Safari & Adobe

Question

Level 1

4 points

Safari & Adobe

When trying to play games using safari on Facebook and using the Weight Watchers website, I get a message saying 'Get Adobe flash player'.

I have downloaded this so many times and still getting same message. This is on my iMac (21.5-inch, Late 2013) running OS X 10.10.4, yet when I play same on my MacBook Air (11 inch, Early 2014) also running OS X 10.10.4 they work and I do not get the message about Adobe.

Can anyone explain this please and maybe point me in the right direction as to what I need to do?

iMac (21.5-inch, Late 2013), OS X Yosemite (10.10.4)

Posted on Jul 8, 2015 2:05 PM

Reply

Answer 1

Linc Davis

Level 10

209,649 points

Jul 8, 2015 8:18 PM in response to Heather56b

You may have installed one or more of the common types of ad-injection malware. Follow the instructions on this Apple Support page to remove it. It's been reported that some variants of the "VSearch" malware block access to the page. If that happens, start in safe mode by holding down the shift key at the startup chime, then try again.

Back up all data before making any changes.

One of the steps in the article is to remove malicious Safari extensions. Do the equivalent in the Chrome and Firefox browsers, if you use either of those. If Safari crashes on launch, skip that step and come back to it after you've done everything else.

If you don't find any of the files or extensions listed, or if removing them doesn't stop the ad injection, ask for further instructions.

Make sure you don't repeat the mistake that led you to install the malware. Chances are you got it from an Internet cesspit such as "Softonic," "CNET Download," or "SourceForge." Never visit any of those sites again. You might also have downloaded it from an ad in a page on some other site. The ad would probably have included a large green button labeled "Download" or "Download Now" in white letters. The button is designed to confuse people who intend to download something else on the same page. If you ever download a file that isn't obviously what you expected, delete it immediately.

Malware is also found on websites that traffic in pirated content such as video. If you, or anyone else who uses the computer, visit such sites and follow prompts to install software, you can expect more of the same, and worse, to follow. Never install any software that you downloaded from a bittorrent, or that was downloaded by someone else from an unknown source.

In the Security & Privacy pane of System Preferences, select the General tab. The radio button marked Anywhere should not be selected. If it is, click the lock icon to unlock the settings, then select one of the other buttons. After that, don't ignore a warning that you are about to run or install an application from an unknown developer.

Still in System Preferences, open the App Store or Software Update pane and check the box marked

Install system data files and security updates (OS X 10.10 or later)

or

Download updates automatically (OS X 10.9 or earlier)

if it's not already checked.

Reply

Answer 2

Heather56b Author

Level 1

4 points

Jul 9, 2015 2:44 PM in response to Linc Davis

Hi

thanks for the reply, I have tried this and didn't find any of the files or extensions, so am asking for further instructions please?

Reply

Answer 3

Linc Davis

Level 10

209,649 points

Jul 9, 2015 3:33 PM in response to Heather56b

From the menu bar, select

 ▹ System Preferences... ▹ Network ▹ Advanced... ▹ DNS

Under DNS Servers you should have one or more numerical addresses, such as “192.168.1.1” or “10.0.0.1”. What are those addresses?

Reply

Answer 4

Heather56b Author

Level 1

4 points

Jul 9, 2015 11:50 PM in response to Linc Davis

192.168.0.1 is all there is

Reply

Answer 5

Linc Davis

Level 10

209,649 points

Jul 10, 2015 5:17 AM in response to Heather56b

1. This procedure is a diagnostic test. It changes nothing, for better or worse, and therefore will not, in itself, solve the problem. But with the aid of the test results, the solution may take a few minutes, instead of hours or days.

The test works on OS X 10.7 ("Lion") and later. I don't recommend running it on older versions of OS X. It will do no harm, but it won't do much good either.

Don't be put off by the complexity of these instructions. The process is much less complicated than the description. You do harder tasks with the computer all the time.

2. If you don't already have a current backup, back up all data before doing anything else. The backup is necessary on general principle, not because of anything in the test procedure. Backup is always a must, and when you're having any kind of trouble with the computer, you may be at higher than usual risk of losing data, whether you follow these instructions or not.

There are ways to back up a computer that isn't fully functional. Ask if you need guidance.

3. Below are instructions to run a UNIX shell script, a type of program. As I wrote above, it changes nothing. It doesn't send or receive any data on the network. All it does is to generate a human-readable report on the state of the computer. That report goes nowhere unless you choose to share it. If you prefer, you can act on it yourself without disclosing the contents to me or anyone else.

You should be wondering whether you can believe me, and whether it's safe to run a program at the behest of a stranger. In general, no, it's not safe and I don't encourage it.

In this case, however, there are a couple of ways for you to decide whether the program is safe without having to trust me. First, you can read it. Unlike an application that you download and click to run, it's transparent, so anyone with the necessary skill can verify what it does.

You may not be able to understand the script yourself. But variations of it have been posted on this website thousands of times over a period of years. The site is hosted by Apple, which does not allow it to be used to distribute harmful software. Any one of the millions of registered users could have read the script and raised the alarm if it was harmful. Then I would not be here now and you would not be reading this message. See, for example, this discussion.

Another indication that the test is safe can be found in this thread, and this one, for example, where the comment in which I suggested it was recommended by one of the Apple Community Specialists, as explained here.

Nevertheless, if you can't satisfy yourself that these instructions are safe, don't follow them. Ask for other options.

4. Here's a general summary of what you need to do, if you choose to proceed:

☞ Copy a particular line of text to the Clipboard.

☞ Paste into the window of another application.

☞ Wait for the test to run. It usually takes a few minutes.

☞ Paste the results, which will have been copied automatically, back into a reply on this page.

These are not specific instructions; just an overview. The details are in parts 7 and 8 of this comment. The sequence is: copy, paste, wait, paste again. You don't need to copy a second time.

5. Try to test under conditions that reproduce the problem, as far as possible. For example, if the computer is sometimes, but not always, slow, run the test during a slowdown.

You may have started up in safe mode. If the system is now in safe mode and works well enough in normal mode to run the test, restart as usual. If you can only test in safe mode, do that.

6. If you have more than one user, and the one affected by the problem is not an administrator, then please run the test twice: once while logged in as the affected user, and once as an administrator. The results may be different. The user that is created automatically on a new computer when you start it for the first time is an administrator. If you can't log in as an administrator, test as the affected user. Most personal Macs have only one user, and in that case this section doesn’t apply. Don't log in as root.

7. Load this linked web page (on the website "Pastebin.") The title of the page is "Diagnostic Test." Below the title is a text box headed by three small icons. The one on the right represents a clipboard. Click that icon to select the text, then copy it to the Clipboard on your computer by pressing the key combination command-C.

If the text doesn't highlight when you click the icon, select it by triple-clicking anywhere inside the box. Don't select the whole page, just the text in the box.

8. Launch the built-in Terminal application in any of the following ways:

☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.)

☞ In the Finder, select Go ▹ Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens.

☞ Open LaunchPad and start typing the name.

Click anywhere in the Terminal window to activate it. Paste from the Clipboard into the window by pressing command-V, then press return. The text you pasted should vanish immediately.

9. If you see an error message in the Terminal window such as "Syntax error" or "Event not found," enter

exec bash

and press return. Then paste the script again.

10. If you're logged in as an administrator, you'll be prompted for your login password. Nothing will be displayed when you type it. You will not see the usual dots in place of typed characters. Make sure caps lock is off. Type carefully and then press return. You may get a one-time warning to be careful. If you make three failed attempts to enter the password, the test will run anyway, but it will produce less information. If you don't know the password, or if you prefer not to enter it, just press return three times at the password prompt. Again, the script will still run.

If you're not logged in as an administrator, you won't be prompted for a password. The test will still run. It just won't do anything that requires administrator privileges.

11. The test may take a few minutes to run, depending on how many files you have and the speed of the computer. A computer that's abnormally slow may take longer to run the test. While it's running, a series of lines will appear in the Terminal window like this:

[Process started]

Part 1 of 8 done at … sec
…
Part 8 of 8 done at … sec

The test results are on the Clipboard.

Please close this window.

[Process completed]

The intervals between parts won't be exactly equal, but they give a rough indication of progress. The total number of parts may be different from what's shown here.

Wait for the final message "Process completed" to appear. If you don't see it within about ten minutes, the test probably won't complete in a reasonable time. In that case, press the key combination control-C or command-period to stop it and go to the next step. You'll have incomplete results, but still something.

12. When the test is complete, or if you stopped it because it was taking too long, quit Terminal. The results will have been copied to the Clipboard automatically. They are not shown in the Terminal window. Please don't copy anything from there. All you have to do is start a reply to this comment and then paste by pressing command-V again.

At the top of the results, there will be a line that begins with the words "Start time." If you don't see that, but instead see a mass of gibberish, you didn't wait for the "Process completed" message to appear in the Terminal window. Please wait for it and try again.

If any private information, such as your name or email address, appears in the results, anonymize it before posting. Usually that won't be necessary.

13. When you post the results, you might see an error message on the web page: "You have included content in your post that is not permitted," or "The message contains invalid characters." That's a bug in the forum software. Please post the test results on Pastebin, then post a link here to the page you created.

14. This is a public forum, and others may give you advice based on the results of the test. They speak for themselves, not for me. The test itself is harmless, but whatever else you're told to do may not be. For others who choose to run it, I don't recommend that you post the test results on this website unless I asked you to.

______________________________________________________________

Copyright © 2014, 2015 by Linc Davis. As the sole author of this work (including the referenced "Diagnostic Test"), I reserve all rights to it except as provided in the Use Agreement for the Apple Support Communities website ("ASC"). Readers of ASC may copy it for their own personal use. Neither the whole nor any part may be redistributed.

Reply

Answer 6

Heather56b Author

Level 1

4 points

Jul 13, 2015 11:17 AM in response to Heather56b

Hi

I'm really sorry to say I have tried and tried to follow these instructions but to no avail, I am being really stupid and just don't understand it from point no: 4, is there an idiots version please?

Reply

Answer 7

Linc Davis

Level 10

209,649 points

Jul 13, 2015 12:08 PM in response to Heather56b

You'd have to be more specific about what you don't understand. There's nothing more to it than copying and pasting text. That's a task you do all the time.

Reply

Answer 8

Heather56b Author

Level 1

4 points

Jul 13, 2015 12:27 PM in response to Heather56b

When you say copy a line of this text and paste into another application, what do you mean by another application?

Reply

Answer 9

Linc Davis

Level 10

209,649 points

Jul 13, 2015 1:04 PM in response to Heather56b

I mean the Terminal application. That paragraph is just a summary of what follows. It's not a set of instructions.

Reply

Answer 10

Heather56b Author

Level 1

4 points

Jul 13, 2015 1:52 PM in response to Linc Davis

Sorry read it wrong, told you I needed idiots version, have done it now

1 Start time: 21:35:02 07/13/15

2

3 Revision: 1327

4

5 Model Identifier: iMac14,1

6 System Version: OS X 10.10.4 (14E46)

7 Kernel Version: Darwin 14.4.0

8 Time since boot: 3 days 22:57

9

10 UID: 502

11

12 Bluetooth

13

14 Apple Magic Mouse

15 Apple Wireless Keyboard

16

17 System errors (per sec)

18

19 Safari (UID 502, error 60): 158

20

21 Energy (lifetime)

22

23 WindowServer (UID 88): 13.33

24

25 Firewall: On

26

27 Listeners

28

29 cupsd: ipp

30 kdc: kerberos

31 launchd: afpovertcp

32 launchd: microsoft-ds

33

34 System caches/logs

35

36 3.4 GiB: /System/Library/Caches/com.apple.coresymbolicationd/data

37

38 Diagnostic reports

39

40 2015-06-14 AppAS crash

41 2015-06-15 AppAS crash

42 2015-06-16 AppAS crash

43 2015-06-20 AppAS crash x4

44 2015-06-21 AppAS crash x2

45 2015-06-22 Safari hang

46 2015-06-25 AppAS crash

47 2015-06-30 Safari hang

48 2015-06-30 com.apple.WebKit.WebContent hang

49 2015-07-03 com.apple.WebKit.WebContent crash*

50 2015-07-07 AppAS crash

51 2015-07-09 Loader crash

52 2015-07-12 AppAS crash x20

53 2015-07-12 Installer hang x3

54 * Code injection

55

56 HID errors: 3

57

58 Kernel log

59

60 Jul 12 18:25:51 com.apple.WebKit (map: 0xffffff8026f18a50) triggered DYLD shared region unnest for map: 0xffffff8026f18a50, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

61 Jul 12 18:26:07 com.apple.WebKit (map: 0xffffff8026e37780) triggered DYLD shared region unnest for map: 0xffffff8026e37780, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

62 Jul 12 18:26:08 com.apple.WebKit (map: 0xffffff8037dbd3c0) triggered DYLD shared region unnest for map: 0xffffff8037dbd3c0, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

63 Jul 12 22:49:21 com.apple.WebKit (map: 0xffffff8024ba3e10) triggered DYLD shared region unnest for map: 0xffffff8024ba3e10, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

64 Jul 12 22:52:34 com.apple.WebKit (map: 0xffffff8026e37690) triggered DYLD shared region unnest for map: 0xffffff8026e37690, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

65 Jul 12 23:04:39 com.apple.WebKit (map: 0xffffff80394104b0) triggered DYLD shared region unnest for map: 0xffffff80394104b0, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

66 Jul 12 23:05:02 com.apple.WebKit (map: 0xffffff8024ba3e10) triggered DYLD shared region unnest for map: 0xffffff8024ba3e10, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

67 Jul 13 07:41:09 com.apple.WebKit (map: 0xffffff8037dbd1e0) triggered DYLD shared region unnest for map: 0xffffff8037dbd1e0, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

68 Jul 13 07:41:31 Safari (map: 0xffffff80394101e0) triggered DYLD shared region unnest for map: 0xffffff80394101e0, region 0x7fff94600000->0x7fff94800000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

69 Jul 13 07:41:31 com.apple.WebKit (map: 0xffffff8024ba3e10) triggered DYLD shared region unnest for map: 0xffffff8024ba3e10, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

70 Jul 13 07:42:20 com.apple.WebKit (map: 0xffffff8036147c30) triggered DYLD shared region unnest for map: 0xffffff8036147c30, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

71 Jul 13 07:42:38 com.apple.WebKit (map: 0xffffff8024ba3e10) triggered DYLD shared region unnest for map: 0xffffff8024ba3e10, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

72 Jul 13 15:51:40 pci pause: SDXC

73 Jul 13 17:40:09 Safari (map: 0xffffff8036147f00) triggered DYLD shared region unnest for map: 0xffffff8036147f00, region 0x7fff94600000->0x7fff94800000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

74 Jul 13 17:40:10 com.apple.WebKit (map: 0xffffff80361473c0) triggered DYLD shared region unnest for map: 0xffffff80361473c0, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

75 Jul 13 17:40:17 com.apple.WebKit (map: 0xffffff80361471e0) triggered DYLD shared region unnest for map: 0xffffff80361471e0, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

76 Jul 13 19:14:12 com.apple.WebKit (map: 0xffffff8026f18a50) triggered DYLD shared region unnest for map: 0xffffff8026f18a50, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

77 Jul 13 19:14:13 com.apple.WebKit (map: 0xffffff8023977c30) triggered DYLD shared region unnest for map: 0xffffff8023977c30, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

78 Jul 13 20:19:38 com.apple.WebKit (map: 0xffffff8039410d20) triggered DYLD shared region unnest for map: 0xffffff8039410d20, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

79 Jul 13 20:22:31 com.apple.WebKit (map: 0xffffff80394104b0) triggered DYLD shared region unnest for map: 0xffffff80394104b0, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

80 Jul 13 20:22:58 com.apple.WebKit (map: 0xffffff8026e370f0) triggered DYLD shared region unnest for map: 0xffffff8026e370f0, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

81 Jul 13 20:24:15 com.apple.WebKit (map: 0xffffff8026e370f0) triggered DYLD shared region unnest for map: 0xffffff8026e370f0, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

82 Jul 13 20:41:53 com.apple.WebKit (map: 0xffffff8039410690) triggered DYLD shared region unnest for map: 0xffffff8039410690, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

83 Jul 13 20:42:00 com.apple.WebKit (map: 0xffffff80394102d0) triggered DYLD shared region unnest for map: 0xffffff80394102d0, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

84 Jul 13 20:43:58 com.apple.WebKit (map: 0xffffff8039410d20) triggered DYLD shared region unnest for map: 0xffffff8039410d20, region 0x7fff88000000->0x7fff88200000. While not abnormal for debuggers, this increases system memory footprint until the target exits.

85

86 System log

87

88 Jul 13 18:40:00 com.apple.usbmuxd: HandleUSBMuxConnect Client 0x100602540-ath/com.apple.AirTrafficHost requesting attach to 0x3f:62078 failed, no such device

89 Jul 13 18:40:02 com.apple.usbmuxd: LOCKDOWN_V2_BONJOUR_SERVICE_NAME is _apple-mobdev2._tcp,90eb07c7

90 Jul 13 18:40:02 com.apple.usbmuxd: HandleUSBMuxConnect Client 0x1005144d0-ath/com.apple.AirTrafficHost requesting attach to 0x41:62078 failed, no such device

91 Jul 13 18:40:02 com.apple.usbmuxd: LOCKDOWN_V2_BONJOUR_SERVICE_NAME is _apple-mobdev2._tcp,90eb07c7

92 Jul 13 18:40:03 com.apple.usbmuxd: LOCKDOWN_V2_BONJOUR_SERVICE_NAME is _apple-mobdev2._tcp,90eb07c7

93 Jul 13 18:40:03 com.apple.usbmuxd: HandleUSBMuxConnect Client 0x10040e7a0-ath/com.apple.AirTrafficHost requesting attach to 0x43:62078 failed, no such device

94 Jul 13 18:40:24 com.apple.usbmuxd: LOCKDOWN_V2_BONJOUR_SERVICE_NAME is _apple-mobdev2._tcp,90eb07c7

95 Jul 13 18:40:24 com.apple.usbmuxd: HandleDeviceAttachHelperCallback preflighting failed for WiFi device 0x36-fe80::d9:7263:15d1:1ad4:0: 0xe8000084. Ignoring device.

96 Jul 13 19:10:51 com.apple.WebKit.WebContent: AVF error: Perf capability check failed: 0xe00002be

97 Jul 13 19:14:09 com.apple.WebKit.WebContent: AVF error: Perf capability check failed: 0xe00002be

98 Jul 13 19:17:21 com.apple.WebKit.WebContent: AVF error: Perf capability check failed: 0xe00002be

99 Jul 13 20:17:25 Photos: Unbalanced pause/resume (resume called before pause)

100 Jul 13 20:17:56 com.apple.WebKit.WebContent: AVF error: Perf capability check failed: 0xe00002be

101 Jul 13 20:18:11 com.apple.WebKit.WebContent: AVF error: Perf capability check failed: 0xe00002be

102 Jul 13 20:18:55 com.apple.WebKit.WebContent: AVF error: Perf capability check failed: 0xe00002be

103 Jul 13 20:19:39 WindowServer: disable_update_timeout: UI updates were forcibly disabled by application "App Store" for over 1.00 seconds. Server has re-enabled them.

104 Jul 13 20:28:49 com.apple.WebKit.WebContent: AVF error: Perf capability check failed: 0xe00002be

105 Jul 13 20:28:49 com.apple.WebKit.WebContent: AVF error: Perf capability check failed: 0xe00002be

106 Jul 13 20:28:49 com.apple.WebKit.WebContent: AVF error: Perf capability check failed: 0xe00002be

107 Jul 13 20:40:17 com.apple.WebKit.WebContent: AVF error: Perf capability check failed: 0xe00002be

108 Jul 13 20:40:17 com.apple.WebKit.WebContent: AVF error: Perf capability check failed: 0xe00002be

109 Jul 13 20:40:17 com.apple.WebKit.WebContent: AVF error: Perf capability check failed: 0xe00002be

110 Jul 13 20:57:26 fseventsd: Logging disabled completely for device:1: /Volumes/Recovery HD

111 Jul 13 20:57:36 launchservicesd: Application App:"iTunes" asn:0x0-26e26e pid:4355 refs=7 @ 0x7fed4e06a620 tried to be brought forward, but isn't in fPermittedFrontApps ( ( "LSApplication:0x0-0x269269 pid=4151 "ScreenSaverEngine"")), so denying. : LASSession.cp #1521 SetFrontApplication() q=LSSession 100005/0x186a5 queue

112 Jul 13 20:57:39 iTunes: ApplePushService: APSConnection being used without a delegate queue

113

114 launchd log

115

116 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Path not allowed in target domain: type = uid, path = /System/Library/PrivateFrameworks/SpeechRecognitionCore.framework/Versions/A/XP CServices/com.apple.SpeechRecognitionCore.brokerd.xpc/Contents/MacOS/com.apple.S peechRecognitionCore.brokerd error = 1: Operation not permitted, origin = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/SecurityAg ent.xpc

117 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Path not allowed in target domain: type = uid, path = /System/Library/PrivateFrameworks/DataDetectorsCore.framework/Versions/A/XPCSer vices/DataDetectorsDynamicData.xpc/Contents/MacOS/DataDetectorsDynamicData error = 1: Operation not permitted, origin = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/SecurityAg ent.xpc

118 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Path not allowed in target domain: type = uid, path = /System/Library/PrivateFrameworks/DataDetectorsCore.framework/Versions/A/XPCSer vices/DataDetectorsDynamicData.xpc/Contents/MacOS/DataDetectorsDynamicData error = 1: Operation not permitted, origin = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/SecurityAg ent.xpc

119 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Path not allowed in target domain: type = uid, path = /System/Library/Frameworks/AppKit.framework/Versions/C/XPCServices/SandboxedSer viceRunner.xpc/Contents/MacOS/SandboxedServiceRunner error = 1: Operation not permitted, origin = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/SecurityAg ent.xpc

120 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Path not allowed in target domain: type = uid, path = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/XPCTimeSta mpingService.xpc/Contents/MacOS/XPCTimeStampingService error = 1: Operation not permitted, origin = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/SecurityAg ent.xpc

121 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Path not allowed in target domain: type = uid, path = /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/Diction aryServices.framework/Versions/A/XPCServices/com.apple.DictionaryServiceHelper.x pc/Contents/MacOS/com.apple.DictionaryServiceHelper error = 1: Operation not permitted, origin = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/SecurityAg ent.xpc

122 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Path not allowed in target domain: type = uid, path = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/XPCKeychai nSandboxCheck.xpc/Contents/MacOS/XPCKeychainSandboxCheck error = 1: Operation not permitted, origin = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/SecurityAg ent.xpc

123 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Path not allowed in target domain: type = uid, path = /System/Library/Frameworks/IOKit.framework/Versions/A/XPCServices/IOServiceAuth orizeAgent.xpc/Contents/MacOS/IOServiceAuthorizeAgent error = 1: Operation not permitted, origin = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/SecurityAg ent.xpc

124 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Path not allowed in target domain: type = uid, path = /System/Library/PrivateFrameworks/SpeechRecognitionCore.framework/Versions/A/XP CServices/com.apple.SpeechRecognitionCore.brokerd.xpc/Contents/MacOS/com.apple.S peechRecognitionCore.brokerd error = 1: Operation not permitted, origin = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/SecurityAg ent.xpc

125 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Failed to bootstrap path: path = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/XPCTimeSta mpingService.xpc, error = 1: Operation not permitted

126 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Failed to bootstrap path: path = /System/Library/PrivateFrameworks/DataDetectorsCore.framework/Versions/A/XPCSer vices/DataDetectorsDynamicData.xpc, error = 1: Operation not permitted

127 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Failed to bootstrap path: path = /System/Library/PrivateFrameworks/SpeechRecognitionCore.framework/Versions/A/XP CServices/com.apple.SpeechRecognitionCore.brokerd.xpc, error = 1: Operation not permitted

128 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Failed to bootstrap path: path = /System/Library/Frameworks/AppKit.framework/Versions/C/XPCServices/SandboxedSer viceRunner.xpc, error = 1: Operation not permitted

129 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Failed to bootstrap path: path = /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/Diction aryServices.framework/Versions/A/XPCServices/com.apple.DictionaryServiceHelper.x pc, error = 1: Operation not permitted

130 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Failed to bootstrap path: path = /System/Library/Frameworks/IOKit.framework/Versions/A/XPCServices/IOServiceAuth orizeAgent.xpc, error = 1: Operation not permitted

131 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Failed to bootstrap path: path = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/XPCKeychai nSandboxCheck.xpc, error = 1: Operation not permitted

132 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Path not allowed in target domain: type = uid, path = /System/Library/Frameworks/AppKit.framework/Versions/C/XPCServices/SandboxedSer viceRunner.xpc/Contents/MacOS/SandboxedServiceRunner error = 1: Operation not permitted, origin = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/SecurityAg ent.xpc

133 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Path not allowed in target domain: type = uid, path = /System/Library/PrivateFrameworks/SpeechRecognitionCore.framework/Versions/A/XP CServices/com.apple.SpeechRecognitionCore.brokerd.xpc/Contents/MacOS/com.apple.S peechRecognitionCore.brokerd error = 1: Operation not permitted, origin = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/SecurityAg ent.xpc

134 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Path not allowed in target domain: type = uid, path = /System/Library/PrivateFrameworks/DataDetectorsCore.framework/Versions/A/XPCSer vices/DataDetectorsDynamicData.xpc/Contents/MacOS/DataDetectorsDynamicData error = 1: Operation not permitted, origin = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/SecurityAg ent.xpc

135 Jul 9 22:39:33 com.apple.xpc.launchd.domain.pid.SecurityAgent.227: Path not allowed in target domain: type = uid, path = /System/Library/PrivateFrameworks/GeoServices.framework/Versions/A/XPCServices/ com.apple.geod.xpc/Contents/MacOS/com.apple.geod error = 1: Operation not permitted, origin = /System/Library/Frameworks/Security.framework/Versions/A/XPCServices/SecurityAg ent.xpc

136 Jul 9 22:39:48 com.apple.xpc.launchd.user.502.100005.Aqua: Could not import service from caller: caller = otherbsd.247, service = com.apple.photostream-agent, error = 119: Service is disabled

137 Jul 13 20:57:31 com.apple.xpc.launchd.domain.system: Caller not allowed to perform action: open.4302, action = service submission, code = 1: Operation not permitted, uid = 502, euid = 502, gid = 20, egid = 20, asid = 100000

138 Jul 13 20:57:31 com.apple.xpc.launchd.domain.system: Caller not allowed to perform action: launchctl.4308, action = start service, code = 1: Operation not permitted, uid = 502, euid = 502, gid = 20, egid = 20, asid = 100000

139 Jul 13 20:57:32 com.apple.xpc.launchd.domain.system: Could not read path: path = //System/Library/LaunchAgents/com.apple.MDCrashReportd.plist, error = 2: No such file or directory

140 Jul 13 20:57:32 com.apple.xpc.launchd.domain.system: Caller not allowed to perform action: launchctl.4348, action = start service, code = 1: Operation not permitted, uid = 502, euid = 502, gid = 20, egid = 20, asid = 100000

141

142 Console log

143

144 Jul 8 09:09:22 Sonos: (SCLib) household(1): controller unsubscribed from ZGT (no associated ZP)

145 Jul 8 09:09:22 Sonos: (SCLib) SCHousehold(1): SPClient NULL for HiddenPreloadSvcs

146 Jul 8 09:09:22 Sonos: (SCLib) updatemgr(1): controller self-update prevented (to=28.1-86140, azp=0.0-0)

147 Jul 8 09:10:06 Sonos: (SCLib) household(1): controller subscribed to ZGT on associated ZP RINCON_B8E937EE4FF401400 @ http://192.168.0.3:1400/xml/device_description.xml

148 Jul 8 09:10:06 Sonos: (SCLib) PlayQueue(1): UpdateID = 45

149 Jul 8 09:10:06 Sonos: (SCLib) FlashTraceBrowse(1): Trying to add the same RAsyncBrowseCacheCB again

150 Jul 8 09:10:06 Sonos: (SCLib) getavailsvc(1): Operation Complete OnServiceListChanged. Version:RINCON_B8E937EE4FF401400:5

151 Jul 8 14:58:42 Sonos: (SCLib) getavailsvc(1): UpnpEvent: OnServiceListChanged. Version:RINCON_B8E937EE4FF401400:6

152 Jul 8 14:58:42 Sonos: (SCLib) getavailsvc(1): Operation Complete OnServiceListChanged. Version:RINCON_B8E937EE4FF401400:6

153 Jul 8 14:58:43 Sonos: (SCLib) getavailsvc(1): Operation Complete OnServiceListChanged. Version:RINCON_B8E937EE4FF401400:6

154 Jul 8 16:00:16 Sonos: (SCLib) PlayQueue(1): UpdateID = 0

155 Jul 8 22:49:55 Sonos: (SCLib) SCLibrary(0): SCLibrary::SuspendNetworking() - suspending subscriptions

156 Jul 9 07:40:34 Sonos: (SCLib) SCLibrary(0): SCLibrary::ResumeNetworking() - resuming subscriptions

157 Jul 9 07:40:37 Sonos: (SCLib) getavailsvc(1): Operation Complete OnServiceListChanged. Version:RINCON_B8E937EE4FF401400:6

158 Jul 9 08:34:17 Sonos: (SCLib) SCLibrary(0): SCLibrary::SuspendNetworking() - suspending subscriptions

159 Jul 9 15:42:44 Sonos: (SCLib) SCLibrary(0): SCLibrary::ResumeNetworking() - resuming subscriptions

160 Jul 9 15:42:44 Sonos: (SCLib) getavailsvc(1): UpnpEvent: OnServiceListChanged. Version:RINCON_B8E937EE4FF401400:7

161 Jul 9 15:42:45 Sonos: (SCLib) getavailsvc(1): Operation Complete OnServiceListChanged. Version:RINCON_B8E937EE4FF401400:7

162 Jul 9 16:00:15 Sonos: (SCLib) PlayQueue(1): UpdateID = 0

163 Jul 9 18:41:39 Sonos: (SCLib) SCLibrary(0): SCLibrary::SuspendNetworking() - suspending subscriptions

164 Jul 9 21:24:22 Sonos: (SCLib) SCLibrary(0): SCLibrary::ResumeNetworking() - resuming subscriptions

165 Jul 9 21:24:25 Sonos: (SCLib) getavailsvc(1): Operation Complete OnServiceListChanged. Version:RINCON_B8E937EE4FF401400:7

166 Jul 9 21:42:21 Sonos: (SCLib) SCLibrary(0): SCLibrary::SuspendNetworking() - suspending subscriptions

167 Jul 9 21:42:21 Sonos: (SCLib) AnacapaLauncher(1): waiting for m_tthread.t_id = 2958184448...

168 Jul 9 21:42:21 Sonos: (SCLib) main(0): Shutting down

169

170 System services loaded

171

172 com.adobe.fpsaud

173 com.apple.Kerberos.kdc

174 - status: 1

175 com.apple.dpd

176 - status: 75

177 com.apple.watchdogd

178 com.sonos.SmbBump

179 com.trusteer.rooks.rooksd

180

181 Login services loaded

182

183 Javeview.update

184 Leperdvil.download

185 Leperdvil.ltvbit

186 Leperdvil.update

187 Listchack.download

188 Listchack.ltvbit

189 Listchack.update

190 com.apple.helpd

191 - status: -15

192 com.apple.mrt.uiagent

193 com.trusteer.rapport.rapportd

194

195 Login services disabled

196

197 com.apple.photostream-agent

198

199 User services disabled

200

201 com.apple.photostream-agent

202

203 User login items

204

205 iTunesHelper

206 - /Applications/iTunes.app/Contents/MacOS/iTunesHelper.app

207 Google Chrome

208 - /Applications/Google Chrome.app

209

210 Safari extensions

211

212 Listchack

213 - com.listchack.safari

214 Pin It Button

215 - com.pinterest.extension

216

217 iCloud errors

218

219 cloudphotosd 13

220 bird 4

221 cloudd 3

222 Finder 3

223 Spotlight 2

224 CallHistorySyncHelper 2

225 storedownloadd 1

226

227 Continuity errors

228

229 lsuseractivityd 19

230 sharingd 1

231

232 Restricted files: 66

233

234 Contents of /Library/LaunchAgents/com.trusteer.rapport.rapportd.plist

235 - mod date: Jun 8 13:59:46 2015

236 - size (B): 577

237 - checksum: 527028763

238

239 <?xml version="1.0" encoding="UTF-8"?>

240 <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">

241 <plist version="1.0">

242 <dict>

243 <key>Label</key>

244 <string>com.trusteer.rapport.rapportd</string>

245 <key>ProgramArguments</key>

246 <array>

247 <string>/Library/Rapport/bin/rapportd.app/Contents/MacOS/rapportd</string>

248 </array>

249 <key>RunAtLoad</key>

250 <true/>

251 <key>WorkingDirectory</key>

252 <string>/Library/Rapport/bin</string>

253 <key>LimitLoadToSessionType</key>

254 <string>Aqua</string>

255 <key>Umask</key>

256 <integer>18</integer>

257 </dict>

258 </plist>

259

260 Contents of /Library/LaunchDaemons/com.sonos.smbbump.plist

261 - mod date: Jul 3 22:27:41 2015

262 - size (B): 376

263 - checksum: 1297353853

264

265 <?xml version="1.0" encoding="UTF-8"?>

266 <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">

267 <plist version="1.0">

268 <dict>

269 <key>Label</key>

270 <string>com.sonos.SmbBump</string>

271 <key>ProgramArguments</key>

272 <array>

273 <string>/Library/Application Support/Sonos/smb_touch</string>

274 </array>

275 <key>RunAtLoad</key>

276 <true/>

277 </dict>

278 </plist>

279

280 Contents of /Library/LaunchDaemons/com.trusteer.rooks.rooksd.plist

281 - mod date: Jun 8 13:59:46 2015

282 - size (B): 376

283 - checksum: 1478412778

284

285 <?xml version="1.0" encoding="UTF-8"?>

286 <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">

287 <plist version="1.0">

288 <dict>

289 <key>Label</key>

290 <string>com.trusteer.rooks.rooksd</string>

291 <key>ProgramArguments</key>

292 <array>

293 <string>/Library/Rapport/bin/rooksd</string>

294 </array>

295 <key>RunAtLoad</key>

296 <true/>

297 </dict>

298 </plist>

299

300 Contents of /System/Library/LaunchDaemons/org.apache.httpd.plist

301 - mod date: Apr 10 22:21:28 2015

302 - size (B): 554

303 - checksum: 3012644940

304

305 <?xml version="1.0" encoding="UTF-8"?>

306 <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">

307 <plist version="1.0">

308 <dict>

309 <key>Disabled</key>

310 <true/>

311 <key>Label</key>

312 <string>org.apache.httpd</string>

313 <key>EnvironmentVariables</key>

314 <dict>

315 <key>XPC_SERVICES_UNAVAILABLE</key>

316 <string>1</string>

317 </dict>

318 <key>ProgramArguments</key>

319 <array>

320 <string>/usr/sbin/httpd-wrapper</string>

321 <string>-D</string>

322 <string>FOREGROUND</string>

323 </array>

324 <key>OnDemand</key>

325 <false/>

326 </dict>

327 </plist>

328

329 Contents of Library/LaunchAgents/.DS_Store

330 - data

331 - mod date: Jul 9 22:14:34 2015

332 - size (B): 6148

333 - checksum: 1987479788

334

335 [N/A]

336

337 Contents of Library/LaunchAgents/Javeview.update.plist

338 - mod date: Jul 9 16:07:28 2015

339 - size (B): 970

340 - checksum: 3863548237

341

342 <?xml version="1.0" encoding="UTF-8"?>

343 <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">

344 <plist version="1.0">

345 <dict>

346 <key>Label</key>

347 <string>Javeview.update</string>

348 <key>ProgramArguments</key>

349 <array>

350 <string>/Users/USER/Library/Application Support/Javeview/Javeview.app/Contents/MacOS/AppNOS</string>

351 <string>-trigger</string>

352 <string>update</string>

353 <string>-isDev</string>

354 <string>0</string>

355 <string>-installVersion</string>

356 <string>18595</string>

357 <string>-firstAppId</string>

358 <string>1434976216979282</string>

359 <string>-identity</string>

360 <string>Javeview</string>

361 <string>-sig</string>

362 <string>NOSIGNATURE_SIGNATURE</string>

363 <string>-agentUpdate</string>

364 <string>2</string>

365 </array>

366 <key>RunAtLoad</key>

367

368 ...and 10 more line(s)

369

370 Contents of Library/LaunchAgents/Leperdvil.download.plist

371 - mod date: Jul 13 17:35:25 2015

372 - size (B): 837

373 - checksum: 39348689

374

375 <?xml version="1.0" encoding="UTF-8"?>

376 <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">

377 <plist version="1.0">

378 <dict>

379 <key>Label</key>

380 <string>Leperdvil.download</string>

381 <key>ProgramArguments</key>

382 <array>

383 <string>/Users/USER/Library/Application Support/Leperdvil/Leperdvil.app/Contents/MacOS/AppAS</string>

384 <string>-trigger</string>

385 <string>download</string>

386 <string>-isDev</string>

387 <string>0</string>

388 <string>-installVersion</string>

389 <string>18595</string>

390 <string>-firstAppId</string>

391 <string>1431873592045858</string>

392 <string>-identity</string>

393 <string>Leperdvil</string>

394 </array>

395 <key>WatchPaths</key>

396 <array>

397 <string>/Users/USER/Downloads</string>

398 </array>

399 <key>isAllowToSuggest</key>

400

401 ...and 3 more line(s)

402

403 Contents of Library/LaunchAgents/Leperdvil.ltvbit.plist

404 - mod date: Jul 13 17:35:25 2015

405 - size (B): 824

406 - checksum: 3150567746

407

408 <?xml version="1.0" encoding="UTF-8"?>

409 <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">

410 <plist version="1.0">

411 <dict>

412 <key>Label</key>

413 <string>Leperdvil.ltvbit</string>

414 <key>ProgramArguments</key>

415 <array>

416 <string>/Users/USER/Library/Application Support/Leperdvil/Leperdvil.app/Contents/MacOS/AppAS</string>

417 <string>-trigger</string>

418 <string>ltvbit</string>

419 <string>-isDev</string>

420 <string>0</string>

421 <string>-installVersion</string>

422 <string>18595</string>

423 <string>-firstAppId</string>

424 <string>1431873592045858</string>

425 <string>-identity</string>

426 <string>Leperdvil</string>

427 </array>

428 <key>StartCalendarInterval</key>

429 <dict>

430 <key>Hour</key>

431 <integer>4</integer>

432 <key>Minute</key>

433

434 ...and 4 more line(s)

435

436 Contents of Library/LaunchAgents/Leperdvil.update.plist

437 - mod date: Jul 13 17:35:25 2015

438 - size (B): 968

439 - checksum: 1473113961

440

441 <?xml version="1.0" encoding="UTF-8"?>

442 <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">

443 <plist version="1.0">

444 <dict>

445 <key>Label</key>

446 <string>Leperdvil.update</string>

447 <key>ProgramArguments</key>

448 <array>

449 <string>/Users/USER/Library/Application Support/Leperdvil/Leperdvil.app/Contents/MacOS/AppAS</string>

450 <string>-trigger</string>

451 <string>update</string>

452 <string>-isDev</string>

453 <string>0</string>

454 <string>-installVersion</string>

455 <string>18595</string>

456 <string>-firstAppId</string>

457 <string>1431873592045858</string>

458 <string>-identity</string>

459 <string>Leperdvil</string>

460 <string>-sig</string>

461 <string>ASSAF_SIGNATURE</string>

462 <string>-agentUpdate</string>

463 <string>0</string>

464 </array>

465 <key>RunAtLoad</key>

466

467 ...and 10 more line(s)

468

469 Contents of Library/LaunchAgents/Listchack.download.plist

470 - mod date: Jun 6 16:07:51 2015

471 - size (B): 837

472 - checksum: 1904972490

473

474 <?xml version="1.0" encoding="UTF-8"?>

475 <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">

476 <plist version="1.0">

477 <dict>

478 <key>Label</key>

479 <string>Listchack.download</string>

480 <key>ProgramArguments</key>

481 <array>

482 <string>/Users/USER/Library/Application Support/Listchack/Listchack.app/Contents/MacOS/AppAS</string>

483 <string>-trigger</string>

484 <string>download</string>

485 <string>-isDev</string>

486 <string>0</string>

487 <string>-installVersion</string>

488 <string>18324</string>

489 <string>-firstAppId</string>

490 <string>1431873592045858</string>

491 <string>-identity</string>

492 <string>Listchack</string>

493 </array>

494 <key>WatchPaths</key>

495 <array>

496 <string>/Users/USER/Downloads</string>

497 </array>

498 <key>isAllowToSuggest</key>

499

500 ...and 3 more line(s)

501

502 Contents of Library/LaunchAgents/Listchack.ltvbit.plist

503 - mod date: Jun 6 16:07:51 2015

504 - size (B): 824

505 - checksum: 3888801699

506

507 <?xml version="1.0" encoding="UTF-8"?>

508 <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">

509 <plist version="1.0">

510 <dict>

511 <key>Label</key>

512 <string>Listchack.ltvbit</string>

513 <key>ProgramArguments</key>

514 <array>

515 <string>/Users/USER/Library/Application Support/Listchack/Listchack.app/Contents/MacOS/AppAS</string>

516 <string>-trigger</string>

517 <string>ltvbit</string>

518 <string>-isDev</string>

519 <string>0</string>

520 <string>-installVersion</string>

521 <string>18324</string>

522 <string>-firstAppId</string>

523 <string>1431873592045858</string>

524 <string>-identity</string>

525 <string>Listchack</string>

526 </array>

527 <key>StartCalendarInterval</key>

528 <dict>

529 <key>Hour</key>

530 <integer>4</integer>

531 <key>Minute</key>

532

533 ...and 4 more line(s)

534

535 Contents of Library/LaunchAgents/Listchack.update.plist

536 - mod date: Jun 6 16:07:51 2015

537 - size (B): 855

538 - checksum: 2774641425

539

540 <?xml version="1.0" encoding="UTF-8"?>

541 <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">

542 <plist version="1.0">

543 <dict>

544 <key>Label</key>

545 <string>Listchack.update</string>

546 <key>ProgramArguments</key>

547 <array>

548 <string>/Users/USER/Library/Application Support/Listchack/Listchack.app/Contents/MacOS/AppAS</string>

549 <string>-trigger</string>

550 <string>update</string>

551 <string>-isDev</string>

552 <string>0</string>

553 <string>-installVersion</string>

554 <string>18324</string>

555 <string>-firstAppId</string>

556 <string>1431873592045858</string>

557 <string>-identity</string>

558 <string>Listchack</string>

559 </array>

560 <key>RunAtLoad</key>

561 <true/>

562 <key>StartCalendarInterval</key>

563 <dict>

564 <key>Hour</key>

565

566 ...and 6 more line(s)

567

568 Contents of Library/LaunchAgents/com.extensions.updater69337.ver

569 - very short file (no magic)

570 - mod date: Jun 6 16:07:58 2015

571 - size (B): 1

572 - checksum: 433426081

573

574 1

575

576 Applications

577

578 /Users/USER/Applications/Chrome Apps.localized/Profile 1 apdfllckaahabafndbhieahigkjlhalf.app

579 - com.google.Chrome.app.Profile-1-apdfllckaahabafndbhieahigkjlhalf

580 /Users/USER/Applications/Chrome Apps.localized/Profile 1 blpcfgokakmgnkcojhhkbfbldkacnbeo.app

581 - com.google.Chrome.app.Profile-1-blpcfgokakmgnkcojhhkbfbldkacnbeo

582 /Users/USER/Applications/Chrome Apps.localized/Profile 1 cbkkbcmdlboombapidmoeolnmdacpkch.app

583 - com.google.Chrome.app.Profile-1-cbkkbcmdlboombapidmoeolnmdacpkch

584 /Users/USER/Applications/Chrome Apps.localized/Profile 1 coobgpohoikkiipiblmjeljniedjpjpf.app

585 - com.google.Chrome.app.Profile-1-coobgpohoikkiipiblmjeljniedjpjpf

586 /Users/USER/Applications/Chrome Apps.localized/Profile 1 pjkljhegncpnkpknbcohdijeoejaedia.app

587 - com.google.Chrome.app.Profile-1-pjkljhegncpnkpknbcohdijeoejaedia

588 /Users/USER/Applications/Chrome Apps.localized/System Profile apdfllckaahabafndbhieahigkjlhalf.app

589 - com.google.Chrome.app.System-Profile-apdfllckaahabafndbhieahigkjlhalf

590 /Users/USER/Applications/Chrome Apps.localized/System Profile blpcfgokakmgnkcojhhkbfbldkacnbeo.app

591 - com.google.Chrome.app.System-Profile-blpcfgokakmgnkcojhhkbfbldkacnbeo

592 /Users/USER/Applications/Chrome Apps.localized/System Profile coobgpohoikkiipiblmjeljniedjpjpf.app

593 - com.google.Chrome.app.System-Profile-coobgpohoikkiipiblmjeljniedjpjpf

594 /Users/USER/Applications/Chrome Apps.localized/System Profile pjkljhegncpnkpknbcohdijeoejaedia.app

595 - com.google.Chrome.app.System-Profile-pjkljhegncpnkpknbcohdijeoejaedia

596 /Users/USER/Library/Application Support/Google/Chrome/Default/Web Applications/_crx_aohghmighlieiainnegkcijnfilokake/Default aohghmighlieiainnegkcijnfilokake.app

597 - com.google.Chrome.app.Default-aohghmighlieiainnegkcijnfilokake-internal

598 /Users/USER/Library/Application Support/Google/Chrome/Default/Web Applications/_crx_apdfllckaahabafndbhieahigkjlhalf/Default apdfllckaahabafndbhieahigkjlhalf.app

599 - com.google.Chrome.app.Default-apdfllckaahabafndbhieahigkjlhalf-internal

600 /Users/USER/Library/Application Support/Google/Chrome/Default/Web Applications/_crx_blpcfgokakmgnkcojhhkbfbldkacnbeo/Default blpcfgokakmgnkcojhhkbfbldkacnbeo.app

601 - com.google.Chrome.app.Default-blpcfgokakmgnkcojhhkbfbldkacnbeo-internal

602 /Users/USER/Library/Application Support/Google/Chrome/Default/Web Applications/_crx_coobgpohoikkiipiblmjeljniedjpjpf/Default coobgpohoikkiipiblmjeljniedjpjpf.app

603 - com.google.Chrome.app.Default-coobgpohoikkiipiblmjeljniedjpjpf-internal

604 /Users/USER/Library/Application Support/Google/Chrome/Default/Web Applications/_crx_nmmhkkegccagdldgiimedpiccmgmieda/Default nmmhkkegccagdldgiimedpiccmgmieda.app

605 - com.google.Chrome.app.Default-nmmhkkegccagdldgiimedpiccmgmieda-internal

606 /Users/USER/Library/Application Support/Google/Chrome/Default/Web Applications/_crx_pjkljhegncpnkpknbcohdijeoejaedia/Default pjkljhegncpnkpknbcohdijeoejaedia.app

607 - com.google.Chrome.app.Default-pjkljhegncpnkpknbcohdijeoejaedia-internal

608 /Users/USER/Library/Application Support/Google/Chrome/Profile 1/Web Applications/_crx_aohghmighlieiainnegkcijnfilokake/Profile 1 aohghmighlieiainnegkcijnfilokake.app

609 - com.google.Chrome.app.Profile-1-aohghmighlieiainnegkcijnfilokake-internal

610 /Users/USER/Library/Application Support/Google/Chrome/Profile 1/Web Applications/_crx_apdfllckaahabafndbhieahigkjlhalf/Profile 1 apdfllckaahabafndbhieahigkjlhalf.app

611 - com.google.Chrome.app.Profile-1-apdfllckaahabafndbhieahigkjlhalf-internal

612 /Users/USER/Library/Application Support/Google/Chrome/Profile 1/Web Applications/_crx_blpcfgokakmgnkcojhhkbfbldkacnbeo/Profile 1 blpcfgokakmgnkcojhhkbfbldkacnbeo.app

613 - com.google.Chrome.app.Profile-1-blpcfgokakmgnkcojhhkbfbldkacnbeo-internal

614 /Users/USER/Library/Application Support/Google/Chrome/Profile 1/Web Applications/_crx_cbkkbcmdlboombapidmoeolnmdacpkch/Profile 1 cbkkbcmdlboombapidmoeolnmdacpkch.app

615 - com.google.Chrome.app.Profile-1-cbkkbcmdlboombapidmoeolnmdacpkch-internal

616 /Users/USER/Library/Application Support/Google/Chrome/Profile 1/Web Applications/_crx_coobgpohoikkiipiblmjeljniedjpjpf/Profile 1 coobgpohoikkiipiblmjeljniedjpjpf.app

617 - com.google.Chrome.app.Profile-1-coobgpohoikkiipiblmjeljniedjpjpf-internal

618 /Users/USER/Library/Application Support/Google/Chrome/Profile 1/Web Applications/_crx_pjkljhegncpnkpknbcohdijeoejaedia/Profile 1 pjkljhegncpnkpknbcohdijeoejaedia.app

619 - com.google.Chrome.app.Profile-1-pjkljhegncpnkpknbcohdijeoejaedia-internal

620 /Users/USER/Library/Application Support/Google/Chrome/System Profile/Web Applications/_crx_aohghmighlieiainnegkcijnfilokake/System Profile aohghmighlieiainnegkcijnfilokake.app

621 - com.google.Chrome.app.System-Profile-aohghmighlieiainnegkcijnfilokake-internal

622 /Users/USER/Library/Application Support/Google/Chrome/System Profile/Web Applications/_crx_apdfllckaahabafndbhieahigkjlhalf/System Profile apdfllckaahabafndbhieahigkjlhalf.app

623 - com.google.Chrome.app.System-Profile-apdfllckaahabafndbhieahigkjlhalf-internal

624 /Users/USER/Library/Application Support/Google/Chrome/System Profile/Web Applications/_crx_blpcfgokakmgnkcojhhkbfbldkacnbeo/System Profile blpcfgokakmgnkcojhhkbfbldkacnbeo.app

625 - com.google.Chrome.app.System-Profile-blpcfgokakmgnkcojhhkbfbldkacnbeo-internal

626 /Users/USER/Library/Application Support/Google/Chrome/System Profile/Web Applications/_crx_coobgpohoikkiipiblmjeljniedjpjpf/System Profile coobgpohoikkiipiblmjeljniedjpjpf.app

627 - com.google.Chrome.app.System-Profile-coobgpohoikkiipiblmjeljniedjpjpf-internal

628 /Users/USER/Library/Application Support/Google/Chrome/System Profile/Web Applications/_crx_pjkljhegncpnkpknbcohdijeoejaedia/System Profile pjkljhegncpnkpknbcohdijeoejaedia.app

629 - com.google.Chrome.app.System-Profile-pjkljhegncpnkpknbcohdijeoejaedia-internal

630 /Users/USER/Library/Application Support/Javeview/Javeview.app

631 - com.nos.AppNOS

632

633 PrefPane

634

635 /Library/PreferencePanes/Flash Player.prefPane

636 - com.adobe.flashplayerpreferences

637 /Library/PreferencePanes/RapportPreferences.prefPane

638 - com.trusteer.RapportPreferences

639

640 Bundles

641

642 /Library/Internet Plug-Ins/Flash Player.plugin

643 - com.macromedia.Flash Player.plugin

644 /Library/Internet Plug-Ins/PepperFlashPlayer/PepperFlashPlayer.plugin

645 - com.macromedia.PepperFlashPlayer.pepper

646 /Users/USER/Library/Address Book Plug-Ins/SkypeABDialer.bundle

647 - com.skype.skypeabdialer

648 /Users/USER/Library/Address Book Plug-Ins/SkypeABSMS.bundle

649 - com.skype.skypeabsms

650

651 Bundles (new)

652

653 /Applications/Leperdvil/Uninstall Leperdvil.app

654 - com.agord.AppAS

655 /Applications/Utilities/Adobe Flash Player Install Manager.app

656 - com.adobe.flashplayer.installmanager

657 /Library/Internet Plug-Ins/Flash Player.plugin

658 - com.macromedia.Flash Player.plugin

659 /Library/Internet Plug-Ins/PepperFlashPlayer/PepperFlashPlayer.plugin

660 - com.macromedia.PepperFlashPlayer.pepper

661 /Library/PreferencePanes/Flash Player.prefPane

662 - com.adobe.flashplayerpreferences

663 /Users/USER/Library/Application Support/Javeview/Javeview.app

664 - com.nos.AppNOS

665 /Users/USER/Library/Application Support/Leperdvil/Leperdvil.app

666 - com.agord.AppAS

667

668 Library paths

669

670 /Library/Rapport/bin/RapportDaishi.dylib

671 /Library/Rapport/bin/RapportGP.dylib

672 /Library/Rapport/bin/RapportKadkadai.dylib

673 /Library/Rapport/bin/RapportKadkadai538.dylib

674 /Library/Rapport/bin/RapportKobo6.dylib

675 /Library/Rapport/bin/RapportNichiren.dylib

676 /Library/Rapport/bin/RapportTanzan24.dylib

677 /Library/Rapport/bin/RapportTanzan31.dylib

678 /Library/Rapport/bin/RapportTanzan32.dylib

679 /Library/Rapport/bin/RapportTanzan33.dylib

680 /Library/Rapport/bin/RapportTanzan340.dylib

681 /Library/Rapport/bin/RapportTanzan350.dylib

682 /Library/Rapport/bin/RapportTanzan36.dylib

683 /Library/Rapport/bin/RapportTanzan360.dylib

684 /Library/Rapport/bin/RapportTanzan370.dylib

685 /Library/Rapport/bin/RapportTanzan380.dylib

686 /Library/Rapport/bin/RapportTanzan390.dylib

687 /Library/Rapport/bin/RapportTanzanEx370.dylib

688 /Library/Rapport/bin/RapportTanzanEx380.dylib

689 /Library/Rapport/bin/RapportTanzanEx390.dylib

690 /Library/Rapport/bin/RapportUtil1.dylib

691 /Library/Rapport/bin/RapportWKLibre534.dylib

692 /Library/Rapport/bin/RapportWKLibre537.dylib

693 /Library/Rapport/bin/RapportWKLibre538.dylib

694 /Library/Rapport/bin/RapportWR.dylib

695 /Library/Rapport/bin/librooksbas.dylib

696 /Library/Rapport/bin/librooksmce.dylib

697 /Library/Rapport/bin/trf.dylib

698 /Library/Rapport/store/exts/RapportMS/baseline/RapportMS.dylib

699 /Users/USER/Library/Application Support/Google/Chrome/WidevineCDM/1.4.8.823/_platform_specific/mac_x64/libwidev inecdm.dylib

700

701 Installations

702

703 Adobe Flash Player: 09/07/2015 22:36

704 Adobe Pepper Flash Player: 09/07/2015 16:57

705 Adobe Flash Player: 09/07/2015 15:56

706 Adobe Flash Player: 02/07/2015 21:59

707 IBM Security Trusteer Endpoint Protection: 01/07/2015 08:32

708

709 Elapsed time (sec): 660

Reply

Answer 11

Heather56b Author

Level 1

4 points

Jul 13, 2015 1:55 PM in response to Linc Davis