Support]
[loaded] com.avast.userinit.plist [Support]
[loaded] com.google.keystone.agent.plist [Support]
[running] com.Logitech.Control Center.Daemon.plist [Support]
[not loaded] com.teamviewer.teamviewer.plist [Support]
[not loaded] com.teamviewer.teamviewer_desktop.plist [Support]
[loaded] org.macosforge.xquartz.startx.plist [Support]
Launch Daemons: ℹ️
[loaded] com.adobe.fpsaud.plist [Support]
[loaded] com.avast.init.plist [Support]
[loaded] com.avast.uninstall.plist [Support]
[failed] com.avast.update.plist [Support]
[loaded] com.google.keystone.daemon.plist [Support]
[loaded] com.microsoft.office.licensing.helper.plist [Support]
[not loaded] com.teamviewer.teamviewer_service.plist [Support]
[loaded] org.macosforge.xquartz.privileged_startx.plist [Support]
User Launch Agents: ℹ️
[loaded] com.adobe.ARM.[...].plist [Support]
[running] com.amazon.music.plist [Support]
[invalid?] com.avast.home.userinit.plist [Support]
[loaded] com.divx.agent.postinstall.plist [Support]
[failed] com.facebook.videochat.[redacted].plist [Support]
[invalid?] com.google.GoogleContactSyncAgent.plist [Support]
[invalid?] com.nero.HSMMonitor.plist [Support]
[loaded] com.valvesoftware.steamclean.plist [Support]
User Login Items: ℹ️
iTunesHelper UNKNOWNHidden (missing value)
HTCLaunch UNKNOWN (missing value)
Android File Transfer Agent Programm (/Users/[redacted]/Library/Application Support/Google/Android File Transfer/Android File Transfer Agent.app)
Dropbox 2 UNKNOWN (missing value)
Dropbox Programm (/Applications/Dropbox.app)
Google Drive UNKNOWN (missing value)
fuspredownloader ProgrammHidden (/Users/[redacted]/Library/Application Support/.FUS/fuspredownloader.app)
Internet Plug-ins: ℹ️
OVSHelper: Version: 1.1 [Support]
Default Browser: Version: 600 - SDK 10.10
Google Earth Web Plug-in: Version: 6.1 [Support]
Unity Web Player: Version: UnityPlayer version 3.4.2f3 - SDK 10.5 [Support]
AdobePDFViewerNPAPI: Version: 10.1.13 [Support]
FlashPlayer-10.6: Version: 15.0.0.246 - SDK 10.6 [Support]
DivXBrowserPlugin: Version: 2.2 [Support]
AmazonMP3DownloaderPlugin101749: Version: AmazonMP3DownloaderPlugin 1.0.17 - SDK 10.4 [Support]
Flash Player: Version: 15.0.0.246 - SDK 10.6 Mismatch! Adobe recommends 16.0.0.235
QuickTime Plugin: Version: 7.7.3
iPhotoPhotocast: Version: 7.0 - SDK 10.8
SharePointBrowserPlugin: Version: 14.4.6 - SDK 10.6 [Support]
AdobePDFViewer: Version: 10.1.13 [Support]
Silverlight: Version: 5.1.30514.0 - SDK 10.6 [Support]
JavaAppletPlugin: Version: 15.0.0 - SDK 10.10 Check version
Safari Extensions: ℹ️
wrc [Installed]
DivX Plus Web Player HTML5 <video> [Installed]
3rd Party Preference Panes: ℹ️
DivX [Support]
Flash Player [Support]
FUSE for OS X (OSXFUSE) [Support]
Logitech Control Center [Support]
MacFUSE [Support]
NTFS-3G [Support]
Pref360Control [Support]
Time Machine: ℹ️
Skip System Files: NO
Mobile backups: OFF
Auto backup: NO - Auto backup turned off
Volumes being backed up:
Macintosh HD: Disk size: 435.25 GB Disk used: 335.96 GB
Destinations:
Time Machine [Network]
Total size: 3.93 TB
Total number of backups: 34
Oldest backup: 2014-03-28 22:06:25 +0000
Last backup: 2014-12-06 09:38:18 +0000
Size of backup disk: Excellent
Backup size 3.93 TB > (Disk size 435.25 GB X 3)
Top Processes by CPU: ℹ️
12% mds
4% WindowServer
3% firefox
1% fontd
0% com.avast.daemon
Top Processes by Memory: ℹ️
541 MB firefox
60 MB Finder
52 MB mds_stores
34 MB mds
34 MB com.avast.daemon
Virtual Memory Information: ℹ️
4.40 GB Free RAM
1.65 GB Active RAM
1.30 GB Inactive RAM
992 MB Wired RAM
8.65 GB Page-ins
0 B Page-outs
Diagnostics Information: ℹ️
Dec 20, 2014, 11:17:38 AM /Library/Logs/DiagnosticReports/Microsoft Word_2014-12-20-111738_[redacted].hang
Dec 19, 2014, 05:00:30 PM Self test - passed
|
|
21.12.2014, 13:44
| #4 |
| /// Mac Expert | Vermutlich Maleware oder Trojaner auf Macbook Hallo, Mir ist nichts ungewöhnliches aufgefallen. Lediglich die Dateien des DivX-Players könnten die Ursache dafür sein. Die Software läuft sowohl im Hintergrund und es befinden sich entsprechende Plugs-Ins für die Browser. Wenn Du das entfernen möchtest, dann sag mir bitte Bescheid. Das Java-Browser-Plugin solltest Du aus Sicherheitsgründen deaktivieren. Dazu öffnest Du das Java-Controlcenter und unter den Reiter "Sicherheit" den Hacken bei "Java-Content im Browser aktivieren", herausnehmen. Das Festplattendienstprogramm starten a. Überprüfe deine Festplatte auf Fehler (wenn welche vorhanden, reparieren.) b. Überprüfe die Rechte. (Ebenfalls reparieren) Terminal öffnen Folgendes Eingeben: Code:
ATTFilter sudo periodic daily weekly monthly
Gruß, -dante |
|
21.12.2014, 21:51
| #5 |
| | Vermutlich Maleware oder Trojaner auf Macbook Den Divxplayer hab ich gelöscht, den Codec aber nicht. Alles andere habe ich wie angegeben befolgt. Vor einiger Zeit hatte ich noch einen Virus auf der Platte, der von meinem Virenscanner Avast erkannt und in Quarantäne geschoben wurde. Kann durch diesen Virus vielleicht was kaputt gemacht worden sein? |
|
21.12.2014, 22:58
| #6 |
| | Vermutlich Maleware oder Trojaner auf Macbook Ohne entsprechenden Log, kann man da leider keine Antwort drauf geben  |
|
21.12.2014, 23:27
| #7 |
| /// Mac Expert | Vermutlich Maleware oder Trojaner auf Macbook Da noch Teile vom DivX im Log oben vorhanden sind wurde es nicht vollständig entfernt. Es muss ein Uninstaller vorhanden sein der das für dich erledigt. Bitte schaue mal entweder unter "Dienstprogramme" oder in den Systemeinstellungen nach den DivX-Uninstaller bzw. Setup. 1. Befolge bitte diese Anleitung: http://www.trojaner-board.de/158652-...dware-mac.html 2. Falls etwas gefunden wurde, kopiere das Log-File von AdwareMedic hierher. Bitte nur die Log-Zeilen des heutigen Datums auswählen. Dazu gehst du in das Menu auf "Scanner" und dort "Open Log File" auswählen. 3. Für den Fall das etwas gefunden wurde, bitte Neustart des Rechners. 4. Neues Log mit EtreCheck. Geändert von Dante12 (21.12.2014 um 23:39 Uhr) |
|
22.12.2014, 09:02
| #8 |
| | Vermutlich Maleware oder Trojaner auf Macbook Kann leider keine Logdatei auslesen bei dem Virenscanner. Vielleicht reicht dir auch das:  |
|
22.12.2014, 09:23
| #9 |
| /// Mac Expert | Vermutlich Maleware oder Trojaner auf Macbook VSearch ist Adware Teile habe ich nicht gefunden, möglich das Avast das schon einiges am System kaputt gemacht hat. Bitte führe die Schritte die aus ich dir weiter oben beschrieben habe. |
|
22.12.2014, 09:30
| #10 |
| | Vermutlich Maleware oder Trojaner auf MacbookCode:
ATTFilter 2014-12-12 18:27:44: ----- Scan Started -----
2014-12-12 18:27:44: Scanning with signatures version 39
2014-12-12 18:28:31: No adware found
2014-12-12 18:28:31: ----- Scan Ended -----
2014-12-21 21:52:13: ----- Scan Started -----
2014-12-21 21:52:13: Scanning with signatures version 41
2014-12-21 21:52:24: No adware found
2014-12-21 21:52:24: ----- Scan Ended -----
Code:
ATTFilter EtreCheck version: 2.1.5 (108)
Report generated 22. Dezember 2014 09:28:51 MEZ
Click the [Support] links for help with non-Apple products.
Click the [Details] links for more information about that line.
Click the [Adware] links for help removing adware.
Hardware Information: ℹ️
MacBook Pro (13-inch, Mid 2012) (Verified)
MacBook Pro - model: MacBookPro9,2
1 2.5 GHz Intel Core i5 CPU: 2-core
8 GB RAM Upgradeable
BANK 0/DIMM0
4 GB DDR3 1600 MHz ok
BANK 1/DIMM0
4 GB DDR3 1600 MHz ok
Bluetooth: Good - Handoff/Airdrop2 supported
Wireless: en1: 802.11 a/b/g/n
Video Information: ℹ️
Intel HD Graphics 4000
Color LCD 1280 x 800
System Software: ℹ️
OS X 10.10.1 (14B25) - Uptime: 11:43:42
Disk Information: ℹ️
Samsung SSD 840 PRO Series disk0 : (512,11 GB)
EFI (disk0s1) <not mounted> : 210 MB
Macintosh HD (disk0s2) / : 435.25 GB (101.29 GB free)
Recovery HD (disk0s3) <not mounted> [Recovery]: 650 MB
BOOTCAMP (disk0s4) /Volumes/BOOTCAMP : 76.00 GB (46.10 GB free)
WDC WD10JPVT-00MS8T0 disk1 : (1 TB)
EFI (disk1s1) <not mounted> : 210 MB
Daten (disk1s2) /Volumes/Daten : 999.86 GB (798.79 GB free)
USB Information: ℹ️
Apple Computer, Inc. IR Receiver
Apple Inc. Apple Internal Keyboard / Trackpad
Apple Inc. BRCM20702 Hub
Apple Inc. Bluetooth USB Host Controller
Apple Inc. FaceTime HD Camera (Built-in)
Thunderbolt Information: ℹ️
Apple Inc. thunderbolt_bus
Gatekeeper: ℹ️
Mac App Store and identified developers
Kernel Extensions: ℹ️
/Library/Application Support/Avast/components/fileshield/unsigned
[loaded] com.avast.AvastFileShield (2.1.0 - SDK 10.9) [Support]
/Library/Application Support/Avast/components/proxy/unsigned
[loaded] com.avast.PacketForwarder (2.0 - SDK 10.9) [Support]
/System/Library/Extensions
[not loaded] com.FTDI.driver.FTDIUSBSerialDriver (2.2.18 - SDK 10.6) [Support]
[not loaded] com.Huawei.driver.HuaweiDataCardDriver (4.0.8) [Support]
[not loaded] com.Logitech.Control Center.HID Driver (3.3.0) [Support]
[not loaded] com.Logitech.Unifying.HID Driver (1.2.0) [Support]
[not loaded] com.devguru.driver.SamsungComposite (1.2.61 - SDK 10.6) [Support]
[not loaded] com.mice.driver.Wireless360Controller (1.0.0d10) [Support]
[not loaded] com.mice.driver.WirelessGamingReceiver (1.0.0d10) [Support]
[not loaded] com.mice.driver.Xbox360Controller (1.0.0d10) [Support]
[loaded] com.usboverdrive.driver.hid (3.0.1) [Support]
/System/Library/Extensions/USBOverdrive.kext/Contents/PlugIns
[not loaded] com.usboverdrive.driver.hid.safe (3.0.1) [Support]
/System/Library/Extensions/ssuddrv.kext/Contents/PlugIns
[not loaded] com.devguru.driver.SamsungACMControl (1.2.61 - SDK 10.6) [Support]
[not loaded] com.devguru.driver.SamsungACMData (1.2.61 - SDK 10.6) [Support]
[not loaded] com.devguru.driver.SamsungMTP (1.2.61 - SDK 10.5) [Support]
[not loaded] com.devguru.driver.SamsungSerial (1.2.61 - SDK 10.6) [Support]
Startup Items: ℹ️
360ControlDaemon: Path: /Library/StartupItems/360ControlDaemon
ChmodBPF: Path: /Library/StartupItems/ChmodBPF
Startup items are obsolete in OS X Yosemite
Launch Agents: ℹ️
[not loaded] com.adobe.AAM.Updater-1.0.plist [Support]
[failed] com.adobe.CS4ServiceManager.plist [Support]
[loaded] com.avast.userinit.plist [Support]
[loaded] com.google.keystone.agent.plist [Support]
[running] com.Logitech.Control Center.Daemon.plist [Support]
[loaded] com.oracle.java.Java-Updater.plist [Support]
[not loaded] com.teamviewer.teamviewer.plist [Support]
[not loaded] com.teamviewer.teamviewer_desktop.plist [Support]
[loaded] org.macosforge.xquartz.startx.plist [Support]
Launch Daemons: ℹ️
[loaded] com.adobe.fpsaud.plist [Support]
[loaded] com.avast.init.plist [Support]
[loaded] com.avast.uninstall.plist [Support]
[failed] com.avast.update.plist [Support]
[loaded] com.google.keystone.daemon.plist [Support]
[loaded] com.microsoft.office.licensing.helper.plist [Support]
[loaded] com.oracle.java.Helper-Tool.plist [Support]
[not loaded] com.teamviewer.teamviewer_service.plist [Support]
[loaded] org.macosforge.xquartz.privileged_startx.plist [Support]
User Launch Agents: ℹ️
[loaded] com.adobe.ARM.[...].plist [Support]
[running] com.amazon.music.plist [Support]
[invalid?] com.avast.home.userinit.plist [Support]
[loaded] com.divx.agent.postinstall.plist [Support]
[failed] com.facebook.videochat.[redacted].plist [Support]
[invalid?] com.google.GoogleContactSyncAgent.plist [Support]
[invalid?] com.nero.HSMMonitor.plist [Support]
[loaded] com.valvesoftware.steamclean.plist [Support]
User Login Items: ℹ️
iTunesHelper UNKNOWNHidden (missing value)
HTCLaunch UNKNOWN (missing value)
Android File Transfer Agent Programm (/Users/[redacted]/Library/Application Support/Google/Android File Transfer/Android File Transfer Agent.app)
Dropbox 2 UNKNOWN (missing value)
Dropbox Programm (/Applications/Dropbox.app)
Google Drive UNKNOWN (missing value)
fuspredownloader ProgrammHidden (/Users/[redacted]/Library/Application Support/.FUS/fuspredownloader.app)
Internet Plug-ins: ℹ️
OVSHelper: Version: 1.1 [Support]
Default Browser: Version: 600 - SDK 10.10
Google Earth Web Plug-in: Version: 6.1 [Support]
Unity Web Player: Version: UnityPlayer version 3.4.2f3 - SDK 10.5 [Support]
AdobePDFViewerNPAPI: Version: 10.1.13 [Support]
FlashPlayer-10.6: Version: 15.0.0.246 - SDK 10.6 [Support]
DivXBrowserPlugin: Version: 2.2 [Support]
AmazonMP3DownloaderPlugin101749: Version: Unknown
Flash Player: Version: 15.0.0.246 - SDK 10.6 Mismatch! Adobe recommends 16.0.0.235
QuickTime Plugin: Version: 7.7.3
iPhotoPhotocast: Version: 7.0 - SDK 10.8
SharePointBrowserPlugin: Version: 14.4.6 - SDK 10.6 [Support]
AdobePDFViewer: Version: 10.1.13 [Support]
Silverlight: Version: 5.1.30514.0 - SDK 10.6 [Support]
JavaAppletPlugin: Version: Java 8 Update 25 Check version
Safari Extensions: ℹ️
wrc [Installed]
DivX Plus Web Player HTML5 <video> [Installed]
3rd Party Preference Panes: ℹ️
DivX [Support]
Flash Player [Support]
FUSE for OS X (OSXFUSE) [Support]
Java [Support]
Logitech Control Center [Support]
MacFUSE [Support]
NTFS-3G [Support]
Pref360Control [Support]
Time Machine: ℹ️
Skip System Files: NO
Mobile backups: OFF
Auto backup: NO - Auto backup turned off
Volumes being backed up:
Macintosh HD: Disk size: 435.25 GB Disk used: 333.96 GB
Destinations:
Time Machine [Network]
Total size: 3.93 TB
Total number of backups: 34
Oldest backup: 2014-03-28 22:06:25 +0000
Last backup: 2014-12-06 09:38:18 +0000
Size of backup disk: Excellent
Backup size 3.93 TB > (Disk size 435.25 GB X 3)
Top Processes by CPU: ℹ️
5% WindowServer
0% fontd
0% com.avast.daemon
0% AppleSpell
0% hidd
Top Processes by Memory: ℹ️
576 MB firefox
163 MB Microsoft Word
94 MB Preview
77 MB Finder
77 MB WindowServer
Virtual Memory Information: ℹ️
3.25 GB Free RAM
2.66 GB Active RAM
1.48 GB Inactive RAM
930 MB Wired RAM
4.64 GB Page-ins
0 B Page-outs
Diagnostics Information: ℹ️
Dec 21, 2014, 09:55:42 PM /Users/[redacted]/Library/Logs/DiagnosticReports/plugin-container_2014-12-21-215542_[redacted].crash
Dec 21, 2014, 09:45:43 PM Self test - passed
Dec 20, 2014, 11:17:38 AM /Library/Logs/DiagnosticReports/Microsoft Word_2014-12-20-111738_[redacted].hang
|
|
22.12.2014, 09:32
| #11 |
| /// Mac Expert | Vermutlich Maleware oder Trojaner auf Macbook Das ist gut, bitte neuen EtreCheck Log. EDIT: Warst schneller ich brauch etwas muss noch jemandem anderem Helfen. Bitte habe etwas Geduld. |
|
22.12.2014, 09:34
| #12 |
| | Vermutlich Maleware oder Trojaner auf MacbookCode:
ATTFilter EtreCheck version: 2.1.5 (108)
Report generated 22. Dezember 2014 09:32:52 MEZ
Click the [Support] links for help with non-Apple products.
Click the [Details] links for more information about that line.
Click the [Adware] links for help removing adware.
Hardware Information: ℹ️
MacBook Pro (13-inch, Mid 2012) (Verified)
MacBook Pro - model: MacBookPro9,2
1 2.5 GHz Intel Core i5 CPU: 2-core
8 GB RAM Upgradeable
BANK 0/DIMM0
4 GB DDR3 1600 MHz ok
BANK 1/DIMM0
4 GB DDR3 1600 MHz ok
Bluetooth: Good - Handoff/Airdrop2 supported
Wireless: en1: 802.11 a/b/g/n
Video Information: ℹ️
Intel HD Graphics 4000
Color LCD 1280 x 800
System Software: ℹ️
OS X 10.10.1 (14B25) - Uptime: 11:47:43
Disk Information: ℹ️
Samsung SSD 840 PRO Series disk0 : (512,11 GB)
EFI (disk0s1) <not mounted> : 210 MB
Macintosh HD (disk0s2) / : 435.25 GB (101.29 GB free)
Recovery HD (disk0s3) <not mounted> [Recovery]: 650 MB
BOOTCAMP (disk0s4) /Volumes/BOOTCAMP : 76.00 GB (46.10 GB free)
WDC WD10JPVT-00MS8T0 disk1 : (1 TB)
EFI (disk1s1) <not mounted> : 210 MB
Daten (disk1s2) /Volumes/Daten : 999.86 GB (798.79 GB free)
USB Information: ℹ️
Apple Computer, Inc. IR Receiver
Apple Inc. Apple Internal Keyboard / Trackpad
Apple Inc. BRCM20702 Hub
Apple Inc. Bluetooth USB Host Controller
Apple Inc. FaceTime HD Camera (Built-in)
Thunderbolt Information: ℹ️
Apple Inc. thunderbolt_bus
Gatekeeper: ℹ️
Mac App Store and identified developers
Kernel Extensions: ℹ️
/Library/Application Support/Avast/components/fileshield/unsigned
[loaded] com.avast.AvastFileShield (2.1.0 - SDK 10.9) [Support]
/Library/Application Support/Avast/components/proxy/unsigned
[loaded] com.avast.PacketForwarder (2.0 - SDK 10.9) [Support]
/System/Library/Extensions
[not loaded] com.FTDI.driver.FTDIUSBSerialDriver (2.2.18 - SDK 10.6) [Support]
[not loaded] com.Huawei.driver.HuaweiDataCardDriver (4.0.8) [Support]
[not loaded] com.Logitech.Control Center.HID Driver (3.3.0) [Support]
[not loaded] com.Logitech.Unifying.HID Driver (1.2.0) [Support]
[not loaded] com.devguru.driver.SamsungComposite (1.2.61 - SDK 10.6) [Support]
[not loaded] com.mice.driver.Wireless360Controller (1.0.0d10) [Support]
[not loaded] com.mice.driver.WirelessGamingReceiver (1.0.0d10) [Support]
[not loaded] com.mice.driver.Xbox360Controller (1.0.0d10) [Support]
[loaded] com.usboverdrive.driver.hid (3.0.1) [Support]
/System/Library/Extensions/USBOverdrive.kext/Contents/PlugIns
[not loaded] com.usboverdrive.driver.hid.safe (3.0.1) [Support]
/System/Library/Extensions/ssuddrv.kext/Contents/PlugIns
[not loaded] com.devguru.driver.SamsungACMControl (1.2.61 - SDK 10.6) [Support]
[not loaded] com.devguru.driver.SamsungACMData (1.2.61 - SDK 10.6) [Support]
[not loaded] com.devguru.driver.SamsungMTP (1.2.61 - SDK 10.5) [Support]
[not loaded] com.devguru.driver.SamsungSerial (1.2.61 - SDK 10.6) [Support]
Startup Items: ℹ️
360ControlDaemon: Path: /Library/StartupItems/360ControlDaemon
ChmodBPF: Path: /Library/StartupItems/ChmodBPF
Startup items are obsolete in OS X Yosemite
Launch Agents: ℹ️
[not loaded] com.adobe.AAM.Updater-1.0.plist [Support]
[failed] com.adobe.CS4ServiceManager.plist [Support]
[loaded] com.avast.userinit.plist [Support]
[loaded] com.google.keystone.agent.plist [Support]
[running] com.Logitech.Control Center.Daemon.plist [Support]
[loaded] com.oracle.java.Java-Updater.plist [Support]
[not loaded] com.teamviewer.teamviewer.plist [Support]
[not loaded] com.teamviewer.teamviewer_desktop.plist [Support]
[loaded] org.macosforge.xquartz.startx.plist [Support]
Launch Daemons: ℹ️
[loaded] com.adobe.fpsaud.plist [Support]
[loaded] com.avast.init.plist [Support]
[loaded] com.avast.uninstall.plist [Support]
[failed] com.avast.update.plist [Support]
[loaded] com.google.keystone.daemon.plist [Support]
[loaded] com.microsoft.office.licensing.helper.plist [Support]
[loaded] com.oracle.java.Helper-Tool.plist [Support]
[not loaded] com.teamviewer.teamviewer_service.plist [Support]
[loaded] org.macosforge.xquartz.privileged_startx.plist [Support]
User Launch Agents: ℹ️
[loaded] com.adobe.ARM.[...].plist [Support]
[running] com.amazon.music.plist [Support]
[invalid?] com.avast.home.userinit.plist [Support]
[loaded] com.divx.agent.postinstall.plist [Support]
[failed] com.facebook.videochat.[redacted].plist [Support]
[invalid?] com.google.GoogleContactSyncAgent.plist [Support]
[invalid?] com.nero.HSMMonitor.plist [Support]
[loaded] com.valvesoftware.steamclean.plist [Support]
User Login Items: ℹ️
iTunesHelper UNKNOWNHidden (missing value)
HTCLaunch UNKNOWN (missing value)
Android File Transfer Agent Programm (/Users/[redacted]/Library/Application Support/Google/Android File Transfer/Android File Transfer Agent.app)
Dropbox 2 UNKNOWN (missing value)
Dropbox Programm (/Applications/Dropbox.app)
Google Drive UNKNOWN (missing value)
fuspredownloader ProgrammHidden (/Users/[redacted]/Library/Application Support/.FUS/fuspredownloader.app)
Internet Plug-ins: ℹ️
OVSHelper: Version: 1.1 [Support]
Default Browser: Version: 600 - SDK 10.10
Google Earth Web Plug-in: Version: 6.1 [Support]
Unity Web Player: Version: UnityPlayer version 3.4.2f3 - SDK 10.5 [Support]
AdobePDFViewerNPAPI: Version: 10.1.13 [Support]
FlashPlayer-10.6: Version: 15.0.0.246 - SDK 10.6 [Support]
DivXBrowserPlugin: Version: 2.2 [Support]
AmazonMP3DownloaderPlugin101749: Version: Unknown
Flash Player: Version: 15.0.0.246 - SDK 10.6 Mismatch! Adobe recommends 16.0.0.235
QuickTime Plugin: Version: 7.7.3
iPhotoPhotocast: Version: 7.0 - SDK 10.8
SharePointBrowserPlugin: Version: 14.4.6 - SDK 10.6 [Support]
AdobePDFViewer: Version: 10.1.13 [Support]
Silverlight: Version: 5.1.30514.0 - SDK 10.6 [Support]
JavaAppletPlugin: Version: Java 8 Update 25 Check version
Safari Extensions: ℹ️
wrc [Installed]
DivX Plus Web Player HTML5 <video> [Installed]
3rd Party Preference Panes: ℹ️
DivX [Support]
Flash Player [Support]
FUSE for OS X (OSXFUSE) [Support]
Java [Support]
Logitech Control Center [Support]
MacFUSE [Support]
NTFS-3G [Support]
Pref360Control [Support]
Time Machine: ℹ️
Skip System Files: NO
Mobile backups: OFF
Auto backup: NO - Auto backup turned off
Volumes being backed up:
Macintosh HD: Disk size: 435.25 GB Disk used: 333.96 GB
Destinations:
Time Machine [Network]
Total size: 3.93 TB
Total number of backups: 34
Oldest backup: 2014-03-28 22:06:25 +0000
Last backup: 2014-12-06 09:38:18 +0000
Size of backup disk: Excellent
Backup size 3.93 TB > (Disk size 435.25 GB X 3)
Top Processes by CPU: ℹ️
20% firefox
12% mds
4% WindowServer
1% com.avast.daemon
1% hidd
Top Processes by Memory: ℹ️
617 MB firefox
163 MB Microsoft Word
94 MB Preview
77 MB mds_stores
77 MB Finder
Virtual Memory Information: ℹ️
3.00 GB Free RAM
2.85 GB Active RAM
1.53 GB Inactive RAM
944 MB Wired RAM
4.66 GB Page-ins
0 B Page-outs
Diagnostics Information: ℹ️
Dec 21, 2014, 09:55:42 PM /Users/[redacted]/Library/Logs/DiagnosticReports/plugin-container_2014-12-21-215542_[redacted].crash
Dec 21, 2014, 09:45:43 PM Self test - passed
Dec 20, 2014, 11:17:38 AM /Library/Logs/DiagnosticReports/Microsoft Word_2014-12-20-111738_[redacted].hang
|
|
22.12.2014, 12:57
| #13 |
| /// Mac Expert | Vermutlich Maleware oder Trojaner auf Macbook Home-Verzeichnis ~/Library/LaunchAgents Löschen: Code:
ATTFilter com.amazon.music.plist [Support] [invalid?]
com.divx.agent.postinstall.plist [Support] [failed]
com.facebook.videochat.[redacted].plist [Support] [invalid?]
com.google.GoogleContactSyncAgent.plist [Support] [invalid?]
com.nero.HSMMonitor.plist [Support] [loaded]
Folgende Einträge löschen Code:
ATTFilter iTunesHelper UNKNOWN Hidden (missing value)
HTCLaunch UNKNOWN (missing value)
Dropbox 2 UNKNOWN (missing value)
Löschen funktioniert nicht, da es über den Kies-Updater wieder angelegt wird. Du musst die Uninstall-Funktion von Kies nutzen. Code:
ATTFilter fuspredownloader
ProgrammHidden (/Users/[redacted]/Library/Application Support/.FUS/fuspredownloader.app)
Hauptverzeichnis /Library/Internet Plug-Ins/ (Root-Passwort nötig) Folgende Einträge löschen: Code:
ATTFilter DivXBrowserPlugin: Version: 2.2
Löschen: Code:
ATTFilter DivX Plus Web Player
Hauptverzeichnis /Library/Preferences Panes/ Löschen: Code:
ATTFilter DivX
Systemeinstellungen - Flash Player aufrufen und updaten. Home-Verzeichnis ~/Library/Caches Mit Command-A gesamten Inhalt Markieren und in einen neuen Ordner in den Papierkorb verschieben. Sollten Probleme auftreten kann man Inhalte wiederherstellen. Rechner Neustarten Neues Log mit EtreCheck Gruß, -dante |
|
22.12.2014, 16:51
| #14 |
| | Vermutlich Maleware oder Trojaner auf MacbookCode:
ATTFilter EtreCheck version: 2.1.5 (108)
Report generated 22. Dezember 2014 16:48:47 MEZ
Click the [Support] links for help with non-Apple products.
Click the [Details] links for more information about that line.
Click the [Adware] links for help removing adware.
Hardware Information: ℹ️
MacBook Pro (13-inch, Mid 2012) (Verified)
MacBook Pro - model: MacBookPro9,2
1 2.5 GHz Intel Core i5 CPU: 2-core
8 GB RAM Upgradeable
BANK 0/DIMM0
4 GB DDR3 1600 MHz ok
BANK 1/DIMM0
4 GB DDR3 1600 MHz ok
Bluetooth: Good - Handoff/Airdrop2 supported
Wireless: en1: 802.11 a/b/g/n
Video Information: ℹ️
Intel HD Graphics 4000
Color LCD 1280 x 800
System Software: ℹ️
OS X 10.10.1 (14B25) - Uptime: 0:0:42
Disk Information: ℹ️
Samsung SSD 840 PRO Series disk0 : (512,11 GB)
EFI (disk0s1) <not mounted> : 210 MB
Macintosh HD (disk0s2) / : 435.25 GB (102.32 GB free)
Recovery HD (disk0s3) <not mounted> [Recovery]: 650 MB
BOOTCAMP (disk0s4) /Volumes/BOOTCAMP : 76.00 GB (46.10 GB free)
WDC WD10JPVT-00MS8T0 disk1 : (1 TB)
EFI (disk1s1) <not mounted> : 210 MB
Daten (disk1s2) /Volumes/Daten : 999.86 GB (798.79 GB free)
USB Information: ℹ️
Apple Computer, Inc. IR Receiver
Apple Inc. BRCM20702 Hub
Apple Inc. Bluetooth USB Host Controller
Apple Inc. Apple Internal Keyboard / Trackpad
Apple Inc. FaceTime HD Camera (Built-in)
Thunderbolt Information: ℹ️
Apple Inc. thunderbolt_bus
Gatekeeper: ℹ️
Mac App Store and identified developers
Kernel Extensions: ℹ️
/Library/Application Support/Avast/components/fileshield/unsigned
[loaded] com.avast.AvastFileShield (2.1.0 - SDK 10.9) [Support]
/Library/Application Support/Avast/components/proxy/unsigned
[loaded] com.avast.PacketForwarder (2.0 - SDK 10.9) [Support]
/System/Library/Extensions
[not loaded] com.FTDI.driver.FTDIUSBSerialDriver (2.2.18 - SDK 10.6) [Support]
[not loaded] com.Huawei.driver.HuaweiDataCardDriver (4.0.8) [Support]
[not loaded] com.Logitech.Control Center.HID Driver (3.3.0) [Support]
[not loaded] com.Logitech.Unifying.HID Driver (1.2.0) [Support]
[not loaded] com.devguru.driver.SamsungComposite (1.2.61 - SDK 10.6) [Support]
[not loaded] com.mice.driver.Wireless360Controller (1.0.0d10) [Support]
[not loaded] com.mice.driver.WirelessGamingReceiver (1.0.0d10) [Support]
[not loaded] com.mice.driver.Xbox360Controller (1.0.0d10) [Support]
[not loaded] com.usboverdrive.driver.hid (3.0.1) [Support]
/System/Library/Extensions/USBOverdrive.kext/Contents/PlugIns
[not loaded] com.usboverdrive.driver.hid.safe (3.0.1) [Support]
/System/Library/Extensions/ssuddrv.kext/Contents/PlugIns
[not loaded] com.devguru.driver.SamsungACMControl (1.2.61 - SDK 10.6) [Support]
[not loaded] com.devguru.driver.SamsungACMData (1.2.61 - SDK 10.6) [Support]
[not loaded] com.devguru.driver.SamsungMTP (1.2.61 - SDK 10.5) [Support]
[not loaded] com.devguru.driver.SamsungSerial (1.2.61 - SDK 10.6) [Support]
Startup Items: ℹ️
360ControlDaemon: Path: /Library/StartupItems/360ControlDaemon
ChmodBPF: Path: /Library/StartupItems/ChmodBPF
Startup items are obsolete in OS X Yosemite
Launch Agents: ℹ️
[not loaded] com.adobe.AAM.Updater-1.0.plist [Support]
[failed] com.adobe.CS4ServiceManager.plist [Support] [Details]
[loaded] com.avast.userinit.plist [Support]
[loaded] com.google.keystone.agent.plist [Support]
[running] com.Logitech.Control Center.Daemon.plist [Support]
[loaded] com.oracle.java.Java-Updater.plist [Support]
[not loaded] com.teamviewer.teamviewer.plist [Support]
[not loaded] com.teamviewer.teamviewer_desktop.plist [Support]
[loaded] org.macosforge.xquartz.startx.plist [Support]
Launch Daemons: ℹ️
[loaded] com.adobe.fpsaud.plist [Support]
[loaded] com.avast.init.plist [Support]
[loaded] com.avast.uninstall.plist [Support]
[loaded] com.avast.update.plist [Support]
[loaded] com.google.keystone.daemon.plist [Support]
[loaded] com.microsoft.office.licensing.helper.plist [Support]
[loaded] com.oracle.java.Helper-Tool.plist [Support]
[not loaded] com.teamviewer.teamviewer_service.plist [Support]
[loaded] org.macosforge.xquartz.privileged_startx.plist [Support]
User Launch Agents: ℹ️
[loaded] com.adobe.ARM.[...].plist [Support]
[invalid?] com.avast.home.userinit.plist [Support]
[loaded] com.valvesoftware.steamclean.plist [Support]
User Login Items: ℹ️
Android File Transfer Agent Programm (/Users/[redacted]/Library/Application Support/Google/Android File Transfer/Android File Transfer Agent.app)
Dropbox Programm (/Applications/Dropbox.app)
Internet Plug-ins: ℹ️
OVSHelper: Version: 1.1 [Support]
Default Browser: Version: 600 - SDK 10.10
Google Earth Web Plug-in: Version: 6.1 [Support]
Unity Web Player: Version: UnityPlayer version 3.4.2f3 - SDK 10.5 [Support]
AdobePDFViewerNPAPI: Version: 10.1.13 [Support]
FlashPlayer-10.6: Version: 16.0.0.235 - SDK 10.6 [Support]
DivXBrowserPlugin: Version: 2.2 [Support]
AmazonMP3DownloaderPlugin101749: Version: Unknown
Flash Player: Version: 16.0.0.235 - SDK 10.6 [Support]
QuickTime Plugin: Version: 7.7.3
iPhotoPhotocast: Version: 7.0 - SDK 10.8
SharePointBrowserPlugin: Version: 14.4.6 - SDK 10.6 [Support]
AdobePDFViewer: Version: 10.1.13 [Support]
Silverlight: Version: 5.1.30514.0 - SDK 10.6 [Support]
JavaAppletPlugin: Version: Java 8 Update 25 Check version
Safari Extensions: ℹ️
avast! Online Security [Installed]
3rd Party Preference Panes: ℹ️
DivX [Support]
Flash Player [Support]
FUSE for OS X (OSXFUSE) [Support]
Java [Support]
Logitech Control Center [Support]
MacFUSE [Support]
NTFS-3G [Support]
Pref360Control [Support]
Time Machine: ℹ️
Skip System Files: NO
Mobile backups: OFF
Auto backup: NO - Auto backup turned off
Volumes being backed up:
Macintosh HD: Disk size: 435.25 GB Disk used: 332.94 GB
Destinations:
Time Machine [Network]
Total size: 3.93 TB
Total number of backups: 34
Oldest backup: 2014-03-28 22:06:25 +0000
Last backup: 2014-12-06 09:38:18 +0000
Size of backup disk: Excellent
Backup size 3.93 TB > (Disk size 435.25 GB X 3)
Top Processes by CPU: ℹ️
4% WindowServer
1% fontd
0% com.avast.daemon
0% AppleSpell
0% notifyd
Top Processes by Memory: ℹ️
120 MB com.avast.daemon
86 MB mds_stores
77 MB Dropbox
60 MB ocspd
43 MB WindowServer
Virtual Memory Information: ℹ️
4.61 GB Free RAM
1.61 GB Active RAM
1.53 GB Inactive RAM
840 MB Wired RAM
2.10 GB Page-ins
0 B Page-outs
Diagnostics Information: ℹ️
Dec 22, 2014, 04:48:10 PM Self test - passed
Dec 21, 2014, 09:55:42 PM /Users/[redacted]/Library/Logs/DiagnosticReports/plugin-container_2014-12-21-215542_[redacted].crash
Dec 20, 2014, 11:17:38 AM /Library/Logs/DiagnosticReports/Microsoft Word_2014-12-20-111738_[redacted].hang
|
|
22.12.2014, 17:07
| #15 |
| /// Mac Expert | Vermutlich Maleware oder Trojaner auf Macbook Wie läuft dein Rechner jetzt? Wenn du noch DivX loswerden willst musst du die Einträge die ich oben weiter erwähnt hatte entfernen. |
|
| Themen zu Vermutlich Maleware oder Trojaner auf Macbook |
| adblock, addon, browser, chrome, fenster, firefox, gelöscht, immer wieder, komplett, langsam, macbook, macbook pro, maleware, moderatoren, nicht mehr, seite, troja, trojaner, trotz, vermutlich, woche, wochen |
Vermutlich Maleware oder Trojaner auf Macbook
Linear-Darstellung
