Common loading points for viruses, worms, and Trojan horse programs on Mac

The most effective way to prevent and detect threats is to have a Norton security product installed and its virus definitions up to date. If you think your computer is infected, check for any suspicious login items, files, or processes in some of the common places on your Mac as listed in this article.

STEP 1

Verify the Login Items and administrator accounts

On the menu bar, click the Apple icon and select System Preferences.
Under the System pane, click Accounts and review the list of Mac user account.

You should disable the Guest Account, if the Administrator has not enabled it for any user of your Mac. Check any other user account that seems suspicious to ensure that it is a legitimate account for your Mac.
On the top-right corner of the Accounts window, to look for any suspicious login items that have loaded, click Login Items.

Review these items to verify that they are legitimate and logically named. Any login item that is suspicious and unknown should be investigated further. To reveal where on the drive the suspicious Login Item loads from, right-click on the item and select Reveal in Finder.

STEP 2

Check for unusual files at common loading points

STEP 3

Look for any suspicious processes that are running on your Mac

On the menu bar, click Go, and then select Utilities.
Double-click Activity Monitor.
Review the list for any processes that look suspicious to investigate further.
In the top-right corner of the Activity Monitor, select one of the following from the drop-down menu:
- To look for the processes that are associated with the logged in user account, select My Processes.
- To check the processes that are associated with other user accounts on the Mac, select Other User Processes.
To verify the open files and ports from where this process originates and what files it uses, select a suspicious process, and click Inspect.
To quit the process, click Quit Process.

Need more help?

Visit our threat removal support page for more solutions

Ultimate Help Desk