Malware 2016
Why do I not receive 2 notice of adware/malware in the second week of March 2016?
I would like to add that "Sweeper" eliminated the threat. Great tool! But why am I getting these now? I bought my iMac 27 "in February 2016. I've been a Mac user for more than 10 years with no other case like this. That is what it is?
Tags: Mac OS & System Software
Similar Questions
-
How can I remove doc to pdf malware
How can I remove doc to pdf malware
It is a way to remove malware from your computer, but not the only way. A vast majority volunteers here recommend you use Malwarebytes to mac and have considered essential to all alternative procedures.
https://www.Malwarebytes.com/MWB-download/
further reading:
https://blog.Malwarebytes.com/cybercrime/2016/07/new-Mac-backdoor-malware-eleano r.
-
Malwarebytes anti-malware issue
I am Run El Capitan 10.11.5 on a Mac Pro5, 1...
I get this message in the anti-malware 1.2.4.584 application.
In the AppCommon app is App Tech a .exe file.
2016-06-15 11:30:15: POINT of WITHDRAWAL: Adware.Spigot
2016-06-15 11:30:15: > > point suppression file: / Users/Steve/Library/Application Support/AppCommon
2016-06-15 11:30:1
Should I let him remove?
Yes.
(142950)
-
If I am infected with malware?
Hello!
This is my first post in the forum, but I followed the discussions since I got my MacBook and the community is very useful.
I decided to create this post to ask the experts of the view.
I received a phone call from the network admin at my University saying that I (and a few other students) have been infected by trojan Zeus and he attacked the University network. I found very doubtful after doing a quick search on this Trojan horse and did not find any relationship of Zeus with OSX. Yet, it made me a bit paranoid so I keep changing my passwords and began to scan the system in order to find if there is some malware.
One thing that is important to mention at this point, I sometimes use a machine virtual Windows 7 (Parallels Desktop) which is only used to interact with the instrumentation in the laboratory of the University. The virtual machine has a WiFi connection shared from OSX and to access the files, the folders shared. The virtual machine has only Microsoft Security Essentials 'antivirus' installed. And I don't remember installing any new software on the virtual Windows machine since the start of the alleged "attacks".
So I unplugged my Mac from Internet, disabled sharing records of VM with OSX and began to analyze the Windows VM using different software and following the instructions on this website: https://malwaretips.com/blogs/zeus-trojan-virus/ , nothing has been detected.
I proceeded to analyze OSX using MalwareBytes and even installed Kaspersky Internet Security to give it a try. Done a few scans and still nothing.
I did a scan with EltreCheck and read the report. I've removed some of the plugins that I was not using more, since this installation of Mac OS x is always updated from Lion.
This is the report of EltreCheck at the moment:
EtreCheck version: 2.9.12 (265)
Report generated 2016-05-18 12:07:22
Download EtreCheck from https://etrecheck.com
Time 01:47
Performance: Excellent
Click the [Support] links to help with non-Apple products.
Click [details] for more information on this line.
Problem: Another problem
MacBook Pro (15 inch, early 2011)
[Data sheet] - [User Guide] - [warranty & Service]
MacBook Pro - model: MacBookPro8, 2
1 2 GHz Intel Core i7 CPU: 4 strands
8 GB of RAM expandable - [Instructions]
BANK 0/DIMM0
OK 4 GB DDR3 1333 MHz
BANK 1/DIMM0
OK 4 GB DDR3 1333 MHz
Bluetooth: Old - transfer/Airdrop2 not supported
Wireless: en1: 802.11 a/b/g/n
Battery: Health = Normal - Cycle count = 931
Intel HD Graphics 3000
Color LCD 1440 x 900
AMD Radeon HD 6490M - VRAM: 256 MB
OS X El Capitan 10.11.4 (15E65) - since the start time: about an hour
TOSHIBA THNSNH128GBST disk0: (128,04 GB) (Solid State - TRIM: Yes)
EFI (disk0s1) < not mounted >: 210 MB
Recovery HD (disk0s3) < not mounted > [recovery]: 650 MB
Macintosh HD (disk 1) /: 126,80 go-go (32,74 free)
Storage of carrots: disk0s2 127,18 GB Online
TOSHIBA MK5065GSXF disk2: (500,11 GB) (rotation)
EFI (disk2s1) < not mounted >: 210 MB
DATA (disk2s2) / Volumes/DATA: GB 499,76 (15,47 GB) free
Computer, Inc. Apple IR receiver.
Apple Inc. FaceTime HD camera (built-in)
Apple Inc. Apple keyboard / Trackpad
Apple Inc. BRCM2070 hub.
Apple Inc. Bluetooth USB host controller.
Apple Inc. Thunderbolt_bus.
/ etc/hosts - number: 2
Any where
/ Applications/Parallels Desktop.app
com.parallels.kext.hypervisor [no charge] (11.0.2 31348 - SDK 10.9-2015-10-21) [Support]
com.parallels.kext.NetBridge [no charge] (11.0.2 31348 - SDK 10.9-2015-10-21) [Support]
com.parallels.kext.usbconnect [no charge] (11.0.2 31348 - SDK 10.9-2015-10-21) [Support]
com.parallels.kext.vnic [no charge] (11.0.2 31348 - SDK 10.9-2015-10-21) [Support]
/ Applications/Radio Silence.app
[loading] com.radiosilenceapp.nke.filter (2.0 - SDK 10.11 - 2016-05-07) [Support]
/ Library/Extensions
[loading] com.kaspersky.kext.klif (3.4.0a25 - 2016-05-17) [Support]
[loading] com.kaspersky.nke (2.1.0 - 2016-05-17) [Support]
org.cindori.TrimEnabler [no charge] (1.0 - SDK 10.10 - 2016-05-17) [Support]
TuxeraNTFSUnmountHelper: Path: / Library/StartupItems/TuxeraNTFSUnmountHelper
Startup items are obsolete in OS X Yosemite
[loaded] 8 tasks Apple
[loading] 160 tasks Apple
[operation] 70 tasks Apple
[loaded] 45 tasks Apple
[loading] 159 tasks Apple
[operation] 85 tasks Apple
[no charge] com.adobe.AAM.Updater - 1.0.plist (2015-06-30) [Support]
[operation] com.brother.LOGINserver.plist (2015-03-12) [Support]
[loading] com.google.keystone.agent.plist (2016-03-03) [Support]
com.maintain.PurgeInactiveMemory.plist [no charge] (2014-11-15) [Support]
com.maintain.Restart.plist [no charge] (2014-11-15) [Support]
com.maintain.ShutDown.plist [no charge] (2014-11-15) [Support]
[operation] com.maintain.SystemEvents.plist (2014-11-15) [Support]
[loading] com.oracle.java.Java - Updater.plist (2014-11-06) [Support]
[loading] com.radiosilenceapp.agent.plist (2016-04-17) [Support]
[operation] com.rosettastone.rosettastonedaemon.plist (2015-06-05) [Support]
[loading] org.macosforge.xquartz.startx.plist (2015-10-16) [Support]
[failure] com.adobe.fpsaud.plist (2016-04-16) [Support]
[loading] com.google.keystone.daemon.plist (2016-03-03) [Support]
com.maintain.HideSpotlightMenuBarIcon.plist [no charge] (2014-11-15) [Support]
[loading] com.malwarebytes.MBAMHelperTool.plist (2016-01-18) [Support]
[loading] com.microsoft.autoupdate.helpertool.plist (2015-10-15) [Support]
[loading] com.microsoft.office.licensingV2.helper.plist (2015-08-15) [Support]
[loading] com.oracle.java.Helper - Tool.plist (2014-11-06) [Support]
[loading] com.radiosilenceapp.nke.plist (2016-04-17) [Support]
[loading] com.wdc.WDPrivilegedHelper.plist (2015-08-23) [Support]
[loading] org.cindori.TEAuth.plist (2015-08-11) [Support]
[loading] org.macosforge.xquartz.privileged_startx.plist (2015-10-16) [Support]
[loading] com.bittorrent.uTorrent.plist (2016-02-23) [Support]
[operation] com.spotify.webhelper.plist (2016-05-14) [Support]
Application of flow (~ / Applications/Flux.app)
Fan of Macs control application (/ Applications/Mac Fan Control.app)
gfxCardStatus Application (/ Applications/gfxCardStatus.app)
iTunesHelper Application (/ Applications/iTunes.app/Contents/MacOS/iTunesHelper.app)
Application of caffeine (/ Applications/Caffeine.app)
Plane 2 Application (/ Applications/airmail service of 2.app)
BetterTouchTool Application (/ Applications/BetterTouchTool.app)
com.batteryProject.FruitJuiceHelper [loading]
[ongoing] com.batteryProject.FruitJuiceMAS.112992
[ongoing] com.brother.utility.NETserver.99552
[ongoing] com.brother.utility.USBserver.99232
[ongoing] com.codykrieger.gfxCardStatus.98912
[ongoing] com.crystalidea.MacsFanControl.51872
[ongoing] com.etresoft.EtreCheck.147232
[ongoing] com.hegenberg.BTTRelaunch.178592
[ongoing] com.hegenberg.BetterTouchTool.153632
[ongoing] com.lightheadsw.caffeine.47072
[ongoing] com.mendeley.desktop.53472
[ongoing] com.radiosilenceapp.client.256672
[ongoing] it.Bloop.airmail2.105632
[ongoing] org.herf.Flux.85152
[loading] 412 tasks Apple
[operation] 194 tasks Apple
AdobeAAMDetect: AdobeAAMDetect 1.0.0.0 - SDK 10.6 (2015-06-30) [Support]
FlashPlayer - 10.6: 21.0.0.226 - SDK 10.6 (2016-04-30) [Support]
QuickTime Plugin: 7.7.3 (2016-04-05)
AdobePDFViewerNPAPI: 11.0.11 - SDK 10.6 (2015-06-30) [Support]
AdobePDFViewer: 11.0.11 - SDK 10.6 (2015-06-30) [Support]
Flash Player: 21.0.0.226 - SDK 10.6 (2016-04-30) obsolete! Update
Default browser: 601 - SDK 10.11 (2016-04-05)
o1dbrowserplugin: 5.41.3.0 - 10.8 SDK (2015-12-11) [Support]
googletalkbrowserplugin: 5.41.3.0 - 10.8 SDK (2015-12-11) [Support]
Silverlight: 5.1.41105.0 - SDK 10.6 (2015-12-09) [Support]
JavaAppletPlugin: Java 8 update 91 build 14 (2016-05-09) check the version of
AdBlock - BetaFish, Inc. - https://getadblock.com (2015-10-25)
Blocker JS 5 - Travis novel - http://jsblocker.toggleable.com/ (2016-04-27)
Open in Internet Explorer - Parallels - http://www.Parallels.com/fr/ (2015-10-21)
Flash Player (2016-04-16) [Support]
GIFPaperPrefs (2014-02-23) [Support]
Java (2016-05-09) [Support]
Tuxera NTFS (2015-10-26) [Support]
Skip system files: No.
Mobile backups: OFF
Automatic backup: YES
Volumes to back up:
Macintosh HD: Disc size: 126,80 GB disc used: 94,06 GB
Destinations:
TIME [Local]
Total size: 1.00 TB
Total number of backups: 8
An older backup: 29/02/16 09:00
Last backup: 30/04/16-13:06
Size of backup drive: Excellent
Backup size 1.00 TB > (disk size 126,80 GB X 3)
com.apple.WebKit.WebContent (20) 18%
3% safari
2% WindowServer
2% fontd
1% kernel_task
Top of page process of memory: ⓘ
2.78 GB com.apple.WebKit.WebContent (20)
819 MB Safari
750 MB kernel_task
180 MB mds_stores
180 MB DashboardClient (4)
75 MB of free RAM
used 7.92 GB RAM (960 MB cache)
Used Swap 0 B
18 may 2016, 10:42:09 self-test - spent
I installed as well the "firewall" Radio Silence to analyze applications and connections. After Google search on some processes, always about 'weird' jump.
I'm ready to do a clean install of Mac OS x, but since I am each week make backups Time Machine, my main worries:
-What happens if my files on my external backup drive are infected by malware, I can't get back them without "infect" once again cleaning installation of Mac OS x, right?
I would like to ask your advice about the vulnerability of my system and any suggestion on further analysis for the detection of malicious software supposed to.
Sorry for this long post,
I would really appreciate the help
You must change your settings for call control. Set it to "Anywhere" is dangerous. Go to system-> Security and privacy preferences and change it to "Mac App Store and identified developers.» Two, you have uTorrent installed - unless you are in the rare, rare, very small minority of people who use torrents for legal reasons, I think we both know that you use it for, and which may cause your system damage if you download something that is infected with malware or adware, as are most of the torrent offers. I don't see no malware/adware on your hard drive, at least through your EtreCheck report, so you should be fine.
I would also add that if you have anti-virus for your Windows partition, it is one thing, you don't need anti-virus for your Mac. Anti-virus programs cannot protect you from malware or adware, and that's what Mac users needs to worry. In addition, many AV programs negatively affects the performance of Mac because they don't play nice with them. Therefore, I would like to uninstall Kaspersky and keep the program AV that you use for your Windows installation. Windows needs an antivirus protection, OS X is not.
-
Check for the presence of malware/adware/spyware software
I'm currently looking if I have no malware/adware/spyware on my computer. I followed the steps on the other discussions as removing the. Agent.plist and other daemon.plist. Right now I don't see any symptoms (such as force redirection Web site or just completely frozen screen) but I don't know if there is nothing else left. Could someone there check it please for me? Thank you!
EtreCheck version: 2.9.11 (264)
Report generated 2016-04-25 00:02:30
Download EtreCheck from https://etrecheck.com
Length 03:13
Performance: good
Click the [Support] links to help with non-Apple products.
Click [details] for more information on this line.
Problem: No problem - just check
MacBook Pro (13-inch, mid-2012)
[Data sheet] - [User Guide] - [warranty & Service]
MacBook Pro - model: MacBookPro9, 2
1 2.5 GHz Intel Core i5 CPU: 2 strands
4 GB of RAM expandable - [Instructions]
BANK 0/DIMM0
OK 2 GB DDR3 1600 MHz
BANK 1/DIMM0
OK 2 GB DDR3 1600 MHz
Bluetooth: Good - transfer/Airdrop2 taken in charge
Wireless: en1: 802.11 a/b/g/n
Battery: Health = Normal - Cycle count = 548
Graphics Intel HD 4000
Color LCD 1280 x 800
OS X Yosemite 10.10 (A 14, 389) - since startup time: less than an hour
HTS547550A9E384 disk HARD APPLE disk0: (500,11 GB) (rotation)
EFI (disk0s1) < not mounted >: 210 MB
Recovery HD (disk0s3) < not mounted > [recovery]: 650 MB
Media (disk0s4) / Volumes/media: 160.00 go-go (152,46 free)
Macintosh HD 2 (disk0s5) / Volumes/Macintosh HD 2: 114.62 (114,40 GB free)
Macintosh HD 3 (disk0s6) / Volumes/Macintosh HD 3: 114.22 (16,80 free go-go)
Macintosh HD (disk 1) /: 109,63 go-go (34,57 free)
Storage of carrots: disk0s2 110.00 GB Online
MATSHITADVD-R UJ - 8à8 disk2: () (196.8 MB)
Apple Inc. FaceTime HD camera (built-in)
Apple Inc. BRCM20702 hub.
Apple Inc. Bluetooth USB host controller.
Computer, Inc. Apple IR receiver.
Apple Inc. Apple keyboard / Trackpad
Apple Inc. Thunderbolt_bus.
Mac App Store
/ System/Library/Extensions
com.devguru.driver.SamsungComposite [no charge] (1.4.18 - 10.6 SDK - 2016-03-22) [Support]
/System/Library/Extensions/ssuddrv.kext/contents/plugins
com.devguru.driver.SamsungACMControl [no charge] (1.4.18 - 10.6 SDK - 2014-01-27) [Support]
com.devguru.driver.SamsungACMData [no charge] (1.4.18 - 10.6 SDK - 2014-01-27) [Support]
com.devguru.driver.SamsungMTP [no charge] (1.4.18 - SDK 10.5 - 2014-01-27) [Support]
com.devguru.driver.SamsungSerial [no charge] (1.4.18 - 10.6 SDK - 2014-01-27) [Support]
[loaded] 5 tasks of Apple
[loading] 142 tasks Apple
[operation] 56 tasks Apple
[loaded] 45 tasks Apple
[loading] 137 tasks Apple
[operation] 80 tasks Apple
[loading] com.adobe.SwitchBoard.plist (2012-08-11) [Support]
[loading] com.adobe.fpsaud.plist (2016-04-05) [Support]
[loading] com.malwarebytes.MBAMHelperTool.plist (2016-04-11) [Support]
[loading] com.oracle.java.Helper - Tool.plist (2014-09-20) [Support]
com.apple.CSConfigDotMacCert [fail]-[...] @me.com - SharedServices.Agent.plist
[failure] com.facebook.videochat. [entrenched passage] .plist (2014-08-13) [Support]
[loading] com.google.keystone.agent.plist (2016-03-02) [Support]
[operation] com.spotify.webhelper.plist (2016-04-24) [Support]
iTunesHelper Application (/ Applications/iTunes.app/Contents/MacOS/iTunesHelper.app)
Agent application of file transfer Android (~/Library/Application Support/Google/Android File transfer/Android File Transfer Agent.app)
Hidden Spotify Application (/ Applications/Spotify.app)
[ongoing] com.google.Chrome.5996
[ongoing] com.Google.Android.mtpagent.98864
[ongoing] com.spotify.client.49448
[loading] 357 tasks Apple
[operation] 163 tasks Apple
FlashPlayer - 10.6: 21.0.0.213 - SDK 10.6 (2016-04-08) [Support]
QuickTime Plugin: 7.7.3 (2014-11-06)
Flash Player: 21.0.0.213 - SDK 10.6 (2016-04-08) obsolete! Update
EPPEX plugin: 4.1.0.0 (2011-07-26) [Support]
Default browser: 600 - SDK 10.10 (2014-11-06)
SharePointBrowserPlugin: 14.3.4 - SDK 10.6 (2013-05-19) [Support]
Silverlight: 5.1.30317.0 - SDK 10.6 (2014-05-20) [Support]
JavaAppletPlugin: Java 8 update 65 build 17 (2015-11-09) check the version of
Flash Player (2016-04-05) [Support]
Java (2015-11-09) [Support]
Automatic backup: YES
Volumes to back up:
Macintosh HD: Disc size: 109,63 GB disc used: 75,06 GB
Destinations:
Macintosh HD 3 [Local]
Total size: 114,22 GB
Total number of backups: 60
An older backup: 01/07/15, 16:44
Last backup: 24/04/16 18:40
Backup disk size: too small
Backup size GB 114,22 < (disc 75,06 GB X 3)
5% mdworker (9)
3% kernel_task
3% Google Chrome
2% Google Chrome Helper (6)
2% fontd
Top of page process of memory: ⓘ
766 MB Google Chrome Helper (6)
Kernel_task 447 MB
209 MB Google Chrome
Mdworker (9) 147 MB
Image 119 MB
320 MB of free RAM
3.69 used GB RAM (1.02 GB being cached)
Used Swap 0 B
24 April 2016, 23:19:51 self-test - spent
24 April 2016, 19:05:27 /Library/Logs/DiagnosticReports/storedownloadd_2016-04-24-190527_[redacted].cpu _resource.diag [details]
/System/Library/PrivateFrameworks/CommerceKit.Framework/versions/A/resources/St oredownloadd
April 23, 2016, 23:14:57 ~/Library/Logs/DiagnosticReports/VTDecoderXPCService_2016-04-23-231457_[redacte d] .crash
/System/Library/frameworks/VideoToolbox.Framework/versions/A/XPCServices/VTDeco derXPCService.xpc/Contents/MacOS/VTDecoderXPCService
If you see no evidence of malicious programs (and I see no evidence of it in the etrecheck report), you can read this post for more insight.
Viruses, Trojans, Malware - and other aspects of Internet Security
Apple - Support-Apple security updates
http://www.reedcorner.NET/MMG/
-
I read an article on malware "Ransomware", which in the past was only targeting systems based on Windows, is now targeting mac computers. Should I worry about this on my MacBook Air?
N ° Apple has already sent a fix for this. For more details, see http://techcrunch.com/2016/03/07/apple-has-shut-down-the-first-fully-functional-mac-os-x-ransomware /
-
Could someone check it out to see if any malware or a virus on my iMac
Could someone please check my results of this diagnostic Test, I did thanks
Departure time: 08:59:02 23/01/16
Review: 1295
Model identifier: iMac12, 1
The system version: OS X 10.10.5 (14F1605)
Kernel version: Darwin 14.5.0
Since the start time: 09:59
UID: 501
ATX
WDC WD5000AAKS-402AA0
Bluetooth
Apple wireless keyboard
Apple Magic Mouse
Energy (for life)
kernel_task (UID 0): 14,73
Energy (sampled)
kernel_task (UID 0): 9.96
Firewall: on
Diagnostic reports
2016-01-23 com.apple.WebKit.WebContent crash
IO errors
disk2s2: data against the wall 2
disk2s2: close: journal 0xffffff8011138c20, is not valid. abandonment of 1 pending transactions
disk2s2: close: journal 0xffffff80198a7c20, is not valid. abandonment of 1 pending transactions
disk2s2: do_jnl_io: strategy err 0 6 2 x
Volumes
disk0s2: /.
disk1s1: Volumes/Malwarebytes Anti - Malware
HID errors: 7
The core journal
17 jan 10:46:45 failed to get the hibernation image file name
17 jan 11:17:05 failed to get the hibernation image file name
Jan 17 14:06:59 * GPU Hardware VM is disabled (multispace: disabled, the page updated table with DMA: off)
Jan 17 14:20:25 failed to get the hibernation image file name
18 jan 09:07:01 * GPU Hardware VM is disabled (multispace: disabled, the page updated table with DMA: off)
18 jan 09:40:48 failed to get the hibernation image file name
19 jan 11:44:11 * GPU Hardware VM is disabled (multispace: disabled, the page updated table with DMA: off)
19 jan 11:44:20 IOHIDSystem: grab IOHIDPointing failed.
19 jan 11:44:20 IOHIDSystem: grab AppleMultitouchHIDEventDriver failed.
January 22, 21:26:44 * GPU Hardware VM is disabled (multispace: disabled, the page updated table with DMA: off)
22 January 21:26:53 IOHIDSystem: grab IOHIDPointing failed.
22 January 21:26:53 IOHIDSystem: grab AppleMultitouchHIDEventDriver failed.
22 January 22:15:59 HFS: bitmap scan error: 5 on flight = HAPPY
22 January 22:32:13 f: disk2s2: write_journal_header: error writing to the journal header!
22 January 22:32:13 f: disk2s2: close: journal 0xffffff8011138c20, is not valid. abandonment of pending transactions
22 January 22:52:06 * GPU Hardware VM is disabled (multispace: disabled, the page updated table with DMA: off)
Jan 22 23:00:59 * GPU Hardware VM is disabled (multispace: disabled, the page updated table with DMA: off)
Jan 22 23:01:07 IOHIDSystem: grab IOHIDPointing failed.
Jan 22 23:01:07 IOHIDSystem: grab AppleMultitouchHIDEventDriver failed.
Jan 22 23:01:07 IOHIDSystem: grab AppleEmbeddedKeyboard failed.
22 January 23:38:49 jnl: disk2s2: write_journal_header: error writing to the journal header!
January 22, 23:38:50 f: disk2s2: close: journal 0xffffff80198a7c20, is not valid. abandonment of pending transactions
Jan 23 02:20:47 USBF: 12047.159 IOUSBCompositeDriver(Mass_Storage):GetConfigDescriptor - GetFullConfigDescriptor (0) #2 returned NULL, try ResetDevice and then try again
Jan 23 02:23:29 msdosfs_fat_uninit_vol: error msdosfs_fat_cache_flush 6
23 jan 05:40:01 msdosfs_fat_uninit_vol: error msdosfs_fat_cache_flush 6
System log
23 jan 08:03:25 DCs: securityd_xpc_dictionary_handler Malwarebytes Ant [3522] copy_matching the operation could not be completed. (OSStatus-34018 - customer has rights - the identification of demand or Keychain-Access-groups)
23 jan 08:03:25 Malwarebytes Anti-Malware: SecOSStatusWith error: [-34018] the operation could not be completed. (OSStatus-34018 - distance error error: the operation couldn't ' Aot be completed.) (OSStatus-34018 - customer has rights - the identification of demand or Keychain-Access-groups))
23 jan 08:03:28 DCs: securityd_xpc_dictionary_handler Malwarebytes Ant [3522] copy_matching the operation could not be completed. (OSStatus-34018 - customer has rights - the identification of demand or Keychain-Access-groups)
23 jan 08:03:28 Malwarebytes Anti-Malware: SecOSStatusWith error: [-34018] the operation could not be completed. (OSStatus-34018 - distance error error: the operation couldn't ' Aot be completed.) (OSStatus-34018 - customer has rights - the identification of demand or Keychain-Access-groups))
23 jan 08:11:08 WindowServer: WSGetSurfaceInWindow: surface invalid 422992068 for window 3117
23 jan 08:23:23 com.apple.sbd: SOSCCThisDeviceIsInCircle SOSCCThisDeviceIsInCircle! 8
23 jan 08:23:23 com.apple.sbd: SOSCCThisDeviceIsInCircle SOSCCThisDeviceIsInCircle! 9
23 jan 08:31:31 WindowServer: WSGetSurfaceInWindow: surface invalid 422332953 for window 3172
23 jan 08:37:10 WindowServer: WSBindSurface: surface invalid 650415322 for window 3213
23 jan 08:38:54 WindowServer: WSBindSurface: invalid 433261076 for window 3224 the surface
23 jan 08:42:43 WindowServer: WSBindSurface: surface invalid 664301010 for window 3238
23 jan 08:43:20 WindowServer: WSBindSurface: invalid 439317136 for window 3243 the surface
23 jan 08:43:51 WindowServer: WSGetSurfaceInWindow: surface invalid 476177180 for window 3251
23 jan 08:44:24 WindowServer: WSBindSurface: surface invalid 653949393 for window 3256
23 jan 08:46:27 WindowServer: WSBindSurface: surface invalid 450908686 for window 3273
23 jan 08:46:44 WindowServer: WSBindSurface: not valid for window 3263 438396383 the surface
23 jan 08:46:46 WindowServer: WSBindSurface: surface invalid 513682908 for window 3267
23 jan 08:48:23 WindowServer: WSBindSurface: surface invalid 525505794 for window 3281
23 jan 08:48:48 TextEdit: CoreText CopyFontsForRequest received mig CPI error (FFFFFFFFFFFFFECC) font server
23 jan 08:48:48 TextEdit: CoreText CopyFontsForRequest received mig CPI error (FFFFFFFFFFFFFECC) font server
23 jan 08:49:13 WindowServer: WSBindSurface: surface 673211523 invalid for 3308 window
23 jan 08:50:13 WindowServer: WSBindSurface: surface invalid 431320336 for window 3314
23 jan 08:50:44 WindowServer: WSGetSurfaceInWindow: surface invalid 436952015 for window 3323
23 jan 08:51:33 WindowServer: WSBindSurface: surface invalid 550937998 for window 3327
23 jan 08:54:50 WindowServer: WSBindSurface: surface invalid 546418892 for window 3318
launchd Journal
18 jan 09:07:17 com.apple.xpc.launchd.user.501.100006.Aqua: didn't read path: path = Users/USER/Library/LaunchAgents/com.apple.FolderActions.folders.plist, 2 = error: no such file or directory
19 jan 11:44:21 com.apple.xpc.launchd.user.501.100005.Aqua: could not import the appellant: appellant = otherbsd.199, = com.nektony.App - cleaning-Helper, error = 119 service: Service is disabled
19 jan 11:44:21 com.apple.xpc.launchd.user.501.100005.Aqua: could not import the appellant: appellant = otherbsd.199, = com.trendmicro.ATLoginItemHelper, error = 119 service: Service is disabled
19 jan 11:44:26 com.apple.xpc.launchd.user.501.100005.Aqua: didn't read path: path = Users/USER/Library/LaunchAgents/com.apple.FolderActions.folders.plist, 2 = error: no such file or directory
19 jan 11:44:26 com.apple.xpc.launchd.user.501.100005.Aqua: didn't read path: path = Users/USER/Library/LaunchAgents/com.apple.FolderActions.folders.plist, 2 = error: no such file or directory
22 January 21:26:55 com.apple.xpc.launchd.user.501.100005.Aqua: could not import the appellant: appellant = otherbsd.199, = com.nektony.App - cleaning-Helper, error = 119 service: Service is disabled
22 January 21:26:55 com.apple.xpc.launchd.user.501.100005.Aqua: could not import the appellant: appellant = otherbsd.199, = com.trendmicro.ATLoginItemHelper, error = 119 service: Service is disabled
22 January 21:26:56 com.apple.xpc.launchd.user.501.100005.Aqua: didn't read path: path = Users/USER/Library/LaunchAgents/com.apple.FolderActions.folders.plist, 2 = error: no such file or directory
22 January 21:26:56 com.apple.xpc.launchd.user.501.100005.Aqua: didn't read path: path = Users/USER/Library/LaunchAgents/com.apple.FolderActions.folders.plist, 2 = error: no such file or directory
22 January 22:49:40 com.apple.xpc.launchd.user.501.100005.Aqua: didn't read path: path = Users/USER/Library/LaunchAgents/com.bombich.ccc-user-agent.plist, 2 = error: no such file or directory
22 January 22:52:14 com.apple.xpc.launchd.user.501.100005.Aqua: could not import the appellant: appellant = otherbsd.206, = com.nektony.App - cleaning-Helper, error = 119 service: Service is disabled
22 January 22:52:14 com.apple.xpc.launchd.user.501.100005.Aqua: could not import the appellant: appellant = otherbsd.206, = com.trendmicro.ATLoginItemHelper, error = 119 service: Service is disabled
22 January 22:52:14 com.apple.xpc.launchd.user.501.100005.Aqua: could not import the appellant: appellant = otherbsd.206, = com.bombich.cccuseragent, error = 119 service: Service is disabled
22 January 22:52:16 com.apple.xpc.launchd.user.501.100005.Aqua: didn't read path: path = Users/USER/Library/LaunchAgents/com.bombich.ccc-user-agent.plist, 2 = error: no such file or directory
22 January 22:52:39 com.apple.xpc.launchd.user.501.100005.Aqua: didn't read path: path = Users/USER/Library/LaunchAgents/com.apple.FolderActions.folders.plist, 2 = error: no such file or directory
22 January 22:52:39 com.apple.xpc.launchd.user.501.100005.Aqua: didn't read path: path = Users/USER/Library/LaunchAgents/com.apple.FolderActions.folders.plist, 2 = error: no such file or directory
Jan 22 23:01:56 com.apple.xpc.launchd.user.501.100005.Aqua: could not import the appellant: appellant = otherbsd.213, = com.nektony.App - cleaning-Helper, error = 119 service: Service is disabled
Jan 22 23:01:56 com.apple.xpc.launchd.user.501.100005.Aqua: could not import the appellant: appellant = otherbsd.213, = com.trendmicro.ATLoginItemHelper, error = 119 service: Service is disabled
Jan 22 23:01:56 com.apple.xpc.launchd.user.501.100005.Aqua: could not import the appellant: appellant = otherbsd.213, = com.bombich.cccuseragent, error = 119 service: Service is disabled
Jan 22 23:01:57 com.apple.xpc.launchd.user.501.100005.Aqua: didn't read path: path = Users/USER/Library/LaunchAgents/com.apple.FolderActions.folders.plist, 2 = error: no such file or directory
Jan 22 23:01:57 com.apple.xpc.launchd.user.501.100005.Aqua: didn't read path: path = Users/USER/Library/LaunchAgents/com.apple.FolderActions.folders.plist, 2 = error: no such file or directory
Jan 22 23:05:01 com.apple.xpc.launchd.user.501.100005.Aqua: didn't read path: path = Users/USER/Library/LaunchAgents/com.bombich.ccc-user-agent.plist, 2 = error: no such file or directory
Jan 23 00:00:08 com.apple.xpc.launchd.user.501.100005.Aqua: didn't read path: path = Users/USER/Library/LaunchAgents/com.bombich.ccc-user-agent.plist, 2 = error: no such file or directory
Jan 23 02:50:59 com.apple.xpc.launchd.user.501.100005.Aqua: didn't read path: path = Users/USER/Library/LaunchAgents/com.bombich.ccc-user-agent.plist, 2 = error: no such file or directory
23 jan 07:20:41 com.apple.xpc.launchd.user.501.100005.Aqua: didn't read path: path = Users/USER/Library/LaunchAgents/com.bombich.ccc-user-agent.plist, 2 = error: no such file or directory
The console log
Jan 17 05:04:36 DrCleaner: 17/01/2016 05:04:36:638, [ERRO], AppSandbox: bookmarkDataIsStale re-create it with the existing url object, [AppSandboxFileAccess.m (216)]
Jan 17 05:04:36 DrCleaner: 17/01/2016 05:04:36:638, [ERRO], AppSandbox: persistPermissionURL: / Users/USER with key: / Users/USER [AppSandboxFileAccess.m (167)]
Jan 17 05:04:36 DrCleaner: 17/01/2016 05:04:36:644, [ERRO], AppSandbox: create sandbox permissions failed with: / Users/USER [AppSandboxFileAccess.m (177)]
Jan 17 05:04:36 DrCleaner: 17/01/2016 05:04:36:724, [ERRO], AppSandbox: something went wrong! NSCocoaErrorDomain / 256, localizedDescription: cannot open the file 'melissahollis'., localized FailureReason: (null), [AppSandboxFileAccess.m (179)]
Jan 17 05:04:36 DrCleaner: 17/01/2016 05:04:36:724, [ERRO], AppSandbox: bookmarkDataIsStale re-create it with the existing url object failed, [AppSandboxFileAccess.m (226)]
Jan 17 05:04:45 DrCleaner: 17/01/2016 05:04:45:616, [ERRO], AppSandbox: persistPermissionURL: / Users/USER with key: / Users/USER [AppSandboxFileAccess.m (167)]
17 jan 06:03:19 DrCleaner: poentialFreeMemoryPercentage 06:03:19:699, [WARN], 17/01/2016: 6.454182% is less than the requirement, no need to clean up memory
Load system services
com Apple.watchdogd
com.Bombich.ccchelper
com.malwarebytes.MBAMHelperTool
System services disabled
com Apple.crsud
Connection disabled services
com.trendmicro.ATLoginItemHelper
com.Bombich.cccuseragent
Services for users with disabilities
com.trendmicro.ATLoginItemHelper
com.Bombich.cccuseragent
iCloud errors
cloudd 35
Photos 12
5 viewfinder
Spot 3
Bird 2
Continuity errors
sharingd 1
Small files: 40
Lockfiles: 1
Data packets
/ Users/USER/Library/Application Support/com.bombich.ccc
Content of /Library/LaunchDaemons/com.bombich.ccchelper.plist
-mod date: 22 January 23:08:17 2016
-checksum: 710721696
http://www.Apple.com/DTDs/PropertyList-1.0.DTD">
KeepAlive SuccessfulExit Label com.Bombich.ccchelper MachServices com.Bombich.ccchelper Program /Library/PrivilegedHelperTools/com.Bombich.ccchelper ProgramArguments /Library/PrivilegedHelperTools/com.Bombich.ccchelper RunAtLoad .. .and 1 more line (s)
Content of /Library/LaunchDaemons/com.malwarebytes.MBAMHelperTool.plist
-mod date: 23 Jan 08:03:24 2016
-checksum: 2299099766
http://www.Apple.com/DTDs/PropertyList-1.0.DTD">
Label com.malwarebytes.MBAMHelperTool MachServices com.malwarebytes.MBAMHelperTool Program / Library/PrivilegedHelperTools/com. Malwarebytes.MBAMHelperTool ProgramArguments / Library/PrivilegedHelperTools/com. Malwarebytes.MBAMHelperTool Content of /System/Library/LaunchAgents/com.apple.SafariPlugInUpdateNotifier.plist
-mod date: 21 18:57:59 Dec 2015
-checksum: 941105980
http://www.Apple.com/DTDs/PropertyList-1.0.DTD">
EnablePressuredExit Label com.apple.SafariPlugInUpdateNotifier Program / usr/libexec/SafariPlugInUpdateNotifier LaunchEvents com Apple.FSEvents.Matching UserFlashPlugInModified Path ~/Library/Internet plug-Ins/Flash Player.plugin SystemFlashPlugInModified Path / / Library/Internet Plug-Ins/Flash Player.plugin .. .and 3 more lines
Contents of Library/LaunchAgents/com.apple.AddressBook.ScheduledSync.PHXCardDAVSource.UUID. plist
-mod date: 18 Oct 09:15:12 2015
-checksum: 640249392
http://www.Apple.com/DTDs/PropertyList-1.0.DTD">
Label com.apple.AddressBook.ScheduledSync.PHXCardDAVSource.UUID ProgramArguments / System/Library/Frameworks/addressbook. Framework/Resources/AddressBookS ourceSyncScheduleHelper -scheduleSync UUID StartInterval 120000 Applications
/ Applications/disc Inspector.app
-com.nektony.diskinspectors
Library paths
/usr/local/clamXav/lib/libclamav.6.dylib
/usr/local/clamXav/lib/libclamunrar.6.dylib
Facilities
Disk Doctor: 11/09/2015 08:26
OsTrack: 11/09/2015 08:23
Download buddy: 11/09/2015 08:21
SupremePlayer Lite: 11/09/2015 03:34
ClamXav Scanning Engine v0.98.7 update 06:23 / 10/2015 14:31
Time elapsed (s): 243
Only the author of this diagnostic test will have an idea what it is say you.
You have apparently already run MalwareBytes Anti-Malware for Mac, so we can expect probably any form of Adware.
That being said, rather than assuming that you have been infected by software malicious than Adware (which is extremely rare nowadays), why don't you start by simply describing what problems observe you. This way you will get much more help much more quickly than that. Never send a diagnosis until someone asks. It's just how this forum works optimally.
-
Windows Update, 21/07/2016 three locked folders appear on drive F
Windows Update, 21/07/2016 three locked folders appear on drive F
F:\c4637ae48d990a8f1d73cf05c6\install.exe
F:\c0988da21823ecc4a6\MPSigStub.exe
F:\c18bdd9b860f816bc9c1What is going on?
Using Win 7 Pro
Microsoft Security essentials that I use as a Virus Protection
more premium malwarebytes
all 3 files inside are 2012
No info really.
one is accessible admin
two others have unknown owner having to change ownership
no previous versions in the properties
Is this an update to win 10 being installed on
Win 7 creating problems?
Cararta
Hello
According to the description of the problem, there are three files locked on the F drive which you could not access. According to you, this happen after installing the update published on July 21, 2016. Normally, this issue is not caused by a Windows Update, however, if in your case, it happens to please provide us with the number of the update so that we can find the root cause.
For more information on the update published in July, you can see the article mentioned below.
There might be a chance of virus corruption, then, I suggest you run a full scan using the Microsoft Safety Scanner (MSS) to ensure that the computer is virus-free.
The Microsoft Safety Scanner free is a downloadable security tool that allows analysis at the application and helps remove viruses, spyware and other malicious software. It works with your current antivirus software.
http://www.Microsoft.com/security/scanner/en-us/default.aspx
Note: The Microsoft Safety Scanner ends 10 days after being downloaded. To restart a scan with the latest definitions of anti-malware, download and run the Microsoft Safety Scanner again.
Note: The data files that are infected must be cleaned only by removing the file completely, which means that there is a risk of data loss.
Hope that the information provided is useful. Let us know if you have any concerns related to Windows. We will be more than happy to help you.
Kind regards
-
Windows Update, error: 0 x 80070005(2016-04-16-T-01_47_35P)
Original title: 0 x 80070005(2016-04-16-T-01_47_35P)
Windows 7 Ultimate
Need help with Windows Update, error: 0 x 80070005(2016-04-16-T-01_47_35P)
I have 6 notebooks for maintain...
Try to post in the forums of Pro-specifique to the IT instead-online https://social.technet.microsoft.com/Forums/windows/en-US/home?category=w7itpro
Or you can get sponsored by Microsoft (but not necessarily free) support through the Office of response-online http://answerdesk.microsoftstore.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Tip: You can see the effects of multiple ongoing malware infections!
- Error 0 x 80070005 in Windows Update when you try to install updates
https://support.Microsoft.com/en-us/KB/968003
- Error 0 x 80070005 in Windows Update when you try to install updates
-
I uninstalled "Acrobat Reader DC = malware". Reputation of Adobe CRISIS
I just uninstalled Adobe Acrobat Reader DC on suspicion he was causing a problem of operating system on my PC, that Adobe Reader DC behaved like malware.
If I have correctly identified the question I came here to ask for because if I, the reputation of Adobe is subject to take a dip of a small crisis, but this is just warning so that Adobe can fix things and save his reputation until it was too late.
I am running Microsoft Windows 8.1 on a HP desktop PC.
When I uninstall Acrobat Reader DC I think installation date was January 14, 2016 - a few days before.
The symptoms were that start menu text style "Home icon" was not popping up as it should. This meant that I couldn't access the functions via the start menu or even shut down my PC as usual.
I could still access the start menu of Pseudo - touch button and through that I was able to access the PC - update and recovery settings and I was seriously considering a "refresh your PC without access to your files" involving removing dozens of applications and a lot of work to make my PC works again, but it would have been a panic measure then I studied deeper.
I found a suspect through the Task Manager. Via the menu 'Details', I found that a file with the name of 'RdrCEF.exe' used about 8% of the time processor and had monopolized an extraordinary amount of memory. I note the figure, but it may have been something like 2 GB, certainly much more data than any other process listed in the Task Manager.
I used the "Search online" feature to discover this "RdrCEF.exe" has something to do with Acrobat Reader DC and search results of online discussions said that claims he had problems with malware, something to do with sending data to Amazon or something.
Online research identified the location of the "RdrCEF.exe" and I was able to track down to this folder -
C:\Program Files (x 86) \Adobe\Acrobat Reader DC\Reader\AcroCEF
At this point, I started to get a bad feeling Acrobat Reader DC and decided to uninstall.
I can still read my PDF files on my PC after you have uninstalled because Windows 8.1 has a simple PDF reader, it offers up to.
Internet Explorer and Chrome are able to read PDF files on the internet also.
My PC now seems back to normal, but it's still the early days.
It seems to me that a cloud of suspicion has descended on Adobe because of what is happening with Acrobat Reader DC, my operating system crash and I guess I'm not the only one who came.
So this looks to me to a crisis for Adobe, either on it or imminent and I trust we PDF file readers can expect an emergency response?
Thanks for your response, Claudio but looks like I was mistaken on my suspicions about Acrobat Reader DC causing a problem with my Windows Start menu 8.1, what problem is back today, long after that I uninstalled Acrobat Reader DC.
Sorry Adobe if I made a false alarm.
I'm going on the occasion of this question 'answered' and go back to trying to diagnose what's wrong with my operating system.
-
After Malware that my login is disabled cannot start in safe mode
Hi if anyone can help.
A friend tried to watch movies online, I'm not sure of the site they visited, but were asked to install MacKeeper and I believe that they did, as I noticed it was to download and installed the following day and I asked them why they did this and they said it was the only way to watch movies!
Anyway to cut a long story short my friend then called me to say they received a "pop" window to say that my computer has a virus and call a number of 1800... I told them to do nothing certainly not call the number and I would like to sort.
So basically since then that then I can not connect to my main account at the start, the section where you type your password won't let me type into it and there is a symbol of the brand of 'question' next to it. If I hold my mouse over the question mark I get a dialog box stating "Please enter your password to iCloud as... as well as the date. I can only login as a guest and I cannot connect in 'safe' mode by holding down the SHIFT key.
I deleted the MacKeeper Application (and also another OS player application that is newly installed the same day!) and empty the memory cache of my browsers and also now upgraded to 10.11.6
I also run disk utilities, but still I'm getting this problem trying to connect to my main user account!
I think that it is some kind of malware, does anyone have ideas how to solve at least the connection problem?
If I could stamp out to see if there is any malware stuff going on behind the scenes it would be too great!
All suggestions welcome.
Thanks, Ciaran
How did you uninstall the MacKeeper application? Please be as specific as possible, unless you have followed the steps, I suspect that your system has installed to uninstall. If this is the case then you will need to re-install and uninstall immediately by following the instructions of developers. Otherwise, the best thing to do is to do a wipe and installing OS X and then manually install your applications and restore your data from your Time Machine backup.
I'm sure you probably learned to not let this 'friend' enter the 100' of your computer.
-
Contacts on my iPhone 6 will not sync with Outlook 2016
I changed my computer and my Contacts Outlook 2016 will not be synchronized. My calendar and notes synchronization through iClloud and they are OK.
I ticked the box "Remove Contacts using what is on my computer" 3 times and I'm showing still some contacts on my iPhone 6.
How to get contacts on my iPhone? I don't want to use iCloud for contacts. He keeps double and triple contacts. want to manually sync Contacts via iTunes.
Thank you
Hi ACEs of the crime pool.
I see that you are having problems of synchronization of your contacts from your computer with Outlook 2016 to your iPhone. I want to provide a resource that should help you.
Take a look at the site of the direction to take to this issue:
See you soon!
-
I have Office 2016 on my computers that installed Office 365. And so I have my calendars and contacts on Outlook configured to synchronize with I Cloud. I know that many people have the same problem I have in what FEI an Office Update installed in August of this year, Outlook no longer works with I Cloud. I've had several conversations and phone conversations with Microsoft technicians, but as of the now, they tell me there is no solution for the problem.
I live a few months the problem and will continue to do so, but it seems certain that between Microsoft and Apple this problem should be fixed well before now.
Does anyone have any suggestions they can give me on how to fix?
Thank you
See if this helps - iCloud and sync Outlook problems and solutions
-
After the September 2016 ioS update my iphone or my ipad are more recognized on my laptop
After the September 2016 ioS update my iphone or my ipad are more recognized on my laptop
What do you mean on your laptop more? Please provide details.
Best,
GDG
-
How can I remove all but 2015 to 2016 photos from my iPhone (ios10.0.2) for free space, after synchronizing all the photos on my mac (Yosemite 10.10.5) computer?
The fastest way I can think of would be to go to the Albums, go to all the Photos tab, highlight the photo you want to delete and press 'Select' in the upper right corner. Place your finger on the first complete line, you want to remove (if you have pictures that do not have a complete row that you want to remove these institutions, select them individually first), slide your finger on the line so that they are all selected, and then slide up so that it starts automatically at your old photos of scrolling. Once the photos you want to delete are selected, press the trash in the lower right. This will move them to your album "Recently deleted", then they will be always on your phone for 30 days, unless you remove them. If you are sure that you have already backed up these photos and does not accidentally still photos you want, feel free to remove them.
Maybe you are looking for
-
my nano shuffle will not pass the test of synchronization, but diagnosis detects the ipod
-
App Store apps in the right folder installation
Hi all It seems that my external hard drive is completely confused the App Store. I have a backup on this external hard drive, which also contains a folder "Applications". I disassembled the drive, but it does not help: whenever I have install some a
-
M4C63UA HP #ABA stream: a pilot missing and 2 devices work does not correctly
So, I recently switched to Windows (32 bit) 10... My netbook has only 32GBs so I thought that I get more space by using 32-bit and I have a lot more now.But minor issues however, I can't seem to get the touch screen to work or find the drivers for it
-
Inicio lento FOXPRO aplicativo muito no com windows 7 th Servidor windows Server2008 R2 client
Initialize um aplicativo AO na Estação trabalho em rede local (Intranet) com SO that Windows 7, demora uma vida. Quem Poder me dar uma ajuda, desde ja agradeço.
-
How and where can I make suggestions for the improvement of the Microsoft Apps?
For a simple example, soft finance watch updates inventory up-to-date Live Tile below updates of time. It's very confusing on a quick glance. It could be easily modified so that the update of market is the first and largest and the timestamp is sma