Does Your Mac Have Malware? Common Signs
- Browser redirecting to unexpected search engines or showing more ads than usual
- New browser extensions you did not install
- Mac running noticeably slower or fan running constantly
- Pop-ups claiming your Mac is infected (often fake — these are themselves malware)
- Applications opening that you did not launch
- Unfamiliar apps appearing in your Applications folder
Step 1: Run Malwarebytes for Mac (Free)
- 1
Download from malwarebytes.com
Go to malwarebytes.com and download Malwarebytes for Mac. The free version detects and removes malware — you do not need the paid Premium subscription for a one-off scan. Install and open it.
- 2
Run a scan
Click Scan. Malwarebytes scans your Mac for known malware, adware, potentially unwanted programs (PUPs) and browser hijackers. The scan typically takes 1–3 minutes. If threats are found, click Quarantine to remove them.
Step 2: Check Login Items and Launch Agents
- 3
System Settings → General → Login Items
Review the list of apps that launch at startup. Remove anything you do not recognise by selecting it and clicking the minus button. Malware often installs itself as a Login Item to ensure it runs every time you start your Mac.
- 4
Check Launch Agents (advanced)
Open Finder → Go → Go to Folder → type
~/Library/LaunchAgents. Review the files. Legitimate system files have Apple or known software names. Files with random strings of letters or unfamiliar names may be malware. Do not delete files you are not sure about — research the name first or let Malwarebytes handle removal.
Step 3: Check Browser Extensions
- 5
Review and remove suspicious extensions
Safari: Safari menu → Settings → Extensions. Remove anything you did not intentionally install. Chrome: three dots → Extensions → Manage Extensions. Remove any unfamiliar extensions. Browser extensions are the most common way adware and browser hijackers operate on Macs.
Step 4: Check Activity Monitor
Open Activity Monitor (Applications → Utilities → Activity Monitor). Sort by CPU usage. Look for processes using high CPU that you do not recognise. Google any unfamiliar process names to determine if they are legitimate. Malware often runs as background processes consuming CPU.