What should I use to scan for Trojans or Keyloggers?

I've heard conflicting conversations about not using anti-virus or that OS X has built in protection, but I wanted to know what the best way to check for Trojans or Keyloggers is so I can give my computer a looking-over before backing it up.
I'm using OS X 10.6.8

Conversations?  There have been a few of those.
I'm not aware of a tool that's particularly reliable about detecting malware, nor one that might (for instance) catch hardware keyloggers.
The usual questions around your situation apply; I don't know how you use the system, nor what exposures or risks you might have or might face.  For instance, how sensitive is your information, who has had access, and what are the circumstances associated with the access, and what's been loaded onto the system? 
If you're incautious or blasé about your computing practices and fond of downloading from torrents or acquiring cracked software or downloads from sketchy sites, then the anti-malwaretools generally won't save you.
In general: just back it up, back it up regularly, and keep various copies of the backups offline or remote, or both.  Backups and caution are among the best available anti-malware tools.
If you're fond of installing random stuff and particularly of entering your administrative password when prompted — that password is the proverbial keys to the security kingdom, to your address book, etc — or if your login passwords have been compromised (or have kids around that install all sorts of Free Stuff! and Free Games!), then change all your passwords, and install Little Snitch or equivalent, or implement and use network perimeter monitoring.  These monitoring tools catch (unexpected) outbound network connections, such as that Facebook watering hole attack.
Better still: upgrade to 10.7 or 10.8 as your hardware permits, as 10.6 is rather old and lacking some of the newer capabilities here, such as Gatekeeper.  Disable the Java web start plug-in to disable Java (and don't install Java after you upgrade to 10.7 or 10.8), and remove Adobe Flash Player, and disable the "open safe attachments" setting.  And if you're (necessarily, or otherwise) paranoid, install Little Snitch or network perimeter monitoring.
If you feel obligated to use a malware scanner (the hit rates on the malware-scanning tools are far from great, and the implementations of most aren't that much different from the malware itself in terms of how the scanning software can insinuate itself into the system and can sometimes then trigger issues with stability and operations), then ClamAV is the usual recommendation around the forums.  OS X Server includes that, and there are various discussions around getting ClamAV going on OS X client.
Once your operating system software has been compromised, the usual path is a wipe and reinstall, or a wipe and install of a backup prior to the breach, followed by steps to prevent a reoccurance.  Decontamination of a system is difficult, at best.  If your hardware has been compromised, you're in deep sneakers. 
If you want to be or need to be paranoid due to the information involved or folks that have had unfettered access to your system hardware, then check for dongles or other unexpected external devices, and start replacing your equipment. The "better grade" keyloggers can be stored in USB devices, and can be mounted within your hardware.  The better-grade gear can be difficult to locate, short of disassembly.  Also check your local network, as it's feasible to monitor traffic there, whether within a modem, or within a device added to your network.
Again, how paranoid you wanr or need be here depends highly on what you've been up to, and who might be after you, and a whole host of other details...

Similar Messages

  • Virtualization...what should i use?

    Hallo.
    I'm planning  to virtualize a Quad core / 4gb ram. I'd like to build 2-4 virtual machines for testing some advanced features of Asterisk / MySQL and some other well known softwares. I have some licenses for Asterisk addons from digium, so i'd like to maintain them over time, using the virtual machine and moving it.
    What should i use? I don't need fancy 3D Acceleration, just a common abstraction for all the hw i have (pretty standard: usb, nics, harddisks...).
    I was thinking about Xen Server or Virtual Box (anyway, i'm using them for my personal lab, so i'd prefer solutions that don't require a license...).
    The solution should be "headless", i don't want to be forced to login to X every time the guest systems need to be booted...
    Thanks in advances.
    See Ya
    Luca

    i've started playing around with QEMU/KVM a couple days ago, and i like it. was using vbox before, which i didn't.
    i haven't noticed any mouse lag yet, after installing a few of the main distros i wanted to try out again: fedora 19, debian wheezy, ubuntu (latest, whatever the no.). only trouble i have that so far i wasn't able to get a mouse working properly in an archlinux guest    probably something i'm doing wrong, but couldn't figure it out yet.
    tried a few GUI frontends, but found that i'm better off starting VMs from the command line: less confusing, and all of the GUI apps i tried had some quirks, like didn't find proper directories or executables.
    using KVM and virtio drivers, it's pretty fast; admittedly not as fast a bare metal install, but not slower than i remember vbox (just my impression, no benchmarking or such). assuming i'll get the arch guest trouble sorted out, i'll stick with KVM/QEMU.
    Last edited by phanisvara (2013-08-02 11:43:23)

  • What should I use to clean the trackpad?

    I bought iKlear to clean the screen of my MacBook and it works great. I have been using it for years on my iBook. I was reading the directions and it says not to use it on the trackpad. I had used it on my iBook trackpad with no problems. What should I use then to clean my trackpad? Why should I not use it on my trackpad? Anyone have suggestions or used iKlear on their trackpad despite iKlear's warnings?
    Thom

    A very slightly damped cotton cloth works wonders. Just be sure to wring it out as best you can so no liquid gets anywhere you don't want it to be.

  • Should I use dynamic SQL for simple updates?

    Please tell me, out of the two options given below, which option should i use to update columns in a table and why?
    what will be the performance difference between the two approaches?
    Please note: The options given below is just for an example
    procedure proc1(var1 varchar2)
    is
    begin
    update tab1 set col1 = var1;
    commit;
    end;
    procedure proc1(var1 varchar2)
    is
    sqlstr varchar2(1000);
    begin
    sqlstr := 'update tab1 set col1 = :v1';
    execute immediate sqlstr using var1;
    commit;
    end;
    Thanks
    Arun

    Arun G Nath wrote:.
    Should I use dynamic SQL for simple updates? No way, not a chance.
    Performance is not the issue (as long as you are using bind variables).
    But with dynamic SQL, you loose compile time checking; you do not know until runtime if the SQL is valid.
    You also loose the dependency between proc1 and tab1, which can be found only if you search user_source.
    (And in either case, you probably want to remove the commit)
    Regards
    Peter

  • What should I use? Vectors or...

    I'm storing a large amount of Person objects, this is for a type of game I'm trying to create where it saves the players name, wins, losses, rank, etc in each Person object (this will all be in a text file also). I want these so that they can be sorted by any one of these statistics. I'm not sure how to go about this. Vectors were the first thing that came to my mind, but then I thought about LinkedLists, but I don't know much about them yet, I just know it's an option. My brother told me use LinkedLists, but that's all he would tell me. What should I use for this kind of task? All suggestions are welcome, I need a little help with this design. One more thing about this, players will be added and removed also. I really need some insight, thanks.
    This is a side question, if someone could answer it, that would be nice, otherwise it's ok. How does a LinkedList differ from a Vector? Can't everything a LinkedList do, a Vector can do also with the same amount of ease? All I know that LinkedLists point to the next and previous nodes or something like that, not really sure what its advantage is. Thank you.

    An array memory for holding each of the objects is allocated when you create it, hence you have to define the number of object you want when you create it.
    +--+--+--+--+--+--+
    |I0|I1|I2|I3|I4|I5|  < Indexs
    +--+--+--+--+--+--+
    |V0|V1|V2|V3|V4|V5| < Values
    +--+--+--+--+--+--+Pro: you can access the data quickly, as you have a direct refrence to each value, via it's index.
    Con: Fixed size
    Con: Waisted space
    A Vector is a growable array.
    It does this by creating a fixed sized array, then waiting until it's full, then creating a bigger one and then copying all the data from the smaller, old array to the new, bigger array. This means that every now and again you suffer a performce hit as your array grows.
    Pro: you can access the data quickly, as you have a direct refrence to each value, via it's index.
    Pro: Not a fixed size
    Con: Will slow down when it grows.
    Con: Waisted space
    A Linked List does not have this problem each element holds the refrence to the next, unlike an array where the "system" holds a refrence to each element. This reduces its memory footprint, however its slower to search through as you have to loop through all the objects.
    +----+----+
    |DATA|LINK|
    +----+--|-+
            |     +----+----+
            +-->  |DATA|LINK|
                  +----+----+Pro: Growable
    Pro: Size
    Con: Slow to search
    There are things you can do to speed up a linked list (double linked lists & improve the order in which they are added) but it's still slow.
    I'll leave choosing the data structure to you.

  • What should i input in server for setting mail for ipad 2 just for wifi no 3G

    what should i put in server for create mail when i just use as wifi,,no 3G in ipad 2...

    You need to contact your ISP for the correct settings.
    For incoming mail, the server is usually something like pop3.ISPname.com
    For outgoing it is something like smtp.ISPname.com

  • X.400 VS FTAM - What should be used?

    Hi Gurus,
    We are planning GTS Customs management and by SAP
    there are 2 ways for comunicating with the customs allowed:
    X.400 and FTAM
    What should be used?
    I know X.400, but FTAM I do not know.
    Is it difficult to set up FTAM and what do we need for FTAM
    and what needs to be done for FTAM?
    Thanks
    Regards
    Dieter

    From my point of view FTAM is the better solution and X.400 is old fashioned.
    FTAM is faster and you don't have to pay for every call like with the X.400.
    You can setup up the communication to customs via SAP PI (e.g. it.x-atlas by itelligence) and you need a FTAM router.

  • Is it possible to raise the bit rate of songs higher than 256 on iTunes? If not what should i use or do to raise the bit rate of songs?

    Is it possible to raise the bit rate of songs higher than 256 on iTunes? If not what should i use or do to raise the bit rate of songs?

    Songs you rip from CD can have their bitrate increased to a maximum of 320Kbps from the iTunes preferences; alternatively, the default encoder can be changed to a lossless one. Songs from other sources have a fixed maximum bitrate.
    (67928)

  • Hi, what can i use location service for find my lost macbookAir

    hi, what can i use location service for find my lost macbookAir

    If you're an iCloud user and had "Find my Mac" enabled in the System Preferences, then you can go to www.icloud.com, sign in and click Find my iPhone.

  • What should I use as parameter name in call.addParameter in WS DII client

    I'm using dynamic invocation interface to call a web service in Oracle OC4J.
    The part of WSDL "Types" is:
    <element name="myType" type="tns:myType" />
       <complexType name="myType">
         <sequence>
           <element name="sss" nillable="true" type="string" />
         </sequence>
      </complexType>
    ...My J2SE client has following code I belive create problem:
    call.addParameter("sss", input,MyType.class, ParameterMode.IN);when I invoke the web service, I got error:
    javax.xml.rpc.soap.SOAPFaultException: caught exception while handling request: unexpected element name: expected={http://mypackage/B2BGateway/types}myType, actual=sss
    I changed my code according to this message as it expected to be:
    call.addParameter("{http://mypackage/types}myType",
         input,MyType.class, ParameterMode.IN);I got :
    HTTP transport error: javax.xml.soap.SOAPException: java.security.PrivilegedActionException: javax.xml.soap.SOAPException: Error parsing envelope: (2, 179) Expected name instead of {.
    seems the "{" should not be part of parameter name.
    Then, what should I use as parameter name.
    BTW, the web service server side code should works fine as I can test it with others client.
    Thanks

    Moved one step further:
    I changed abit to code:
    call.addParameter("myType", input,MyType.class, ParameterMode.IN);I can see the server side got SOAP request:
       <env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
          <env:Body>
             <myType>
                <ans1:sss xmlns:ans1="http://mypackage/types/">abc</ans1:sss>
             </myType>
          </env:Body>
       </env:Envelope>As you can see, the problem in the generated request is "myType" does not have namespace
    Could someone tell me how to fix it.
    Thanks
    Edited by: John618 on Feb 21, 2009 5:03 PM

  • What should I use to burn an iMovie project to a DVD that will play in the TV?

    What should I use to burn an iMovie project to a DVD that will play in the TV?

    try google
    http://www.daniusoft.com/convert-imovie/imovie-to-dvd.html
    Thread
    https://discussions.apple.com/thread/4217823?start=0&tstart=0
    https://discussions.apple.com/docs/DOC-3711

  • If i  cannot instal adobe flash driver, what should i use?

    if i cannot install adobe flash driver, what should i use?

    Nothing else will work. Why can't you install it?

  • Should i use progressive scan?

    New to DVcam work, got a sony pd150 and filming an award ceremony.
    Usually shoot in 16:9 but this doesn't work if you shoot progressive mode
    I understand progressive gives better quality, but at the expense of lower frame rate, but this doesn't really bother me as its a static camera pointed at a stage
    should i use progressive scan and 'scale up' to fill a 16:89 frame, or am i better off shooting interlaced at 16:9?

    Ok, thanks.
    Most of the footage will end on youtube but they want a dvd doing too.
    It's static camera stuff, awards night, high contrast, dark room, spotlit stage.
    Should I consider shooting this project in 4:3? Is progressive scan that much of an improvement?
    Your FCE book rocks btw.

  • What PPI should I use when exporting for a video project?

    I shoot RAW photos.  I like and use Premier Elements 11 to make video.  Frequently I insert photos in the videos and enjoy using the Pan and Zoom technique (frequently credited to Ken Burns).
    Resizing photos helps Premier Elements to run smoothly.  The LR Export command makes it easy.  Using PSD files works well in Premier Elements.  However, I am confused about settings.
    My understanding is that if no Pan&Zoom or cropping is to be done in the video the export should be 1920x1080.  If Pan&Zoom is planned, the setting should be higher by about 50%.  LR makes it simple by letting you specify the "Long Edge" so the setting would be 2880.   The short edge will match the original. 
    What about "Pixels Per Inch" for a HD 1920x1080 video project that may be played on a big HD TV or smaller YouTube?  There is plenty of information about PPI for printing and computer monitors, but not HD Video. 
    Here is screen capture for reference:
    What should the pixels per inch be set at to match 1920x1080 video?  The 140 setting is a complete guess!
    Thanks in advance!
    Bill

    whsprague wrote:
    My understanding is that if no Pan&Zoom or cropping is to be done in the video the export should be 1920x1080.  If Pan&Zoom is planned, the setting should be higher by about 50%.  LR makes it simple by letting you specify the "Long Edge" so the setting would be 2880.   The short edge will match the original. 
    The above sentence from your first post is the correct answer with a few changes as to what settings you need to use in LR's Export module.
    Anytime you "resize" an image it will lose sharpness unless you apply Output Sharpening. I have no idea if Premier Elements applies sharpening, how much it applies, or how much using large raw images slows it down. The best suggestion is for YOU to resize the raw images and apply Output Sharpening that meets YOUR taste as to "crispness." That way Premier Elements will use the properly sized TIFF or JPEG images (no PNG Export in LR) with no further modifications.
    For 1080p (1920 x 1080) Videos:
    Don't use the 'Long Edge' option in LR's Export module since you want both portrait and Landscape images to have the same height. Instead simply enter W: 1920, H: 1080, and Resolution as mentioned doesn't matter. For the Output Sharpening LR's Screen Standard setting should work fine, but review the resized images at 1:1 and adjust to your taste. LR's Develop module Sharpening settings should NOT be used for this purpose. This is for the initial "capture" sharpening only.
    As you mentioned when using Zoom & Pan you will want to increase the file size proportional to the actual Zoom setting you are using inside Premier Elements:
    150% = 2880 x 1620
    200% = 3840 x 2160
    300% = 5760 x 3240
    For best results I'd limit your Zoom to 150%, especially if you’re having performance issues. You also don't want to make your image larger than its native camera raw resolution, which will reduce the sharpness. For higher Zoom settings simply Export the images full-size without using ‘Image Sizing’ or ‘Output Sharpening.’ Use 'File Settings' JPEG, sRGB, with 80 Quality setting, which will provide good results.

  • Need Help..what should i use for this

    hello friends, i have to write a program which will load an xml file reader class at run time and depending on the content of xml file i'm going to generate mapping.. e.g xml file- <MyMapping> <ATO> <security type=int> </ATO> <FIX> <symbol type=String> </FIX> </MyMapping> Now i want to change the content of xml file without restarting my running application..changes should be reflected at runtime... also my xml file will contain nearly 1000 lines..so in this case which technique should i use whether i use JAXB which will give the classes of my xml file or any other ?? Also if i use JAXB whether JAXB gives classes corrsponding to my xml nodes (e.g ATO.java as per above example).

    daitkarsachin wrote:
    hi ,
    here is my question again..my xml will have
    <Message>
    <ATO>
    <somefiled="X" type=int value=35 />
    </ATO>
    <FIX>
    <somefiled="Y" type=String value=50 />
    <FIX>
    </Message>
    Now first i have to parse this xml ..then my java program is going to accept value from user ..and depending on user specified value i've to use either ATO or FIX fields...e.g if user value is 35 then my program should use fields within ATO node.
    You will read the XML structure into some kind of memory model. When the user supplies a value you will search for a matching value (likely from a collection such as a map or list) and return the value in that object that you locate.
    what should be done for this ..
    See above.
    and what if i change values in my xml file..will i have to restart my application to load xml again ?
    If you change the file on the filesystem, you should simply be able to re-parse the XML file and update your in-memory model. If you instead update your in memory-model, you can serialize the model back to XML on the filesystem. Neither needs to necessarily have anything to do with application start-up (other than the fact that you would normally read in the XML model then, but updating is a separate concern, as would re-reading it).
    - Saish

Maybe you are looking for