| |
| |||||||
Alles rund um Mac OSX & Linux: Trojanerbefall beim Mac?Windows 7 Für alle Fragen rund um Mac OSX, Linux und andere Unix-Derivate. |
12.02.2017, 23:57
| #3 |
| |  Trojanerbefall beim Mac? Guten Abend!
__________________Viewmc.app konnte ich im Programmordner nicht finden. Der Scan wurde durchgeführt und die erkannte Bedrohung gelöscht - anschließend habe ich neu gestartet. Hier der Scan (habe mir erlaubt persönliche Infos wie Namen zu ersetzen) Code:
ATTFilter Malwarebytes Anti-Malware 1.2.6.730 system report - 12. Februar 2017 um 23:54:38 MEZ Mac OS X version Version 10.12 (Build 16A323) System uptime: 0d 00:01:40 Helper tool version: 1.2.6.730 Signatures version: 167 Safari extensions ----------------------- BENUTZER BENUTZER Name: Adblock Plus Path: /Users/BENUTZER/Library/Safari/Extensions/Adblock Plus-2.safariextz Modified: 2016-12-25 15:03:55 +0000 Name: AdBlock Path: /Users/BENUTZER/Library/Safari/Extensions/AdBlock-2.safariextz Modified: 2016-05-15 10:38:02 +0000 Name: Tab Reloader Path: /Users/BENUTZER/Library/Safari/Extensions/Tab Reloader.safariextz Modified: 2013-07-09 10:07:48 +0000 Chrome extensions ----------------------- BENUTZER Default Name: ProxFlow Path: /Users/BENUTZER/Library/Application Support/Google/Chrome/Default/Extensions/aakchaleigkohafkfjfjbblobjifikek Modified: 2016-09-22 21:34:27 +0000 Name: Google Docs Path: /Users/BENUTZER/Library/Application Support/Google/Chrome/Default/Extensions/aohghmighlieiainnegkcijnfilokake Modified: 2015-10-17 15:41:54 +0000 Name: Google Drive Path: /Users/BENUTZER/Library/Application Support/Google/Chrome/Default/Extensions/apdfllckaahabafndbhieahigkjlhalf Modified: 2015-11-16 21:38:57 +0000 Name: YouTube Path: /Users/BENUTZER/Library/Application Support/Google/Chrome/Default/Extensions/blpcfgokakmgnkcojhhkbfbldkacnbeo Modified: 2015-10-17 15:41:54 +0000 Name: Adblock Plus Path: /Users/BENUTZER/Library/Application Support/Google/Chrome/Default/Extensions/cfhdojbkjhnklbpkdaibdccddilifddb Modified: 2016-09-12 17:57:25 +0000 Name: Google Search Path: /Users/BENUTZER/Library/Application Support/Google/Chrome/Default/Extensions/coobgpohoikkiipiblmjeljniedjpjpf Modified: 2016-09-05 13:59:55 +0000 Name: Google Docs Offline Path: /Users/BENUTZER/Library/Application Support/Google/Chrome/Default/Extensions/ghbmnnjooekpmoecnnnilnnbdlolhkhi Modified: 2016-09-12 17:57:26 +0000 Name: Chrome Web Store Payments Path: /Users/BENUTZER/Library/Application Support/Google/Chrome/Default/Extensions/nmmhkkegccagdldgiimedpiccmgmieda Modified: 2016-09-12 17:57:26 +0000 Name: Gmail Path: /Users/BENUTZER/Library/Application Support/Google/Chrome/Default/Extensions/pjkljhegncpnkpknbcohdijeoejaedia Modified: 2015-10-17 15:41:54 +0000 Name: Chrome Media Router Path: /Users/BENUTZER/Library/Application Support/Google/Chrome/Default/Extensions/pkedcjkdefgpdelpbcmbmeomcjbeemfm Modified: 2016-09-12 17:57:00 +0000 Name: Path: /Users/BENUTZER/Library/Application Support/Google/Chrome/Default/Extensions/Temp Modified: 2016-09-22 21:34:27 +0000 Firefox extensions ----------------------- BENUTZER cd87hlez.default-1461879414587 Name: Hoxx VPN Proxy Path: /Users/BENUTZER/Library/Application Support/Firefox/Profiles/cd87hlez.default-1461879414587/extensions/@hoxx-vpn.xpi Modified: 2017-01-03 14:54:14 +0000 Name: Web Developer Path: /Users/BENUTZER/Library/Application Support/Firefox/Profiles/cd87hlez.default-1461879414587/extensions/{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi Modified: 2016-10-11 12:34:25 +0000 Name: Greasemonkey Path: /Users/BENUTZER/Library/Application Support/Firefox/Profiles/cd87hlez.default-1461879414587/extensions/{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi Modified: 2016-10-11 12:34:25 +0000 User Login Items ----------------------- User: BENUTZER Name: uHD-Agent Path: (null) Name: iTunesHelper Path: /Applications/iTunes.app/Contents/MacOS/iTunesHelper.app Name: Steam Path: (null) Name: CrossOver CD Helper Path: (null) Name: Spotify Path: (null) Name: iSkysoft Helper Compact Path: /Users/BENUTZER/Library/Application Support/Helper/iSkysoft Helper Compact.app Name: WDDriveUtilityHelper Path: /Applications/WD Drive Utilities.app/Contents/WDDriveUtilityHelper.app System startup items ----------------------- User launch agents ----------------------- /Users/BENUTZER/Library/LaunchAgents/com.adobe.AAM.Updater-1.0.plist /Users/BENUTZER/Library/LaunchAgents/com.BlueStacks.AppPlayer.Service.plist /Users/BENUTZER/Library/LaunchAgents/com.BlueStacks.AppPlayer.UninstallWatcher.plist /Users/BENUTZER/Library/LaunchAgents/com.BlueStacks.AppPlayer.Updater.plist /Users/BENUTZER/Library/LaunchAgents/com.google.keystone.agent.plist /Users/BENUTZER/Library/LaunchAgents/com.spotify.webhelper.plist System launch agents ----------------------- /Library/LaunchAgents/com.adobe.AAM.Updater-1.0.plist /Library/LaunchAgents/com.adobe.AdobeCreativeCloud.plist /Library/LaunchAgents/com.avira.antivirus.general.agent.plist /Library/LaunchAgents/com.avira.antivirus.gjallarhorn.plist /Library/LaunchAgents/com.avira.antivirus.notifications.agent.plist /Library/LaunchAgents/com.avira.antivirus.odscan.default.plist /Library/LaunchAgents/com.avira.antivirus.scheduler.agent.plist /Library/LaunchAgents/com.avira.antivirus.systray.plist /Library/LaunchAgents/com.avira.antivirus.telemetry.agent.plist /Library/LaunchAgents/com.avira.antivirus.update.default.plist /Library/LaunchAgents/com.avira.helper.avstats.plist /Library/LaunchAgents/com.oracle.java.Java-Updater.plist /Library/LaunchAgents/org.macosforge.xquartz.startx.plist System launch daemons ----------------------- /Library/LaunchDaemons/com.adobe.adobeupdatedaemon.plist /Library/LaunchDaemons/com.adobe.agsservice.plist /Library/LaunchDaemons/com.adobe.fpsaud.plist /Library/LaunchDaemons/com.avira.antivirus.dbcleaner.plist /Library/LaunchDaemons/com.avira.helper.watchdox.plist /Library/LaunchDaemons/com.BlueStacks.AppPlayer.bstservice_helper.plist /Library/LaunchDaemons/com.ea.origin.ESHelper.plist /Library/LaunchDaemons/com.malwarebytes.HelperTool.plist /Library/LaunchDaemons/com.oracle.java.Helper-Tool.plist /Library/LaunchDaemons/com.wdc.WDPrivilegedHelper.plist /Library/LaunchDaemons/org.macosforge.xquartz.privileged_startx.plist /Library/LaunchDaemons/org.wireshark.ChmodBPF.plist Kernel extensions ----------------------- /Library/Extensions/ACS6x.kext /Library/Extensions/ArcMSR.kext /Library/Extensions/ATTOCelerityFC8.kext /Library/Extensions/ATTOExpressSASHBA2.kext /Library/Extensions/ATTOExpressSASRAID2.kext /Library/Extensions/CalDigitHDProDrv.kext /Library/Extensions/FileAccessControl.kext /Library/Extensions/HighPointIOP.kext /Library/Extensions/HighPointRR.kext /Library/Extensions/PromiseSTEX.kext /Library/Extensions/SoftRAID.kext launchd.conf contents ----------------------- Hosts file ----------------------- ## # Host Database # # localhost is used to configure the loopback interface # when the system is booting. Do not change this entry. ## 127.0.0.1 localhost 255.255.255.255 broadcasthost ::1 localhost fe80::1%lo0 localhost Scan log ----------------------- 2017-02-12 23:48:52 : 2017-02-12 23:48:52 : ----- Scan Started ----- 2017-02-12 23:48:52 : Scanning with signatures version 167 (2017-2-12) 2017-02-12 23:49:31 : OSX.Genieo : /Library/LaunchAgents/com.viewmc.refactor.update.plist 2017-02-12 23:50:29 : *** Scan time: 0d 00:01:37 *** 2017-02-12 23:50:29 : ------ Scan Ended ------ 2017-02-12 23:51:39 : Removing detected threats... 2017-02-12 23:51:39 : Removing Item: /Library/LaunchAgents/com.viewmc.refactor.update.plist 2017-02-12 23:51:39 : ---- Threat Removal Complete ---- 2017-02-12 23:52:15 : ===== Attempting restart ===== Viele Grüße |
| Themen zu Trojanerbefall beim Mac? |
| anschluss, antivirus, bat, boot, card reader, code, cpu, failed, flash player, free, geblockt, gelöscht, help, links, mac, mail, not, programm, ram, recovery, sierra, software, telekom, trojaner, wireless, yahoo |
Trojanerbefall beim Mac?
Baum-Darstellung