Random "Enter Facebook Password" POP-UPs (Mac)

Also Known As: "Enter Facebook Password" virus
Type: Adware
Distribution: Low
Damage level: Medium

How to remove Enter Facebook Password from Mac?

What is Enter Facebook Password?

"Enter Facebook Password" is a fake pop-up message displayed by various malicious websites. In most cases, users visit these sites inadvertently - they are redirected without consent. Redirects typically occur for two reasons: 1) your operating system [Mac OS] is outdated or; 2) an adware-type application has infiltrated your computer. Potentially unwanted adware-type programs (PUPs) usually infiltrate systems without permission. As well as causing redirects, these apps deliver intrusive advertisements and record various personal information.

Enter Facebook Password scam

The malicious sites seem identical to the genuine Facebook website. Users are presented with a "Security Warning" message stating that they must confirm a valid account (by logging in) to remove the error. Be aware, however, that this is a scam. Cyber criminals are 'phishing' sensitive data by tricking gullible and inattentive users into entering their logins/passwords. Once entered, all information is stored on a remote server without users' consent. Furthermore, criminals later use this information to generate revenue. Social network accounts (such as Facebook) can be used in various dubious ways. For example, cyber criminals often proliferate malware by sharing malicious content or spamming private messages. In addition, they misuse victims' identities to contact their friends (typically those most frequently contacted) claiming that they are in trouble and asking to borrow money. This is a very simple, yet effective way to trick people into transferring money to various bank accounts. In summary, you should ignore the "Enter Facebook Password" error. If you encounter a message that asks you to enter personal information, double check the URL. If the link seems even slightly suspicious, close the site immediately and certainly do not enter any details. If you have already been tricked into entering your Facebook login/password, visit the Facebook's "Hacked Account" page immediately, report your compromised account, and follow all instructions provided to restore it. We also strongly recommend that you immediately change passwords on your other accounts. In addition, scan the system with a reputable anti-virus/anti-spyware suite (such as Combo Cleaner) and ensure that your operating system is up-to-date.

IMPORTANT NOTE! Your password should never contain any personal information (such as name, date of birth, etc.) It should be a random combination of uppercase/lowercase letters, digits, and (if possible) other characters (such as !, &, *, etc.) A good example of a password would be "puuD57wDz729WwjZ" or "5yJ?q#Z_/)DfCZCf". You are also advised not to use the same password for multiple accounts.

As mentioned above, potentially unwanted programs generate intrusive advertisements, such as coupons, banners, pop-ups, and so on. These ads are delivered using various tools that enable placement of third party graphical content on any visited website. Therefore, intrusive ads often conceal underlying content, thereby significantly diminishing the browsing experience. Furthermore, intrusive ads can lead to malicious websites and even run scripts designed to download and install malware/PUPs. Therefore, even a single click can result in high-risk computer infections. Another important issue is information tracking. Research shows that virtually all PUPs gather information such as IP addresses, website URLs visited, pages viewed, search queries, keystrokes, geo-locations, and similar. Collected data usually includes personal details that developers share with third parties (potentially, cyber criminals). These people misuse private information to generate revenue. Therefore, the presence of data-tracking apps can lead to serious privacy issues or even identity theft. All potentially unwanted programs must be uninstalled immediately.

Research shows that there are hundreds of potentially unwanted programs, all of which are virtually identical. By offering various "useful features", PUPs attempt to give the impression of legitimacy, however, the only purpose of all potentially unwanted programs is to generate revenue for the developers. Rather than giving any real value for regular users, PUPs cause unwanted redirects, deliver intrusive advertisements, and gather sensitive information, thereby posing a direct threat to your privacy and Internet browsing safety.

How did potentially unwanted programs install on my computer?

Some PUPs have official download website. In most cases, however, they infiltrate systems without permission, since developers proliferate them using a deceptive marketing method called "bundling" and the aforementioned intrusive advertisements. "Bundling" is essentially stealth installation of potentially unwanted programs together with regular software/apps. Developers hide "bundled" programs within "Custom/Advanced" settings (or other sections) of the download/installation processes - they do not disclose these installations properly. Furthermore, users are likely to rush these procedures and skip steps. In addition, they often click various advertisements without understanding the possible consequences. This behavior often leads to inadvertent installation of potentially unwanted programs - users expose their systems to risk of various infections and compromise their privacy.

How to avoid installation of potentially unwanted applications?

The main reasons for computer infections are poor knowledge and careless behavior. The key to safety is caution. Therefore, pay close attention when browsing the Internet and downloading/installing software. Bear in mind that intrusive advertisements often seem legitimate, but once clicked, redirect to dubious websites (gambling, pornography, adult dating, and similar). If you encounter them, immediately remove all dubious applications and browser plug-ins. Select "Custom/Advanced" settings and carefully analyze each window of the download/installation dialogs. Opt-out of all additionally-included programs and decline offers to download/install them. Software should be downloaded from official sources only, using direct download links. Third party downloaders/installers often include rogue apps (developers use "bundling" to monetize these tools), and thus should never be used.

Quick menu:

Video showing how to remove adware and browser hijackers from a Mac computer:

Potentially unwanted programs removal:

Remove PUP-related potentially unwanted applications from your "Applications" folder:

mac adware removal from applications folder

Click the Finder icon. In the Finder window, select “Applications”. In the applications folder, look for “MPlayerX”,“NicePlayer”, or other suspicious applications and drag them to the Trash. After removing the potentially unwanted application(s) that cause online ads, scan your Mac for any remaining unwanted components.


Download recommended remover for
"Enter Facebook Password" virus

1) Download and install   2) Run system scan   3) Enjoy your clean computer!
By downloading any software listed on this website you agree to our Privacy Policy and Terms of Use. Free scanner checks if your computer is infected. To remove malware, you have to purchase the full version of Reimage.

Remove "enter facebook password" virus related files and folders:

Finder go to folder command

Click the Finder icon, from the menu bar. Choose Go, and click Go to Folder...

step1Check for adware-generated files in the /Library/LaunchAgents folder:

removing adware from launch agents folder step 1

In the Go to Folder... bar, type: /Library/LaunchAgents

removing adware from launch agents folder step 2
In the “LaunchAgents” folder, look for any recently-added suspicious files and move them to the Trash. Examples of files generated by adware - “installmac.AppRemoval.plist”, “myppes.download.plist”, “mykotlerino.ltvbit.plist”, “kuklorest.update.plist”, etc. Adware commonly installs several files with the same string.

step2Check for adware generated files in the /Library/Application Support folder:

removing adware from application support folder step 1

In the Go to Folder... bar, type: /Library/Application Support

removing adware from application support folder step 2
In the “Application Support” folder, look for any recently-added suspicious folders. For example, “MplayerX” or “NicePlayer”, and move these folders to the Trash.

step3Check for adware-generated files in the ~/Library/LaunchAgents folder:

removing adware from ~launch agents folder step 1


In the Go to Folder bar, type: ~/Library/LaunchAgents

removing adware from ~launch agents folder step 2

In the “LaunchAgents” folder, look for any recently-added suspicious files and move them to the Trash. Examples of files generated by adware - “installmac.AppRemoval.plist”, “myppes.download.plist”, “mykotlerino.ltvbit.plist”, “kuklorest.update.plist”, etc. Adware commonly installs several files with the same string.

step4Check for adware-generated files in the /Library/LaunchDaemons folder:

removing adware from launch daemons folder step 1
In the Go to Folder... bar, type: /Library/LaunchDaemons

removing adware from launch daemons folder step 2
In the “LaunchDaemons” folder, look for recently-added suspicious files. For example “com.aoudad.net-preferences.plist”, “com.myppes.net-preferences.plist”, "com.kuklorest.net-preferences.plist”, “com.avickUpd.plist”, etc., and move them to the Trash.

After removing files and folders generated by the adware, continue to remove rogue extensions from your Internet browsers.

"Enter Facebook Password" virus removal from Internet browsers:

safari browser iconRemove malicious extensions from Safari:

Remove "enter facebook password" virus related Safari extensions:

safari browser preferences

Open Safari browser, from the menu bar, select "Safari" and click "Preferences...".

safari extensions window

In the preferences window, select "Extensions" and look for any recently-installed suspicious extensions. When located, click the "Uninstall" button next to it/them. Note that you can safely uninstall all extensions from your Safari browser - none are crucial for normal browser operation.

  • If you continue to have problems with browser redirects and unwanted advertisements - Reset Safari.

firefox browser iconRemove malicious plug-ins from Mozilla Firefox:

Remove "enter facebook password" virus related Mozilla Firefox add-ons:

accessing mozilla firefox add-ons

Open your Mozilla Firefox browser. At the top right corner of the screen, click the "Open Menu" (three horizontal lines) button. From the opened menu, choose "Add-ons".

removing malicious add-ons from mozilla firefox

Choose the "Extensions" tab and look for any recently-installed suspicious add-ons. When located, click the "Remove" button next to it/them. Note that you can safely uninstall all extensions from your Mozilla Firefox browser - none are crucial for normal browser operation.

  • If you continue to have problems with browser redirects and unwanted advertisements - Reset Mozilla Firefox.

chrome-browser-iconRemove malicious extensions from Google Chrome:

Remove "enter facebook password" virus related Google Chrome add-ons:

removing malicious google chrome extensions step 1

Open Google Chrome and click the "Chrome menu" (three horizontal lines) button located in the top-right corner of the browser window. From the drop-down menu, choose "More Tools" and select "Extensions".

removing malicious Google Chrome extensions step 2

In the "Extensions" window, look for any recently-installed suspicious add-ons. When located, click the "Trash" button next to it/them. Note that you can safely uninstall all extensions from your Google Chrome browser - none are crucial for normal browser operation.

  • If you continue to have problems with browser redirects and unwanted advertisements - Reset Google Chrome.