Get powerful malware protection

Get Norton 360 Deluxe to help protect your computer against malware, hackers, and other online threats.

Get it now

Get powerful malware protection

Install Norton 360 for Mobile to help protect your phone against malware, hackers, and other online threats.

Get it now

How to remove malware from a Mac or PC

A person using a laptop to protect their computer from malware.

If your PC or Mac is behaving strangely, you could have a malware infection. If so, you need to identify and remove it immediately. In this step-by-step guide, we’ll walk you through removing malware from your PC or Mac. And get comprehensive online security like Norton 360 Deluxe to help keep your device malware-free and running smoothly.

The malware removal process explained

In general, the first steps to remove malware for a Mac or PC are to disconnect from the internet and enter safe mode. Next, check your activity monitor for malicious applications and run a malware scanner. Finally, clear your cache and delete your web browser history when you are back online.

Malware refers to malicious software that has the power to infect your computer, making your sensitive information vulnerable to cybercriminals.

Since malicious software can infect any device via email, fake websites, or fraudulent downloads, both Macs and Windows PCs are prone to malware threats.

Here’s our step-by-step guide on how to remove malware from your computer and prevent the malicious software from putting your data into the wrong hands.

How to remove malware from a Mac

Malware removal from a Mac can be accomplished in six simple steps.

Step 1: Disconnect from the internet

Disconnecting from the internet will prevent more of your data from being sent to a malware server or the malware from spreading further. Stay offline as much as possible if you suspect that your computer has been infected.

If you need to download a removal tool, disconnect after the download is complete and don’t connect again until you are sure that the malware has been removed.

Step 2: Enter safe mode

Safe mode, often referred to as safe boot, is a way to start your computer so that it performs checks and allows only the minimum required software and programs to load.

If malware is set to load automatically, this will prevent the malware from doing so, making it easier to remove.

To enter safe mode:

  1. Start (or restart) your Mac, then immediately press and hold the Shift key. The Apple logo will appear on your display.
  2. Release the Shift key when you see the login window (if you are asked to log in twice, learn more about what to do here).

Disclaimer: Avoid logging into accounts during malware removal.

Be careful to not expose passwords though a copy-paste function or by clicking a “show password” box if you suspect your computer has been infected.

Keylogger viruses are a common component of malware, which run invisibly and are designed to capture your keystrokes.

To avoid sharing your personally identifiable information, refrain from logging into sensitive accounts while your device is infected.

Step 3: Check your activity monitor for malicious applications

If you know you’ve installed a suspicious update or application, close the application if it’s running. You can do so by using your activity monitor.

This shows the processes that are running on your computer, so you can manage them and see how they affect your computer’s activity and performance.

Malware can take up resources on your computer, so check the CPU tab to see which applications are working the hardest.

If you can find the suspicious application, you can close it through your activity monitor and then delete the application from the Finder menu.

To check your activity monitor:

  1. Open Finder
  2. Select “Applications”
  3. Select “Utilities”
  4. Select “Activity Monitor”
  5. Select “Application”
  6. Select “Quit”
A graphic explains how to detect and remove malware on a Mac.

Step 4: Run a malware scanner

Fortunately, malware scanners can remove most standard infections. If you already have an antivirus program active on your computer, you should use a different scanner for this malware check since your current antivirus software may not detect the malware initially.

If you believe your computer is infected, we recommend downloading an on-demand scanner from a reliable source and then installing and running security software that provides protection against existing and emerging malware, including ransomware and viruses.

Step 5: Verify your browser’s homepage

It’s common for malware to modify your web browser’s homepage to reinfect your Mac. Check your homepage and connection settings using the steps below. 

Note that you will need to connect your computer to the internet to complete the following steps.

To verify your homepage on Chrome: 

  1. In the top right corner of your Chrome browser, click More → Settings.
  2. Select the drop-down menu in the “Search engine” section.
  3. Verify your default homepage.

To verify your homepage on Safari:

  1. In the top left corner of your screen, select Safari → Preferences → General.
  2. Next to “New windows open with” and “New tabs open with,” select “Homepage.”
  3. Next to “Homepage,” you will verify your default homepage.

Step 6: Clear your cache

After you’ve verified your homepage setting, you should clear your browser’s cache. This is a temporary storage location on your computer.

Data is saved here so your browser doesn’t need to download it each time. Follow the steps below to learn how to clear your cache for Chrome and Safari.

To clear your cache on Chrome:

  1. Open Chrome
  2. Select “History”
  3. Select “Clear Browsing Data”
  4. Select “Time Range”
  5. Select “All Time”
  6. Select “Clear Data”
A graphic explains how to remove malware by clearing your cache on Chrome.

To clear your cache on Safari:

  1. Open Safari
  2. Select “Preferences”
  3. Select “Privacy”
  4. Select “Manage Website Data”
  5. Select “Remove All”
A graphic explains how to remove malware by clearing your cache on Safari.

How to remove malware from a PC

Follow these six steps to malware removal on a PC.

Step 1: Disconnect from the internet

Disconnecting from the internet will prevent more of your data from being sent to a malware server or the  malware from spreading further.

Step 2: Enter safe mode

If malware is set to load automatically, this will prevent the malware from loading, making it easier to remove.

To enter safe mode:

  1. Restart your PC.
  2. When you see the sign-in screen, hold down the Shift key and select Power → Restart.
  3. After your PC restarts, to the “Choose an option” screen, select Troubleshoot → Advanced Options → Startup Settings.
  4. On the next window, click the Restart button and wait for the next screen to appear.
  5. A menu will appear with numbered startup options. Select number 4 or F4 to start your PC in safe mode.

Disclaimer: Avoid logging into accounts during malware removal.

To avoid sharing your personally identifiable information, do not log into sensitive accounts while your device is  infected.

Step 3: Check your activity monitor for malicious applications

If you know you’ve installed a suspicious update or application, close the application if it’s running.

Your activity monitor shows the processes that are running on your computer, so you can see how they affect your computer’s activity and performance.

To check for malicious applications:

  1. Open Resource Monitor
  2. Find task
  3. Select “End Process”
A graphic shows how to detect and remove malware on a Windows PC.

Step 4: Run a malware scanner

Luckily, malware scanners can remove many standard infections. But remember that if you already have an antivirus program active on your computer, you should use a different scanner for this malware check since your current antivirus software may not detect the malware initially.

Step 5: Fix your web browser

Malware is likely to modify your web browser’s homepage to reinfect your PC. Check your homepage and connection settings using the steps below for common browsers.

To verify your homepage on Chrome:

  1. In the top right corner of your Chrome browser, click “More,” then “Settings.”
  2. Select the drop-down menu in the “Search engine” section.
  3. Verify your default homepage.

To verify your homepage on Internet Explorer:

  1. Select the Tools icon.
  2. Click Internet options.
  3. In the General tab, find the “Search” section and click Settings.
  4. Verify your default homepage.

Step 6: Clear your cache

After you’ve verified your homepage setting, it’s imperative to clear your browser’s cache. Follow the steps below  to learn how to clear your cache for Chrome and Internet Explorer.

To clear your cache on Chrome:

  1. Find History
  2. Select “Clear Browsing Data”
  3. Select “All Time” from Time Range drop-down menu
  4. Select “Clear Data”
A graphic explains how to remove malware by clearing your cache on Chrome.

What if malware removal is unsuccessful?

If malware removal is unsuccessful, sometimes the only way to be sure your computer is free of malware is to entirely reinstall the operating system and your applications or programs from scratch.

Before wiping your hard drive, backup all your files to an external drive and consult Apple support or Microsoft support before beginning the process. Learn how to erase your startup disk prior to reinstalling MacOS in the steps below:

To reinstall MacOS:

  1. Open Finder
  2. Select “Applications”
  3. Select “Utilities”
  4. Select “Disk Utility”
  5. Select “Erase”
A graphic explains how to reset the Mac operating system if users are unable to remove malware on their own.

To reinstall Windows:

Follow the factory restore options. Windows gives you the option to keep your files or remove everything.

  1. Find the Start button
  2. Select “Settings”
  3. Select “Recovery Options”
  4. Select “Reset this PC”
  5. Select “Remove everything”
A graphic explains how to reset the Windows operating system if users are unable to remove malware on their own.

How to help protect your devices from malware

A graphic shows the common symptoms of malware, letting users know when it's time to remove malware.

Malware or viruses get on your computer in a handful of ways, so it’s a good idea for computer owners to develop good online habits to avoid an infection. Use our best practices below to help protect your computer:       

  • Avoid suspicious emails, links, and websites. Sometimes malware or viruses are disguised as an image file, word processing document, or PDF that you open. Additionally, if you find a strange new file on your desktop, do not open it.
  • Clear your downloads and empty your trash often. If you’ve deleted downloads or moved suspicious files to the trash, empty the trash immediately after.
  • Create strong passwords. Once you’re sure the computer virus infection has been cleaned up, change all your passwords, using unique combinations of letters, numbers, and symbols. Don’t use words found in the dictionary since they can be cracked via a dictionary attack. To help create, manage, and securely store all your passwords, consider using a password manager.

Malware is a dangerous threat to the data that computer owners store on their PCs and Macs. New types of malware are being discovered frequently, and the profitable nature of malware makes it especially attractive to cybercriminals. Having virus protection for Windows 10 and Windows 11 devices can assist in preventing these threats.

It’s important to exercise good cyber hygiene habits and understand the signs of a malware infection. If you suspect your computer is infected, act as soon as possible to prevent the spread of malware and protect your personal information.

If you have a Windows PC, try the Norton Power Eraser next time your computer detects a threat. It is free to download and can remove both malware and viruses.

How to remove malware FAQ

Still have questions about how to remove malware from your Mac or PC? We’ve got answers.

How do devices become infected with malware?

Devices can become infected with malware when users interact with email scams, fake websites, or malicious software.

How do I remove malware from Windows 10?

Begin a malware scan on your Windows PC and remove any malicious software that is present on your device. If the malware can’t be removed by this process, consider enabling a factory reset.

How do I remove malware from Android?

Begin by making sure your Android device is updated with the latest software updates. Open the Google Play Store settings and select “Verify Apps.” Remove any untrusted apps from your device.

How do I remove malware from iPhone?

Begin by installing the latest software updates on your iPhone. Clear your device’s browsing history and restart the device. If malware is still present, consider restoring an older version of your iPhone from the cloud.

How do I remove malware from iPad?

Begin by installing the latest software updates to your iPad. Clear your device’s browsing history and restart the device. If malware is still present, consider enabling a factory reset.

Will a factory reset remove malware?

In most cases, a factory reset can remove malware from your device. It should be used as the last line of defense if you want to protect any files located on the device.

What is a malware scan?

A malware scan is a process performed by computer software that detects malware on your device.

Cyber threats have evolved, and so have we.

Norton 360™ with LifeLock™, all-in-one, comprehensive protection against viruses, malware, identity theft, online tracking and much, much more.

Try Norton 360 with Lifelock.

Clare Stouffer
  • Clare Stouffer
  • Gen employee
Clare Stouffer, a Gen employee, is a writer and editor for the company’s blogs. She covers various topics in cybersecurity.

Editorial note: Our articles provide educational information for you. Our offerings may not cover or protect against every type of crime, fraud, or threat we write about. Our goal is to increase awareness about Cyber Safety. Please review complete Terms during enrollment or setup. Remember that no one can prevent all identity theft or cybercrime, and that LifeLock does not monitor all transactions at all businesses. The Norton and LifeLock brands are part of Gen Digital Inc. 

Contents

    Want more?

    Follow us for all the latest news, tips and updates.