08 March 2018
MacBooster 6
Risk Impact:
Systems Affected:


OSX.MacBooster is a misleading application for macOS that may give exaggerated reports about security issues on your computer.

Antivirus Protection Dates

  • Initial Rapid Release version 18 January 2018 revision 004
  • Latest Rapid Release version 11 March 2019 revision 003
  • Initial Daily Certified version 18 January 2018 revision 007
  • Latest Daily Certified version 11 March 2019 revision 006
  • Initial Weekly Certified release date 24 January 2018
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
This misleading application may be silently installed by another program. It may also be manually installed from the website.

When the program is executed, it performs a scan and then displays misleading or exaggerated reports of security issues on the computer.

The program then prompts the user to purchase a registered version of the software in order to remove the reported problems.

When the program is installed, it may create the following folders:
  • /Volumes/macbooster
  • /Volumes/macbooster/MacBooster 6.app/Contents
  • /Volumes/macbooster/MacBooster 6.app/Contents/MacOS
  • /Volumes/macbooster/MacBooster 6.app/Contents/Frameworks

The program may create the following files:
  • /Volumes/macbooster/MacBooster 6.app
  • /Users/admin/Desktop/MacBooster_6.dmg
  • /Volumes/macbooster/MacBooster 6.app/Contents/Resources/ICON.icns
  • /Applications/MacBooster 6.app
The following instructions pertain to all current and recent Symantec antivirus products for Macintosh.
  1. Update the virus definitions.
  2. Run a full system scan and repair or delete all the files detected.
For specific details on each of these steps, read the following instructions.

1. To update the virus definitions
To obtain the most recent virus definitions run LiveUpdate: These virus definitions are posted to the LiveUpdate servers regularly. To determine whether definitions for this threat are available by LiveUpdate, refer to the Virus Definitions (LiveUpdate) .

2. To scan for and delete the infected files
  • Start your Norton AntiVirus or Symantec Endpoint Protection for Macintosh program and make sure that it is configured to scan all files.
  • Run a full system scan.
  • If any files are detected, click Repair (if available) or Delete.