Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: JAnime_Gamer
JAnime_Gamer Author
User level: Level 1
26 points

Windows 10.1 BootCamp Network Virus Moved to Mac.

So I had partitioned my MacBook Air with BootCamp so I could use Windows 10.1 on it. Everything was working wonderfully and perfect until after a while, on the Windows portion, it began coming up an Open DNS Pop-Up on practically every single website imaginable, including: Gaming Websites, Video Streaming (YouTube), Web Forums, etc. I decided to then try and fix it by going to my Mac portion and search up what was wrong, and the same Pop-Up appeared. I decided to delete the Windows portion yet it didn't help, and I am stuck using Google Chrome using this extension called BetterNet, it pretty much makes a VPN to bypass it, but it is really slow. I have tried everything, I had even reset my whole Mac and it didn't help so I just restored my data from Time Machine. I then checked the forums of Open DNS and they said that if it blocking every website (or practically every website), then that means that Open DNS is only blocking it because there is virus forcing Open DNS to block it. So I decided to download Norton and run a FULL SCAN, and about an Hour to tell me what the issue was, and it said there was no issue. I was frustrated, I have done everything. I have even checked the Open DNS settings and turned it off and it didn't help. If you think it is my network though, you are wrong, every other device in our house works flawlessly online. I am sick of his and really would just like help.


If you are too inconsiderate to read this whole paragraph to help me, here is a summary.


I partitioned my Mac with BootCamp and I got Windows 10.1 on it and it worked fine. I then started getting Open DNS Pop-Ups blocking me from almost every single website ever, Open DNS says a virus is forcing them to pull up a blocker. I have tried everything, and Norton says nothing is wrong. The rest of our house's devices do not have this issue.


Please Help ASAP! I appreciate it, many thanks.

MacBook Air, macOS Sierra (10.12.2), 13-inch, Early 2015

Posted on Feb 10, 2017 5:14 PM

Reply
Question marked as Best reply
User profile for user: JAnime_Gamer
JAnime_Gamer Author
User level: Level 1
26 points

Posted on Feb 12, 2017 2:33 PM

I will divide this reply into two parts for both of your replies:


1: There is technically only one way of "resetting" a Mac. Resetting any electronic device is where you delete all data that was previously on that device, and in some cases, you redownload the operating system necessary to use that device. Which is what I did. If you reset a Mac, that means you had deleted all files on there and redownloaded the operating system (MacOS Sierra Do not ask me which version of Sierra, it is in my description of my original post). I did that the only way that is possible, going into recovery mode (Turning on the system and instantly holding down Command + R), and I had clicked on reinstall MacOS. When I did so, Safari still did not work, So I had restored from Time Machine because I still had to access my files, I would've just kept the new computer files if it had worked, but it didn't.


2: As explained in MY ORIGINAL POST, I said this: "I have even checked the Open DNS settings and turned it off and it didn't help. If you think it is my network though, you are wrong, every other device in our house works flawlessly online." If I said that every other device on our network works flawlessly online, then that would indicate BY COMMON SENSE that each device in our house has Open DNS settings which are configured BY OUR NETGEAR ROUTER, so the only way to turn off ALL OF OPEN DNS' SETTINGS IS TO GO TO YOUR ROUTER SETTINGS ONLINE.


-READ THIS: I do not want a reply to this saying that I can go into my Mac's network settings and manually change the Open DNS settings, I have done that way too many times on my ACTUAL Windows computer and my Mac. And it never works. And I ALSO do NOT want to hear the suggestion to go to Apple, the guy said that many people have that issue and I have to go into my Netgear's settings and manually set which device has which access. Which is completely false because I had tried that BY TURNING OFF ALL OPEN DNS SETTINGS FOR EVERY DEVICE THAT IS REGISTERED TO OUR NETWORK (As I explained in my second paragraph). So I do not have the patience to argue with a "Level 7 Apple Community User" just for them to tell me in the end that I have to go to Apple to get a new Mac. I recently had been arguing with Apple for a week on my iPhone not working correctly with our home network, yet my sister has the exact same iPhone and her's works fine with the network, I did not get Open DNS blockage, just some features were not available on that network. And they said it had to be the environment, SO THEY WERE SAYING THAT THE ENVIRONMENT TARGETED ONE SPECIFIC IPHONE?!? I had then been given a loaned iPhone while they inspect my iPhone at a "Depot" to see if it is the iPhone that is causing this. And the loaner phone worked fine. In the end I did get a replacement phone, but I am not going back into that store just to have them say that it is the environment, because it is not, this is a MacBook Air. We have 3 of them in our house and I am the only one having this issue.


I am expecting a thorough reply because I just wasted 30 minutes explaining something that I have already explained twice, and I am currently sick and have work to do that I have to do. I am not trying to receive pity, I am only trying to explain to you how frustrating it is to have somebody with a high reputation (Or at least a high reputation here) to not thoroughly read my entries. And if you wouldn't read my original post and my first reply, which were much shorter than this, why should I expect you to reply to this with a valid answer.

View in context
31 replies
User profile for user: Loner T
Loner T
User level: Level 9
59,471 points

Feb 12, 2017 4:47 PM in response to JAnime_Gamer

JAnime_Gamer wrote:


a response in all caps does not mean you are yelling, people just assume that, it could just mean they want the reader to read that sentence for sure. And I am 100% aware that you are not apple officials, because it is clear that apple employees would actually know what they are talking about, and I don't even know who you are, I was referring that to Loner T. And at this point im not sure if I want to even get anymore help, it is obvious that everybody here believes they are right if they have a higher level than other users. I am disappointed I could not get the help I needed, I.Will keep to that point until I get my issue solved, because when I took Loner T's suggestion to do all of the recovery things, I am now stuck with a loading mac, and I have work to do, I should not be having to type this on my iPad, and so that is why these responses are so grammatically wrong, it's because I have no choice, i have to get this out because I need to get this fixed, I was expected this to be helpful.

You claimed that you have other Macs in the household.

And the loaner phone worked fine. In the end I did get a replacement phone, but I am not going back into that store just to have them say that it is the environment, because it is not, this is a MacBook Air. We have 3 of them in our house and I am the only one having this issue.

You are using an iPad to type responses, can you borrow one of these 'other' Macs?

Reply
User profile for user: JAnime_Gamer
JAnime_Gamer Author
User level: Level 1
26 points

Feb 12, 2017 5:21 PM in response to Loner T

1. I went to the Netgear website and went to the Open DNS page and turned off all blockings. So no websites, no matter what category they were in, would be blocked. And I have already mentioned that I do not want suggestions to switch to google DNS or do anything like that. I have done that on Macs and Windows computers multiple times and it never works, and every website has the same steps to do it but it never works.

2. Because I was busy trying to get my point out, and all connections are wireless. If you had checked what mac this is, you would know that this Mac does not have an Ethernet port.

3. I never restored TM backups during this post, I specifically stated that I had done that BEFORE this post. But I am trying to make you satisfied by not restoring from backup, even though it means I cannot access my files.

4. I am aware, but when you go to disk utility, that is the same place that you erase an SSD. So what's wrong with mentioning that.

5. Well it is a little too late to say that, as I said, I had searched all over the internet for solutions and i have been willing to try anything, hence I keep saying I will not do things again because they wasted my time the first time.

6. Our netgear network has 4 networks: Two main wireless networks and two extenders, the extenders run on different names so their processing is not the same. And the problem is specific TO ALL OF THE WIRELESS NETWORKS. As I said before, this mac does not have an ethernet port, and I am not going to follow a suggestion to buy a thunderbolt to ethernet plug.

7. What kind of question is that? Is there a purpose to that question?

Reply
User profile for user: JAnime_Gamer
JAnime_Gamer Author
User level: Level 1
26 points

Feb 12, 2017 5:55 PM in response to Loner T

I never said that I do not want to use Internet Recovery, I said that it is not helping me and I do not see the purpose of it. I did not say ANYWHERE that my mac is infected in that last reply, I had said that THE WEBSITE claimed my mac was NOT INFECTED. And I assume the use of apostrophes is a form of mockery. And I had wiped my internal disk, I have said that multiple times. And if you are suggesting to use this "Wireshark" thing, I would assume a link would be helpful, as I cannot access the website as discussed before.

Reply
User profile for user: Loner T
Loner T
User level: Level 9
59,471 points

Feb 12, 2017 7:16 PM in response to JAnime_Gamer

Erasing the disk and installing a clean copy of OS X allows any incorrect configurations and/or corrupted files from TM to be removed from the troubleshooting which can potentially cause problems. If you say all devices except a specific Mac, work properly, we have this designated as 'infected' because of the additional Windows Virus infection that you reference. All other devices by definition are 'uninfected'. Is that good for definitions?


The more software you add to this 'infected' Mac, the more layers have to be unpeeled to diagnose. Hence, we start with a basic installation, which has no other software except the base OS X.


Wireshark is best explained at https://www.wireshark.org/ . Try your iPad.


Is a clean copy of OS X installed on the 'infected' Mac?

Reply
User profile for user: JAnime_Gamer
JAnime_Gamer Author
User level: Level 1
26 points

Feb 12, 2017 7:26 PM in response to Loner T

No, I had to restore my data, so I am back to using my TM backup. Get as mad at me as you want for me "unwillingly" resetting my Mac just to restore it, but I do not see what other possible solution there would be, I will try this wireshark thing only because it seems as if that is what will make you happy, if I use this 'infected' computer to click on a link a stranger sent me that I have no idea what it is for. And also, if you are a Level 7 whatever, and you can give me all of these suggestions, why can't you tell me what possibilities are there to what could've possibly caused this?

Reply
User profile for user: JAnime_Gamer
JAnime_Gamer Author
User level: Level 1
26 points

Feb 12, 2017 7:29 PM in response to Loner T

I had just clicked on the link, and you want me to download something? I thought our objective was to not download anything, because, even if we reset the whole Mac so there is only the operating system, there is not just the operating system, there must be a file for the Open DNS blockage that is spreading since it spread from partition to partition, so that is useless.

Reply
User profile for user: Loner T
Loner T
User level: Level 9
59,471 points

Feb 12, 2017 7:49 PM in response to JAnime_Gamer

In most cases adware/malware which modifies files used by kernel. Bad versions of Adobe, MacCleaner, Flash, iTunes lookalikes. If the configuration files are modified to point DNS entries to incorrect servers, name resolution will send you to bad places. This is also the reason why I suggested using an IP address verification. Cookies used by browsers can also cause problems.


If you 'share' files between OS X and Windows, common files can cause OS X misbehavior. If you use third-party software without verifying the integrity of software, you can get malware.


Wireshark can be installed on any 'non-infected' machine to monitor network traffic. It can also be installed on a brand new copy of OS X which has no other third-party software.


The intent of a clean install is to get standard OS X KEXTS and configurations. There is no reason to keep re-infecting your Mac with a TM restore, because it contains bad files anyway. If you can go back to a backup which is older than the first noted sign of the issue, it may be viable, but human memory cannot be trusted in such matters.

Reply
User profile for user: babowa
babowa
User level: Level 9
78,133 points

Jun 9, 2017 8:40 AM in response to JAnime_Gamer

I was running a BETA OS


It is helpful if you supply that information in your original post. As well, you need to keep in mind that you agreed to a non-disclosure agreement when signing up for the beta which specifically mentions that you are not to discuss anything about it anywhere. And, according to the ToU for these forums, we are not allowed to help with any beta questions unless Apple has made that information publicly available. That all makes sense - why? Because, unless someone is running the beta, they would not be able to replicate or troubleshoot the problem, and if they are running a beta, they are also not allowed to discuss it.

Reply

Windows 10.1 BootCamp Network Virus Moved to Mac.

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up