Trojan Man

Similar Messages

• How do I use safe mode to get rid of a trojan virus? It is a backdoor that wa installed by a hacker.

   HP 11-1120  (3CR2210JN6)
  My security program finally told me about the Trojan but thhere must be malware on
  this computer also.  There are several corrupted extensions In my documents. I am blocked from seeing my files, deleting or altering permissions. I am the rightful owner of this machine so therefor am its administrator( although one handicapped without formal training for the job.
  I have purchased a disc from Microsoft for Windows 8.1 but cannot run it (if I can)
  until the computer is clean. I would like to save the family pictures if possible).  Everytime I try to run any program too close to the corrupted files I get a paper storm that drives me back.  The windows open so fast it feels like I will be buried.  All of my pictures have been locked away, both music and vidieo players are bound and will not serve the system.  Adobie is completely nonfunctional, I must use periphrial programs.  Windows viewer, Bonjuer and art programs.  I keep bring in different readers to read such docs as I can access.  The man that broke into the computer has copies of all my business and private files.  I have had private pictures of different members of my family posted around the web where I would rather not see them. I realize that I will need a clean up program but I do not trust any of the ones seen advertised on the web.  As a matter of fact one of them is the source of the backdoor virus, I'm sure of it.  This driver cleaning program is very agressive I cannot leave my computer for a minute or it will be rooting around in this machine before I know it, uninvited I should let you know.  I cut the DSL off when I leave it for any length of time.  Can you help me? Annie-

  Annie, welcome to the forum.
  Are you using Google's Chrome OS on the laptop?  I need to know which OS so I can find an answer to your question.
  Signature:
  HP TouchPad - 1.2 GHz; 1 GB memory; 32 GB storage; WebOS/CyanogenMod 11(Kit Kat)
  HP 10 Plus; Android-Kit Kat; 1.0 GHz Allwinner A31 ARM Cortex A7 Quad Core Processor ; 2GB RAM Memory Long: 2 GB DDR3L SDRAM (1600MHz); 16GB disable eMMC 16GB v4.51
  HP Omen; i7-4710QH; 8 GB memory; 256 GB San Disk SSD; Win 8.1
  HP Photosmart 7520 AIO
  ++++++++++++++++++
  **Click the Thumbs Up+ to say 'Thanks' and the 'Accept as Solution' if I have solved your problem.**
  Intelligence is God given; Wisdom is the sum of our mistakes!
  I am not an HP employee.

• Trojan Horse pakes?

  I have some sort of Trojan horse on my iMAC (running Mavericks 10.9.5). When I check the console, there are 1000s of processes going on per second and they repetitively say:
  "10/13/14 7:51:53.579 AM proxyhost[22202]: 67.198.140.250:2122 - - [13/Oct/2014:07:51:53 -0700] "GET http://us-u.openx.net/w/1.0/sd?id=537073142&val=RUIDdzr1pcqq7bm659gajgpbbd5mgaxr 8t4yzbrfwht3uyidafrw9hqy==== HTTP/1.1" 302 401 895"
  10/13/14 7:51:53.505 AM proxyhost[22200]: Made direct (non-proxy) connection to syndication.exoclick.com:80
  10/13/14 7:51:53.000 AM kernel[0]: proc: table is full
  for example. The websites keep changing.
  I've scanned for malware with ClamXV and MacScan and found nothing. I have been blocked from my network. They said I have a trojan horse "pakes".
  Here is the etrecheck report (I'm no longer connected to the ethernet so the processes have stopped. I'm not sure if this matters for what people want to see):
  EtreCheck version: 1.9.15 (52)
  Report generated October 13, 2014 at 7:52:18 AM PDT
  Hardware Information: ?
    iMac (27-inch, Mid 2011) (Verified)
    iMac - model: iMac12,2
    1 3.4 GHz Intel Core i7 CPU: 4 cores
    8 GB RAM
  Video Information: ?
    AMD Radeon HD 6970M - VRAM: 1024 MB
    iMac 2560 x 1440
  System Software: ?
    OS X 10.9.5 (13F34) - Uptime: 2 days 19:28:14
  Disk Information: ?
    Hitachi HDS722020ALA330 disk0 : (2 TB)
    S.M.A.R.T. Status: Verified
    EFI (disk0s1) <not mounted>: 209.7 MB
    Macintosh HD (disk0s2) / [Startup]: 2 TB (1.19 TB free)
    Recovery HD (disk0s3) <not mounted>: 650 MB
    OPTIARC DVD RW AD-5680H
  USB Information: ?
    Apple Computer, Inc. IR Receiver
    Apple Internal Memory Card Reader
    Apple Inc. BRCM2046 Hub
    Apple Inc. Bluetooth USB Host Controller
    Apple Inc. FaceTime HD Camera (Built-in)
  Thunderbolt Information: ?
    Apple Inc. thunderbolt_bus
  Gatekeeper: ?
    Anywhere
  Problem System Launch Daemons: ?
    [failed] com.apple.security.syspolicy.plist
  Launch Daemons: ?
    [loaded] com.adobe.fpsaud.plist Support
    [loaded] com.adobe.SwitchBoard.plist Support
    [loaded] com.barebones.authd.plist Support
    [loaded] com.bombich.ccc.plist Support
    [running] com.bombich.ccc.scheduledtask.4CD02F29-DEED-4CEF-AB0E-270D9AAA53AB.plist Support
    [invalid] com.landesk.broker.plist
    [invalid] com.landesk.cba8.plist
    [invalid] com.landesk.ldwatch.plist
    [invalid] com.landesk.msgsys.plist
    [invalid] com.landesk.pds.plist
    [invalid] com.landesk.pds1.plist
    [loaded] com.landesk.pds2.plist Support
    [invalid] com.landesk.remote.plist
    [loaded] com.microsoft.office.licensing.helper.plist Support
    [loaded] com.oracle.java.JavaUpdateHelper.plist Support
  Launch Agents: ?
    [not loaded] com.adobe.AAM.Updater-1.0.plist Support
  User Launch Agents: ?
    [loaded] com.adobe.AAM.Updater-1.0.plist Support
    [loaded] com.adobe.ARM.[...].plist Support
    [loaded] com.adobe.ARM.[...].plist Support
    [running] com.bombich.ccc-user-agent.plist Support
    [loaded] com.google.keystone.agent.plist Support
    [not loaded] com.spotify.webhelper.plist Support
  User Login Items: ?
    Dropbox
  Internet Plug-ins: ?
    FlashPlayer-10.6: Version: 15.0.0.152 - SDK 10.6 Support
    Default Browser: Version: 537 - SDK 10.9
    AdobePDFViewerNPAPI: Version: 10.1.3 Support
    CouponPrinter-FireFox_v2: Version: Version 1.1.6 Support
    AdobePDFViewer: Version: 9.5.5 Support
    Flash Player: Version: 15.0.0.152 - SDK 10.6 Support
    QuickTime Plugin: Version: 7.7.3
    SharePointBrowserPlugin: Version: 14.1.4 - SDK 10.6 Support
    JavaAppletPlugin: Version: Java 7 Update 55 Check version
  Audio Plug-ins: ?
    BluetoothAudioPlugIn: Version: 1.0 - SDK 10.9
    AirPlay: Version: 2.0 - SDK 10.9
    AppleAVBAudio: Version: 203.2 - SDK 10.9
    iSightAudio: Version: 7.7.3 - SDK 10.9
  iTunes Plug-ins: ?
    Quartz Composer Visualizer: Version: 1.4 - SDK 10.9
  User Internet Plug-ins ?
    WebEx64: Version: 1.0 - SDK 10.6 Support
    Aspera Web 3.3.3.81344: Version: (null) - SDK 10.6 Support
    npBcsMcTcIO: Version: (null) Support
    Picasa: Version: 1.0 - SDK 10.6 Support
  3rd Party Preference Panes: ?
    Flash Player  Support
    Growl  Support
    LANDesk Agent  Support
    TeXDistPrefPane  Support
  Time Machine: ?
    Time Machine not configured!
  Top Processes by CPU: ?
        4% WindowServer
        1% hidd
        1% Console
        1% notifyd
        0% Microsoft Word
  Top Processes by Memory: ?
    311 MB com.apple.IconServicesAgent
    205 MB mds_stores
    180 MB Finder
    172 MB Microsoft Word
    156 MB softwareupdated
  Virtual Memory Information: ?
    1.49 GB Free RAM
    3.57 GB Active RAM
    1.67 GB Inactive RAM
    1.25 GB Wired RAM
    2.74 GB Page-ins
    400 KB Page-outs
  Message was edited by: biomed2014

  1. This procedure is a diagnostic test. It changes nothing, for better or worse, and therefore will not, in itself, solve the problem. But with the aid of the test results, the solution may take a few minutes, instead of hours or days.
  Don't be put off by the complexity of these instructions. The process is much less complicated than the description. You do harder tasks with the computer all the time.
  2. If you don't already have a current backup, back up all data before doing anything else. The backup is necessary on general principle, not because of anything in the test procedure. Backup is always a must, and when you're having any kind of trouble with the computer, you may be at higher than usual risk of losing data, whether you follow these instructions or not.
  There are ways to back up a computer that isn't fully functional. Ask if you need guidance.
  3. Below are instructions to run a UNIX shell script, a type of program. As I wrote above, it changes nothing. It doesn't send or receive any data on the network. All it does is to generate a human-readable report on the state of the computer. That report goes nowhere unless you choose to share it. If you prefer, you can act on it yourself without disclosing the contents to me or anyone else.
  You should be wondering whether you can believe me, and whether it's safe to run a program at the behest of a stranger. In general, no, it's not safe and I don't encourage it.
  In this case, however, there are a couple of ways for you to decide whether the program is safe without having to trust me. First, you can read it. Unlike an application that you download and click to run, it's transparent, so anyone with the necessary skill can verify what it does.
  You may not be able to understand the script yourself. But variations of the script have been posted on this website thousands of times over a period of years. The site is hosted by Apple, which does not allow it to be used to distribute harmful software. Any one of the millions of registered users could have read the script and raised the alarm if it was harmful. Then I would not be here now and you would not be reading this message.
  Nevertheless, if you can't satisfy yourself that these instructions are safe, don't follow them. Ask for other options.
  4. Here's a summary of what you need to do, if you choose to proceed:
  ☞ Copy a line of text in this window to the Clipboard.
  ☞ Paste into the window of another application.
  ☞ Wait for the test to run. It usually takes a few minutes.
  ☞ Paste the results, which will have been copied automatically, back into a reply on this page.
  The sequence is: copy, paste, wait, paste again. You don't need to copy a second time. Details follow.
  5. You may have started the computer in "safe" mode. Preferably, these steps should be taken in “normal” mode, under the conditions in which the problem is reproduced. If the system is now in safe mode and works well enough in normal mode to run the test, restart as usual. If you can only test in safe mode, do that.
  6. If you have more than one user, and the one affected by the problem is not an administrator, then please run the test twice: once while logged in as the affected user, and once as an administrator. The results may be different. The user that is created automatically on a new computer when you start it for the first time is an administrator. If you can't log in as an administrator, test as the affected user. Most personal Macs have only one user, and in that case this section doesn’t apply. Don't log in as root.
  7. The script is a single long line, all of which must be selected. You can accomplish this easily by triple-clicking anywhere in the line. The whole line will highlight, though you may not see all of it in the browser window, and you can then copy it. If you try to select the line by dragging across the part you can see, you won't get all of it.
  Triple-click anywhere in the line of text below on this page to select it:
  PATH=/usr/bin:/bin:/usr/sbin:/sbin:/usr/libexec;clear;cd;p=(Software Hardware Memory Diagnostics Power FireWire Thunderbolt USB Fonts SerialATA 4 1000 25 5120 KiB/s 1024 85 \\b%% 20480 1 MB/s 25000 ports ' com.clark.\* \*dropbox \*genieo\* \*GoogleDr\* \*k.AutoCAD\* \*k.Maya\* vidinst\* ' DYLD_INSERT_LIBRARIES\ DYLD_LIBRARY_PATH -86 "` route -n get default|awk '/e:/{print $2}' `" 25 N\\/A down up 102400 25600 recvfrom sendto CFBundleIdentifier 25 25 25 1000 MB com.apple.AirPortBaseStationAgent 464843899 51 5120 files );N5=${#p[@]};p[N5]=` networksetup -listnetworkserviceorder|awk ' NR>1 { sub(/^\([0-9]+\) /,"");n=$0;getline;} $NF=="'${p[26]}')" { sub(/.$/,"",$NF);print n;exit;} ' `;f=('\n%s: %s\n' '\n%s\n\n%s\n' '\nRAM details\n%s\n' %s\ %s '%s\n-\t%s\n' );S0() { echo ' { q=$NF+0;$NF="";u=$(NF-1);$(NF-1)="";gsub(/^ +| +$/,"");if(q>='${p[$1]}') printf("%s (UID %s) is using %s '${p[$2]}'",$0,u,q);} ';};s=(' s/[0-9A-Za-z._]+@[0-9A-Za-z.]+\.[0-9A-Za-z]{2,4}/EMAIL/g;/\/Shared/!s/(\/Users\/)[^ /]+/\1USER/g;s/[-0-9A-Fa-f]{22,}/UUID/g;' ' s/^ +//;/de: S|[nst]:/p;' ' {sub(/^ +/,"")};/er:/;/y:/&&$2<'${p[10]} ' 1s/://;3,6d;/[my].+:/d;s/^ {4}//;H;${ g;s/\n$//;/s: [^EO]|x([^08]|02[^F]|8[^0])/p;} ' ' 5h;6{ H;g;/P/!p;} ' ' ($1~/^Cy/&&$3>'${p[11]}')||($1~/^Cond/&&$2!~/^N/) ' ' /:$/{ N;/:.+:/d;s/ *://;b0'$'\n'' };/^ *(V.+ [0N]|Man).+ /{ s/ 0x.... //;s/[()]//g;s/(.+: )(.+)/ (\2)/;H;};$b0'$'\n'' d;:0'$'\n'' x;s/\n\n//;/Apple[ ,]|Genesy|Intel|SMSC/d;s/\n.*//;/\)$/p;' ' s/^.*C/C/;H;${ g;/No th|pms/!p;} ' '/= [^GO]/p' '{$1=""};1' ' /Of/!{ s/^.+is |\.//g;p;} ' ' $0&&!/ / { n++;print;} END { if(n<200) print "com.apple.";} ' ' $3~/[0-9]:[0-9]{2}$/ { gsub(/:[0-9:a-f]{14}/,"");} { print|"tail -n'${p[12]}'";} ' ' NR==2&&$4<='${p[13]}' { print $4;} ' ' END { $2/=256;if($2>='${p[15]}') print int($2) } ' ' NR!=13{next};{sub(/[+-]$/,"",$NF)};'"`S0 21 22`" 'NR!=2{next}'"`S0 37 17`" ' NR!=5||$8!~/[RW]/{next};{ $(NF-1)=$1;$NF=int($NF/10000000);for(i=1;i<=3;i++){$i="";$(NF-1-i)="";};};'"`S0 19 20`" 's:^:/:p' '/\.kext\/(Contents\/)?Info\.plist$/p' 's/^.{52}(.+) <.+/\1/p' ' /Launch[AD].+\.plist$/ { n++;print;} END { print "'${p[41]}'";if(n<200) print "/System/";} ' '/\.xpc\/(Contents\/)?Info\.plist$/p' ' NR>1&&!/0x|\.[0-9]+$|com\.apple\.launchctl\.(Aqua|Background|System)$|'${p[41]}'/ { print $3;} ' ' /\.(framew|lproj)|\):/d;/plist:|:.+(Mach|scrip)/s/:[^:]+//p ' '/^root$/p' ' !/\/Contents\/.+\/Contents|Applic|Autom|Frameworks/&&/Lib.+\/Info.plist$/ { n++;print;} END { if(n<1100) print "/System/";} ' '/^\/usr\/lib\/.+dylib$/p' ' /Temp|emac/{next};/(etc|Preferences|Launch[AD].+)\// { sub(".(/private)?","");n++;print;} END { print "'${p[41]}'.plist\t'${p[42]}'";if(n<500) print "Launch";} ' ' /\/(Contents\/.+\/Contents|Frameworks)\/|\.wdgt\/.+\.([bw]|plu)/d;p;' 's/\/(Contents\/)?Info.plist$//;p' ' { gsub("^| |\n","\\|\\|kMDItem'${p[35]}'=");sub("^...."," ") };1 ' p '{print $3"\t"$1}' 's/\'$'\t''.+//p' 's/1/On/p' '/Prox.+: [^0]/p' '$2>'${p[43]}'{$2=$2-1;print}' ' BEGIN { i="'${p[26]}'";M1='${p[16]}';M2='${p[18]}';M3='${p[31]}';M4='${p[32]}';} !/^A/{next};/%/ { getline;if($5<M1) a="user "$2"%, system "$4"%";} /disk0/&&$4>M2 { b=$3" ops/s, "$4" blocks/s";} $2==i { if(c) { d=$3+$4+$5+$6;next;};if($4>M3||$6>M4) c=int($4/1024)" in, "int($6/1024)" out";} END { if(a) print "CPU: "a;if(b) print "I/O: "b;if(c) print "Net: "c" (KiB/s)";if(d) print "Net errors: "d" packets/s";} ' ' /r\[0\] /&&$NF!~/^1(0|72\.(1[6-9]|2[0-9]|3[0-1])|92\.168)\./ { print $NF;exit;} ' ' !/^T/ { printf "(static)";exit;} ' '/apsd|BKAg|OpenD/!s/:.+//p' ' (/k:/&&$3!~/(255\.){3}0/ )||(/v6:/&&$2!~/A/ ) ' ' $1~"lR"&&$2<='${p[25]}';$1~"li"&&$3!~"wpa2";' ' BEGIN { FS=":";p="uniq -c|sed -E '"'s/ +\\([0-9]+\\)\\(.+\\)/\\\2 x\\\1/;s/x1$//'"'";} { n=split($3,a,".");sub(/_2[01].+/,"",$3);print $2" "$3" "a[n]$1|p;b=b$1;} END { close(p);if(b) print("\n\t* Code injection");} ' ' NR!=4{next} {$NF/=10240} '"`S0 27 14`" ' END { if($3~/[0-9]/)print$3;} ' ' BEGIN { L='${p[36]}';} !/^[[:space:]]*(#.*)?$/ { l++;if(l<=L) f=f"\n   "$0;} END { F=FILENAME;if(!F) exit;if(!f) f="\n   [N/A]";"file -b "F|getline T;if(T!~/^(AS.+ (En.+ )?text$|(Bo|PO).+ sh.+ text ex)/) F=F" ("T")";printf("\nContents of %s\n%s\n",F,f);if(l>L) printf("\n   ...and %s more line(s)\n",l-L);} ' ' s/^ ?n...://p;s/^ ?p...:/-'$'\t''/p;' 's/0/Off/p' ' END{print NR} ' ' /id: N|te: Y/{i++} END{print i} ' ' / / { print "'"${p[28]}"'";exit;};1;' '/ en/!s/\.//p' ' NR!=13{next};{sub(/[+-M]$/,"",$NF)};'"`S0 39 40`" ' $10~/\(L/&&$9!~"localhost" { sub(/.+:/,"",$9);print $1": "$9;} ' '/^ +r/s/.+"(.+)".+/\1/p' 's/(.+\.wdgt)\/(Contents\/)?Info\.plist$/\1/p' 's/^.+\/(.+)\.wdgt$/\1/p' ' /l: /{ /DVD/d;s/.+: //;b0'$'\n'' };/s: /{ /V/d;s/^ */- /;H;};$b0'$'\n'' d;:0'$'\n'' x;/APPLE [^:]+$/d;p;' ' /^find: /d;p;' "`S0 44 45`" ' BEGIN{FS="= "} /Path/{print $2} ' ' /^ *$/d;s/^ */   /;' );c1=(system_profiler pmset\ -g nvram fdesetup find syslog df vm_stat sar ps sudo\ crontab sudo\ iotop top pkgutil 'PlistBuddy 2>&1 -c "Print' whoami cksum kextstat launchctl sudo\ launchctl crontab 'sudo defaults read' stat lsbom mdfind ' for i in ${p[24]};do ${c1[18]} ${c2[27]} $i;done;' defaults\ read scutil sudo\ dtrace sudo\ profiles sed\ -En awk /S*/*/P*/*/*/C*/*/airport networksetup mdutil sudo\ lsof test osascript\ -e );c2=(com.apple.loginwindow\ LoginHook '" /L*/P*/loginw*' "'tell app \"System Events\" to get properties of login items'|tr , \\\n" 'L*/Ca*/com.ap*.Saf*/E*/* -d 1 -name In*t -exec '"${c1[14]}"' :CFBundleDisplayName" {} \;|sort|uniq' '~ $TMPDIR.. \( -flags +sappnd,schg,uappnd,uchg -o ! -user $UID -o ! -perm -600 \)' '.??* -path .Trash -prune -o -type d -name *.app -print -prune' :${p[35]}\" :Label\" '{/,}L*/{Con,Pref}* -type f ! -size 0 -name *.plist -exec plutil -s {} \;' "-f'%N: %l' Desktop L*/Keyc*" therm sysload boot-args status " -F '\$Time \$Message' -k Sender kernel -k Message Req 'bad |Beac|caug|corru|dead[^bl]|FAIL|fail|GPU |hfs: Ru|inval|jnl:|last value [1-9]|n Cause: -|NVDA\(|pagin|proc: t|Roamed|rror|ssert|Thrott|tim(ed? ?|ing )o|WARN' -k Message Rne 'Goog|ksadm|SMC:| VALI|xpma' -o -k Sender fseventsd -k Message Req 'SL' " '-du -n DEV -n EDEV 1 10' 'acrx -o comm,ruid,%cpu' '-t1 10 1' '-f -pfc /var/db/r*/com.apple.*.{BS,Bas,Es,J,OSXU,Rem,up}*.bom' '{/,}L*/Lo*/Diag* -type f -regex .\*[cgh] ! -name *ag \( -exec grep -lq "^Thread c" {} \; -exec printf \* \; -o -true \) -execdir stat -f:%Sc:%N -t%F {} \;|sort -t: -k2 |tail -n'${p[38]} '/S*/*/Ca*/*xpc* >&- ||echo No' '-L /{S*/,}L*/StartupItems -type f -exec file {} +' '-L /S*/L*/{C*/Sec*A,E}* {/,}L*/{A*d,Ca*/*/Ex,Co{mpon,reM},Ex,In{p,ter},iTu*/*P,Keyb,Mail/B,Pr*P,Qu*T,Scripti,Sec,Servi,Spo,Widg}* -path \\*s/Resources -prune -o -type f -name Info.plist' '/usr/lib -type f -name *.dylib' `awk "${s[31]}"<<<${p[23]}` "/e*/{auto,{cron,fs}tab,hosts,{[lp],sy}*.conf,pam.d/*,ssh{,d}_config,*.local} {,/usr/local}/etc/periodic/*/* /L*/P*{,/*}/com.a*.{Bo,sec*.ap}*t {/S*/,/,}L*/Lau*/*t .launchd.conf" list getenv /Library/Preferences/com.apple.alf\ globalstate --proxy '-n get default' -I --dns -getdnsservers\ "${p[N5]}" -getinfo\ "${p[N5]}" -P -m\ / '' -n1 '-R -l1 -n1 -o prt -stats command,uid,prt' '--regexp --only-files --files com.apple.pkg.*|sort|uniq' -kl -l -s\ / '-R -l1 -n1 -o mem -stats command,uid,mem' '+c0 -i4TCP:0-1023' com.apple.dashboard\ layer-gadgets '-d /L*/Mana*/$USER&&echo On' '-app Safari WebKitDNSPrefetchingEnabled' "+c0 -l|awk '{print(\$1,\$3)}'|sort|uniq -c|sort -n|tail -1|awk '{print(\$2,\$3,\$1)}'" );N1=${#c2[@]};for j in {0..9};do c2[N1+j]=SP${p[j]}DataType;done;N2=${#c2[@]};for j in 0 1;do c2[N2+j]="-n ' syscall::'${p[33+j]}':return { @out[execname,uid]=sum(arg0) } tick-10sec { trunc(@out,1);exit(0);} '";done;l=(Restricted\ files Hidden\ apps 'Elapsed time (s)' POST Battery Safari\ extensions Bad\ plists 'High file counts' User Heat System\ load boot\ args FileVault Diagnostic\ reports Log 'Free space (MiB)' 'Swap (MiB)' Activity 'CPU per process' Login\ hook 'I/O per process' Mach\ ports kexts Daemons Agents XPC\ cache Startup\ items Admin\ access Root\ access Bundles dylibs Apps Font\ issues Inserted\ dylibs Firewall Proxies DNS TCP/IP Wi-Fi Profiles Root\ crontab User\ crontab 'Global login items' 'User login items' Spotlight Memory Listeners Widgets Parental\ Controls Prefetching SATA Descriptors );N3=${#l[@]};for i in 0 1 2;do l[N3+i]=${p[5+i]};done;N4=${#l[@]};for j in 0 1;do l[N4+j]="Current ${p[29+j]}stream data";done;A0() { id -G|grep -qw 80;v[1]=$?;((v[1]==0))&&sudo true;v[2]=$?;v[3]=`date +%s`;clear >&-;date '+Start time: %T %D%n';};for i in 0 1;do eval ' A'$((1+i))'() { v=` eval "${c1[$1]} ${c2[$2]}"|'${c1[30+i]}' "${s[$3]}" `;[[ "$v" ]];};A'$((3+i))'() { v=` while read i;do [[ "$i" ]]&&eval "${c1[$1]} ${c2[$2]}" \"$i\"|'${c1[30+i]}' "${s[$3]}";done<<<"${v[$4]}" `;[[ "$v" ]];};A'$((5+i))'() { v=` while read i;do '${c1[30+i]}' "${s[$1]}" "$i";done<<<"${v[$2]}" `;[[ "$v" ]];};';done;A7(){ v=$((`date +%s`-v[3]));};B2(){ v[$1]="$v";};for i in 0 1;do eval ' B'$i'() { v=;((v['$((i+1))']==0))||{ v=No;false;};};B'$((3+i))'() { v[$2]=`'${c1[30+i]}' "${s[$3]}"<<<"${v[$1]}"`;} ';done;B5(){ v[$1]="${v[$1]}"$'\n'"${v[$2]}";};B6() { v=` paste -d: <(printf "${v[$1]}") <(printf "${v[$2]}")|awk -F: ' {printf("'"${f[$3]}"'",$1,$2)} ' `;};B7(){ v=`grep -Fv "${v[$1]}"<<<"$v"`;};C0() { [[ "$v" ]]&&sed -E "$s"<<<"$v";};C1() { [[ "$v" ]]&&printf "${f[$1]}" "${l[$2]}" "$v";};C2() { v=`echo $v`;[[ "$v" != 0 ]]&&C1 0 $1;};C3() { v=`sed -E "${s[63]}"<<<"$v"`&&C1 1 $1;};for i in 1 2;do for j in 0 2 3;do eval D$i$j'(){ A'$i' $1 $2 $3; C'$j' $4;};';done;done;{ A0;D20 0 $((N1+1)) 2;D10 0 $N1 1;B0;C2 27;B0&&! B1&&C2 28;D12 15 37 25 8;A1 0 $((N1+2)) 3;C0;D13 0 $((N1+3)) 4 3;D23 0 $((N1+4)) 5 4;D13 0 $((N1+9)) 59 50;for i in 0 1 2;do D13 0 $((N1+5+i)) 6 $((N3+i));done;D13 1 10 7 9;D13 1 11 8 10;D22 2 12 9 11;D12 3 13 10 12;D23 4 19 44 13;D23 5 14 12 14;D22 6 36 13 15;D22 7 37 14 16;D23 8 15 38 17;D22 9 16 16 18;B1&&{ D22 35 49 61 51;D22 11 17 17 20;for i in 0 1;do D22 28 $((N2+i)) 45 $((N4+i));done;};D22 12 44 54 45;D22 12 39 15 21;A1 13 40 18;B2 4;B3 4 0 19;A3 14 6 32 0;B4 0 5 11;A1 17 41 20;B7 5;C3 22;B4 4 6 21;A3 14 7 32 6;B4 0 7 11;B3 4 0 22;A3 14 6 32 0;B4 0 8 11;B5 7 8;B1&&{ A2 19 26 23;B7 7;C3 23;};A2 18 26 23;B7 7;C3 24;D13 4 21 24 26;B4 4 12 26;B3 4 13 27;A1 4 22 29;B7 12;B2 14;A4 14 6 52 14;B2 15;B6 14 15 4;B3 0 0 30;C3 29;A1 4 23 27;B7 13;C3 30;D13 24 24 32 31;D13 25 37 32 33;A2 23 18 28;B2 16;A2 16 25 33;B7 16;B3 0 0 34;B2 21;A6 47 21&&C0;B1&&{ D13 21 0 32 19;D13 10 42 32 40;D22 29 35 46 39;};D23 14 1 62 42;D12 34 43 53 44;D12 22 20 32 25;D22 0 $((N1+8)) 51 32;D13 4 8 41 6;D12 26 28 35 34;D13 27 29 36 35;A2 27 32 39&&{ B2 19;A2 33 33 40;B2 20;B6 19 20 3;};C2 36;D23 33 34 42 37;B1&&D23 35 45 55 46;D23 32 31 43 38;D12 36 47 32 48;D13 20 42 32 41;D13 37 2 48 43;D13 4 5 32 1;D13 4 3 60 5;D12 26 48 49 49;B3 4 22 57;A1 26 46 56;B7 22;B3 0 0 58;C3 47;D22 4 4 50 0;D23 22 9 37 7;A7;C2 2;} 2>/dev/null|pbcopy;exit 2>&-
  Copy the selected text to the Clipboard by pressing the key combination command-C.
  8. Launch the built-in Terminal application in any of the following ways:
  ☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.)
  ☞ In the Finder, select Go ▹ Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens.
  ☞ Open LaunchPad. Click Utilities, then Terminal in the icon grid.
  Click anywhere in the Terminal window and paste by pressing command-V. The text you pasted should vanish immediately. If it doesn't, press the return key.
  9. If you see an error message in the Terminal window such as "Syntax error" or "Event not found," enter
  exec bash
  and press return. Then paste the script again.
  10. If you're logged in as an administrator, you'll be prompted for your login password. Nothing will be displayed when you type it. You will not see the usual dots in place of typed characters. Make sure caps lock is off. Type carefully and then press return. You may get a one-time warning to be careful. If you make three failed attempts to enter the password, the test will run anyway, but it will produce less information. In most cases, the difference is not important. If you don't know the password, or if you prefer not to enter it, press the key combination control-C or just press return  three times at the password prompt. Again, the script will still run.
  If you're not logged in as an administrator, you won't be prompted for a password. The test will still run. It just won't do anything that requires administrator privileges.
  11. The test may take a few minutes to run, depending on how many files you have and the speed of the computer. A computer that's abnormally slow may take longer to run the test. While it's running, there will be nothing in the Terminal window and no indication of progress. Wait for the line
  [Process completed]
  to appear. If you don't see it within half an hour or so, the test probably won't complete in a reasonable time. In that case, close the Terminal window and report what happened. No harm will be done.
  12. When the test is complete, quit Terminal. The results will have been copied to the Clipboard automatically. They are not shown in the Terminal window. Please don't copy anything from there. All you have to do is start a reply to this comment and then paste by pressing command-V again.
  At the top of the results, there will be a line that begins with the words "Start time." If you don't see that, but instead see a mass of gibberish, you didn't wait for the "Process completed" message to appear in the Terminal window. Please wait for it and try again.
  If any private information, such as your name or email address, appears in the results, anonymize it before posting. Usually that won't be necessary.
  13. When you post the results, you might see an error message on the web page: "You have included content in your post that is not permitted," or "You are not authorized to post." That's a bug in the forum software. Please post the test results on Pastebin, then post a link here to the page you created.
  14. This is a public forum, and others may give you advice based on the results of the test. They speak only for themselves, and I don't necessarily agree with them.
  Copyright © 2014 by Linc Davis. As the sole author of this work, I reserve all rights to it except as provided in the Use Agreement for the Apple Support Communities website ("ASC"). Readers of ASC may copy it for their own personal use. Neither the whole nor any part may be redistributed.

• Safari suddenly froze and message said to call number at microsoft to avoid Trojan virus

  I was using Safari on my mom's Mac today and went to You Tube.  suddenly a message appeared from http://tubeblog1.com saying that the system was infected with Trojan...it went on to explain what that was and said to call 1-844-813-8227 immediately to resolve problem.  I was eventually able to unfreeze Safari and  everything seems fine.  However, about 3 hours later a man called my mother's land line from India (accent was heavy so I assumed it was from there!) and asked if the computer needed to be fixed!!!!!!  HOW DID HE GET MY MOTHER'S UNLISTED PHONE NUMBER? We never called that number and it seems weird that he new her number was somehow connected to her Mac?  Like I said, she has an unlisted number.  Please help...this is really weird and SCARY!!!!  I confronted the guy on the phone and he hung up on me.  How can i make sure there is no malware or virus in her computer now?

  There is no malware involved. This was just a tech support scam on a website.
  As for the phone call, there are two possible explanations. One is that someone else in the house called that "tech support" phone number - or a similar one - at some point, giving the number to the scammers. The other is that it was purely coincidence... everyone gets these kinds of calls from time to time, and they may very well just randomly dial numbers sequentially until they hit a good one. There is no way that they could have gotten the phone number through that pop-up on your mom's Mac.

• Trojan clampi- is it possible an i-Mac running Mountain Lion 10.8.4, could it have this trojan?

  is the trojan "clampi" possible on an iMac running Mountain Lion 10.8.4?

  No.  From Wikipedia:
  Clampi is a man-in-the-browser trojan that steals financial information from companies that are sent to hackers to use for fraud scams. The virus has been around since 2007 and only affects Microsoft computers

• Possible new version of Flashback trojan

  Dear all,
  today I experienced some problems just like the people in these two threads:
  https://discussions.apple.com/thread/3355170?tstart=0
  https://discussions.apple.com/message/16280207#16280207
  Among others, my finder sidebar suddenly said SD5, SD6, SD7 instead of "Devices", "Shared" etc., and Skype crashed when trying to start it.
  Examining Skype's crash report revealed the following line:
  0x154c000 -  0x1574ff3 +.AiseesoftFLVConverter.so ??? (???) <23EEF509-128B-B224-D44D-313574EE83D3> /Users/Shared/.AiseesoftFLVConverter.so
  which happened to share resemblance with the file <user>/.MacOSX/environment.plist, the content of which contained :
  <dict>
       <key>DYLD_INSERT_LIBRARIES</key>
       <string>/Users/Shared/.AiseesoftFLVConverter.so</string>
  </dict>
  While I've renamed the two files, and my system has returned to normal behaviour, I'm not entirely sure I've deleted every part of the trojan. As for the files that are mentioned in the links above, I've moved and renamed the environment.plist file, but I wasn't able to find any of the other files mentioned:
  .MacOSX/environment.plist
  Library/LaunchAgents/com.apple.SystemUI.plist
  Library/Preferences/perflib
  Library/Preferences/Preferences.dylib
  Library/Logs/swlog
  I'll be happy to provide any further information/trojan files if someone thinks there's something they can do with it.
  One problem remains, as can be seen in the following screen shot. My <user>/Library/Preferences/ directory seems to have been altered or tampered with in some way, is there any chance there is still an active and malicious part of the trojan on my computer?
  All help is appreciated! Thanks in advance

  Thanks for the replies!
  I've been aware of malicious Flash installers and therefore have been very cautious to install Flash from the official Adobe website only. I haven't downloaded any program from non-official websites. Here's my download list in the past couple of days before I discovered the malware:
  VLC 2.0 from the official website
  Several files from my internal university page (I assume this isn't infected though, mostly zip files containing MATLAB and Maple scripts)
  I tried to open the .so file in an editor to see if there was any more information about the malware in there, but when I did, Finder issued the following warning:
  (renamed the files to "<filename>OLD")
  Normally, when you download something, the respective download link is included in the file's info, so naturally I checked it out, but it did not contain a link.
  So, I'm afraid I can't provide a link, sorry. Any chance there's a hidden directory of downloaded files somewhere?
  To clarify about the files' contents:
  ~/.MacOSX/environment.plist contained (in the standard plist format which I didn't include):
  <dict>
       <key>DYLD_INSERT_LIBRARIES</key>
       <string>/Users/Shared/.AiseesoftFLVConverter.so</string>
  </dict>
  Users/Shared/.AiseesoftFLVConverter.so is a ~420 KB file, I uploaded it to the following link.
  Caution! Malware, download at your own risk
  http://www.mediafire.com/?e3qlnmhs6y97ia2
  Caution! Malware, download at your own risk
  I only renamed it to "<filename>OLD" and I haven't tampered with it in any other way. (I also sent it to a friend to help me examine it and he wasn't infected, so I assume just downloading the file should be safe. I added a disclaimer so people don't blindly click on it without knowing what they're getting into. )
  Skype crash report from yesterday when the "symptoms" of the virus occured
  http://pastebin.com/cDYnWq06
  java -version returns the following:
  java version "1.6.0_29"
  Java(TM) SE Runtime Environment (build 1.6.0_29-b11-402-10M3527)
  Java HotSpot(TM) 64-Bit Server VM (build 20.4-b02-402, mixed mode)
  My Mac OS X was also up to date with the exception of the security update from the beginning of February 2012, but I installed it following the incident.
  I am also aware of all kinds of man-in-the-middle attacks using counterfeit certificates, so I'm very cautious when I see pop-ups like that. I'm sure I didn't approve any certificate like shown in the Intego article.
  Any to clarify once more, I didn't update my Flash using anything other than the official Adobe site, and that must have been quite longer ago than two days.
  So according to the file opening dialogue above, the AiseesoftFLVConverter.so file was downloaded on 19/02/2012. According to the Finder's own tools, the only two other files that were created during that day were the folder ".MacOSX" and the file in it, "environment.plist". AiseesoftFLVConverter.so itself was created on 21/01/2012, and no other relevant files were created during that day.
  I deinstalled XCode a couple of months ago to have some space for other data, so I can't do this myself. But if someone who's interested in this stuff could try examining the .so file using otool and see if there's something interesting, that'd be really cool.
  Although I'm almost sure I've deactivated the virus, I'll safe reformat my drive and put a clean install on it. Is there any further information I can provide at this time?
  Is there any way for me to find out where I got the virus? To me there's no obvious answer, as I try to be as safe as possible when browsing the internet, apparently not safe enough though. I'd be glad to help prevent an attack like this from affecting others, so if there's anything I can do, please let me know. Also, is there a team at Apple directly who work on anti-malware who I can contact and send the files to?
  Thanks for the help!

• Apple Devices Targeted for Trojans

  Well, it had to happen sooner, or later. For decades, Mac-users have touted the advanced security of all Apple devices, against viruses, Trojans, spy-ware and malware. They wave that banner as the equipment's superiority. Much of the truth of that matter has been their tiny market share. Most writers of malware have just not taken the time to target Apple devices. Well, enter the iPad. Guess who is the target of a recent hacking? One of the intents of this pair was to write and distribute Trojans onto all iPads. Read all about it HERE. It appears that so far, all that has been done is a major security compromise, but read what the final goal was - distribute nasties to all iPads.
  Guess that PC's are not the only vulnerable devices on the planet.
  Hunt
  PS - I can just see the new ad now:
  Man at pool - "How can you read that device - out here in this light?"
  Lady at pool - "Oh, it's a Kindle, and I can read it in any light."
  Background audio - "Achoo-o-o-o!"
  Lady at pool - "Seems that your iPad has caught a virus... "

  I know we're talking about Apple devices, but according to everything I have read, Windows 7 is more secure than OS X. As you stated, the Apple desktop/laptop market share has been traditionally too small for hackers to bother with. Mercy on the Mac user when/if they get deluged with the kind of garbage us PC users have grown accustomed to dealing with. I really don't think the Mac people are ready for that.  Just yesterday I visited a client who uses both Macs and PCs to check for malware and key loggers before we put together their new ecommerce solution. They have no anti-virus or malware protection  on their Macs at all.  This seems to be pretty much the norm for the Mac community.
  Purely malicious virus and malware development is a lot less common these days than the newer breed of profitable malware. Stealth malware that turns computers into spam dispensers is currently the greatest threat.  Somewhat recently Open Source PHP programs like OSCommerce have become targets for hackers.  The owner of the company that hosts my website has had his share of headaches related to that.  For example many if not most hosting services include CPanel which has a feature called Fantastico.  You go into that panel and around 60 PHP Open Source programs are available for install into your domain. These programs include website calendars, shopping carts and forums just to name a few.
  Take the shopping cart program OSCommerce for example.  Let's say, you run a hosting service and many of your customers install the free OSCommerce shopping cart.  When they installed it, they didn't take the appropriate security precautions like changing the "Admin" folder to something cryptic etc.  They load their cart up with inventory and the Open source community who built the program, stops supporting it. No more security updates. It exists everywhere on your hosting company's servers without being updated in years.  This is currently one of the prime targets for hackers.  What does a hosting company do, tell  clients to use another shopping cart solution?  From what I have read, hosting services that have OSCommerce installed on their servers even need to notch down their server security settings because the program won't run on Free BSD servers running the latest security patches.
  The solution is simple, but obviously not practiced.  If people just used their head and NEVER clicked on spam emails, the malware for profit industry would die out.  I suppose, unfortunately we might just go back to frustrated genius hackers creating destructive malware and viruses because they were forced to work a traditional job.

• HT5228 How to find out if your Mac has the Flashback Trojan EASY WAY!!!!

  http://www.cnn.com/2012/04/06/tech/web/mac-flashback-trojan-check/index.html
  Just did it works great and they also have a post on how to remove it as well.

  Here is an even easier way, it will remove most infections too:
  I have created a user tip and malware checker/removal tool: https://discussions.apple.com/docs/DOC-3271

• Best Practice for utility in Sol Man 4.0

  We have software component ST-ICO of release 150_700 with Patch level 5
  We want a Template Selection for ‘Utility’ industry. I checked in
  the service market place and found that 'Baseline Package United
  Kingdom V1.50, Template: BP_BLKU150' is available in the above software
  component.
  But we are not getting any templates other than 'BP_UTUS147 - Best Practices for Water Utility' in the 'SOLAR_PROJECT_ADMIN'
  transaction.
  Kindly suggest any patch needs to be applied or some configuration need to be done.
  Regards
  Mani

  Hi Mani,
     Colud u plz give me the link of "where u find the template BP_BLKU150"?
  It will be helpful for me.
  Thanks
  Senthil

• My computer has been infected with a Trojan Horse.  It has completely taken over my Mac email account and was sending out malicious email to everyone in my address book.  At the same time it infected my iPhone---I am no longer able to receive or send emai

  My computer has been infected by a Trojan Horse.  It has taken over my Mac email account and began sending out malicious emails to everyone in my address book.  I cleared out my MAC address book and began using my AOL email account. It took a few days and then my AOL email account was infected and has now been send out malicious email to all my contacts for over a month.  It has also infected my iPhone--I am no longer able to send or receive emails on my iPhone.  Also, once the Trojan Horse began using my AOL email it completely blocked me from using my MAC account by sending never ending popups asking for my email password to access my MAC email account, but it never accepts my pass word.  The TH has also slowed down everything on my computer.  It's like I am working on an old PC with dial up connection instead of the high speed digital connection that I have.  The little color wheel spins constantly as I wait for sometimes over a minute for a page to pull up.  If it pulls up at all.  I have tried to use the 2 disks that came with my computer to completely remove everything on my computer and then reinstall all the programs, but I am not allowed to sweep my computer clean.  I thought maybe my disks that came with my computer were defective so I called Apple and they sent me 2 new disks.  I am not able able to clear my computer with the 2 new disks either.  I have done this before successfully so it's not something new to me.  I do remember when I believe my computer became infected:  I had googled an unusual sewing term, and I was opening what appeared to be legitimate sites, when all of a sudden a pop up appeared that said that my computer had been infected.  I immediately shut my computer off, but it was too late.  I downloaded a virus program for Mac, and it has never found a virus or problem at all.  I think it is part of this Trojan Horse, but I am unable to delete it from my computer.  It refuses to uninstall.  The Mac Trojan Horse is real and it is terrible.  If anyone has any suggestions for me I would be very appreciative,
  Beth
  vu

  Install ClamXav and run a scan with that. It should pick up any trojans.   
  17" 2.2GHz i7 Quad-Core MacBook Pro  8G RAM  750G HD + OCZ Vertex 3 SSD Boot HD 
  Got problems with your Apple iDevice-like iPhone, iPad or iPod touch? Try Troubleshooting 101

• Wie verschiebt man seine Creative Cloud Applikationen auf einen anderen Computer

  Ich habe reative Cloud auf zwei Computern ( A & B) installiert. ich will sie jetzt auf einen neuen (C) Computer verschieben ( B zu C) Wie melde ich sie auf B ab (muss man deisntallieren oder reicht deaktivieren?) und wie installiere ich sie neu auf C.
  Adobe macht das alles leider sehr umständlich und wenig intuitiv.  Wie man Content bequem und einfach auf verschiedenen Geräten verwaltet zeigt Amazon beim Kindle, das ist sehr Kundenorientiert programmiert.
  Alleine diese regelmäßige Neuinstallation des Cloud Managers ist extrem nervig und kostet wertvolle Zeit

  http://forums.adobe.com/community/download_install_setup/creative_cloud_faq
  -has a link about installing and updating
  Discussion of RE-installing http://forums.adobe.com/thread/1398961?tstart=0

• Was muss man bei der Neuinstallation der Adobe Creative Cloud auf einem neuen PC beachten?

  Muss man die Adobe Creative Cloud auf dem alten PC deinstallieren?

  Nein, nur abmelden. Man kann allerdings auf zwei Geräten gleichzeitig angemeldet bleiben.

• I ran a virus/trojan fix and this is what it said it could not repair something in the main library core or something like that.  What do I do?  The problem seems to be with safari?

  I ran a virus/trojan fix and this is what it said it could not repair something in the main library core or something like that.  What do I do?  The problem seems to be with safari?

  I ran the utility disk and this is what it said.
  Warning permission differ Applications/Safari drwxr-xrx they are -rwxr-xr system/livrary Cores has been modified and will not be repaired.
  Permission apllication differ on System/livrary/Pr or could be -rw-r--r-- they are rwxr-xr-x Application/iTune be droxr-xr-x they are rwxr-xr-x
  Then I hit fix permissions and it said this
  Warning SUID file Systm/Library/Core has been modified will not be repaired
  I also downloaded Bitdefender Virus Scanner and it found nothing.

• Thr_create() returns -1 which isn't specified in the man page. What is -1?

  Hello,
  I'm for the first time experimenting with Solaris threads as I'm porting an AIX app. over to Solaris.
  Anyhow, I have a sample program that creates a simple thread. For some reason, the return value of of the initial thr_create is -1, which isn't specified in the man page for thr_create. The man page lists the following return values, non of which are -1:
  RETURN VALUES
  Zero indicates a successful return and a non-zero value
  indicates an error.
  ERRORS
  If any of the following conditions occur, these functions
  fail and return the corresponding value:
  EAGAIN The system-imposed limit on the total number
  of threads in a process has been exceeded or
  some system resource has been exceeded (for
  example, too many LWPs were created).
  EINVAL The value specified by attr is invalid.
  If any of the following conditions are detected,
  pthread_create() fails and returns the corresponding value:
  ENOMEM Not enough memory was available to create the
  new thread.
  If any of the following conditions are detected,
  thr_create() fails and returns the corresponding value:
  EINVAL o stack_base is not NULL and stack_size is
  less than the value returned by
  thr_min_stack(3T).
  o stack_base is NULL and stack_size is not
  zero and is less than the value returned by
  thr_min_stack(3T).
  However, I don't see a -1 there and therefore, don't know what this means.
  Here is the simple code that I wrote for this experiment as well as the output. It doesn't get too far into the program before exiting - I've bolded where it exits:
  #define _REENTRANT
  #include <stdio.h>
  #include <thread.h>
  #include <errno.h>
  /* Function prototypes for thread routines */
  void sub_a(void );
  void sub_b(void );
  void sub_c(void );
  void sub_d(void );
  void sub_e(void );
  void sub_f(void );
  thread_t thr_a, thr_b, thr_c;
  void main()
  thread_t main_thr;
  int rc = 0;
  main_thr = thr_self();
  printf("Main thread = %d\n", main_thr);
  if (rc = thr_create(NULL, 0, sub_b, NULL, THR_NEW_LWP, &thr_b))
  printf("\n rc = %d",rc);
  switch(rc)
  case EAGAIN: printf("This one1");
  break;
  case EINVAL: printf("This one2");
  break;
  case ENOMEM: printf("This one3");
  break;
  default: printf("rc = %d");
  break;
  fprintf(stderr,"Can't create thr_b\n"),
  * exit(1); *
  /* if (thr_create(NULL, 0, sub_a, (void *)thr_b, THR_NEW_LWP, &thr_a))
  fprintf(stderr,"Can't create thr_a\n"), exit(1); */
  if (thr_create(NULL, 0, sub_c, (void *)main_thr, THR_NEW_LWP, &thr_c))
  fprintf(stderr,"Can't create thr_c\n"), exit(1);
  printf("Main Created threads A:%d B:%d C:%d\n", thr_a, thr_b, thr_c);
  printf("Main Thread exiting...\n");
  thr_exit((void *)main_thr);
  void sub_a(void arg)
  thread_t thr_b = (thread_t) arg;
  thread_t thr_d;
  int i;
  printf("A: In thread A...\n");
  if (thr_create(NULL, 0, sub_d, (void *)thr_b, THR_NEW_LWP, &thr_d))
  fprintf(stderr, "Can't create thr_d\n"), exit(1);
  printf("A: Created thread D:%d\n", thr_d);
  /* process
  for (i=0;i<1000000*(int)thr_self();i++);
  printf("A: Thread exiting...\n");
  thr_exit((void *)77);
  void * sub_b(void *arg)
  int i;
  printf("B: In thread B...\n");
  /* process
  for (i=0;i<1000000*(int)thr_self();i++);
  printf("B: Thread exiting...\n");
  thr_exit((void *)66);
  void * sub_c(void *arg)
  void *status;
  int i;
  thread_t main_thr, ret_thr;
  main_thr = (thread_t)arg;
  printf("C: In thread C...\n");
  if (thr_create(NULL, 0, sub_f, (void *)0, THR_BOUND|THR_DAEMON, NULL))
  fprintf(stderr, "Can't create thr_f\n"), exit(1);
  printf("C: Join main thread\n");
  if (thr_join(main_thr,(thread_t *)&ret_thr, &status))
  fprintf(stderr, "thr_join Error\n"), exit(1);
  printf("C: Main thread (%d) returned thread (%d) w/status %d\n", main_thr, ret_thr, (int) status);
  /* process
  for (i=0;i<1000000*(int)thr_self();i++);
  printf("C: Thread exiting...\n");
  thr_exit((void *)88);
  void * sub_d(void *arg)
  thread_t thr_b = (thread_t) arg;
  int i;
  thread_t thr_e, ret_thr;
  void *status;
  printf("D: In thread D...\n");
  if (thr_create(NULL, 0, sub_e, NULL, THR_NEW_LWP, &thr_e))
  fprintf(stderr,"Can't create thr_e\n"), exit(1);
  printf("D: Created thread E:%d\n", thr_e);
  printf("D: Continue B thread = %d\n", thr_b);
  thr_continue(thr_b);
  printf("D: Join E thread\n");
  if(thr_join(thr_e,(thread_t *)&ret_thr, &status))
  fprintf(stderr,"thr_join Error\n"), exit(1);
  printf("D: E thread (%d) returned thread (%d) w/status %d\n", thr_e,
  ret_thr, (int) status);
  /* process
  for (i=0;i<1000000*(int)thr_self();i++);
  printf("D: Thread exiting...\n");
  thr_exit((void *)55);
  void * sub_e(void *arg)
  int i;
  thread_t ret_thr;
  void *status;
  printf("E: In thread E...\n");
  printf("E: Join A thread\n");
  if(thr_join(thr_a,(thread_t *)&ret_thr, &status))
  fprintf(stderr,"thr_join Error\n"), exit(1);
  printf("E: A thread (%d) returned thread (%d) w/status %d\n", ret_thr, ret_thr, (int) status);
  printf("E: Join B thread\n");
  if(thr_join(thr_b,(thread_t *)&ret_thr, &status))
  fprintf(stderr,"thr_join Error\n"), exit(1);
  printf("E: B thread (%d) returned thread (%d) w/status %d\n", thr_b, ret_thr, (int) status);
  printf("E: Join C thread\n");
  if(thr_join(thr_c,(thread_t *)&ret_thr, &status))
  fprintf(stderr,"thr_join Error\n"), exit(1);
  printf("E: C thread (%d) returned thread (%d) w/status %d\n", thr_c, ret_thr, (int) status);
  for (i=0;i<1000000*(int)thr_self();i++);
  printf("E: Thread exiting...\n");
  thr_exit((void *)44);
  void sub_f(void arg)
  int i;
  printf("F: In thread F...\n");
  while (1) {
  for (i=0;i<10000000;i++);
  printf("F: Thread F is still running...\n");
  OUTPUT:
  # /emc/smithr15/solthread
  Main thread = 1
  rc = -1Can't create thr_b
  rc = -1#
  Any ideas as to what -1 indicates and how to solve this?
  Thanks for your response,
  dedham_ma_man

  ok, my bad. I wasn't linking in the -lthread library.
  Thanks anyway.

• Bought Pac-Man, Downloads but will not show up in my libary. Charged 3 time

  Ok, I went to the music store, then went to games and I signed in and purchased Pac-Man. Everything is cool, it downloads pretty quickly, I belive it was 8.28 mb or something like that and once its finished downloading it simply vanishes, it did not go in to my libary, or my playlist, I couldnt find it anywhere. So I checked my paypal account to see if the charge went through and when I bought movies from itunes before it charged me instantly, this time there was no charge. So I thought maybe it didnt purchase it so I try it one more time, the exact same thing happens, downloads and its no where to be found, then I check paypal still nothing, I tried one more time and it did the exact same thing. I checked my paypal the other day and it say -$15 from itunes, so i checked my invoice and it said pac-man x3 each one being $5 bucks. Its one thing to charged 3 times for the same thing but I dont even have the game to show for it. Yes I have a 5th gen ipod, yes I have the most current version of itunes and yes I had my itunes check for purchases, it says all my purchases have successfully downloaded. Does anyone know where my 3 pac-man games are, or what I need to do to get them?
  Thanks.
  Tl;dr bought pac-man, downloads successfully but does not save/stay in my libary/itunes.

  I had this exact same problem when I updated to iOS 7 , so I contacted iBooks there information to me was to completely reboot my iPad and iPhone 5s , and then when it's rebooted ( sorry delete the app before rebooting , my mistake ) after it's rebooted download app again , and ask for previous purchases to be restored , was done in seconds , and I lost 7 books , all on my devices now , if I don't read for a while they just automatically get put into the cloud , and just download to read , hope this helps . And please delete app before rebooting , john.