Genieo Virus

Sounds like you have a permissions problem. Open Disk Utility, select your hard drive and click the Repair Permissions button.

jillc12 wrote:

I can only find one of the .dylib files and I get this message: The folder “libgenkit.dylib” can’t be opened because you don’t have permission to see its contents.

You normally won't find all of the files listed. You must have accidentally double-clicked the file so it thinks you want to open it. Just click and hold on it once and drag it to the trash. You will be asked to authenticate it with your admin password.

Thanks for the suggestions. Ok, I have tried all of the above and am about to pull my hair out! I am by no means a computer guru. I am working off of a limited knowledge of being a "recreational" mac user for the last 10 years. I have to follow very specific instructions :) My iMac has not been updated to Maverick if that makes a difference? Believe it is 10.6.8 off the top of my head. The dylib file is the only one I can find on the list. I am definitely not double clicking it. Almost immediately it says no folder found but at the same time I get the message that I do not have permission to view it. Also, after this post earlier, I may be crazy but every time I tried to come to this discussion via my email on iMac (opened in Firefox) I would try to sign in and it would tell me "sorry request cannot be completed at this time"... Just in a plain black script looked nothing like the support site. Argh! So frustrated and don't know what to do next.

Don't want to sound stupid but is there not a program for mac like there are for other computers to detect these things and prevent/delete them??

Thanks for any help!

jillc12 wrote:

The dylib file is the only one I can find on the list. I am definitely not double clicking it. Almost immediately it says no folder found but at the same time I get the message that I do not have permission to view it.

OK, you didn't double-click it then what did you do just before you got this message? Are you looking at a Finder window labled /usr/lib/ and you see a file named libgenkit.dylib? Now you say almost immediately, but immediately after what action?

after this post earlier, I may be crazy but every time I tried to come to this discussion via my email on iMac (opened in Firefox) I would try to sign in and it would tell me "sorry request cannot be completed at this time"... Just in a plain black script looked nothing like the support site.

Not sure I'm following you on this. You use Firefox to read your e-mail? Then what, are you seeing a message with one of our replies and clicking the link that says view the full discussion then when you get to the site you need to Sign in in order to post? And clicking Sign in which should take you to a My Apple ID site where you enter your Apple ID and Password, but instead you see the sorry message?

I don't recall seeing this, but it's certainly possible that the Sign in site was either down or too busy at the time you tried. Since the sign in site is different from this site and services all Apple ID sign ins, it should not look like the forum.

Sorry if my info was not clear, I was getting a bit out of sorts over this stuff earlier! I will try to explain a bit better.

Yes, after opening mail and clicking the link to view the full discussion in Firefox I wasclicking "Sign In', entering my Apple ID and password, then getting the sorry message. Must have been unrelated, I was just a bit paranoid, because I was now able to sign in this way.

Here is how I am getting the permission message.....Finder, then Go to Folder. Cut and paste /usr/lib/libgenkit.dylib and as soon as I press "Go" in the grey Go to the Folder box it says "The folder can't be found" and almost simultaneously a second box pops up with the Finder icon (blue face?) that says "The folder “libgenkit.dylib” can’t be opened because you don’t have permission to see its contents." I then have to click on "OK". Am I doing something wrong or is there another issue?

jillc12 wrote:

Here is how I am getting the permission message.....Finder, then Go to Folder. Cut and paste /usr/lib/libgenkit.dylib

That's what I would have guessed.

The only thing that should be pasted into "Go to Folder" is /usr/lib/. That's the folder you want to look into. After that you just need to drag "libgenkit.dylib" (and any of the others should they also somehow be there) to the trash and authenticate the move.

Thank you so much! Will try this.

jillc12 wrote:

the first file I am supposed to remove is /private/etc/launchd.conf Should that entire line not be copied and pasted as well?

It would be a good idea. It would seem that something has changed about libgenkit.dylib making it look like a folder or else, as Thomas indicated, permissions on that file have become corrupt in your case.

The only thing that should be pasted into "Go to Folder" is /usr/lib/. That's the folder you want to look into.

It's been a while since I've used Snow Leopard, but on more recent versions of Mac OS X, if you put a full path including a filename, such as "/usr/lib/libgenkit.dylib", into the Go to Folder window, then what should happen is that the folder (/usr/lib/ in this case) opens and the file (libgenkit.dylib) is selected.

MadMacs0, I know you still have a Snow Leopard system... can you test this on that and see if it behaves differently? If so, I need to make a modification to my instructions!

thomas_r. wrote:

It's been a while since I've used Snow Leopard, but on more recent versions of Mac OS X, if you put a full path including a filename, such as "/usr/lib/libgenkit.dylib", into the Go to Folder window, then what should happen is that the folder (/usr/lib/ in this case) opens and the file (libgenkit.dylib) is selected.

Which is what happens with my sample, but her's seems to be appearing as a directory. It's either a new variant or as you speculated before, permission corruption. If the former we should try to figure out where she got it from.

I know you still have a Snow Leopard system... can you test this on that and see if it behaves differently? If so, I need to make a modification to my instructions!

It may be awhile before I can get to that as I have way too much going on right now.

That's normal in Snow Leopard, it means the file exists, but the instructions for finding it are not suitable.

Here's an example file : /usr/lib/liblangid.dylib

Try to find it using the full path in Go to Folder

What does work, is the Services menu : select the text, right (ctrl) click it & choose Services - Reveal

Thanks for the info, Andy. I was not aware that the Go to Folder method wouldn't work this way in Snow Leopard. I'll have to go make some changes to my instructions!

You're welcome. There is a new version (new icon at least). Although it looks very similar, I've not tested an install yet. Newer files inside are dated 27 March.

andyBall_uk wrote:

What does work, is the Services menu : select the text, right (ctrl) click it & choose Services - Reveal

Yes, that's quick and easy. Should work for everybody.

andyBall_uk wrote:

You're welcome. There is a new version (new icon at least). Although it looks very similar, I've not tested an install yet. Newer files inside are dated 27 March.

Interesting. But the problem is that the installer is just a downloader that phones home for most of the payloads, so you can't really keep up with what all is actually being installed without testing it periodically.