How To Remove UpdateAgent Malware From Mac

How To Remove UpdateAgent Malware From Mac

UpdateAgent Malware Mac Removal Guide

Threat Overview
Name UpdateAgent, also known as WizardUpdate malware
Category Trojan, Mac Malware
Symptoms Trojans may not show any visible symptoms, as they are meant function silently inside the target system. However, its presence for long can lead to serious issues, like performance degradation, network slowdown, unknown processes running in the background and installation of other malware.
Occurrence installs via fake update of Adobe Flash Players, clicking on pop-up ads, freeware downloads from unsafe sites.
Severity Level High
Damages Stealing personal data, establishing communication with remote hackers, allowing backdoor entry to other threats .
Removal Combo Cleaner detects UpdateAgent Trojan as “Trojan.Generic.30887513”. Scan Now To Quickly Remove it.

What is UpdateAgent?

UpdateAgent is a piece of malicious program that specifically targets Mac users. It is also known as WizardUpdate and categorised as a Trojan Threat. Ressearch shows that, it pretends to be a legitimate installer of software to get inside the Mac system. Following intrusion, it creates various files, launch agents and schedules tasks to perform without the consent of users.

UpdateAgent can steal various sorts of data including both personal and system related info. The collected info are transferred to the authors via command and control server. It can even install allow payloads of other adware and malware to install in the infected system.

So, we strongly recommend you to remove UpdateAgent malware and its associated files from mac as soon as possible.

How UpdateAgent Got Inside my Mac?

Like most of the malware, the UpdateAgent manages to get inside via drive-by-downloads, freeware, fake software updates, software cracking tools, spam email attachments, torrents and similar these. As mentioned above, oftentimes, they disguise as a legitimate software installers to hide their presence. But they actual contain malicious code that gets silently installed on the target system.

Thus, you should always download software from official websites and be careful with the online activities.

Here I explained my users about the 10 Best Ways To Protect A Mac Computer From Viruses.

Follow the below removal steps to remove UpdateAgent malware and its associated search engine.

How To Remove UpdateAgent From Mac

If you see a pop-up message “UpdateAgent Daemon will damage your computer” text, then quickly click on “move to trash” or “Show in finder”. If found delete the files.

For manual removal, you need search for the app in question to your Application folder and trash it. Next, you will need to locate launchAgents and launchDeamons associated with the program and remove them. Also, some adware create fake profiles to set rules for the specific URL to open automatically. Thus, it is important to delete such settings.

In this guide, we are going to explain both the methods one-by-one.

For automatic and safe removal, scan with Combo Cleaner and get rid of it quickly.

Remove UpdateAgent Adware From Mac
Is Your Mac Infected with Malware?

combo-cleaner-software

PUA like UpdateAgent may appear again even after removing it. Such programs manages to change various settings on the mac, like adding fake profiles, changing default search engine and adding files to library which restricts the permanent removal. Therefore, we advise to download Combo Cleaner to scan your Mac for these annoying stuffs.
Detect & Remove Malware with Combo Cleaner for FREE!. This way, you can ensure safe removal and save your time. 

Check Combo Cleaner For Mac – Full Review    ComboCleaner

How To Remove UpdateAgent From Mac Manually

To completely remove UpdateAgent from Mac, follow these steps  carefully: 


Step 1: Remove UpdateAgent Malware From Applications Folder

  1. On the Finder window, click Go→ Applications;
    Application
    Application
  2. Look through the Application window to find UpdateAgent app;
    Remove Adware Application From Mac
    Remove UpdateAgent Adware Application From Mac
  3. To remove UpdateAgent from Mac, right-click on it and choose “Move To Trash”;
  4. After that, Click on the “Empty Trash” by right-click on the Trash icon on your dock.
    Empty Trash
    Empty Trash
  5. Restart your Mac to make changes into effect.

Step 2: Remove UpdateAgent LaunchAgents and LaunchDaemons

Removing Launching Daemon and Agents associated with UpdateAgent is an important step. As these helps the program run in the background automatically. These works as agents specified to work for a specified user. 

To Remove UpdateAgent LaunchAgents and LaunchDaemon, follow the steps here: 

  1. Open Finder window and then select: Go → Go to Folder;
    Go To Folder Mac
    Go To Folder Mac
  2. Now, you need find any malicious agents related to UpdateAgent within the following locations, and delete if find any;
    • /Library/LaunchAgents
    • /Library/LaunchDaemons
    • /System/Library/LaunchAgents
    • /System/Library/LaunchDaemons
    • ~/Library/LaunchAgents
  3. Enter the path to the “Go To Folder” and click “Go”;
    LaunchAgents Mac
    LaunchAgents Mac
  4. Now, check, if there is any UpdateAgent related entries, if found delete them one-by-one.
    Remove Malicious Launch Agents and Daemons From Mac
    Remove UpdateAgent Launch Agents and Daemons From Mac
Be careful while doing so, as if you delete any important entry, then the application associated with will not work properly. If you are not sure of this, then better to use Combocleaner to scan and remove them.

Step 3: Remove UpdateAgent Fake Profiles From Mac

Configuration profiles in Mac OS, defines set of rules letting administrations or workplaces to standardize settings on devices. As, as admin can create profiles to configure wi-fi settings, mail accounts, VPN, server connections and more. 

Often malicious programs like Safe Finder, Search Mine, Advanced Mac Cleaner leverages this setting to configure profile settings that connect to specific URL, restrict removal and so on. Thus, you should check for any profile configuration created by malicious programs. So you need to find and remove fake profiles.

To do so, you must login to your Mac as administrative account. By deleting the malicious profiles , you will be able to make changes to restricted settings.

  • Choose Apple menu→ System Preferences → Profiles .
    Note: If there is no profiles on your Mac, then you may not see the profile icon. Then skip to the next step.
  • Once the profile Windows opens, check for unknown Profile.
    AphroditeTechResults Fake Profiles Removal
    UpdateAgent Fake Profiles Removal
  • select UpdateAgent and click the minus(—) button at the bottom.

Step 4: Remove UpdateAgent Malware From Web browsers

Next, step is to find unwanted extension, fake search engine and revoke other settings that happens due to any Adware. So, most of the users use Safari, Chrome and Mozilla browsers on their Mac OS.

So, here we are going to explain all the three one-by-one.

Safari

Delete UpdateAgent Extensions From Safari

UpdateAgent may install as extensions which triggers pop-up ads, homepage redirects and so on. So, it is important to find and remove adware extensions.

  • Click on Safari menu →Preferences → go to Extensions Tab;
    Safari Prefeneces
    Safari Preferences
  • Look for UpdateAgent unwanted extensions active on your Safari;
    Safari Uninstall Extension
    Uninstall UpdateAgent Extension From Safari
  • To remove UpdateAgent extension from Safari, Select it and click on “Uninstall”.

Restore Your Homepage

Many time, UpdateAgent promotes fake search engine, so they set unknown URL as default homepage. So, if you don’t want them, then here is what to do to remove them:

  • Click on Safari menu →Preferences → go to General Tab;
  • Under the “Homepage” field, remove unknown URL related to UpdateAgent and enter address of your choice like “google.com” as click “set as default”.
    Remove Unknown Homepage from Safari Mac
    Remove Unknown Homepage from Safari Mac

This should help fix your issue, but if not, then here is the guide explaining to reset Safari browser.

Google Chrome

Remove UpdateAgent Extension

  • To open Extensions page on Chrome type chrome://extensions/ on your address bar;
  • Now, check for UpdateAgent extension active on the browser;
    Remove Unknown Extension From chrome
    Remove UpdateAgent Extension From chrome
  • To remove UpdateAgent Extension from Chrome, click on “Remove” beside it.

Restore Your Homepage

  • To access Homepage setting on Chrome type chrome://settings/appearance;
  • Here you see default homepage URL that opens every time you launch your browser. Remove UpdateAgent related URL and type the new one you want.
    Remove Unknown Homepage URL From chrome
    Remove Unknown Homepage URL From chrome
  • Next, remove fake search engine promoted by UpdateAgent, by typing chrome://settings/search
  • Under “Manage search engines”, click on the search engine you want to remove;
    Remove Fake Search Engine From chrome
    Remove Fake Search Engine From chrome
  • To remove UpdateAgent search engine from Chrome, click on the 3-vertical dots beside its name and click on “Remove from list”.

Here is the guide on how to Reset Chrome Browser on Mac and Windows.

Firefox

Remove UpdateAgent Extension From Firefox

  • To open Extension menu, type about:addons on your Firefox address bar;
  • Choose “Extensions” from the left menu;
    Remove Extensions From Firefox
    Remove Extensions From Firefox
  • To remove UpdateAgent extension from Firefox browser, click on “Remove” beside the extension name.

Restore Homepage

  • To access Homepage Setting on Firefox, type about:preferences#home on the address bar;
  • Under “New Windows and Tabs” field, enter your favorite URL to set as homepage and New tab.
    Remove Unknown Homepage From Firefox
    Remove Unknown Homepage From Firefox
  • To Remove Fake search engine from Firefox about:preferences#search, under search shortcuts section, click on the URLs you want to remove;
  • Next click on the “Remove” button on the bottom.

To completely Reset Mozilla Firefox Browser on Safari and Windows click here.


Remove UpdateAgent Malware From Mac Using Combo Cleaner

  • Follow the link to Download Combo Cleaner“;
  • A .dmg file will download, double-click on it to start installation process;
  • Once you see the below window, drag and drop the Combo Cleaner icon to your “Applications folder”;
    Combo Cleaner Drag to Application Folder
    Combo Cleaner Drag to Application Folder
  •  Click on the “Combo Cleaner” icon from the “Launchpad” on your dock;
    Combo Cleaner Installation
    Combo Cleaner Installation
  • Follow the on-screen instruction to finish the setup. The combo cleaner will quickly update its Virus database. After which, Combo cleaner will launch the program;
    Combo Cleaner Dashboard
    Combo Cleaner Dashboard
  • You can either click on “Start Combo Scan” or click on the “Antivirus” tab and choose various scan options. There are 3 scan options: Quick, Full, and custom. (We will recommend to do full scan for first time)
    Combo Cleaner Scan
    Combo Cleaner Scan
  • After the scan completes, it will show the threats if found. So, click on “Remove All Threats”;
    Combo Cleaner Virus Removal
    Combo Cleaner Virus Removal
  • Next, go to “Uninstaller” Tab to find and remove malicious extensions and other programs from web browsers and Mac. Select unwanted program and also their related files and then click on “Remove Selected Items“
    Combo Cleaner Uninstaller
    Remove UpdateAgent using Combo Cleaner Uninstaller Tool

How to avoid installing UpdateAgent Malware On Mac?

You should follow the proactive approach to restrict adware-type applications like UpdateAgent from getting installed.

  • Always, visit official website and trusted sources to download and install applications.
  • Do a little research before downloading or clicking on any ads, commercials or pop-ups that come in your way.
  • Avoid peer-to-Peer file sharing networks, torrents, freeware downloads and software crack tools and so on. As these are often carry payloads of additional malware.
  • Always, read the terms and conditions, before installing any software. As, the default installation comes with additional components that get easily installed. So, better opt for “Custom/Advanced” option during the set-up.
  • Most importantly, avoid click on redirect pages or ads driven by unsafe sites, as well as do not click on push notification pop-ups. As they start to directly deliver unstoppable ads on the browser. Often accidental clicks leads of adware/malware infiltration.

Finally, if you think you Mac is infected with adware/malware, then we recommend to scan it with Combo Cleaner Antivirus. This will ensure complete removal of threats and safeguard from future risks.

So, this is how to remove UpdateAgent adware from your Mac.

Leave a Reply

Your email address will not be published.