Results 1 to 11 of 11
  1. #1
    Malware on my iMac
    creativepart's Avatar
    Member Since
    Apr 03, 2012
    Location
    Hill Country, Texas
    Posts
    9
    Malware on my iMac
    Starting yesterday I have the "google redirect" malware on my iMac. Any Google.com url redirects to Yahoo's developer website. I guess it's called "yql.yahooapis.com" and seems common enough on a PC. but I have it on my Mac.

    If I reboot the iMac it goes away for a while but comes right back.

    On my PC, I'd know how to take care of this in seconds -- but on the Mac I have no idea. And a "bing" search (since I can't search google) comes up with no mentions of this on a Mac.

    Here's a screen shot direct from Chrome (Google product) for Google.com:
    Attached Images Attached Images

  2. #2
    Malware on my iMac
    vansmith's Avatar
    Member Since
    Oct 19, 2008
    Location
    Toronto
    Posts
    19,398
    Specs:
    2012 13" MBP (2.5 i5, 8GB)
    I have no idea why Chrome is doing this. Not only does it work fine here that Yahoo is a well respected (technically, perhaps not in terms of clout) website. Have you installed anything lately? What have you been browsing lately? Anything suspicious?
    Important Links: Community Guidelines : Use the reputation system if you've been helped.
    M-F Blog :: Write for the blog
    Writing a Quality Post

  3. #3
    Malware on my iMac
    creativepart's Avatar
    Member Since
    Apr 03, 2012
    Location
    Hill Country, Texas
    Posts
    9
    It's not just Chrome, it's Firefox and Safari, too.

    Nope it's something on the Mac itself. This is a known PC malware. I just can't find anything about having this on an Mac.

    Want to know the oddest part? In Parallels with Win 7 I don't have the issue. Only on the Mac do I have the problem And, generally it's a Windows malware.

  4. #4
    Malware on my iMac
    vansmith's Avatar
    Member Since
    Oct 19, 2008
    Location
    Toronto
    Posts
    19,398
    Specs:
    2012 13" MBP (2.5 i5, 8GB)
    Have you taken a look at your DNS settings (System Preferences > Network > select adapter > Advanced > DNS)? Do they look off? If you don't know, post them here and we'll let you know.
    Important Links: Community Guidelines : Use the reputation system if you've been helped.
    M-F Blog :: Write for the blog
    Writing a Quality Post

  5. #5
    Malware on my iMac
    creativepart's Avatar
    Member Since
    Apr 03, 2012
    Location
    Hill Country, Texas
    Posts
    9
    I see nothing unusual there. I see my ISP's domain, the router IP, and I use Google's DNS IPs. So, that's all that's there.

  6. #6
    Malware on my iMac
    Lifeisabeach's Avatar
    Member Since
    Sep 30, 2007
    Location
    The Republic of Neptune
    Posts
    7,638
    What about your router? Check the DNS settings there.

    EDIT: and check your HOSTS file.
    http://www.neowin.net/forum/topic/10...mac-os-x-lion/

    Please verify and include the exact model/year of your Mac and OS X version number (available from "About This Mac", then "More Info" on the Apple menu).
    ------
    Links: Onyx | EasyFind | Apple Hardware Test | How to test your hard drive | The Safe Mac Adware Removal Guide | Uninstall MacKeeper
    ------
    Lifeisabeach - Mac-Forums Member of the Month June 2009, Feb 2012, and March 2013.

  7. #7
    Malware on my iMac
    creativepart's Avatar
    Member Since
    Apr 03, 2012
    Location
    Hill Country, Texas
    Posts
    9
    I'm running ClamXav on the computer right now. To my surprise it's up to 40 found "viruses" and still running. Some are clearly false positives. But running the application and quarantining the malware so far has gotten rid of the Google Redirect.

    As a long time Windows user that's used a Mac desktop for only 7 or 8 months I'm surprised about the results. I wish there was a Malwarebytes version for the Mac as that's a program I trust.

    I'm not at all sure that the malware being found by ClamXav is really bad stuff or not. The first thing it said was a trojan I was able to determine quickly that it was a false positive on a valid file. So, it makes me a bit skeptical about the others at this point.

    Thanks for the help.

  8. #8
    Malware on my iMac
    pigoo3's Avatar
    Member Since
    May 20, 2008
    Location
    U.S.
    Posts
    31,502
    Specs:
    2011 13" MBP 2.3ghz, 8gig ram, OS 10.7.5
    Quote Originally Posted by creativepart View Post
    I'm not at all sure that the malware being found by ClamXav is really bad stuff or not.
    EXACTLY! Many times what ClamXav finds are virus's/malware that effect Windows computers only. But ClamXav makes you aware of this…and isolates it anyway.

    This kind of information falls into the category of…"A little knowledge is dangerous!"

    - Nick
    - Too many "beachballs", read this: Beachballs
    - Computer seems slower than it used to? Read this for some slow computer tips: Speedup
    - Almost full hard drive? Some solutions. Out of Space
    - Apple Battery Info. Battery

  9. #9
    Malware on my iMac
    creativepart's Avatar
    Member Since
    Apr 03, 2012
    Location
    Hill Country, Texas
    Posts
    9
    I can see that. So far it's really gone crazy on the spam folder of my email client. Duh.

    Well, it was free and it shouldn't hurt to run it and see what happens.

    The Google redirect has stopped, but I'm not absolutely sure it isn't a coincidence. When searching for info on this issue I found a number of really suspicious websites that looked to be picking up the search terms to pretend they were on this subject.

    Oh, I did check my Mac Hosts file but there was nothing unusual there.

  10. #10
    Malware on my iMac
    creativepart's Avatar
    Member Since
    Apr 03, 2012
    Location
    Hill Country, Texas
    Posts
    9
    Searching for info on this is very difficult. There are a ton of fake AV sites out there that just pick up your search term and pretend to have info in order to get you to buy their worthless program.

    I did find another Mac user posting about this on a Google help site:

    Google/Yahoo Redirect

  11. #11
    Malware on my iMac
    creativepart's Avatar
    Member Since
    Apr 03, 2012
    Location
    Hill Country, Texas
    Posts
    9
    I think I know what got rid of the google redirect -- I reset my router at the same time that I started running ClamXav.

    I feel confident that the problem is my router's DNS table. I need to remove it from my DNS list. Currently, it's listed first, followed by Google's DNS servers.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. How do i get rid off malware in IOS8 i.e WireLurker malware
    By richardbenson22 in forum OS X - Operating System
    Replies: 3
    Last Post: 11-10-2014, 07:49 AM
  2. mac malware? VBS-Malware-gen
    By macgig in forum Security Awareness
    Replies: 3
    Last Post: 02-06-2014, 09:39 PM
  3. Malware
    By bigandbald in forum Apple Desktops
    Replies: 1
    Last Post: 01-25-2014, 04:29 PM
  4. Possible Malware
    By rabbitjetta in forum OS X - Operating System
    Replies: 2
    Last Post: 10-18-2011, 07:21 PM
  5. Malware detected on my iMac!
    By Cal30M1 in forum OS X - Operating System
    Replies: 1
    Last Post: 10-06-2010, 09:33 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •