Safe Finder Malware virus Infected Safari and will not go away

ITS FIXED!!! OMMMMMGGGG! WHEEEEEEHW

So what I did was shut down and restart the mac in safe mode. Then went into safari settings and it allowed me to change the homepage URL. And Set new window to open to home page. Then I shut down and did a normal restart, and went into safari and it went to the new home page. Fingers crossed this is permanent, as I had it working before and then it reverted after logging in and out of my user account. But I think it Is permanent since I just restarted and logged in just now.

So to sum it up, I think I did technically remove safe finder, with all these instructions some time ago over the course of the last few days. But It was something in the settings that just needed to be reset, and I think booting up in safe mode, and changing the settings there, may have caused that for whatever reason.

Thx Dominic , and hopefully this will help the next person...

Safe finder is very different than that one, I actually know someone that had the one you mentioned, they just ignored the message and restarted the computer. Nothing was downloaded or installed or permanent, they just went to a wrong URL.

Safe finder is downloaded malware, that infects any browser. It then redirects your home page to this new search engine. It locks the settings so you cannot change the homepage. That in itself wouldn't be the end of the world for the time being, but I don't feel any of my information and data is safe using safari.

THX for the suggestion

Eric Root,

Thanks for your post, I have actually found your instructions in a previous post to another user. But will go through ea one again, and share my results.

STEP 1 - Malwarebytes

I have now down 4 scans total, and it is not showing anything. We can consider it not effective in this case.

LINK #1,

I am not going to re list each step, but you can trust me that I followed every single step. (the majority I had done already previously as I have found some of these sites, and some of your posts before posting myself)

Followed every step, does not work. As I said, these instructions are from 2018, and I doubt that the way this malware works, has maybe not evolved in the last 3-4 years. Because I do wonder, why would these instructions not work for me or others.

Link #2

I installed SpyHunter, as suggested in the link, it did not find any malware, but some other items, which I need to wait 48 hours for the trial period to allow 1 time removal. Did all other steps with no success. There are 30 files listed that one should remove, I search each one, and it did find 1 set out of all 30 searches, and I deleted them, but that did not remove anything.

Link # 3

just takes me to goggle search results.

I wonder if these guides are legit, or if they are some generic instructions copy and pasted, so that one can advertise a few virus/malware programs. Because the instructions and programs both are not working against safefinder. (there are 2 other programs recommended, but after actually failing with a handful of actual critically acclaimed virus/malware programs, I am doubtful that this is a solution) And I have read 5-10 blogs/articles and they all have more or less similar instructions and programs offered.

I am making a post on various threads, to hopefully has some experience and knowledge with this particular malware, and can work with me 1 on 1, step by step to eradicate it.

Hopefully you have can help, now that I spent a few hours following the standard advice on removal.

Thanks dominic,

These are steps that I have already completed. There were no profiles.

I can't remember if there was an extension, and I deleted it, or if there never was one at all. Either way, there is no extension now, and that did not solve it.

Most likely any suggestions that someone will have, I have done already as this has been an issue for 6 months.

It is so frustrating, I have spent the last 3 days non stop on it. I am ready to give up, and simply use a different browser. I just really wanted safari to work, since it syncs with safari on all my other devices like ipads, iphones.

Real shame. In theory I don't need a homepage, I can use the start page, but my concern is if safe finder has this type of control over Safari, is any of my information inside safari even safe? My passwords, browsing history etc. I don't trust safari, when it is being over riden in this type of way.

No Socks Proxie.

Etrecheck Report

https://pastebin.com/R0jd8H7D

THX!