Macbook Pro infected by ads.adsmatte malware
Hello,
I've been struggling to purge my MBP of a malware called adsmatte for almost a month now. Not only is it an annoyance, it's also making my system extremely slow and worryingly unstable.
These are the steps I've taken so far:
- Modem-***-router hard reset--this has cleared the Windows system of the malware (thankfully!) but not my mac.
- I installed and ran AdwareMedic multiple times: it hasn't been able to find anything. (I looked for a way to send a system snapshot as recommended by AdwareMedic, but it seems to be disabled/non-existent?)
- I followed all the alternative steps recommended by on http://www.thesafemac.com/arg/ and AdwareMedic:
- Modified the preferences in Safari and looked for any extensions that should not be there...nothing.
- I did not reset the DNS. Not being a tech-savvy person, I'm frankly wary of doing something that may take me into murkier waters.
- I went into the Library and Systems folders to look for and manually delete the malware file, if possible, as recommended by Thomas Reed and other Apple communities--but I couldn't really identify it. I guess no one has gotten round to identifying the file name and where it can be located yet. For a layperson like me, it would be really, really hard to spot something that shouldn't be there.
- One community conversation also recommended installing the ClamXAV antivirus, and said that it's always better to download something from the App store (it was a discussion on the merits of Sophos vs. ClamXAV). Now here's the thing: I downloaded ClamXAV from the store as recommended, but I don't think it was genuine. For one, it kept telling me to update the version, but since it had last been updated in Aug 2014, there were obviously no updates. So i went into an endless loop of dialog boxes telling me to update and then telling me there were no updates! Then the whole thing seemed to freeze (I assume it was scanning, but it looked more like it had hanged). And then, in tiny letters at the bottom of the window ,it told me not to panic, and go to clamav (note the missing x)>communities>faqs. So I did, and landed on some weird site that was very obviously not ClamXAV. I removed the bogus AV in a hurry.
Can someone please HELP?
Thank you very much.
MacBook Pro (13-inch Mid 2012), OS X Yosemite (10.10.1)