Malware Removal

(Updated: July 26, 2023)

The App Store version of CleanMyMac X slightly differs from the versions you'll find on other marketplaces. So, some of the features described below are not available from the App Store due to its guidelines. Learn what's different and why in Missing features in the App Store version of CleanMyMac X.

Powered by Moonlock Engine, the Malware Removal module looks for all the most common threats to your Mac. These include viruses, miners, loggers, worms, trojans, and other dangerous or unwanted "-ware." We update the module's database of malware regularly and no less than once a week to protect your Mac against new threats.

In this article:

Find and remove malicious files

Start scanning: Click the Malware Removal module in the sidebar, then click Scan.

Quick cleanup: After scanning, if threats are found, click Remove to quickly remove them without reviewing.
Note: The app auto-selects all threats for removal.

Review threats before cleanup: After scanning, click Review Details.

The column in the center lists the types of threats detected.

  • Click a row in the list of threat types to view the particular threats of this type in the column on the right.
  • Select or deselect the checkbox of a threat type to select or deselect it for removal, respectively.

The column on the right groups the particular causes of threats found.

  • Click the arrow next to a threat to see the files associated with it. Control-click a malicious file to:
    • Reveal the file in Finder.
    • Quickly view the contents of the file in a text editor.
    • Add the file to the Ignore List if you're sure the file is safe
  • Select or deselect the checkbox of a threat to select or deselect it for removal, respectively.


Cleanup after reviewing threats: Click Remove to delete the selected threats.

Configure the speed and depth of scanning

With our anti-malware technology, Moonlock Engine, you can set the speed and depth of a malware scan. Choose a scan mode that works best for you and turn on or off the scanning of additional locations.

Choose your scan mode

  1. Open CleanMyMac X and choose CleanMyMac X > Settings in the menu bar (upper-left corner of your screen).
  2. On the Protection tab, choose one of the 3 available scan modes — Prioritize speed, Recommended, or Maximize suspicion — by dragging the slider closer to the tick mark for that mode.

    Note: CleanMyMac X has no transitional states between the scan modes. If you leave the slider between the tick marks, that mode is activated to which the slider is closer.


Take a look at some high-level details of what each scan mode entails:

Prioritize speed. Choose this mode for a quick scan. In this mode, CleanMyMac X scans those locations where malware hides most often. The app checks files using basic malware detection rules (that's enough to identify the most common threats).

You can prioritize speed and get a decent level of protection. But we still recommend using a deeper scan mode as your default setting so that no threat gets overlooked.

Recommended. Choose this mode for optimal protection. In this mode, CleanMyMac X scans several additional directories. It also applies more advanced rules based on an industry-standard approach, allowing CleanMyMac X to identify most types of existing malware.

The scan takes slightly longer than when you prioritize speed but ensures strong protection. As the name suggests, we recommend this mode as your default setting since it offers the best speed-depth ratio.

Maximize suspicion. Choose this mode for utmost protection. In this mode, CleanMyMac X applies extra rules to cover rare types of malware, which the "Recommended" mode may miss in exceptional scenarios.

The scan requires more system resources and may take a while, but you can be sure no threat to your Mac stands a chance.

Turn on or off the scanning of additional locations

Some of these settings are unavailable in the App Store version of CleanMyMac X.

The additional scanning locations include:

  • Disk images (DMG files)
  • Email attachments (only those downloaded to your Mac via email apps, such as Mail)
  • Archives (most archive file formats, including ZIP, RAR, and PKG)
  • USB drives (most types of non-encrypted external drives that have a file system format compatible with macOS)

To turn the scanning of these locations on or off, follow these steps:

  1. Open CleanMyMac X and choose CleanMyMac X > Settings in the menu bar (upper-left corner of your screen).
  2. On the Protection tab, select or deselect the following checkboxes depending on which additional locations you want to turn on or off, respectively:
    • "Scan DMG disk images" *
    • "Scan email attachments" **
    • "Scan archives"
    • "Scan USB drives

* The "Scan DMG disk images" setting affects not only the Malware Removal module but also real-time monitoring, background scanning, and Smart Scan.

** The "Scan email attachments" setting requires Full Disk Access permission. To learn what this permission is and how to turn it on, see Full Disk Access for CleanMyMac X.

Increase your protection level with continuous monitoring

These features are unavailable in the App Store version of CleanMyMac X.

You can enhance your computer's safety with the following features:

  • Real-time monitor watches all new installations and warns you if there's something suspicious. See the status of real-time monitoring in the Protection monitor of the CleanMyMac X Menu.
  • Background scan is a swift anti-malware routine that goes through your computer's system and makes sure no malicious item is missed.

Real-time and background scans run automatically even if CleanMyMac X Menu is disabled, and you can turn both scans on or off in CleanMyMac X Settings (Protection tab).

How often do I scan my Mac for malware?

We recommend running the Malware Removal module in the "Maximize suspicion" mode at least once a month, even if you've turned on the real-time monitor and background scans. Together, all scans make up a complete and reliable anti-malware solution. For more details and other tips on using CleanMyMac X, see How often do I scan my computer?

Was this article helpful?
Help us improve our Support Center.
Thanks for the feedback!

Related Articles

Deal with non-removable or non-detectable malware
Malware protection
Moonlock Engine

Can’t find the answer to your question?

Contact us and we’ll get back to you as soon as we can.

Contact Us