-
All replies
-
Helpful answers
-
Dec 14, 2015 4:14 PM in response to mustakoira2by thomas_r.,mustakoira2 wrote:
A reset of Firefox worked, Safari still has search genius!?
Be aware that Malwarebytes Anti-Malware for Mac will remove the adware, but it does not try to edit your browser's preferences at this time. You probably still need to change Safari's home page and/or search engine settings. In Safari's preferences window, the home page settings can be changed in the General pane and the search engine settings can be changed in the Search pane.
Thomas Reed
Director of Mac Offerings, Malwarebytes
-
Dec 14, 2015 5:12 PM in response to thomas_r.by mustakoira2,Hi,
In Safari I have deleted the extensions, turned extensions off, have set google as my search engine. Have deleted the mediahm folder in the library under launch agents. Search genius still comes up on opening and uses bing as search engine. No browser setting changes work. Plus I am getting pop ups to random sites when using firefox, that never happened before.
-
Dec 14, 2015 6:44 PM in response to mustakoira2by thomas_r.,Can you post a system snapshot taken with Malwarebytes Anti-Malware for Mac? To do so, open Malwarebytes Anti-Malware for Mac and choose Take System Snapshot from the Scanner menu. Then, in the window that opens, select all the text (Edit → Select All), copy it and paste into a reply to this message.
Thomas Reed
Director of Mac Offerings, Malwarebytes
-
Dec 14, 2015 9:24 PM in response to thomas_r.by mustakoira2,Malwarebytes Anti-Malware 1.1.3.72 system report - 15 December 2015 1:22:32 pm AWST
Mac OS X version Version 10.10.3 (Build 14D136)
System uptime: 0d 00:13:01
Safari extensions
---------------
(
)
Chrome extensions
---------------
(
)
Firefox extensions
---------------
(
"Name: Adobe Contribute Toolbar",
"Modified: 2015-10-23 09:04:43 +0000",
"/Library/Application Support/Mozilla/Extensions/{ec8030f7-c20a-464f-9b0e-13a3a9e97384}/{01A8CA0A-4C9 6-465b-A49B-65C46FAD54F9}"
)
Login items
---------------
(
iTunesHelper
)
System startup items
---------------
(
)
User launch agents
---------------
(
"/Users/erichynynen/Library/LaunchAgents/.DS_Store"
)
System launch agents
---------------
(
)
System launch daemons
---------------
(
"/Library/LaunchDaemons/com.malwarebytes.MBAMHelperTool.plist"
)
Kernel extensions
---------------
(
"/System/Library/Extensions/acfs.kext",
"/System/Library/Extensions/acfsctl.kext",
"/System/Library/Extensions/ALF.kext",
"/System/Library/Extensions/AMD2400Controller.kext",
"/System/Library/Extensions/AMD2600Controller.kext",
"/System/Library/Extensions/AMD3800Controller.kext",
"/System/Library/Extensions/AMD4600Controller.kext",
"/System/Library/Extensions/AMD4800Controller.kext",
"/System/Library/Extensions/AMD5000Controller.kext",
"/System/Library/Extensions/AMD6000Controller.kext",
"/System/Library/Extensions/AMD7000Controller.kext",
"/System/Library/Extensions/AMD8000Controller.kext",
"/System/Library/Extensions/AMD9000Controller.kext",
"/System/Library/Extensions/AMDFramebuffer.kext",
"/System/Library/Extensions/AMDRadeonX3000.kext",
"/System/Library/Extensions/AMDRadeonX4000.kext",
"/System/Library/Extensions/AMDSupport.kext",
"/System/Library/Extensions/Apple16X50Serial.kext",
"/System/Library/Extensions/Apple16X50Serial.kext/Contents/PlugIns/Apple16X50AC PI.kext",
"/System/Library/Extensions/Apple_iSight.kext",
"/System/Library/Extensions/AppleACPIPlatform.kext",
"/System/Library/Extensions/AppleACPIPlatform.kext/Contents/PlugIns/AppleACPIBu ttons.kext",
"/System/Library/Extensions/AppleACPIPlatform.kext/Contents/PlugIns/AppleACPIEC .kext",
"/System/Library/Extensions/AppleAHCIPort.kext",
"/System/Library/Extensions/AppleAPIC.kext",
"/System/Library/Extensions/AppleBacklight.kext",
"/System/Library/Extensions/AppleBacklightExpert.kext",
"/System/Library/Extensions/AppleBluetoothMultitouch.kext",
"/System/Library/Extensions/AppleBMC.kext",
"/System/Library/Extensions/AppleCameraInterface.kext",
"/System/Library/Extensions/AppleCredentialManager.kext",
"/System/Library/Extensions/AppleEFIRuntime.kext",
"/System/Library/Extensions/AppleEFIRuntime.kext/Contents/PlugIns/AppleEFINVRAM .kext",
"/System/Library/Extensions/AppleFDEKeyStore.kext",
"/System/Library/Extensions/AppleFileSystemDriver.kext",
"/System/Library/Extensions/AppleFIVRDriver.kext",
"/System/Library/Extensions/AppleFSCompressionTypeDataless.kext",
"/System/Library/Extensions/AppleFSCompressionTypeZlib.kext",
"/System/Library/Extensions/AppleFWAudio.kext",
"/System/Library/Extensions/AppleGraphicsControl.kext",
"/System/Library/Extensions/AppleGraphicsControl.kext/Contents/PlugIns/AppleGra phicsDeviceControl.kext",
"/System/Library/Extensions/AppleGraphicsControl.kext/Contents/PlugIns/AppleGra phicsDevicePolicy.kext",
"/System/Library/Extensions/AppleGraphicsControl.kext/Contents/PlugIns/AppleMGP UPowerControl.kext",
"/System/Library/Extensions/AppleGraphicsControl.kext/Contents/PlugIns/AppleMux Control.kext",
"/System/Library/Extensions/AppleGraphicsControl.kext/Contents/PlugIns/ApplePol icyControl.kext",
"/System/Library/Extensions/AppleGraphicsPowerManagement.kext",
"/System/Library/Extensions/AppleHDA.kext",
"/System/Library/Extensions/AppleHDA.kext/Contents/PlugIns/AppleHDAController.k ext",
"/System/Library/Extensions/AppleHDA.kext/Contents/PlugIns/AppleHDAHardwareConf igDriver.kext",
"/System/Library/Extensions/AppleHDA.kext/Contents/PlugIns/AppleMikeyDriver.kex t",
"/System/Library/Extensions/AppleHDA.kext/Contents/PlugIns/DspFuncLib.kext",
"/System/Library/Extensions/AppleHDA.kext/Contents/PlugIns/IOHDAFamily.kext",
"/System/Library/Extensions/AppleHIDKeyboard.kext",
"/System/Library/Extensions/AppleHIDKeyboard.kext/Contents/PlugIns/AppleBluetoo thHIDKeyboard.kext",
"/System/Library/Extensions/AppleHIDKeyboard.kext/Contents/PlugIns/AppleUSBBuil tinHIDKeyboard.kext",
"/System/Library/Extensions/AppleHIDKeyboard.kext/Contents/PlugIns/AppleUSBHIDK eyboard.kext",
"/System/Library/Extensions/AppleHIDMouse.kext",
"/System/Library/Extensions/AppleHIDMouse.kext/Contents/PlugIns/AppleBluetoothH IDMouse.kext",
"/System/Library/Extensions/AppleHIDMouse.kext/Contents/PlugIns/AppleUSBHIDMous e.kext",
"/System/Library/Extensions/AppleHPET.kext",
"/System/Library/Extensions/AppleHPM.kext",
"/System/Library/Extensions/AppleHSSPIHIDDriver.kext",
"/System/Library/Extensions/AppleHSSPISupport.kext",
"/System/Library/Extensions/AppleHV.kext",
"/System/Library/Extensions/AppleHWAccess.kext",
"/System/Library/Extensions/AppleHWSensor.kext",
"/System/Library/Extensions/AppleIntelBDWGraphics.kext",
"/System/Library/Extensions/AppleIntelBDWGraphicsFramebuffer.kext",
"/System/Library/Extensions/AppleIntelCPUPowerManagement.kext",
"/System/Library/Extensions/AppleIntelCPUPowerManagementClient.kext",
"/System/Library/Extensions/AppleIntelFramebufferAzul.kext",
"/System/Library/Extensions/AppleIntelFramebufferCapri.kext",
"/System/Library/Extensions/AppleIntelHD3000Graphics.kext",
"/System/Library/Extensions/AppleIntelHD4000Graphics.kext",
"/System/Library/Extensions/AppleIntelHD5000Graphics.kext",
"/System/Library/Extensions/AppleIntelHDGraphics.kext",
"/System/Library/Extensions/AppleIntelHDGraphicsFB.kext",
"/System/Library/Extensions/AppleIntelLpssDmac.kext",
"/System/Library/Extensions/AppleIntelLpssGspi.kext",
"/System/Library/Extensions/AppleIntelLpssI2C.kext",
"/System/Library/Extensions/AppleIntelLpssI2CController.kext",
"/System/Library/Extensions/AppleIntelLpssSpiController.kext",
"/System/Library/Extensions/AppleIntelLpssUART.kext",
"/System/Library/Extensions/AppleIntelMCEReporter.kext",
"/System/Library/Extensions/AppleIntelSlowAdaptiveClocking.kext",
"/System/Library/Extensions/AppleIntelSNBGraphicsFB.kext",
"/System/Library/Extensions/AppleIRController.kext",
"/System/Library/Extensions/AppleKextExcludeList.kext",
"/System/Library/Extensions/AppleKeyStore.kext",
"/System/Library/Extensions/AppleKeyswitch.kext",
"/System/Library/Extensions/AppleLPC.kext",
"/System/Library/Extensions/AppleLSIFusionMPT.kext",
"/System/Library/Extensions/AppleMatch.kext",
"/System/Library/Extensions/AppleMCCSControl.kext",
"/System/Library/Extensions/AppleMCEDriver.kext",
"/System/Library/Extensions/AppleMCP89RootPortPM.kext",
"/System/Library/Extensions/AppleMikeyHIDDriver.kext",
"/System/Library/Extensions/AppleMobileDevice.kext",
"/System/Library/Extensions/AppleMobileFileIntegrity.kext",
"/System/Library/Extensions/AppleMultitouchDriver.kext",
"/System/Library/Extensions/AppleOSXWatchdog.kext",
"/System/Library/Extensions/ApplePlatformEnabler.kext",
"/System/Library/Extensions/AppleRAID.kext",
"/System/Library/Extensions/AppleRAIDCard.kext",
"/System/Library/Extensions/AppleRTC.kext",
"/System/Library/Extensions/AppleSDXC.kext",
"/System/Library/Extensions/AppleSEP.kext",
"/System/Library/Extensions/AppleSmartBatteryManager.kext",
"/System/Library/Extensions/AppleSMBIOS.kext",
"/System/Library/Extensions/AppleSMBusController.kext",
"/System/Library/Extensions/AppleSMBusPCI.kext",
"/System/Library/Extensions/AppleSMC.kext",
"/System/Library/Extensions/AppleSMCLMU.kext",
"/System/Library/Extensions/AppleSRP.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleATAP IStorage.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleFire WireStorage.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleHoll ywood.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleMemo rexCDROMDriver.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleUSBC ardReader.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleUSBO DD.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleUSBT DM.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleXser veRAID.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/CanonEOS1 D.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/FireWireS torageDeviceSpecifics.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/FWPreferr edProtocolSpeed.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/initioFWB ridge.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/IOFireWir eSerialBusProtocolSansPhysicalUnit.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/LSI-FW-50 0.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/MaxTranse rSizeOverrideDriver.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/MKE-LF-D2 11A.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/MKE-SR-81 71.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/OxfordSem iconductor.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/PioneerSu perDrive.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/PlasmonUD O.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/PreventMe diaMountDriver.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/QPSQueFir e.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/SanyoIDSh ot.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/SonyXDCAM Driver.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/StorageLy nx.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/UFIWriteP rotectedMediaDriver.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/USBStorag eDeviceSpecifics.kext",
"/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/WriteProt ectedMediaDriver.kext",
"/System/Library/Extensions/AppleThunderboltDPAdapters.kext",
"/System/Library/Extensions/AppleThunderboltDPAdapters.kext/Contents/PlugIns/Ap pleThunderboltDPAdapterFamily.kext",
"/System/Library/Extensions/AppleThunderboltDPAdapters.kext/Contents/PlugIns/Ap pleThunderboltDPInAdapter.kext",
"/System/Library/Extensions/AppleThunderboltDPAdapters.kext/Contents/PlugIns/Ap pleThunderboltDPOutAdapter.kext",
"/System/Library/Extensions/AppleThunderboltEDMService.kext",
"/System/Library/Extensions/AppleThunderboltEDMService.kext/Contents/PlugIns/Ap pleThunderboltEDMSink.kext",
"/System/Library/Extensions/AppleThunderboltEDMService.kext/Contents/PlugIns/Ap pleThunderboltEDMSource.kext",
"/System/Library/Extensions/AppleThunderboltIP.kext",
"/System/Library/Extensions/AppleThunderboltNHI.kext",
"/System/Library/Extensions/AppleThunderboltPCIAdapters.kext",
"/System/Library/Extensions/AppleThunderboltPCIAdapters.kext/Contents/PlugIns/A ppleThunderboltPCIDownAdapter.kext",
"/System/Library/Extensions/AppleThunderboltPCIAdapters.kext/Contents/PlugIns/A ppleThunderboltPCIUpAdapter.kext",
"/System/Library/Extensions/AppleThunderboltUTDM.kext",
"/System/Library/Extensions/AppleTopCase.kext",
"/System/Library/Extensions/AppleTopCase.kext/Contents/PlugIns/AppleTopCaseActu atorHIDDriver.kext",
"/System/Library/Extensions/AppleTopCase.kext/Contents/PlugIns/AppleTopCaseHIDE ventDriver.kext",
"/System/Library/Extensions/AppleTopCase.kext/Contents/PlugIns/AppleUSBTopCaseD river.kext",
"/System/Library/Extensions/AppleTyMCEDriver.kext",
"/System/Library/Extensions/AppleUpstreamUserClient.kext",
"/System/Library/Extensions/AppleUSBAudio.kext",
"/System/Library/Extensions/AppleUSBDisplays.kext",
"/System/Library/Extensions/AppleUSBEthernetHost.kext",
"/System/Library/Extensions/AppleUSBMultitouch.kext",
"/System/Library/Extensions/AppleUSBTopCase.kext",
"/System/Library/Extensions/AppleUSBTopCase.kext/Contents/PlugIns/AppleUSBTCBut tons.kext",
"/System/Library/Extensions/AppleUSBTopCase.kext/Contents/PlugIns/AppleUSBTCKey board.kext",
"/System/Library/Extensions/AppleUSBTopCase.kext/Contents/PlugIns/AppleUSBTCKey EventDriver.kext",
"/System/Library/Extensions/AppleUSBTopCase.kext/Contents/PlugIns/AppleUSBTrack pad.kext",
"/System/Library/Extensions/AppleWWANAutoEject.kext",
"/System/Library/Extensions/AppleXsanFilter.kext",
"/System/Library/Extensions/ATIRadeonX2000.kext",
"/System/Library/Extensions/AudioAUUC.kext",
"/System/Library/Extensions/autofs.kext",
"/System/Library/Extensions/BootCache.kext",
"/System/Library/Extensions/cd9660.kext",
"/System/Library/Extensions/cddafs.kext",
"/System/Library/Extensions/CellPhoneHelper.kext",
"/System/Library/Extensions/corecrypto.kext",
"/System/Library/Extensions/CoreStorage.kext",
"/System/Library/Extensions/CoreStorage.kext/Contents/PlugIns/CoreStorageFsck.k ext",
"/System/Library/Extensions/Dont Steal Mac OS X.kext",
"/System/Library/Extensions/exfat.kext",
"/System/Library/Extensions/GeForce.kext",
"/System/Library/Extensions/GeForceTesla.kext",
"/System/Library/Extensions/IO80211Family.kext",
"/System/Library/Extensions/IO80211Family.kext/Contents/PlugIns/AirPortAtheros4 0.kext",
"/System/Library/Extensions/IO80211Family.kext/Contents/PlugIns/AirPortBrcm4331 .kext",
"/System/Library/Extensions/IO80211Family.kext/Contents/PlugIns/AirPortBrcm4360 .kext",
"/System/Library/Extensions/IO80211Family.kext/Contents/PlugIns/AppleAirPortBrc m43224.kext",
"/System/Library/Extensions/IO80211Family.kext/Contents/PlugIns/IO80211NetBoote r.kext",
"/System/Library/Extensions/IOAcceleratorFamily.kext",
"/System/Library/Extensions/IOAcceleratorFamily2.kext",
"/System/Library/Extensions/IOACPIFamily.kext",
"/System/Library/Extensions/IOAHCIFamily.kext",
"/System/Library/Extensions/IOAHCIFamily.kext/Contents/PlugIns/IOAHCIBlockStora ge.kext",
"/System/Library/Extensions/IOAHCIFamily.kext/Contents/PlugIns/IOAHCIPassThroug h.kext",
"/System/Library/Extensions/IOAHCIFamily.kext/Contents/PlugIns/IOAHCISerialATAP I.kext",
"/System/Library/Extensions/IOATAFamily.kext",
"/System/Library/Extensions/IOATAFamily.kext/Contents/PlugIns/AppleIntelPIIXATA .kext",
"/System/Library/Extensions/IOATAFamily.kext/Contents/PlugIns/IOATABlockStorage .kext",
"/System/Library/Extensions/IOATAFamily.kext/Contents/PlugIns/IOATAPIProtocolTr ansport.kext",
"/System/Library/Extensions/IOAudio2Family.kext",
"/System/Library/Extensions/IOAudioFamily.kext",
"/System/Library/Extensions/IOAVBFamily.kext",
"/System/Library/Extensions/IOAVBFamily.kext/Contents/PlugIns/IOAVBDiscoveryPlu gin.kext",
"/System/Library/Extensions/IOAVBFamily.kext/Contents/PlugIns/IOAVBPlugin.kext" ,
"/System/Library/Extensions/IOAVBFamily.kext/Contents/PlugIns/IOMRPPlugin.kext" ,
"/System/Library/Extensions/IOBDStorageFamily.kext",
"/System/Library/Extensions/IOBluetoothFamily.kext",
"/System/Library/Extensions/IOBluetoothFamily.kext/Contents/PlugIns/BroadcomBlu etoothHostControllerUSBTransport.kext",
"/System/Library/Extensions/IOBluetoothFamily.kext/Contents/PlugIns/CSRBluetoot hHostControllerUSBTransport.kext",
"/System/Library/Extensions/IOBluetoothFamily.kext/Contents/PlugIns/CSRHIDTrans itionDriver.kext",
"/System/Library/Extensions/IOBluetoothFamily.kext/Contents/PlugIns/IOBluetooth HostControllerUARTTransport.kext",
"/System/Library/Extensions/IOBluetoothFamily.kext/Contents/PlugIns/IOBluetooth HostControllerUSBTransport.kext",
"/System/Library/Extensions/IOBluetoothFamily.kext/Contents/PlugIns/IOBluetooth SerialManager.kext",
"/System/Library/Extensions/IOBluetoothFamily.kext/Contents/PlugIns/IOBluetooth USBDFU.kext",
"/System/Library/Extensions/IOBluetoothHIDDriver.kext",
"/System/Library/Extensions/IOCDStorageFamily.kext",
"/System/Library/Extensions/IODVDStorageFamily.kext",
"/System/Library/Extensions/IOFireWireAVC.kext",
"/System/Library/Extensions/IOFireWireFamily.kext",
"/System/Library/Extensions/IOFireWireFamily.kext/Contents/PlugIns/AppleFWOHCI. kext",
"/System/Library/Extensions/IOFireWireIP.kext",
"/System/Library/Extensions/IOFireWireIP.kext/Contents/PlugIns/IOFireWireIPPriv ate.kext",
"/System/Library/Extensions/IOFireWireSBP2.kext",
"/System/Library/Extensions/IOFireWireSerialBusProtocolTransport.kext",
"/System/Library/Extensions/IOGraphicsFamily.kext",
"/System/Library/Extensions/IOHDIXController.kext",
"/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskIma gesCryptoEncoding.kext",
"/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskIma gesFileBackingStore.kext",
"/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskIma gesHTTPBackingStore.kext",
"/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskIma gesKernelBacked.kext",
"/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskIma gesPartitionBackingStore.kext",
"/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskIma gesRAMBackingStore.kext",
"/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskIma gesReadWriteDiskImage.kext",
"/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskIma gesSparseDiskImage.kext",
"/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskIma gesUDIFDiskImage.kext",
"/System/Library/Extensions/IOHIDFamily.kext",
"/System/Library/Extensions/IOHIDFamily.kext/Contents/PlugIns/IOHIDEventDriver. kext",
"/System/Library/Extensions/IOHIDFamily.kext/Contents/PlugIns/IOHIDEventDriverS afeBoot.kext",
"/System/Library/Extensions/IOHIDFamily.kext/Contents/PlugIns/IOHIDSystem.kext" ,
"/System/Library/Extensions/IOHIDFamily.kext/Contents/PlugIns/IOHIDUserClient.k ext",
"/System/Library/Extensions/IONDRVSupport.kext",
"/System/Library/Extensions/IONetworkingFamily.kext",
"/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/AppleBCM57 01Ethernet.kext",
"/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/AppleIntel 8254XEthernet.kext",
"/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/AppleIntel I210Ethernet.kext",
"/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/AppleUSBEt hernet.kext",
"/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/AppleUSBGi gEthernet.kext",
"/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/AppleYukon 2.kext",
"/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/Intel82574 L.kext",
"/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/IOEthernet AVBController.kext",
"/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/mDNSOffloa dUserClient.kext",
"/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/nvenet.kex t",
"/System/Library/Extensions/IONVMeFamily.kext",
"/System/Library/Extensions/IOPCIFamily.kext",
"/System/Library/Extensions/IOPlatformPluginFamily.kext",
"/System/Library/Extensions/IOPlatformPluginFamily.kext/Contents/PlugIns/ACPI_S MC_PlatformPlugin.kext",
"/System/Library/Extensions/IOPlatformPluginFamily.kext/Contents/PlugIns/AppleS MCPDRC.kext",
"/System/Library/Extensions/IOPlatformPluginFamily.kext/Contents/PlugIns/IOPlat formPluginLegacy.kext",
"/System/Library/Extensions/IOPlatformPluginFamily.kext/Contents/PlugIns/X86Pla tformPlugin.kext",
"/System/Library/Extensions/IOPlatformPluginFamily.kext/Contents/PlugIns/X86Pla tformShim.kext",
"/System/Library/Extensions/IOReportFamily.kext",
"/System/Library/Extensions/IOSCSIArchitectureModelFamily.kext",
"/System/Library/Extensions/IOSCSIArchitectureModelFamily.kext/Contents/PlugIns /IOSCSIBlockCommandsDevice.kext",
"/System/Library/Extensions/IOSCSIArchitectureModelFamily.kext/Contents/PlugIns /IOSCSIMultimediaCommandsDevice.kext",
"/System/Library/Extensions/IOSCSIArchitectureModelFamily.kext/Contents/PlugIns /IOSCSIReducedBlockCommandsDevice.kext",
"/System/Library/Extensions/IOSCSIArchitectureModelFamily.kext/Contents/PlugIns /SCSITaskUserClient.kext",
"/System/Library/Extensions/IOSCSIParallelFamily.kext",
"/System/Library/Extensions/IOSerialFamily.kext",
"/System/Library/Extensions/IOSerialFamily.kext/Contents/PlugIns/AppleUSBIrDA.k ext",
"/System/Library/Extensions/IOSerialFamily.kext/Contents/PlugIns/AppleWWANSuppo rt.kext",
"/System/Library/Extensions/IOSerialFamily.kext/Contents/PlugIns/AppleWWANSuppo rt1.kext",
"/System/Library/Extensions/IOSerialFamily.kext/Contents/PlugIns/AppleWWANSuppo rt2.kext",
"/System/Library/Extensions/IOSlowAdaptiveClockingFamily.kext",
"/System/Library/Extensions/IOSMBusFamily.kext",
"/System/Library/Extensions/IOStorageFamily.kext",
"/System/Library/Extensions/IOStreamFamily.kext",
"/System/Library/Extensions/IOStreamFamily.kext/Contents/PlugIns/IOStreamUserCl ient.kext",
"/System/Library/Extensions/IOSurface.kext",
"/System/Library/Extensions/IOThunderboltFamily.kext",
"/System/Library/Extensions/IOTimeSyncFamily.kext",
"/System/Library/Extensions/IOTimeSyncFamily.kext/Contents/PlugIns/IO8021ASPlug in.kext",
"/System/Library/Extensions/IOUSBAttachedSCSI.kext",
"/System/Library/Extensions/IOUSBFamily.kext",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBCDC.kext" ,
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBCDCACMCon trol.kext",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBCDCACMDat a.kext",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBCDCDMM.ke xt",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBCDCECMCon trol.kext",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBCDCECMDat a.kext",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBCDCEEM.ke xt",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBCDCWCM.ke xt",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBEHCI.kext ",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBFTDI.kext ",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBHub.kext" ,
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBMergeNub. kext",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBOHCI.kext ",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBOpticalMo use.kext",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBUHCI.kext ",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBVideoSupp ort.kext",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBXHCI.kext ",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/IOUSBCompositeDri ver.kext",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/IOUSBHIDDriver.ke xt",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/IOUSBHIDDriverPM. kext",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/IOUSBHIDDriverSaf eBoot.kext",
"/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/IOUSBUserClient.k ext",
"/System/Library/Extensions/IOUSBMassStorageClass.kext",
"/System/Library/Extensions/IOUserEthernet.kext",
"/System/Library/Extensions/IOVideoFamily.kext",
"/System/Library/Extensions/IOVideoFamily.kext/Contents/PlugIns/IOVideoDeviceUs erClient.kext",
"/System/Library/Extensions/iPodDriver.kext",
"/System/Library/Extensions/iPodDriver.kext/Contents/PlugIns/iPodSBCDriver.kext ",
"/System/Library/Extensions/L2TP.ppp/Contents/PlugIns/L2TP.kext",
"/System/Library/Extensions/Libm.kext",
"/System/Library/Extensions/mcxalr.kext",
"/System/Library/Extensions/msdosfs.kext",
"/System/Library/Extensions/ntfs.kext",
"/System/Library/Extensions/NVDAGF100Hal.kext",
"/System/Library/Extensions/NVDAGK100Hal.kext",
"/System/Library/Extensions/NVDANV50HalTesla.kext",
"/System/Library/Extensions/NVDAResman.kext",
"/System/Library/Extensions/NVDAResmanTesla.kext",
"/System/Library/Extensions/NVDAStartup.kext",
"/System/Library/Extensions/NVSMU.kext",
"/System/Library/Extensions/OSvKernDSPLib.kext",
"/System/Library/Extensions/PPP.kext",
"/System/Library/Extensions/PPPoE.ppp/Contents/PlugIns/PPPoE.kext",
"/System/Library/Extensions/PPTP.ppp/Contents/PlugIns/PPTP.kext",
"/System/Library/Extensions/pthread.kext",
"/System/Library/Extensions/Quarantine.kext",
"/System/Library/Extensions/Sandbox.kext",
"/System/Library/Extensions/smbfs.kext",
"/System/Library/Extensions/SMCMotionSensor.kext",
"/System/Library/Extensions/System.kext",
"/System/Library/Extensions/System.kext/PlugIns/AppleNMI.kext",
"/System/Library/Extensions/System.kext/PlugIns/ApplePlatformFamily.kext",
"/System/Library/Extensions/System.kext/PlugIns/BSDKernel.kext",
"/System/Library/Extensions/System.kext/PlugIns/IOKit.kext",
"/System/Library/Extensions/System.kext/PlugIns/IONVRAMFamily.kext",
"/System/Library/Extensions/System.kext/PlugIns/IOSystemManagement.kext",
"/System/Library/Extensions/System.kext/PlugIns/Libkern.kext",
"/System/Library/Extensions/System.kext/PlugIns/MACFramework.kext",
"/System/Library/Extensions/System.kext/PlugIns/Mach.kext",
"/System/Library/Extensions/System.kext/PlugIns/Private.kext",
"/System/Library/Extensions/System.kext/PlugIns/Unsupported.kext",
"/System/Library/Extensions/Terminus.kext",
"/System/Library/Extensions/TMSafetyNet.kext",
"/System/Library/Extensions/triggers.kext",
"/System/Library/Extensions/udf.kext",
"/System/Library/Extensions/vecLib.kext",
"/System/Library/Extensions/webcontentfilter.kext",
"/System/Library/Extensions/webdav_fs.kext",
"/Library/Extensions/ACS6x.kext",
"/Library/Extensions/ArcMSR.kext",
"/Library/Extensions/ATTOCelerityFC8.kext",
"/Library/Extensions/ATTOExpressSASHBA2.kext",
"/Library/Extensions/ATTOExpressSASRAID2.kext",
"/Library/Extensions/CalDigitHDProDrv.kext",
"/Library/Extensions/HighPointIOP.kext",
"/Library/Extensions/HighPointRR.kext",
"/Library/Extensions/LittleSnitch.kext",
"/Library/Extensions/PromiseSTEX.kext",
"/Library/Extensions/SoftRAID.kext"
)
launchd.conf contents
---------------
Hosts file
---------------
##
# Host Database
#
# localhost is used to configure the loopback interface
# when the system is booting. Do not change this entry.
##
127.0.0.1 localhost
255.255.255.255 broadcasthost
::1 localhost
# Block Adobe Activation
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 hl2rcv.adobe.com
# Block Adobe Activation
127.0.0.1 activate.adobe.com
# Block Adobe Activation
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 hl2rcv.adobe.com
# Block Adobe Activation
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 hl2rcv.adobe.com
# Block Adobe Activation
127.0.0.1 activate.adobe.com
# Block Adobe Activation
127.0.0.1 activate.adobe.com
# Block Adobe Activation
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 hl2rcv.adobe.com
# Block Adobe Activation
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 hl2rcv.adobe.com
# Block Adobe Activation
127.0.0.1 activate.adobe.com
Scan log
---------------
2015-12-14 15:43:34 :
2015-12-14 15:43:34 : ----- Scan Started -----
2015-12-14 15:43:34 : Scanning with signatures version 38 (2015-12-07)
2015-12-14 15:43:44 : *** scan time: 0d 00:00:10 ***
2015-12-14 15:43:44 : ------ Scan Ended ------
2015-12-14 15:50:10 :
2015-12-14 15:50:10 : ----- Scan Started -----
2015-12-14 15:50:10 : Scanning with signatures version 38 (2015-12-07)
2015-12-14 15:50:18 : *** scan time: 0d 00:00:08 ***
2015-12-14 15:50:18 : ------ Scan Ended ------
2015-12-14 17:25:09 :
2015-12-14 17:25:09 : ----- Scan Started -----
2015-12-14 17:25:09 : Scanning with signatures version 38 (2015-12-07)
2015-12-14 17:25:19 : *** scan time: 0d 00:00:09 ***
2015-12-14 17:25:19 : ------ Scan Ended ------
-
Dec 15, 2015 3:44 AM in response to mustakoira2by thomas_r.,You have nothing installed that could cause this behavior in Safari. If you're still being redirected away from Google at this point, it's probably a network issue. See:
https://support.malwarebytes.org/customer/portal/articles/2049286-?b_id=9511
https://support.malwarebytes.org/customer/portal/articles/2049288-?b_id=9511
(The links I have provided above go to pages I have written that are hosted on my employer's website. I do not receive any kind of compensation for posting them, beyond that fact.)
Also, I notice that you've been using a pirated copy of some Adobe product. This is usually the result of downloading and installing either a stolen copy of the app itself, or running a "cracker" app to make a normal copy of an Adobe app act as if it were registered. Installing these kinds of things runs the risk of installing new malware that may not be detected - or worse, making undetectable changes to your system's configuration, turning it against you without actually installing malware. This is unlikely, but nonetheless possible. If this were my wife's computer or my kid's computer, I'd erase the hard drive and reinstall everything from scratch. Whether you choose to take that route is up to you, but it's what I would do.
Thomas Reed
Director of Mac Offerings, Malwarebytes
-
Dec 15, 2015 4:28 AM in response to thomas_r.by mustakoira2,Thanks for your assistance. Seems to be ok at the moment. Was just concerned as to why and how the icon and search engine persisted, that perhaps something was happening in the background.
-
Dec 15, 2015 4:32 AM in response to mustakoira2by pinkstones,mustakoira2 wrote:
Thanks for your assistance. Seems to be ok at the moment. Was just concerned as to why and how the icon and search engine persisted, that perhaps something was happening in the background.
You still need to uninstall the illegal, pirated Adobe software you have on your computer.
-
-
Dec 25, 2015 9:59 PM in response to Linc Davisby nudolfan,Thank you! Following your directions worked to remove Search Genius. You have to make sure to reset the home pages in your browsers because Search Genius will remain the home page unless you do that.
-
-
-
-
-
-












