Is it possible to have a virus in recovery partitions?

Similar Messages

• It takes forever to load web pages. Is it possible I have a virus, even though I keep scanning for them?

  It takes forever to load web pages. Is it possible I have a virus eventhough I keep scanning for them?

  Your internet experience is dependent upon several different factors. I doubt a virus is the problem.
  1) when you type in an address or click on a link your service provider's computer must turn the URL into an IP address - the computer that does this is called a Domain Name Server (DNS). Many ISPs have slow DNS servers. If it takes a long time for the page to start loading but then loads quickly that might be your problem. OpenDNS provides a free DNS server that is very fast.
  2) the connection between your computer and router. I assume you are using WiFi - hold down the Option key and click on the WiFi menu item in the menubar. The RSSI indicates signal strength / quality and the farther away the value is from 0 the lower the quality. something between -60 to 60 is a good signal. If it is in the 80s or higher (or -80 or lower) you might try changing the channel and/or moving the base station.
  3) your internet connection. Go here to see how fast your connection is. Your connect speed will be dependant upon your WiFi connection, your ISPs internet service, and how fast the connection is between your city and the testing city. If you suspect your WiFi service is all or part of the problem you'll want to fix that before running the test - or connecting with an ethernet cable would bypass the WiFi problem. Of course you'll need a dongle (or a different computer) to test that way.
  My ISP is TimeWarner and at least for a while TW was notorius for having slow Domain Name Servers. I switched to OpenDNS and haven't looked back.

• Is it possible to have a virus on both the ipad and iphone

  My husband and I have two ipads, two iphone 5s and two windows based computers @ home. 
  My own computer, ipad & iphone all stopped connecting to the internet this weekend.  My husbands are all fine.  I used my iphone, ipad and computer to respond to people inquiring about my Craigslist ads I posted earlier in the weekend.  I'm wondering if one of the emails had something malicious in it that is causing some denial of access to the internet?  I didn't make any changes to the ipad or iphone this weekend. 
  Thanks

  There are no viruses effecting these devices, unless you jailbroke them.

• Is it possible to have a virus on the itouch????

  Well I had about 6 gigs of music on my itouch (1242 songs) and they were there when my itouch was connected to the computer,but when I disconnected it,the music would be gone and I would have to re-sync all of it.
  After the second time the music was gone,I went to mobile itunes and the heading said something like "Delete.Delete.I.Eat.M..." and I couldn't read the rest.
  So I went to the settings and chose to delete everything on the itouch,basically like the reset button.
  Should I go back to the store and exchange it???

  You might want to look at this:
  http://docs.info.apple.com/article.html?artnum=305741
  An you can sync manually Transferring Songs and Playlists to iPod Manually
  You can set iPod to transfer songs manually, so you can transfer individual songs and playlists. When iPod is set to transfer songs manually, it doesn’t synchronize automatically when you connect it to your computer.
  To set iPod to transfer songs manually :
  1 In iTunes, select iPod in the Source list and click the Options button.
  2 Select “Manually manage songs and playlists.”
  To transfer a song or playlist to iPod manually:
  In iTunes, drag a song or playlist to iPod in the Source list.

• Need to re-install Windows, but I have no recovery partition or Windows DVD

  Dear Reader,
  Recently Windows got broken on my Toshiba Satellite L650-170.
  I have tried to use my back-up, but the back-up utility refused my back-ups.
  After some research the disk appears to be healthy, however all partitions on the disk seem to be damaged somehow.
  So I am without both a Windows Disk nor Recovery Partition.
  How can I get Windows back on my notebook using the windows key attached to it?
  (A friend told me that using another windows 7 disk wont work)
  Kind Regards,
  Peter

  Hi Peter
  If you dont have access to original recovery partition the question is: what do you want to have installed on your notebook?
  If you want to have factory settings again you must install OS using original Toshiba recovery disc. You can order it on http://backupmedia.toshiba.eu/landing.aspx
  If you want to have own OS installation you can use original Microsoft disc with valid license code. Product key at the bottom of your notebook cannot be used for activation.
  If you have more questions you are welcome.

• Is it possible for an ipad camera  to have a virus?

  On my ipad a message opened it said your " ipad camara has 3 virus,If you want to remove this virus you can click below" it also said  if you don't do this your ipad camera photos might be hacked .is it possible for an ipad camera to have a virus please respond and leave tips to remove this virus

  This is just a website scam that's going around right now. It cannot infect you in any way.
  Some people have reported being directed to the App Store to download a particular camera app. If you are, do not download it. It cannot infect you with anything, but you don't want to reward the scammers by downloading their app. If you downloaded the app and paid money for it, contact Apple to dispute the charge.

• After shutdown I have to log in twice.  The first time it starts to load, then goes black, then gives me login page again.  Do you think I have a virus?  Or is this Yosemite bug?

  Just updated to Yosemite on my MBP.  After shutdown now when I login, it starts the process (the bar starts to move), then the screen goes black, then it asks me to login again and this time it is a successful startup.  Is this a Yosemite bug or do I have a virus?  I also have some funny tiling on the screen at youtube and some other websites.  Another bug? 

  Reinstalling OS X Without Erasing the Drive
  Boot to the Recovery HD: Restart the computer and after the chime press and hold down the COMMAND and R keys until the menu screen appears. Alternatively, restart the computer and after the chime press and hold down the OPTION key until the boot manager screen appears. Select the Recovery HD and click on the downward pointing arrow button.
  Repair the Hard Drive and Permissions: Upon startup select Disk Utility from the main menu. Repair the Hard Drive and Permissions as follows.
  When the recovery menu appears select Disk Utility. After DU loads select your hard drive entry (mfgr.'s ID and drive size) from the the left side list.  In the DU status area you will see an entry for the S.M.A.R.T. status of the hard drive.  If it does not say "Verified" then the hard drive is failing or failed. (SMART status is not reported on external Firewire or USB drives.) If the drive is "Verified" then select your OS X volume from the list on the left (sub-entry below the drive entry,) click on the First Aid tab, then click on the Repair Disk button. If DU reports any errors that have been fixed, then re-run Repair Disk until no errors are reported. If no errors are reported click on the Repair Permissions button. Wait until the operation completes, then quit DU and return to the main menu.
  Reinstall OS X: Select Reinstall OS X and click on the Continue button.
  Note: You will need an active Internet connection. I suggest using Ethernet if possible because it is three times faster than wireless.
  Also see:
  Reinstall OS X Without Erasing the Drive
  OS X Yosemite- Reinstall OS X
  OS X Mavericks- Reinstall OS X
  OS X Mountain Lion- Reinstall OS X
  OS X Lion- Reinstall Mac OS X
       Note: You will need an active Internet connection. I suggest using Ethernet
                   if possible because it is three times faster than wireless.

• Does my mac have a virus?

      Occasssionally over the last couple months while on the internet I notice this alert box that shows up it usually reads "about/blank.." followed by different combinations of numbers. It doesn't remain there long (i've tried to screen shot it) then dissapears. It will reappear and dissapear a couple more times and if I don't turn off my Airport controls and sever the internet connection it will eventually freeze my computer and I will have to power it off manually. I was told when purchasing the MacBook Pro that it did not need any virus protection software, however, now-a-days I realize Macs are more popular, therefore having a greater possiblity to be suseptable to newly developing viruses. My friend said I should download some AVG for Macs, which sounds good, but he's a PC man and I just wanted to check with you Mac professionals first!
  Thank you,   Tasha6797

  You probably don't have a virus - what you may have are 'browser redirects' and you can read about them and how to prevent them at -> http://www.reedcorner.net/eliminating-browser-redirects-and-advertisements/.
  Just in case you want to give your drive aa 'one-over' virus scan, I would recommend Sophos for Mac. It's good, free and comes with an uninstaller that actually works. Stay away from any commercial AV software as it tends to batter your system and can actually cause damage.
  After you've done a one-time scan of your hard drive you can keep Sophos running or uninstall it - it's your call. I keep it installed just to scan my Downloads and email folders.
  Good luck,
  Clinton

• Is it possible to get a virus on the Mac OS X v10.6.4 Snow Leopard?

  Hi, I was just wondering if it is possible to get viruses on the new system and I was also wondering if someone could give me some help/suggestions on what I should do about a problem I had with my iMac today. When I turned on my computer from sleep today a page popped up onto my iMac computer screen saying I had trojans and viruses on my computer. It also stated I needed to download software in order to fix the problem, luckily while I was in the middle of downloading this software I noticed that the page was not from apple but it was from the internet.. thankfully I cancelled the download just on time and none of the software downloaded... I am new to Mac and I'm now really paranoid that there is viruses on my computer.. should I be worried? What should I do? If anyone has any suggestions/advice/ or help to give to me on iMac computer's -viruses-protecting them etc..I would really appreciate it
  Thanks,
  kateos9

  These 'warnings' are usually pop-unders from a web page you've visited (i.e. they stay behind the page you're viewing so you don't see them until later).
  They claim to have scanned your computer and found viruses: this is complete rubbish and a scam - aimed really at Windows users (the details given are often applicable only to windows).
  You don't have any viruses: there are no Mac viruses in the wild. There are trojans and malware, but in all cases you have to actually install them (usually they try to make you think you are installing something else) and you would have had to give your admin password to do so.
  You were right to stop the download. Never ever download or click any links on anything of this nature. Unless you have specific anti-virus software installed (which would identify itself in any warning) no warning of this nature can be genuine: it's an attempt to get you to install malware, some of which can be very nasty.

• What can I do if I think I have a virus?

  QuestionWhat can I do if I think I have a virus?
  AnswerSkip this and contact a professional
  If you'd like to skip this guide and contact a professional, CLICK HERE.
  There are a few steps you can take if you think you have a virus.
  Use anti-virus software
  One of the first things you should do is scan your computer with anti-virus software. Many Toshiba computers come with software for this purpose. You may choose to use an alternative, but you should only have one anti-virus program installed at a time.
  Run your anti-virus program and ensure it's fully updated. Once it's updated, preform a full scan of your computer.
  Disconnect accessories
  If that doesn't help, you should disconnect any accessories connected to your computer. It's possible that the symptoms that you think are due to a virus could be due to an accessory.
  Uninstall new software
  An error with a new program might be causing problems that you think are being caused by a virus. To check this, uninstall any new programs that you installed near the time your computer's symptoms first appeared.
  Perform system restore
  If none of the previous suggestions helped, you might consider performing a system restore. This will return your computer's system files to a previous state. System settings will revert, and programs installed since the restore point was created might need to be reinstalled. Your documents shouldn't be changed.
  For more information on performing a system restore, see one of the following articles:
  How To: Understanding System Restore, Refresh, Reset, and, Recovery options in Windows 8 + Video
  How To: Perform a system restore in Windows 7
  Contact a professional or perform a system reset
  Lastly, you might want to return your computer to factory default conditions. This is sometimes called a system reset or a system recovery. Note that this will remove all of your software and data that you added including applications, documents, photos, etc.
  If you don't want to reset your computer and you'd like to contact a professional, CLICK HERE.
  If you do want to proceed with a system reset, the system reset will remove the virus. For more information, see the following article:
  How To: Understanding System Restore, Refresh, Reset, and, Recovery options in Windows 8 + Video

  Some processes are critical, but many can be interrupted without any problem.
  You can monitor your ongoing processes by going to Applications/Utiltities/Activity Monitor; pay particular attention to Disk Activity and Network. To interrupt a process, highlight the process, and tap "Quit Processes." This will interrupt or stop the runaway process.

• Is it possible to have a Youtube or Google search result appear in Firefox history without knowing about it?

  I recently found some Google and Youtube search results on my boyfriend's computer in Firefox that were "questionable" and when I asked him about them, he adamantly denied knowing what they were and said he recently had some viruses on his computer and they could have put these results on there. I don't know if this is possible or not. The only thing similar to this I've heard is viruses redirecting you to a certain site, but not to specific google and youtube results, and if that did happen, he would have to see them, right? I think it's version 11.0. HELP!!

  It is possible that you have a virus that was redirecting, but if there are Google searches, and Youtube searches, it is most likely that ''someone'' did those searches.
  You can try running these tools to check for infections: [http://www.malwarebytes.org/ http://www.malwarebytes.org/]
  [http://support.kaspersky.com/faq/?qid=208283363 http://support.kaspersky.com/faq/?qid=208283363]
  So, I can't say for certain your boyfriend did these, but it is most likely that "somebody", not "something" did them.

• Is it possible to get a virus or spyware on a iPad ?

  My iPad II seems to have a virus. Notes have disappeared twice. Changes pages for no reason.
  It it possible t get a virus o spyware?
  Thank you.

  Not really.  If your ipad is jailbroken then maybe.  The ios operating system is partitioned and locked.
  For issues with notes, what type of email account do you have setup on the device.  I ask this as some email accounts allow note syncing.  As note syncing with email accounts are done OTA, there could be an issue that causes them to disappear.  You can logging to your email account and most have a note section to verify if they are present. 
  I am not sure what you mean by changing pages.  Could you elaborate on that more?

• How can I figure out if I have a virus?

  I'm afraid that I may have caught a virus on my Macbook, because when I'm into safari things keep popping up. How can I determine whether or not i have a virus? Or is that even possible?

  There is no need to download anything to solve this problem. You may have installed a variant of the "VSearch" ad-injection malware.
  Malware is always changing to get around the defenses against it. This procedure works as of now, as far as I know. It may not work in the future. Anyone finding this comment a few days or more after it was posted should look for a more recent discussion, or start a new one.
  The VSearch malware tries to hide itself by varying the names of the files it installs. To remove it, you must first identify the naming pattern.
  Triple-click the line below on this page to select it, then copy the text to the Clipboard by pressing the key combination  command-C:
  /Library/LaunchDaemons
  In the Finder, select
            Go ▹ Go to Folder...
  from the menu bar and paste into the box that opens by pressing command-V. You won't see what you pasted because a line break is included. Press return.
  A folder named "LaunchDaemons" may open. Look inside it for two files with names of the form
            com.something.daemon.plist
  and
             com.something.helper.plist
  Here something is a variable string of characters, which can be different in each case. So far it has always been a string of letters without punctuation, such as "cloud," "dot," "highway," "submarine," or "trusteddownloads." Sometimes it's a meaningless string such as "e8dec5ae7fc75c28" rather than a word. Sometimes the string is "apple," and then you must be especially careful not to delete the wrong files, because many built-in OS X files have similar names.
  If you find these files, leave the LaunchDaemons folder open, and open the following folder in the same way:
  /Library/LaunchAgents
  In this folder, there may be a file named
            com.something.agent.plist
  where the string something is the same as before.
  If you feel confident that you've identified the above files, back up all data, then drag just those three files—nothing else—to the Trash. You may be prompted for your administrator login password. Close the Finder windows and restart the computer.
  Don't delete the "LaunchAgents" or "LaunchDaemons" folder or anything else inside either one.
  The malware is now permanently inactivated, as long as you never reinstall it. You can stop here if you like, or you can remove two remaining components for the sake of completeness.
  Open this folder:
  /Library/Application Support
  If it has a subfolder named just
             something
  where something is the same string you saw before, drag that subfolder to the Trash and close the window.
  Don't delete the "Application Support" folder or anything else inside it.
  Finally, in this folder:
  /System/Library/Frameworks
  there may an item named exactly
              v.framework
  It's actually a folder, though it has a different icon than usual. This item always has the above name; it doesn't vary. Drag it to the Trash and close the window.
  Don't delete the "Frameworks" folder or anything else inside it.
  If you didn't find the files or you're not sure about the identification, post what you found.
  If in doubt, or if you have no backups, change nothing at all.
  The trouble may have started when you downloaded and ran an application called "MPlayerX." That's the name of a legitimate free movie player, but the name is also used fraudulently to distribute VSearch. If there is an item with that name in the Applications folder, delete it, and if you wish, replace it with the genuine article from mplayerx.org.
  This trojan is often found on illegal websites that traffic in pirated content such as movies. If you, or anyone else who uses the computer, visit such sites and follow prompts to install software, you can expect more of the same, and worse, to follow. Never install any software that you downloaded from a bittorrent, or that was downloaded by someone else from an unknown source.
  In the Security & Privacy pane of System Preferences, select the General tab. The radio button marked Anywhere  should not be selected. If it is, click the lock icon to unlock the settings, then select one of the other buttons. After that, don't ignore a warning that you are about to run or install an application from an unknown developer.
  Then, still in System Preferences, open the App Store or Software Update pane and check the box marked
            Install system data files and security updates (OS X 10.10 or later)
  or
            Download updates automatically (OS X 10.9 or earlier)
  if it's not already checked.

• I think i have a virus on my Macbook Pro, OS X Yosemite, how do i wipe my computer clean without erasing photos and music etc?

  i think i have a virus on my Macbook Pro, OS X Yosemite, how do i wipe my computer clean without erasing photos and music etc?

  The update alerts are fake, and are intended to dupe you into installing malware or disclosing private information so that your identity can be stolen.
  You might get the alerts when visiting a website that has been hacked. Don't visit the site again. If applicable, notify the site administrator of the problem, but don't send email to an unknown party.
  If you get the alerts when visiting more than one well-known website, such as Google, YouTube, or Facebook, then they may be the result of an attack on your router that has caused you to get false results from looking up the addresses of Internet servers. Requests sent to those sites are redirected to a server controlled by the attacker. It's possible, but less likely, that the DNS server used by your ISP has been attacked.
  Back up all data.
  Unlock the Network preference pane, if necessary, by clicking the lock icon in the lower left corner and entering your password. Cllck Advanced, open the DNS tab, and change the server addresses to the following:
            8.8.8.8
            8.8.4.4
  That's Google DNS. Click OK, then Apply.
  In Safari, select
            Safari ▹ Preferences... ▹ Privacy ▹ Remove All Website Data
  and confirm. If you’re using another browser, empty the cache. Test. If the fake update alerts stop, see below. Otherwise, ask for instructions.
  The router's documentation should tell you how to reset it to the factory default state. Usually there's a pinhole switch somewhere in the back. It may be labeled "RESET." Insert the end of a straightened paper clip or a similar tool and press the button inside for perhaps 15 seconds, or as long as the instructions specify.
  After resetting the router, quit the web browser and relaunch it while holding down the shift key. From the Safari menu bar, select
            Safari ▹ Preferences... ▹ Privacy ▹ Remove All Website Data
  and confirm. Do the equivalent if you use another browser. Open the Downloads folder and delete anything you don't recognize.
  Then go through the router's initial setup procedure. I can't be specific, because it's different for every model. The key points are these:
  1. Don't allow the router to be administered from the WAN (Internet) port, if it has that option. Most do.
  2. Set a strong password to protect the router's settings: at least ten random upper- and lower-case letters and digits. Don't use the default password or any other that could be guessed. Save the password in your keychain. Any password that you can remember is weak.
  3. If the router is wireless, or if you have a wireless access point on the network, use "WPA 2 Personal" security and set a different strong password to protect the network. If the router or access point doesn't support WPA 2, it's obsolete and must be replaced.
  During the time the router was compromised, you were redirected to bogus websites. If you ever connected to a secure site and got a warning from your browser that the identity of the server could not be verified, and you dismissed that warning in order to log in, assume that your credentials for the site have been stolen and that the attacker has control of the account. This warning also applies to all websites on which you saw the fake update alerts.
  Check the router manufacturer's website for a firmware update.
  If you downloaded and installed what you thought was a software update, ask for instructions.

• Do I have a virus/malware problem? Idiot needs help

  Hello, Received an email from 'Royal Mail Global' saying that they had failed in delivering a package and to open the attached '.zip' file. Without thinking, I opened the file- it didn't launch anything. I realise this is incredibly stupid and I am mortified. However, I am now concerned that I have a virus, malware, etc. As I am a computer idiot: how do I check if a virus is on the system or a malware programme is stealing all my details? People say "you'll be ok, Mac's don't get virsus" but how do you know? I have encountered no issues, as yet.... I run OS X and have a mac mini. Please help- will be eternally grateful. Thank you in advance

  MacHagan wrote:
  Hello, Received an email from 'Royal Mail Global' saying that they had failed in delivering a package and to open the attached '.zip' file. Without thinking, I opened the file- it didn't launch anything.
  First of all, your Lion OS would have notified you if that was anything currently known to be dangerous. If it was malware it was almost certainly designed for Windows and of no consequence to OS X. If you are certain that the email is spam/junk/hoax then use the delete button in your e-mail client to get rid of it. Check the trash folder and delete it from there, if necessary. If this is a Gmail account, let me know as there may be one more step.
  When you say you opended the file, I assume you used an open button or double-clicked the attachment symbol? And then it didn't launch anything, but it should have launch the Archive Utility to unzip the attachment. Did that not happen? Did you see anything after you "opened it"?
  Even if it was unzipped, sitting in an attachment folder somewhere and is malware, it won't do anything at all until you attempt to open it. And as I said previously, it's almost certainly for Windows users, anyway.
  If you followed the suggestion to use ClamXav (or any other A-V software), there are some special considerations regarding e-mail. Here are my standard cautions:
  Never use ClamXav (or any other A-V software) to move (quarantine) or delete e-mail. It will corrupt the mailbox index which could cause loss of other e-mail and other issues with functions such as searching. It may also leave the original e-mail on your ISP's e-mail server and will be re-downloaded to your hard drive the next time you check for new mail.
  So, if you choose to "Scan e-mail content for malware and phishing" in the General Preferences, make sure you do not elect to either Quarantine or Delete infected files.
  When possibly infected e-mail files are found:
  Right-click/Control-click on either the infection or file name in the ClamXav window.
  Select "Reveal In Finder" from the pop-up menu.
  When the window opens, double-click on the file to open the message in your e-mail client application.
  Read the message and if you agree that it is junk/spam/phishing then use the e-mail client's delete button to delete it (this is especially important when the word "Heuristics" appears in the infection name).
  If you disagree and choose to retain the message, return to ClamXav and choose "Exclude From Future Scans" from the pop-up menu.
  If this is a g-mail account and those messages continue to show up after you have deleted them in the above manner, you may need to log in to webmail using your browser, go to the "All Mail" folder, find the message(s) and use the delete button there to permanently delete them from the server.
  For instructions on how to handle any infections that do not involved e-mail, use the Help menu or go directly to this link Dealing with Infected Files.