antivirus Mac

MacDefender - info and removal

MAC-Defender.png

A program called MacDefender, MacProtector and MacSecurity has been mysteriously finding its way onto many Mac computers. The program cons the user into a paid protection subscription which does nothing.  How has this been happening? A rather malicious file called "mac-antivirus.zip" has been spreading via fairly legitimate advertising networks, including google. A download is initiated automatically via javascript to the users Downloads folder. If your Mac is set up to open downloaded files automatically... then the trouble starts.

What can you do to avoid this?

Safari's default option is to automatically 'Open "Safe" files after downloading'. This is not a good idea, it seems that OS X has troubles distinguishing safe from un-safe files.

 

Disable 'Open "Safe" files after downloading'.

 

  1. Open Safari.
  2. In the top left of the screen click the Safari menu, then Preferences.
  3. Click the General tab.
  4. Uncheck the "Open 'safe' files after downloading" option.

How do I remove MacDefender, MacProtector or MacSecurity?

  1. Open Activity Monitor located in your Applications/Utilities folder - Alternatively type "Activity Monitor" into Spotlight and hit return.
  2. Locate MacDefender, MacProtector, or MacSecurity in the Process Name column.
  3. Highlight the title then choose Quit Process from the menu bar.
  4. Next go to System Preferences/Accounts. Select your account from the left-hand column.
  5. With Login Items highlighted select the program from the list then press the '-' (minus) button.
  6. Finally check your Applications folder and drag the program into the trash can. Empty your trash can.

The excellent ClamXav virus scanner continuously updates its definitions to detect and remove these types of "scareware" programs. For more information click here.

Generally it is considered good practice to never 'click through' from unknown pop up windows that appear on your screen. And you should never make payments to an organisation unless you have instigated the transaction or it is a reputable company.

Do I need anti-virus protection for my Mac?

Personally speaking I have never run any form of anti-virus protection on my Mac for home use. But then I never run 'dubious' software (such as bit torrent clients or cracked software) on my machine.Also I consider myself to wise to the ways of 'phishing'. If you keep your software up to date and back up your important data I see no reason for an average sensible home user to run anti-virus protection. Often you will find that these virus protection programs can be 'system hogs' and they will capitalise on a lot of your systems valuable CPU. However, if you are a business user or your Mac may be an attractive target for hacking or phishing then I would recommend that you err on the side of caution.

Any free anti-virus tools I can use?

The most popular free tool appears to be ClamXav. If you are running a large network for business I would recommend something more comprehensive from either Mcafee or Norton.