Windows Virus auf Macbook?
 

Hallo liebe Trojaner-Gemeinde,

habe mich gerade erst angemeldet und schon eine Frage

Avast meldet auf meinem Macbook einen Win32:PUP-GEN im temporären Speicher der Dropbox. Auslösende Datei soll Applications/Dropbox.App/Contents/MacOS/DropboxOriginal sein. Ich habe die Anwendung schon komplett entfernt und neu installiert, was aber nichts brachte.

Vielleicht kann ja jemand helfen

Achja: MacOS 10.7.5

Problem description:
Win32:Pup_gen auf Macbook (OSX 10.7.5)

EtreCheck version: 2.1.8 (121)
Report generated 21. Februar 2015 10:50:19 MEZ
Download EtreCheck from hxxp://etresoft.com/etrecheck

Click the [Click for support] links for help with non-Apple products.
Click the [Click for details] links for more information about that line.

Hardware Information: ℹ️
MacBook (13-inch, Late 2008) (Verified)
MacBook - model: MacBook4,1
1 2.1 GHz Intel Core 2 Duo CPU: 2-core
4 GB RAM
BANK 0/DIMM0
2 GB DDR2 SDRAM 667 MHz ok
BANK 1/DIMM1
2 GB DDR2 SDRAM 667 MHz ok
Bluetooth: Old - Handoff/Airdrop2 not supported
Wireless: en1: 802.11 a/b/g/n
Battery Health: Normal - Cycle count 50

Video Information: ℹ️
GMA X3100 - VRAM: 144 MB
Color LCD 1280 x 800

System Software: ℹ️
Mac OS X 10.7.5 (11G63) - Time since boot: 1:1:44

Disk Information: ℹ️
SanDisk SDSSDHP128G disk0 : (128,04 GB)
disk0s1 (disk0s1) <not mounted> : 210 MB
MAC (disk0s2) / : 63.00 GB (26.99 GB free)
Recovery HD (disk0s3) <not mounted> [Recovery]: 650 MB
BOOTCAMP (disk0s4) /Volumes/BOOTCAMP : 64.17 GB (40.57 GB free)

USB Information: ℹ️
Micron Built-in iSight
Apple Inc. Bluetooth USB Host Controller
Apple Computer Apple Internal Keyboard / Trackpad
Apple Computer, Inc. IR Receiver

Kernel Extensions: ℹ️
/Applications/Boxcryptor.app
[not loaded] com.boxcryptor.BCFS.filesystems.bcfs (2.9.10 - SDK 10.9) [Click for support]

/Applications/TemperatureMonitor.app
[loaded] com.bresink.driver.BRESINKx86Monitoring (9.0) [Click for support]

/Library/Application Support/Avast/components/fileshield/unsigned
[loaded] com.avast.AvastFileShield (2.1.0 - SDK 10.9) [Click for support]

/Library/Application Support/Avast/components/proxy/unsigned
[loaded] com.avast.PacketForwarder (2.0 - SDK 10.9) [Click for support]

/Library/Application Support/VirtualBox
[loaded] org.virtualbox.kext.VBoxDrv (4.3.14) [Click for support]
[loaded] org.virtualbox.kext.VBoxNetAdp (4.3.14) [Click for support]
[loaded] org.virtualbox.kext.VBoxNetFlt (4.3.14) [Click for support]
[loaded] org.virtualbox.kext.VBoxUSB (4.3.14) [Click for support]

Launch Agents: ℹ️
[running] com.avast.update-agent.plist [Click for support]
[loaded] com.avast.userinit.plist [Click for support]
[loaded] com.oracle.java.Java-Updater.plist [Click for support]
[running] com.teamviewer.teamviewer.plist [Click for support]
[running] com.teamviewer.teamviewer_desktop.plist [Click for support]

Launch Daemons: ℹ️
[loaded] com.adobe.fpsaud.plist [Click for support]
[loaded] com.avast.init.plist [Click for support]
[loaded] com.avast.uninstall.plist [Click for support]
[loaded] com.avast.update.plist [Click for support]
[loaded] com.boxcryptor.BCFS.KextLoaderHelper.plist [Click for support]
[loaded] com.oracle.java.Helper-Tool.plist [Click for support]
[loaded] com.oracle.java.JavaUpdateHelper.plist [Click for support]
[loaded] com.teamviewer.Helper.plist [Click for support]
[running] com.teamviewer.teamviewer_service.plist [Click for support]
[not loaded] org.virtualbox.startup.plist [Click for support]

User Launch Agents: ℹ️
[not loaded] com.avast.home.userinit.plist [Click for support]
[loaded] com.google.keystone.agent.plist [Click for support]
[not loaded] org.virtualbox.vboxwebsrv.plist [Click for support]

User Login Items: ℹ️
Temperaturmonitor Programm (/Applications/TemperatureMonitor.app)
Dropbox Programm (/Applications/Dropbox.app)

Internet Plug-ins: ℹ️
Silverlight: Version: 5.1.30514.0 - SDK 10.6 [Click for support]
FlashPlayer-10.6: Version: 14.0.0.145 - SDK 10.6 [Click for support]
Flash Player: Version: 14.0.0.145 - SDK 10.6 Outdated! Update
QuickTime Plugin: Version: 7.7.1
JavaAppletPlugin: Version: Java 7 Update 71 Check version

Safari Extensions: ℹ️
Avast Online Security

3rd Party Preference Panes: ℹ️
Flash Player [Click for support]
Java [Click for support]

Time Machine: ℹ️
Time Machine not configured!

Top Processes by CPU: ℹ️
6% WindowServer
1% TemperatureMonitor
1% fontd
0% com.avast.daemon
0% thunderbird

Top Processes by Memory: ℹ️
485 MB firefox
210 MB thunderbird
150 MB com.avast.daemon
129 MB mds
115 MB Dropbox

Virtual Memory Information: ℹ️
799 MB Free RAM
1.51 GB Active RAM
1.50 GB Inactive RAM
481 MB Wired RAM
1.35 GB Page-ins
0 B Page-outs

Diagnostics Information: ℹ️
Feb 21, 2015, 09:48:31 AM Self test - passed

Da ist nichts, ist ein Fehlalarm von Avast. Du solltest Dropbox zu deinen Ausnahmen von Avast hinzufügen. Das sind temp-Dateien die von Boxcryptor für Droptbox erzeugt werden.

Du kannst die Dateien wenn du darauf Zugriff hast auf Virustotal hochladen und den Link zu Virustotal hier Posten.

Eventuell auch den Fehlalarm bei Avast melden.

P.S.
Denke daran regelmäßig backups zu machen.

Gruß,
-dante

Hallo dante,

danke für die Antwort. Ich ahnte schon so etwas:
Nach der Deinstallation von Avast und der Installation von Kaspersky wurde der Fehler nicht mehr gefunden.

Gruß - Werner -

Gern geschehen :)

ich empfehle Dir dringend Java und (vor allem) Flash zu updaten!