I may have a key logger in my software...review my terminal please!
I found a recent question where someone showed step by step instructions to find the key logger, I followed through and got this.
Please and thank you!
Last login: Fri Jan 13 20:21:52 on console
Jenahs-MacBook-Pro:~ jenahsmith$ kextstat -kl | awk '!/com\.apple/{printf "%s %s\n", $6, $7}'
Jenahs-MacBook-Pro:~ jenahsmith$ sudo launchctl list | sed 1d | awk '!/0x|com\.(apple|openssh|vix)|edu\.mit|org\.(amavis|apache|cups|isc|ntp|postfi x|x)/{print $3}'
Password:
com.DesignScience.DSMTTool
com.pref.net-preferences
com.adobe.ARMDC.Communicator
0646WatdlyCv5T
com.oracle.java.Helper-Tool
com.wacom.displayhelper
com.adobe.fpsaud
com.adobe.ARMDC.SMJobBlessHelper
com.wacom.TabletHelper
Jenahs-MacBook-Pro:~ jenahsmith$ launchctl list | sed 1d | awk '!/0x|com\.apple|edu\.mit|org\.(x|openbsd)/{print $3}'
com.akamai.single-user-client
com.reviversoft.MacReviver.LicenseChecker
Manroling.update
com.bittorrent.uTorrent
com.openssh.ssh-agent
com.wacom.wacomtablet
Swissfist.ltvbit
com.valvesoftware.steamclean
com.applicationstats.AppStats
com.jdibackup.ZipCloud.autostart
com.adobe.ARMDCHelper.cc24aef4a1b90ed56a725c38014c95072f92651fb65e1bf9c8e43c37a2 3d420d
Swissfist.AppRemoval
com.appart.AppArt
Swissfist.download
com.oracle.java.Java-Updater
Listchack.AppRemoval
Swissfist.update
com.jdibackup.ZipCloud.notify
Leperdvil.AppRemoval
com.skype.skype.21144
Smokyashan.update
Jenahs-MacBook-Pro:~ jenahsmith$ ls -1A /e*/mach* {,/}L*/{Ad,Compon,Ex,Fram,In,Keyb,La,Mail/Bu,P*P,Priv,Qu,Scripti,Servi,Spo,Sta} * L*/Fonts 2> /dev/null
/Library/Components:
/Library/Extensions:
ACS6x.kext
ATTOCelerityFC8.kext
ATTOExpressSASHBA2.kext
ATTOExpressSASRAID2.kext
ArcMSR.kext
CalDigitHDProDrv.kext
EPSONUSBPrintClass.kext
FTDIKext.kext
HighPointIOP.kext
HighPointRR.kext
PromiseSTEX.kext
SiLabsUSBDriver64.kext
SoftRAID.kext
Wacom Tablet.kext
hp_io_enabler_compound.kext
/Library/Frameworks:
AEProfiling.framework
AERegistration.framework
AudioMixEngine.framework
DivXInstallerUtilities.framework
MT6Lib.framework
NyxAudioAnalysis.framework
PluginManager.framework
WacomMultiTouch.framework
iTunesLibrary.framework
/Library/Input Methods:
/Library/Internet Plug-Ins:
AdobePDFViewer.plugin
AdobePDFViewerNPAPI.plugin
Disabled Plug-Ins
Flash Player.plugin
JavaAppletPlugin.plugin
PepperFlashPlayer
Quartz Composer.webplugin
Silverlight.plugin
Unused
WacomTabletPlugin.plugin
flashplayer.xpt
/Library/Keyboard Layouts:
/Library/LaunchAgents:
com.adobe.ARMDCHelper.cc24aef4a1b90ed56a725c38014c95072f92651fb65e1bf9c8e43c37a2 3d420d.plist
com.oracle.java.Java-Updater.plist
com.wacom.wacomtablet.plist
/Library/LaunchDaemons:
0646WatdlyCv5T.plist
com.DesignScience.DSMTTool.plist
com.adobe.ARMDC.Communicator.plist
com.adobe.ARMDC.SMJobBlessHelper.plist
com.adobe.fpsaud.plist
com.limited.net-preferences.plist
com.oracle.java.Helper-Tool.plist
com.phytophenologicalUpd.plist
com.wacom.TabletHelper.plist
com.wacom.displayhelper.plist
/Library/PreferencePanes:
Flash Player.prefPane
JavaControlPanel.prefPane
WacomTablet.prefpane
/Library/PrivilegedHelperTools:
com.DesignScience.DSMTTool
com.adobe.ARMDC.Communicator
com.adobe.ARMDC.SMJobBlessHelper
com.wacom.TabletHelper.app
/Library/QuickLook:
iBooksAuthor.qlgenerator
iWork.qlgenerator
/Library/QuickTime:
AppleIntermediateCodec.component
AppleMPEG2Codec.component
/Library/ScriptingAdditions:
/Library/Spotlight:
Microsoft Office.mdimporter
iBooksAuthor.mdimporter
iWork.mdimporter
/Library/StartupItems:
/etc/mach_init.d:
/etc/mach_init_per_login_session.d:
/etc/mach_init_per_user.d:
Library/Address Book Plug-Ins:
SkypeABCaller.bundle
SkypeABChatter.bundle
SkypeABDialer.bundle
SkypeABSMS.bundle
Library/Fonts:
215000E.ttf
A Box For 2.ttf
A Box For 3.ttf
A Box For.ttf
AlexBrush-Regular.ttf
Always In My Heart.ttf
BLESD___.otf
Copy 003.ttf
Elletniin.ttf
Freakshow.ttf
GreatVibes-Regular.ttf
KGFaithHopeAndLove.ttf
Liima, paperi, sakset2.ttf
Mustasurma.ttf
NastyMSG.ttf
NastyMSG2.ttf
Phorssa.ttf
SKHipsters.ttf
What is this - some kind of joke.ttf
ransom.ttf
Library/Input Methods:
.localized
Library/Internet Plug-Ins:
.DS_Store
CitrixOnlineWebDeploymentPlugin.plugin
Library/Keyboard:
de-dynamic.lm
en-dynamic.lm
es-dynamic.lm
fr-dynamic.lm
it-dynamic.lm
langlikelihood.dat
langlikelihood.dat-shm
langlikelihood.dat-wal
Library/Keyboard Layouts:
Library/KeyboardServices:
TextReplacements.db
TextReplacements.db-shm
TextReplacements.db-wal
Library/LanguageModeling:
da-dynamic.lm
de-dynamic.lm
en-dynamic.lm
es-dynamic.lm
fi-dynamic.lm
fr-dynamic.lm
it-dynamic.lm
nb-dynamic.lm
nl-dynamic.lm
pl-dynamic.lm
pt-dynamic.lm
sv-dynamic.lm
tr-dynamic.lm
Library/LaunchAgents:
.DS_Store
Leperdvil.AppRemoval.plist
Listchack.AppRemoval.plist
Manroling.update.plist
Smokyashan.update.plist
Swissfist.AppVemoral.plist
Swissfist.btvlit.plist
Swissfist.dolnwoad.plist
Swissfist.uadpte.plist
com.akamai.single-user-client.plist
com.appart.AppArt.plist
com.applicationstats.AppStats.plist
com.bittorrent.uTorrent.plist
com.jdibackup.ZipCloud.autostart.plist
com.jdibackup.ZipCloud.notify.plist
com.reviversoft.MacReviver.LicenseChecker.plist
com.valvesoftware.steamclean.plist
Library/PreferencePanes:
AkamaiNetSession.prefPane
Library/Services:
.localized
Jenahs-MacBook-Pro:~ jenahsmith$ osascript -e 'tell application "System Events" to get name of every login item' 2> /dev/null
iTunesHelper, uTorrent, Google Drive, Messages, MacReviver
Jenahs-MacBook-Pro:~ jenahsmith$
MacBook Pro (Retina, 13-inch, Late 2012), iOS 10.1.1
