Removing Redirect Malware

Discussion in 'Mac Basics and Help' started by eleven7, Apr 22, 2014.

  1. eleven7 macrumors regular

    Joined:
    Mar 14, 2009
    Location:
    Japan
    #1
    So 6 years after switching to mac I have run into my first malware (?) problem.

    Was working on a website on my local MAMP server this afternoon, then all of a sudden I reload the page I'm working on and I'm redirected to some UK porn website (realpunting.com)?!

    I have read through all the info/posts on here about how to fix redirect problems, and subsequently changed my DNS servers, ran a scan using using ClamX but still can't get rid of it. Checked my hosts file and the local server address is still in tact and being directed to localhost so don't know what to do next?

    Google came up with nothing associated with that site and redirect malware so am wondering if anyone here can shed any more light on what steps to take next?

    It's only affecting one of my local server addresses, and don't mind deleting it and setting up another one, I just want to be sure that it's gone for good if I do that.

    Thanks in advance!
     
  2. Tumbleweed666 macrumors 68000

    Joined:
    Mar 20, 2009
    Location:
    Near London, UK.
    #2
  3. eleven7 thread starter macrumors regular

    Joined:
    Mar 14, 2009
    Location:
    Japan
    #3
    Thanks for the link mate, checked it out and pretty sure I haven't got his "virus", haha. Tried everything suggested but nothing seems to get rid of it. Like I mentioned, it's contained to one local wordpress install, so I might just ditch it and try and forget about it for now. Still don't like not knowing where the malicious code is being inserted though. Double checked my hosts, my apache server's httpd.conf file, and spent ages looking through the wordpress install but didn't find anything unusual.

    Would really like to know where else a redirect could occur? Even when I change the nameserver it references the previous one (in the status bar) then redirects. I'll take a look at my SQL database but don't like my chances spotting something amongst all that - if anyone has any suggestions, they would be much appreciated!! :eek:
     

Share This Page