how do I remove refog (key logger) from Imac, OS Mojave 10.14.5?

Question

Level 1

4 points

how do I remove refog (key logger) from Imac, OS Mojave 10.14.5?

I think someone has installed reform key logger on my IMac and I need help to remove it.

In a momentary lapse, I clicked yes to a java update pop up. Around the same time a OS update was installed. Over the next few days, terminal and photo booth opened and placed themselves on my menu bar. I immediately shut down computer. On Activity monitor it shows that syslogd is active in root - I read this was refog Keylogger. I deep scanned with Bitdefender, nothing showed up. I unchecked smbd full doc access in security and nothing else opened. I reinstalled Mojave. Syslogd still showing up in activity monitor.

Posted on Aug 6, 2019 12:54 AM

Reply

Answer 1

John Galt

Level 10

155,222 points

Aug 6, 2019 1:18 AM in response to johndoobs

johndoobs wrote:

... On Activity monitor it shows that syslogd is active in root - I read this was refog Keylogger.

It is not.

Get rid of "Bitdefender". It is categorically worthless.

I happen to know that Refog Mac Keylogger installs in the folder /Library/.smoke/Refog.app which is hidden. In Safari's URL field, type (or copy/paste):

file:///Library/.smoke/

Unless it is actually installed there, Safari will report "No file exists at the address file:///Library/.smoke/"

That is only one example of a keylogger app among many others. If you inadvertently installed something nefarious, determining what it is and eradicating it can be nearly impossible. The most expedient remedy would be to restore a Time Machine backup created prior to the intrusion. To do that read Recover all your files on Mac.

Reply

how do I remove refog (key logger) from Imac, OS Mojave 10.14.5?

Similar questions