Threat Explorer

The Threat Explorer is a comprehensive resource consumers can turn to for daily, accurate, up-to-date information on the latest threats, risks and vulnerabilities.

PUA.Advmaccleaner

PUA.Advmaccleaner

Updated:
April 27, 2016
Infection Length:
Varies
Name:
Advance Mac Cleaner
Version:
1.3.6
Publisher:
Advance Mac Cleaner
Risk Impact:
Low
Systems Affected:
Mac

Behavior

PUA.Advmaccleaner is a potentially unwanted application that displays misleading information about the computer's performance. It then asks the user to pay to fix the issues.

Antivirus Protection Dates

  • Initial Rapid Release version April 27, 2016
  • Latest Rapid Release version November 09, 2017 revision 005
  • Initial Daily Certified version April 27, 2016
  • Latest Daily Certified version November 09, 2017 revision 009
  • Initial Weekly Certified release date April 27, 2016
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Once executed, the application creates the following file:
  • [PATH TO PUA]/amc_msite.pkg

The application will then perform a scan of the computer.



The application displays a list of software and system issues, and displays misleading information about how the issues affect the computer's performance.



If the user chooses to fix the issues, the application opens a web page on the computer which asks the user to pay to get the full version.



The following instructions pertain to all current and recent Symantec antivirus products for Macintosh.
  1. Update the virus definitions.
  2. Run a full system scan and repair or delete all the files detected.
For specific details on each of these steps, read the following instructions.

1. To update the virus definitions
To obtain the most recent virus definitions run LiveUpdate: These virus definitions are posted to the LiveUpdate servers regularly. To determine whether definitions for this threat are available by LiveUpdate, refer to the Virus Definitions (LiveUpdate) .

2. To scan for and delete the infected files
  • Start your Norton AntiVirus or Symantec Endpoint Protection for Macintosh program and make sure that it is configured to scan all files.
  • Run a full system scan.
  • If any files are detected, click Repair (if available) or Delete.