WindowMix Mac


WindowMix is a rogue mac app appearing without user consent. WindowMix is actually a malware that serves to redirects users to advertisements.

WindowMix Mac

WindowMix as displayed on the user interface

WindowMix is a Browser Hijacker that is compatible with Chrome, Firefox, Explorer and other popular browsers and claims to be a useful and practical application. However, a lot of web users seem to be confused about its purpose because, most of the time, the program actively displays ads and sponsored content (in the form of banners, pop-ups, redirect links, blinking boxes that are hard to remove, etc.) on the users’ screen and keeps track of the user’s browsing history with the idea to generate customized search results. In addition to the ads disturbance, WindowMix may impose changes on the browser’s homepage or on the main search engine and install some additional toolbars, buttons or shortcuts that automatically page-redirect to specific sites. This is the reason why many people mistake the Browser Hijacker for malware and quickly put its name next to serious computer threats such as Ransomware, Trojans, and Viruses. We need to say that this is not the most dangerous program out there, and its activities are unlikely to cause serious damage to your computer. Yet, it would be a good idea to uninstall WindowMix as soon as possible and here we will give you some good reasons for that:

What is WindowMix?

WindowMix is classified by major AV programs as a browser hijacker malware. Its sole purpose is enforce users into aggressive advertising.

Your web browser is the program used to surf the Internet. It shows all the content you download and uploads the information you send online. In that sense, a program, such as WindowMix, which can modify the settings of your browser, and install additional components to it, or which can redirect you to different web pages, can be rather undesirable. What is more, when the Browser Hijacker integrates with your browser, it may have the ability to:

  • Read and change all your data on all sites that you visit;
  • Replace the page you see when you open a new tab;
  • Read your browsing history;
  • Manage your apps, extensions, and appearances;
  • Keep track of your browsing history, and the search entries that you type when you use the imposed search engine.

All these activities serve the needs of online advertisers who use programs like WindowMix as tools for their aggressive online marketing campaigns. With the help of those programs, they prompt and redirect the users to visit websites full of sponsored ads, which typically generate pay-per-click revenue. From a legal point of view, such marketing practices are not illegal as long as they do not cause direct harm to the users and their machines. However, as with everything on the Internet, the sites and the web ads that the hijackers may display on the users’ screen, may not always be reliable. Fake and misleading pop-ups, banners and messages circulate the web and may easily sneak inside the stream of regular ads. And if you happen to click on them, you may accidentally get infected with some real virus, a Trojan or a Ransomware infection, which are very hard to remove.

Apart from that risk, it may be tough to tolerate the constant browsing interruptions and it may quickly become too irritating to deal with all the blinking boxes, and redirect messages on your screen, every time you try to search for something. Therefore, we advise you to use the instructions in the removal guide below, and uninstall WindowMix before it gets on your nerves.


Name WindowMix
Type  Browser Hijacker
Danger Level Medium (nowhere near threats like Ransomware, but still a security risk)
Symptoms  A change in the browser’s  homepage or the search engine settings, aggressive ads generation all over the screen.
Distribution Method Software bundling, freeware platforms, shareware sites, torrents, ads, automatic installers and updates.
Detection Tool

Remove WindowMix Virus

WindowMix Mac

The first thing you need to do is to Quit Safari (if it is opened). If you have trouble closing it normally, you may need to Force Quit Safari:

You can choose the Apple menu and click on Force Quit.

Alternatively you can simultaneously press (the Command key situated next to the space bar), Option (the key right next to it) and Escape (the key located at the upper left corner of your keyboard).

If you have done it right a dialog box titled Force Quit Applications will open up.

In this new dialog window select Safari, then press the Force Quit button, then confirm with Force Quit again.

Close the dialog box/window.

WindowMix Mac


Start Activity Monitor by opening up Finder, then proceed to WindowMix Mac

Once there, look at all the processes: if you believe any of them are hijacking your results, or are part of the problem, highlight the process with your mouse, then click the “i” button at the top. This will open up the following box:

WindowMix Mac

Now click on Sample at the bottom:

WindowMix Mac

Do this for all processes you believe are part of the threat, and run any suspicious files in our online virus scanner, then delete the malicious files:

WindowMix Mac
Drag and Drop Files Here to Scan
Maximum file size: 128MB.

This scanner is free and will always remain free for our website's users. You can find its full-page version at:

Scan Results

Virus Scanner Result
WindowMix MacClamAV
WindowMix MacAVG AV
WindowMix MacMaldet

WindowMix Mac

The next step is to safely launch Safari again. Press and hold the Shift key while relaunching Safari. This will prevent Safari’s previously opened pages from loading again. Once Safari is opened up, you can release the Shift key.

On the off chance that you are still having trouble with scripts interrupting the closing of unwanted pages in Safari, you may need to take some additional measures.

First, Force Quit Safari again.

Now if you are using a Wi-Fi connection turn it off by selecting Wi-Fi off in you Mac’s Menu. If you are using a cable internet (Ethernet connection), disconnect the Ethernet cable.

WindowMix Mac

Re-Launch Safari but don’t forget to press and hold the Shift button while doing it, so no previous pages can be opened up. Now, Click on Preferences in the Safari menu,

WindowMix Mac

and then again on the Extensions tab,

WindowMix Mac

Select and Uninstall any extensions that you don’t recognize by clicking on the Uninstall button. If you are not sure and don’t want to take any risks you can safely uninstall all extensions, none are required for normal system operation.
WindowMix Mac

The threat has likely infected all of your browsers. The instructions below need to be applied for all browsers you are using.

Again select Preferences in the Safari Menu, but this time click on the Privacy tab,
WindowMix Mac

Now click on Remove All Website Data, confirm with Remove Now. Keep in mind that after you do this all stored website data will be deleted. You will need to sign-in again for all websites that require any form of authentication.

Still in the Preferences menu, hit the General tab

WindowMix Mac

Check if your Homepage is the one you have selected, if not change it to whatever you prefer.
WindowMix Mac

Select the History menu this time, and click on Clear History. This way you will prevent accidentally opening a problematic web page again.

WindowMix Mac How to Remove WindowMix From Firefox in OSX:

Open Firefoxclick on WindowMix Mac (top right) ——-> Add-onsHit Extensions next.

WindowMix Mac

The problem should be lurking somewhere around here –  Remove it. Then Refresh Your Firefox Settings.

WindowMix MacHow to Remove WindowMix From Chrome in OSX:

 Start Chrome, click WindowMix Mac —–>More Tools —–> Extensions. There,  find the malware and  select  WindowMix Mac.

WindowMix Mac

 Click WindowMix Mac again, and proceed to Settings —> Search, the fourth tab, select Manage Search Engines.  Delete everything but the search engines you normally use. After that Reset Your Chrome Settings.

If the guide doesn’t help, download the anti-virus program we recommended or try our free online virus scanner. Also, you can always ask us in the comments for help!


About the author


Lidia Howler

Lidia is a web content creator with years of experience in the cyber-security sector. She helps readers with articles on malware removal and online security. Her strive for simplicity and well-researched information provides users with easy-to-follow It-related tips and step-by-step tutorials.

Leave a Comment