Mac OS X restoring from backup > Virus as well?

There are no OS X viruses but there are plenty of threats to your information security. The vast majority are user-inflicted. Read below.

There will always be threats to your information security associated with using any Internet - connected communications tool:

1. You can mitigate those threats by following commonsense practices
2. Delegating that responsibility to software is an ineffective defense
3. Assuming that any product will protect you from those threats is a hazardous attitude that is likely to result in neglecting point #1 above.

OS X already includes everything it needs to protect itself from viruses and malware. Keep it that way with software updates from Apple.

A much better question is "how should I protect my Mac":

• Never install any product that claims to "clean up", "speed up", "optimize", "boost" or "accelerate" your Mac; to "wash" it, "tune" it, or to make it "shiny". Those claims are absurd.

  Such products are very aggressively marketed. They are all scams.

• Never install pirated or "cracked" software, software obtained from dubious websites, or other questionable sources.
  • Illegally obtained software is almost certain to contain malware.
  • "Questionable sources" include but are not limited to spontaneously appearing web pages or popups, download hosting sites such as C net dot com, Softonic dot com, Soft pedia dot com, Download dot com, Mac Update dot com, or any other site whose revenue is primarily derived from junk product advertisements.
  • If you need to install software that isn't available from the Mac App Store, obtain it only from legitimate sources authorized by the software's developer.
• Don’t supply your password in response to a popup window requesting it, unless you know what it is and the reason your credentials are required.
• Don’t open email attachments from email addresses that you do not recognize, or click links contained in an email:
  • Most of these are scams that direct you to fraudulent sites that attempt to convince you to disclose personal information.
  • Such "phishing" attempts are the 21st century equivalent of a social exploit that has existed since the dawn of civilization. Don’t fall for it.
  • Apple will never ask you to reveal personal information in an email. If you receive an unexpected email from Apple saying your account will be closed unless you take immediate action, just ignore it. If your iCloud, iTunes, or App Store account becomes disabled for valid reasons, you will know when you try to buy something or log in to this support site, and are unable to.
• Don’t install browser extensions unless you understand their purpose:

  Go to the Safari menu > Preferences > Extensions. If you see any extensions that you do not recognize or understand, simply click the Uninstall button and they will be gone.

• Don’t install Java unless you are certain that you need it:
  • Java, a non-Apple product, is a potential vector for malware. If you are required to use Java, be mindful of that possibility.
  • Java can be disabled in System Preferences.
  • Despite its name JavaScript is unrelated to Java. No malware can infect your Mac through JavaScript. It’s OK to leave it enabled.
  • The same precaution applies to Adobe Flash Player. Newly discovered Flash vulnerabilities appear almost weekly.
• Beware spontaneous popups: Safari menu > Preferences > Security > check "Block popup windows".
  • Popup windows are useful and required for some websites, but unsolicited popups are commonly used to deceive people into installing unwanted software they would never intentionally install.
  • The mere appearance of a popup itself does not infect your Mac with anything malicious, but many contain resource-hungry code that will slow down Internet browsing.
  • If you ever receive a popup window indicating that your Mac is infested with some ick or that you won some prize, it is 100% fraudulent. Ignore it.
  • The same goes for a spontaneously appearing dialog insisting that you upgrade your video player right this instant. Such popups are frequently associated with sites that promise to deliver "free" movies, music, or other copyrighted content that is not normally "free".
  • If you find Safari has locked up, leaving you unable to dismiss the page, read Phony "tech support" / "ransomware" popups and web pages for the solution.
• Ignore hyperventilating popular media outlets that thrive by promoting fear and discord with entertainment products arrogantly presented as "news". Learn what real threats actually exist and how to arm yourself against them:
  • The most serious threat to your data security is phishing. Most of these attempts are pathetic and are easily recognized, but that hasn't stopped prominent public figures from recently succumbing to this age-old scam.
  • OS X viruses do not exist, but intentionally malicious or poorly written code, created by either nefarious or inept individuals, is nothing new.
  • Never install something without first knowing what it is, what it does, how it works, and how to get rid of it when you don’t want it any more.
  • If you elect to use "anti-virus" software, familiarize yourself with its limitations and potential to cause adverse effects, and apply the principle immediately preceding this one.
  • Most such utilities will only slow down and destabilize your Mac while they look for viruses that do not exist, conveying no benefit whatsoever - other than to make you "feel good" about security, when you should actually be exercising sound judgment, derived from accurate knowledge, based on verifiable facts.
• Do install updates from Apple as they become available. No one knows more about Macs and how to protect them than the company that builds them.

Summary: Use common sense and caution when you use your Mac, just like you would in any social context. There is no product, utility, or magic talisman that can protect you from all the evils of mankind.

Windows uses the terminology "clean install" but Apple does not, leading to frequent misunderstandings. Apple's support documents describe an erase and reinstall (which erases a volume first) or simply reinstall (which does not). There is no "clean". Its use in the context of maintaining a Mac should be avoided, if for no other reason is that it is a marketing term conveying no real meaning, exploited by garbage software vendors selling products that must never be installed on any Mac.

Time Machine is a backup utility capable of restoring individual files, folders, or an entire system to a known state that existed on a particular date, or for more recent backups, even a particular time. If you mess up your Mac for whatever reason, recovering an entire system from a backup preceding that event will restore it to that state as if nothing after it occurred. The number of those complete backups is limited only by the capacity of the backup volume(s) you designate.

To learn how to use Time Machine read Mac Basics: Time Machine backs up your Mac - Apple Support.

There are a couple of flaws.. very specific models and attack vectors which make it pretty unlikely.

See http://www.zdnet.com/article/symantec-confirms-existence-of-unpatched-rootkit-ap ple-mac-security-flaw/

rootkits can get into any of the Unix type OS systems. And yes, Time Machine would also back it up just as windows would backup a flaw..

But mostly when you restore, you will simply select a date before the virus installed and that will bypass the issue. Or migrate your user data onto a clean install.. the virus will be part of the system files so will be left in the backup.

Overall, after I abandoned ship at vista, never had a virus infection. Using several different Macs and continuously online.

I worked as a computer technician.. and still do the occasional install of windows for people.. just recently did a win 8.1 install. It got infected within a week running standard windows anti-virus software but the people downloaded music from less than legit sites lets say. They rang me again a month ago to say it got infected again opening an email.

Stick to good computing practice.. Don't go to websites with illegal stuff of any kind. Don't open dodgy looking emails .. especially with attachments.

The Mac is still head and shoulders above windows.. if you are really still paranoid you can run an anti-virus in the Mac.. but they tend to be more for removing windows viruses that come in emails.. than having anything to do with the Mac.

There are no known viruses in the wild affecting OS X. If you computer is new, then there isn't any need to "clean" it. In fact, there shouldn't be any "cleaning" required normally.