Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

xyian

macrumors 6502
Original poster
May 24, 2004
274
0
PDX
I recently started using Limewire and have now noticed that when I try to go to certain web sites now it is questioning the authenticity of the sites. These are major sites that I doubt allow their certificates to expire so I'm wondering if there is any spy ware to see if someone has put something(like a trojan horse) on one of the files I've downloaded.
 
You'd be the first. Although when the first OS X malware hits I'm sure it will come from p2p networks--disguised as something else. You think you click an installer but it's an AppleScript that does something bad to your computer. I won't feel sorry for your damage and I'll hunt you down if I get any damage. Just buy your own music and software. Your greed and somebody else's malice is just bad stuff waiting to happen.
 
Applespider said:
Really? On my old PC I'd run Adaware et al to check for spyware/loggers etc. How would I check for a key logger on my Mac?

Well, I'm not going to tell you the name of it for obvious reasons. ;)

But there is only one program that I know of.

To check and see if you have it, open Activity Monitor, and search for a process with the name 'active' 'key' or 'logger.'

There is an extremely low chance of you having this program, because to use the program, a physical person has to sit down at the computer and install it. This program also does not report back to a 'host computer' or what ever you want to call it, the pressed keys are stored in a text file. You cannot get access to this file unless you physically sit down at the computer and open the text yourself; so it is also highly unlickly that that someone is monitoring it remotly. (of course they could aslo use FTP or SSH, but to do that they need to know your IP and your admin password).

But I still caution you that it is possible that a family member, friend, room mate, or anyone that has physical access to the computer to install it without you knowing (but you can still check it via the Activity Monitor).

And if I remember correctly, 10.2 doesn't have an Activity Monitor, so just open up the terminal the type:

Code:
top

To quit a process via the terminal, you need to type this:

Code:
kill -9 {proces ID}

After you use top to find the process ID (located in the left most column) replace {process ID} with the number like: 2358


Trust me, you really don't have anything to worry about. :)
 
xyian said:
I recently started using Limewire and have now noticed that when I try to go to certain web sites now it is questioning the authenticity of the sites. These are major sites that I doubt allow their certificates to expire so I'm wondering if there is any spy ware to see if someone has put something(like a trojan horse) on one of the files I've downloaded.

Are you speaking of the "I can't verify the authenticity of site XYZ"? That just means the root certificate of the site isn't signed by an authority that your browser has been told to trust. I get that message every time I hit one of my own test sites -- they all have self-signed certificates. And I don't know of any way to "teach" safari to trust additional certificates that you have verified. Anyone have massive SSL knowledge?
 
mac os x.2 has a process viewer.... called process viewer...

Ah yes and limewire has absolutely no spyware.
 
Office 2004 is fine. It checks to see if other copies of Office 2004 are running on the same subnet using the same serial though to help circumvent piracy. You can block the UDP port if you feel the need to prevent it.
 
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.