Remove "weknow.ac" Malware in Chrome?

Hi. Thanks for your help, but I'm having a problem where on the last three, it says "Defaults Have Not Been Changed" I have little experience with terminal and I'm so frustrated and tired of this virus. I'm not sure how to fix this. I've tried copying/pasting all at once, or doing one at a time (either in the box, or after clicking "New Command"

any help would be so appreciated.

To paste in the commands I chose "New Command" under the Shell menu at the top in the Terminal App. Repeated for each command. Did the trick!!! I did restart my laptop to see the results. And yes, my default homepage is blank too. That needs to be reset. What an evil hijacker! Thank you Skanson!

okay so i went to applications, then terminal, then shell menu, then new command. I copied and pasted each individual code, closed out of chrome after copying and pasting in terminal and reopened it and I am still having the same issue.

Also when i paste the command in it has said

2018-10-22 15:03:19.079 defaults[650:11207]

Domain (com.google.Chrome) not found.

Defaults have not been changed.

[Process completed]

I am not understanding what I could be doing wrong

Skanson,

After an entire day of nothing working, this did! However, when I restarted my computer, if I go to the chrome://policy page, it still shows my policies being messed up like they were before. Any idea why Chrome opens up fine after modifying the policies (via command line), but the policy page didn't change? I'm wondering if I'm still being "tracked."

Thanks again, for your post!

Hello Skanson and guys.

Thank you very much for your help.

Unfortunately, I have not been able to get rid of this malware. I have tried several things and I think I deleted partially that crap, but I still see it is on Chrome. I tried to follow Skanson's advice but I did not work. I think the problem is that English is not my native language so I think I did no understand how I have to proceed. If you have any idea to help me, I'd appreciate it very much.

Thank you, guys !

Tayronas

Thanks so much for this solution. Spent an hour with McAfee without results. Got Safari cleaned up myself, but none of the on-line advice, including running Malwarebytes, fixed Chrome. Your Policy restoration commands did the trick!!

Thanks so much! So happy it works and that you further explained what needed to be done. Spent time with Apple Support staff today who didn't know how to fix this. And spent many hours afterwards, trying to find another solution than backing up my old MacBook to an external harddrive and then reinstalling everything, as the Apple Support person suggested. Which would have been quite cumbersome since I need to use an older version of Safari to get the Java plug-in to work with my electronic timesheet for work (PC world).

Tusind tak! A thousand thanks, as we say it in Danish.

Thanks for your wonderful help in getting rid of this stubborn bogus Chrome. I'm so glad I found the link and your solution to the problem with my old MacBook.

Tusind tak! A thousand thanks, as we say in Danish.

I fell for the adobe flash needs updating scam and received the weknow.ac virus. I have spent a couple of hours trying to eliminate it by various means but the only that that fully works is to copy/paste your policies above into the terminal. I appreciate so much that you took the time to post the fix. I also downloaded malwarebytes and ran it.

Hi! I'm having the same issue with weknow.ac in chrome and safari. I tried do your suggestion of the terminal and this is what happend. The malware is still there and I'm having trouble finding a solution. any suggestions ?

Thanks,

It is disturbing that Apple techs don’t bother to keep up with these inputs from the user community. I guess they built that huge fortress of a facility to isolate themselves from the real world.

Joemc

Aha!! This worked for me after doing a zillion other things to delete that piece of caca "weknow.ac" I still had a browser screen showing up with the fake icon images of AliBaba, Facebook, Google, et.al with a doctored "search" engine field box. Once I copied the lines, pasted into terminal, entered each one separately THEN rebooted my Mac, reopened Chrome and Voila! that pesky screen was gone for good!

By the way, did anyone else start getting phone calls on your mobile from a Chinese recording?

Sorry, but where should I copy these new policy names? Once I've found it in the search engine inside chrome://policy/, if I click on the link in blue, it opens a page with a lot of technical info, but no place to copy it...