-
All replies
-
Helpful answers
-
Mar 24, 2014 7:00 PM in response to Randy_Renoby Linc Davis,I suggest the tedious procedure below to disable Genieo. This procedure may leave a few small files behind, but it will deactivate any version of the rootkit that I know of.
Back up all data. You must know how to restore from a backup even if the system becomes unbootable. If you don't know how to do that, or if you don't have any backups, stop here and ask for guidance.
Step 1
Triple-click anywhere in the line below on this page to select it:
/etc/launchd.conf
Right-click or control-click the line and select
Services ▹ Reveal in Finder (or just Reveal)
from the contextual menu.
If you don't see the contextual menu item, copy the selected text to the Clipboard by pressing the key combination command-C. In the Finder, select
Go ▹ Go to Folder...
from the menu bar and paste into the box that opens (command-V). You won't see what you pasted because a line break is included. Press return.
A folder may open with a file selected, or the file may not exist, in which case you'll get a message that it can't be found. If it does exist, it's a configuration file created or replaced by the Genieo installer. Any software installer that does this should be considered ipso facto malware. Move the file to the Trash. You'll be prompted for your administrator password. Then restart, empty the Trash, and continue as below.
IMPORTANT: If the launchd.conf file exists, you must move it to the Trash and restart before continuing. Otherwise the system may become unbootable. In that case, restore from your backup and start over. That's how badly Genieo has sabotaged your system. If you're not sure you can complete this step, stop here and ask for guidance.
Some installations of Genieo don't include the launchd.conf file, perhaps because it has already been removed. The absence of that file doesn't mean that Genieo is not installed.
Step 2
Quit the Genieo application, if it's running. Force quit if necessary.
Move each of these items to the Trash in the same way as above:
/Applications/Genieo.app /Applications/Uninstall Genieo.app /Library/Frameworks/GenieoExtra.framework /Library/LaunchAgents/com.genieo.engine.plist /Library/LaunchAgents/com.genieoinnovation.macextension.plist /Library/LaunchDaemons/com.genieoinnovation.macextension.client.plist /Library/PrivilegedHelperTools/com.genieoinnovation.macextension.client /usr/lib/libgenkit.dylib
/usr/lib/libgenkitsa.dylib
/usr/lib/libimckit.dylib
/usr/lib/libimckitsa.dylibThere's no need to restart after each one. Again, some of these items may be absent, in which case you'll get a message that the file can't be found. Skip that item and go on to the next one.
Restart and empty the Trash. Don't try to empty the Trash until you have restarted.
Step 3
From the Safari menu bar, select
Safari ▹ Preferences... ▹ Extensions
Uninstall any extensions you don't know you need, including ones called "Genieo" or "Omnibar," and any that have the word "Spigot" or "InstallMac" in the description. If in doubt, uninstall all extensions. Do the equivalent for the Firefox and Chrome browsers, if you use either of those.
Your web browser(s) should now be working, and you should be able to reset the home page and search engine. If not, stop here and post your results.
Make sure you don't repeat the mistake that led you to install this undesirable software. Chances are you got it from one of the Internet's open sewers such as "Softonic" or "CNET Download." Never visit either of those sites again. You might also have downloaded it from an ad in a page on some other site. Typically the ad is a large green button labeled "Download Now" in white letters. The button is designed to mislead people who want to download something else on the same page. If you ever download a file that isn't obviously what you expected, delete it immediately.
You may be wondering why you didn't get a warning from Gatekeeper about installing software from an unknown developer, as you should have. The reason is that the Genieo developer has a codesigning certificate issued by Apple, which causes Gatekeeper to give the installer a pass. Apple could revoke the certificate, but as of this writing, has not done so, even though it's aware of the problem. It must be said that this failure of oversight is inexcusable and has seriously compromised the value of Gatekeeper and the Developer ID program. You cannot rely on Gatekeeper alone to protect you from harmful software.
Finally, be forewarned that when Genieo is mentioned on this site, the developer sometimes shows up under the name "Genieo support." If that happens, don't believe anything he says, but feel free to tell him what you think of his scam.
-
-
Apr 15, 2014 2:30 PM in response to Randy_Renoby hoopsmiller,Linc -
Thanks so much for the instructions and help. I am looking forward to being geneio free, soon. I was able to find the "launchd.conf" file, but I was not able to follow any of the steps after that. I tried the right click, and control-click, but nothign happened after that point.
I read the other entry bellow from Kappy, which suggested moving the "lanchd.conf" file to the trash and restarting. I did that, but I was not able to delete any of the files since then. I have not emptied the trash yet, so the "launchd.conf" file is still on the computer (in the trash, but on it).Thank you in advance for any advice on removing this damnable product.
Jim
-
Apr 27, 2014 6:23 AM in response to Linc Davisby kellychildsis,THANK YOU for posting this! I did not install Genieo, no idea how it got there, it was chewing up my system memory. Now it's gone! Thanks again!!
-
Apr 30, 2014 12:31 PM in response to Linc Davisby korafromlu,I did everything you said step by step, nevertheless, I am still stuck with Genieo. I can't find any more Genieo files. I don't know what else to do! Help me please!
-
Sep 25, 2014 9:27 AM in response to Linc Davisby hillied,Hi,
I seem to have removed Genieo from my current system 10.9.5. However, what about Genieo's presence in Time Machine? If I ever need to restore from a backup don't I risk reinstalling Genieo?
Thanks.
-
Sep 25, 2014 10:38 AM in response to hilliedby Eric Root,Yes, if you restore from a backup after you downloaded Genieo.
-
Sep 25, 2014 11:14 AM in response to Eric Rootby hillied,So does that mean if I ever need to restore from a backup I then have to follow all the steps to remove Genieo from whatever backup that is, or can I go in and remove Genieo from all of the backups?