Is this behavior caused by a virus or malware?

Hi Experts,

Since yesterday morning my web browsers are with suspicious behavior. Started by Google Chrome, and then impacted the Internet Explorer also.

When I surf on web pages, will be open windows (or frames) that is not requested by me. As an example of the problem, I made available a Flash presentation demonstrating the suspicious behavior, which can be accessed in http://www.camarate.com.br/experts-exchange/This_Is_Virus.

I have Kaspersky Internet Security installed on this computer. Do you think this is a virus, adware or malware? Help me, please.

Thanks in advance,

Marcelo Camarate
Marcelo CamarateAsked:
Who is Participating?
 
Michael-BestCommented:
No, one antivirus will find and clean every malware, virus or trojan so you need to scan with multiple tools.


Download these free cleaning tools.
Boot the PC in safe mode then run each of these free cleaning tools until the problem has beed removed:
 

1. Malwarebytes http://www.malwarebytes.org/

2. Combo Fix http://www.bleepingcomputer.com/download/search/?keyword=combofix

3. Rogue Killer http://www.bleepingcomputer.com/download/roguekiller/

4. Hitman Pro http://www.surfright.nl/en/hitmanpro/

5. TDS Killer http://www.bleepingcomputer.com/download/tdsskiller/

6. SuperAntiSpyware www.superantispyware.com
0
 
andreasSystem AdminCommented:
Could also very well be some adware, wich are sometimes not detected by anti virus scans, especially not by the background scans.

Try to scan with malwarebytes anti malware, this one is also quite good in detecting and removing malware. Also check proxy settings of the browsers and new and unknown extensions/plugins.
0
 
Dr. KlahnPrincipal Software EngineerCommented:
After scanning with Malwarebytes (side note:  use the free version, which is equally as good as the paid one but does not install a runtime monitor), then use the free edition of Spybot - Search and Destroy to search for fraudware.

I find it interesting that the detections of antiviruses, Malwarebytes and Spybot don't seem to overlap at all.
0
On-Demand: Securing Your Wi-Fi for Summer Travel

Traveling this summer?Check out our on-demand webinar to learn about the importance of Wi-Fi security and 3 easy measures you can start taking immediately to protect your private data while using public Wi-Fi. Follow us today to learn more!

 
Sean JacksonInformation Security AnalystCommented:
Your description sounds like malware (which would cover a virus, a worm, or a trojan). Not all AV scanners catch all viruses. Many say AV is dead, because it relies on known signatures of malware, and if an attacker can come up with some unknown malware, or in some way obfuscate the signature, no AV scanner will find it.

Better practice is to employ an application white-listing program of some kind, and to increase employee training (don't click stuff).

Disconnect the machine from the internet right now.

If you have some kind of service agreement with someone that will remove the malware, contact them now.

If you have no agreement, see if you can find someone who will do this and pay them to do so.

If you cannot find them, collect any critical data from the machine and reinstall the OS.
0
 
footechCommented:
First, great job on the Flash presentation.  It leaves no doubt about the behavior you're seeing.

This article has some great general guidance for dealing with malware infections which I recommend.
http://www.experts-exchange.com/articles/5124/Stop-the-Bleeding-First-Aid-for-Malware.html
0
 
EirmanChief Operations ManagerCommented:
When you scan with MalwareBytes, be sure you do it in safe mode.
It's much more effective that way.

I also recommend sign up for a free trial of HitmanPro and scan
http://www.surfright.nl/en/hitmanpro/
0
 
Marcelo CamarateAuthor Commented:
Hi all,

Thanks for all replies, specially of Dr Kahn and Michael-Best. Your suggestions made my computer clean.

Regards,

Marcelo Camarate
0
 
Michael-BestCommented:
Glad to help.

Regards,

Michael
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.