OSX/Geonei-A

    Category: Viruses and SpywareProtection available since:17 Jan 2014 22:48:50 (GMT)
    Type: TrojanLast Updated:05 Mar 2014 21:19:59 (GMT)
    Prevalence: Small Number of Reports

    Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

    Genieo is an OSX Adware that could be posting as fake Flash Player alerts, or video codecs, to trick users to download and install itself without user interaction.

    It would alter users' homepage and search engine settings to its own. Although an uninstaller is offered, it would still require manual uninstallion for a complete removal.

    Sometimes the uninstaller might not be able to reset browser settings properly so it would require users to restore the settings themselves.

    Examples of OSX/Geonei-A include:

    Example 1

    File Information

    Size
    518
    SHA-1
    180a7730ae76ca45d0f86718354aed84e60d8e2d
    MD5
    e1de6fc43dead13e8d674016f356b922
    CRC-32
    97e44a2a
    File type
    Extensible Markup Language (XML)
    First seen
    2014-01-13

    Example 2

    File Information

    Size
    244K
    SHA-1
    3b6a8e3fad692914bca2f9191eae1905724c13cb
    MD5
    dad826da4b1fb08089f0d3c31f3d3d59
    CRC-32
    2fa6a4f1
    File type
    Apple Mac executable
    First seen
    2014-01-07

    Other vendor detection

    Avira
    Adware/OSX.Genieo.A

    Example 3

    File Information

    Size
    758K
    SHA-1
    3c06a8ae83d4c5230f8df0ef3ff85fe99c53863e
    MD5
    185288da5e688f168817c1c01832fdce
    CRC-32
    c9342570
    File type
    Apple disk image file
    First seen
    2014-01-24

    Download Sophos HomeDownload
    Sophos Home

    Free business-grade security for the home.

    Endpoint Protection