I believe that I have a keylogger or some sort of spyware installed on my mac, please help!

I would recommend staying away from scanning software that you get from a thrid party vendor. Mac's are designed to "repair" themselves. If you are wanting to have your system checked I would recommend finding an Apple authorized place to do that or take it to the Apple store. These online softwares are okay, but why take your Mercedez to a guy who works on Chevy's? Get what I mean.

No I don't think you have a keylogger. What leads you to think this?

what makes you think it's a keylogger

i also think i may have a keylogger on ym mac as someone tried to log into my facebook account from a country i have never been to.

can someone check to see if there is anything on my mac

out put after 1:

com.rim.driver.BlackBerryUSBDriverInt (0.0.74)

com.rim.driver.BlackBerryUSBDriverVSP (0.0.74)

output after 2:

com.rim.BBDaemon

com.mac.adg.SquidMan

com.adobe.fpsaud

outputafter 3:

com.rim.BBLaunchAgent

com.rim.RimAlbumArtDaemon

com.spotify.webhelper

com.pando.PMB

com.google.keystone.user.agent

com.codecm.uploader

com.valvesoftware.steamclean

com.google.Chrome.framework.service_process/Users/samuelheller/Library/Applicati on_Support/Google/Chrome

com.valvesoftware.steam.ipctool

output after 4:

/Library/Components:

/Library/Extensions:

/Library/Frameworks:

Adobe AIR.framework

DivX Toolkit.framework

NyxAudioAnalysis.framework

PluginManager.framework

RIM_VSP.framework

RimBlackBerryUSB.framework

iTunesLibrary.framework

/Library/Input Methods:

/Library/Internet Plug-Ins:

DirectorShockwave.plugin

DivXBrowserPlugin.plugin

Flash Player.plugin

JavaAppletPlugin.plugin

NP-PPC-Dir-Shockwave

OVSHelper.plugin

OfficeLiveBrowserPlugin.plugin

PandoWebPlugin.plugin

Quartz Composer.webplugin

QuickTime Plugin.plugin

Silverlight.plugin

Unity Web Player.plugin

Unused

flashplayer.xpt

iPhotoPhotocast.plugin

nsIQTScriptablePlugin.xpt

/Library/Internet Plug-Ins (Disabled):

Flash Player.plugin

/Library/Keyboard Layouts:

/Library/LaunchAgents:

com.rim.BBAlbumArtCacher.plist

com.rim.BBLaunchAgent.plist

/Library/LaunchDaemons:

com.adobe.fpsaud.plist

com.apple.third_party_32b_kext_logger.plist

com.mac.adg.SquidMan.plist

com.rim.BBDaemon.plist

/Library/PreferencePanes:

DivX.prefPane

Flash Player.prefPane

MediaBooster.prefPane

/Library/PrivilegedHelperTools:

com.mac.adg.SquidMan

/Library/QuickLook:

GBQLGenerator.qlgenerator

iWork.qlgenerator

/Library/QuickTime:

AppleIntermediateCodec.component

AppleMPEG2Codec.component

DivX Decoder.component

DivX Encoder.component

/Library/Spotlight:

AppleWorks.mdimporter

GBSpotlightImporter.mdimporter

Microsoft Office.mdimporter

iWork.mdimporter

/Library/StartupItems:

/etc/mach_init.d:

dashboardadvisoryd.plist

/etc/mach_init_per_login_session.d:

/etc/mach_init_per_user.d:

Library/Address Book Plug-Ins:

SkypeABDialer.bundle

SkypeABSMS.bundle

Library/Fonts:

Library/Input Methods:

.localized

Library/Internet Plug-Ins:

Library/Keyboard Layouts:

Library/LaunchAgents:

.DS_Store

com.apple.FTMonitor.plist

com.apple.FolderActions.enabled.plist

com.apple.FolderActions.folders.plist

com.apple.imagent.plist

com.apple.marcoagent.plist

com.codecm.uploader.plist

com.google.keystone.agent.plist

com.pando.PMB.plist

com.spotify.webhelper.plist

com.valvesoftware.steamclean.plist

Library/PreferencePanes:

output after 5: Skype, SpeechSynthesisServer, iTunesHelper, Steam, Spotify, Android File Transfer Agent

Please if you read this could you please help me too?? I also have the same problem and have followed your instructions and would like to post my findings so you can help me with the outputs I recieved...I am desperate trying to sort out a series of very mysterious happenig in my life right now which are driving me crazy....thank you.

If you can please help me....this is what I got..please.

Output after 1st:

localhost:~ lamalika$

Output after 2nd

1. com.google.keystone.daemon
2. com.adobe.fpsaud

Output after 3rd

com.google.keystone.system.agent

Output after 4th

localhost:~ lamalika$ ls -1A /e*/mach* {,/}L*/{Ad,Compon,Ex,Fram,In,Keyb,La,Mail/**,P*P,Priv,Qu,Scripti,Servi,Spo,Sta} * L*/Fonts 2> /dev/null

/Library/Components:

/Library/Extensions:

/Library/Frameworks:

1. NyxAudioAnalysis.framework
2. PluginManager.framework
3. TSLicense.framework
4. iLifeFaceRecognition.framework
5. iLifeKit.framework
6. iLifePageLayout.framework
7. iLifeSQLAccess.framework
8. iLifeSlideshow.framework
9. iTunesLibrary.framework

/Library/Input Methods:

/Library/Internet Plug-Ins:

CitrixICAClientPlugIn.plugin

Flash Player.plugin

Flip4Mac WMV Plugin.plugin

JavaAppletPlugin.plugin

OfficeLiveBrowserPlugin.plugin

Quartz Composer.webplugin

QuickTime Plugin.plugin

Silverlight.plugin

Unity Web Player.plugin

Unused

1. flashplayer.xpt
2. googletalkbrowserplugin.plugin
3. iPhotoPhotocast.plugin

npgtpo3dautoplugin.plugin

nsIQTScriptablePlugin.xpt

o1dbrowserplugin.plugin

/Library/Keyboard Layouts:

/Library/LaunchAgents:

com.google.keystone.agent.plist

/Library/LaunchDaemons:

1. com.adobe.fpsaud.plist
2. com.apple.third_party_32b_kext_logger.plist
3. com.google.keystone.daemon.plist

/Library/PreferencePanes:

Citrix online plug-in.prefPane

Flash Player.prefPane

Flip4Mac WMV.prefPane

/Library/PrivilegedHelperTools:

/Library/QuickLook:

1. GBQLGenerator.qlgenerator
2. iWork.qlgenerator

/Library/QuickTime:

AC3MovieImport.component

AppleIntermediateCodec.component

AppleMPEG2Codec.component

Flip4Mac WMV Advanced.component

Flip4Mac WMV Export.component

Flip4Mac WMV Import.component

Perian.component

/Library/Spotlight:

1. AppleWorks.mdimporter
2. GBSpotlightImporter.mdimporter
3. LogicPro.mdimporter

Microsoft Office.mdimporter

iWork.mdimporter

/Library/StartupItems:

/etc/mach_init.d:

dashboardadvisoryd.plist

/etc/mach_init_per_login_session.d:

/etc/mach_init_per_user.d:

Library/Address Book Plug-Ins:

1. SkypeABDialer.bundle
2. SkypeABSMS.bundle
3. YMsgrCallABPlugin.bundle
4. YMsgrMsnABPlugin.bundle
5. YMsgrSmsABPlugin.bundle
6. YMsgrYimABPlugin.bundle

Library/Fonts:

Library/Frameworks:

1. SamsungKiesFoundation.framework
2. SamsungKiesSerialPort.framework

Library/Input Methods:

.localized

Library/Internet Plug-Ins:

.DS_Store

KickStartPlugIn64.plugin

Library/Keyboard Layouts:

Library/LaunchAgents:

1. com.apple.CSConfigDotMacCert-***-SharedServices.Agent.plist
2. com.apple.FolderActions.enabled.plist
3. com.apple.FolderActions.folders.plist

Library/PreferencePanes:

Output After 5th

iTunesHelper, Safari, Skype, KiesAgent, KiesViaWiFiAgent, fuspredownloader

localhost:~ lamalika$

Thank you so so much

<Email Edited By Host>

tololo wrote:

Please if you read this could you please help me too?? I also have the same problem

Note that the last three or four users who tried to jump on have not been assisted by anybody that knows much about this, so I suspect they are no longer monitoring this thread. You'd probably get better results by starting with a new subject and describe exactly what symptoms you are observing along with the Mac model and OS X version you are using.

My attention was called to this thread, which I had stopped reading more than a year ago. I'm only commenting on it now because I'm saddened by this outpouring of agony.

I answer a few questions on this site, but only as many as I have time for, and only the ones I choose. I cannot and do not take requests.

Another thing I can't do is computer forensics; that is, the investigation of criminal tampering with a computer. The most that I could do is rule in or out the presence of one of the commercial keylogging products that I happen to know of. Those products are not designed for illegal wiretapping. They're designed to lawfully monitor the activities of employees or children. My knowledge of the subject is far from complete, and in any case, it would be quite easy for a sophisticated attacker with access to the computer to install a keylogger that I couldn't detect by the means at my disposal here. If I were going to install a keylogger on someone's computer, I could, and would, do it in a way that wouldn't be so easily detectable.

Even a complete forensic analysis wouldn't rule out the presence of a hardware keylogger, which is a small, inconspicuous device that needs no software in order to operate. It could, for example, be hidden inside an ordinary-looking USB cable. Even an expert might not be able to find such a device.

A motivated attacker could take even more extreme measures, by planting listening devices in the victim's home or car.

Wiretapping is a crime. Please, ladies -- as most of you seem to be -- if you think you're a victim of that crime, look to a lawyer, a support group, or the police for help. Don't look to a stranger on a public message board. Anyone who's willing to take the risk of prosecution to tamper with your computer may be willing to take other risks, too. Be safe.

Thank you so much for replying and I completely understand what you are saying...could you please help me rule out the presence of the commercial keylogging you may happen to know of? Iam pretty sure the person I am talking about is very savvy but I am somehow betting that he may be betting on my ignorance to go undetected with something very simple...please.

Once I have something to base it on I can move forward but right now I am empty handed and have nothing but my suspicions and this has gotten me nowhere when seeking help. I have to start my own investigation for now and this is my beginning. I understand the risk of this but I really have no other choice for now.

The right way to use this site is first to search for answered questions similar to yours (which you must already have done), and if you don't find a solution that way, to start your own thread. Almost any reasonable question will get some kind of response, though not always a useful one.

Thank you

Hi Linc and everyone.

Wondering if you could help me decipher if there's something on my computer too, please.

Thanks very much

Step 1:

com.digidesign.iokit.DigiDal (10.0f56)

com.RME.driver.FirefaceAudioDriver (3.06)

com.paceap.kext.pacesupport.snowleopard (5.9)

com.caiaq.driver.NIUSBMaschineControllerDriver (2.5.2)

Step 2:

org.samba.smbd

org.samba.nmbd

com.paceap.pacesupport

com.paceap.eden.licensed

com.digidesign.fwfamily.helper

com.adobe.fpsaud

Step 3

de.rme-audio.hdspAgent

de.rme-audio.firefaceUSBAgent

de.rme-audio.firefaceAgent

com.google.keystone.user.agent

step 4

/Library/Components:

/Library/Extensions:

/Library/Frameworks:

AFnd.framework

CFnd.framework

DAE.framework

DFW.framework

DHS.framework

DSI.framework

DSPManager.framework

DUI.framework

DigiPlatformSupport.framework

DigiStreamManager.framework

DigidesignFWDriver.framework

DirectIO.framework

NyxAudioAnalysis.framework

PluginManager.framework

SonicBirth.framework

TSLicense.framework

iTunesLibrary.framework

/Library/Input Methods:

/Library/Internet Plug-Ins:

Flash Player.plugin

Flip4Mac WMV Plugin.plugin

JavaAppletPlugin.plugin

NP-PPC-Dir-Shockwave

Quartz Composer.webplugin

QuickTime Plugin.plugin

Silverlight.plugin

flashplayer.xpt

iLok Client Helper Plugin

iLokClientHelper.plugin

nsIQTScriptablePlugin.xpt

/Library/Keyboard Layouts:

/Library/LaunchAgents:

de.rme-audio.firefaceAgent.plist

de.rme-audio.firefaceUSBAgent.plist

de.rme-audio.hdspAgent.plist

/Library/LaunchDaemons:

PACESupport.plist

com.adobe.fpsaud.plist

com.digidesign.fwfamily.helper.plist

com.paceap.eden.licensed.plist

/Library/PreferencePanes:

DigidesignFireWireAudio.prefPane

DigidesignMbox2.prefPane

Flash Player.prefPane

Flip4Mac WMV.prefPane

NIUSBAudio.prefPane

/Library/PrivilegedHelperTools:

Google Drive Icon Helper

licenseDaemon.app

/Library/QuickLook:

iWork.qlgenerator

/Library/QuickTime:

AppleIntermediateCodec.component

AppleMPEG2Codec.component

Flip4Mac WMV Advanced.component

Flip4Mac WMV Export.component

Flip4Mac WMV Import.component

/Library/Spotlight:

AppleWorks.mdimporter

Microsoft Office.mdimporter

iWork.mdimporter

/Library/StartupItems:

Digidesign Mbox 2

DigidesignLoader

/etc/mach_init.d:

dashboardadvisoryd.plist

/etc/mach_init_per_login_session.d:

/etc/mach_init_per_user.d:

Library/Address Book Plug-Ins:

Library/Fonts:

Library/Input Methods:

.localized

Library/Internet Plug-Ins:

Library/Keyboard Layouts:

Library/LaunchAgents:

com.google.keystone.agent.plist

Library/PreferencePanes:

.FA686BFF5186C9DDF6D8

.U9HSPVH6XNHB

.VAOC8YCKM1X4

Step 5

iTunesHelper, Dropbox, NIHardwareAgent

salscopis wrote:

Hi Linc and everyone.

Wondering if you could help me decipher if there's something on my computer too, please.

As Linc just told the last user:

The right way to use this site is first to search for answered questions similar to yours (which you must already have done), and if you don't find a solution that way, to start your own thread.

I am unable to carry out this search to finding the spyware. After I input this information into my terminal, when I get to the point of inputing my password it will not let me type it or anything else. My password works everywhere else needed on my computer, but not the terminal after I have copied and pasted the information listed above. I am hoping to ascertain the type of sypware on my computer. I know for a fact that it is there and it has created havock in my life. This person has phisical access to my computer.

Is there spyware that will prevent inputing this information into the terminal?

Note that when you type your password into Terminal, it will not actually show up, not even as "••••." So even if you can't see anything, just type your password and press Return.