Marcelo Camarate
asked on
Is this behavior caused by a virus or malware?
Hi Experts,
Since yesterday morning my web browsers are with suspicious behavior. Started by Google Chrome, and then impacted the Internet Explorer also.
When I surf on web pages, will be open windows (or frames) that is not requested by me. As an example of the problem, I made available a Flash presentation demonstrating the suspicious behavior, which can be accessed in http://www.camarate.com.br
I have Kaspersky Internet Security installed on this computer. Do you think this is a virus, adware or malware? Help me, please.
Thanks in advance,
Marcelo Camarate
Since yesterday morning my web browsers are with suspicious behavior. Started by Google Chrome, and then impacted the Internet Explorer also.
When I surf on web pages, will be open windows (or frames) that is not requested by me. As an example of the problem, I made available a Flash presentation demonstrating the suspicious behavior, which can be accessed in http://www.camarate.com.br
I have Kaspersky Internet Security installed on this computer. Do you think this is a virus, adware or malware? Help me, please.
Thanks in advance,
Marcelo Camarate
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Your description sounds like malware (which would cover a virus, a worm, or a trojan). Not all AV scanners catch all viruses. Many say AV is dead, because it relies on known signatures of malware, and if an attacker can come up with some unknown malware, or in some way obfuscate the signature, no AV scanner will find it.
Better practice is to employ an application white-listing program of some kind, and to increase employee training (don't click stuff).
Disconnect the machine from the internet right now.
If you have some kind of service agreement with someone that will remove the malware, contact them now.
If you have no agreement, see if you can find someone who will do this and pay them to do so.
If you cannot find them, collect any critical data from the machine and reinstall the OS.
Better practice is to employ an application white-listing program of some kind, and to increase employee training (don't click stuff).
Disconnect the machine from the internet right now.
If you have some kind of service agreement with someone that will remove the malware, contact them now.
If you have no agreement, see if you can find someone who will do this and pay them to do so.
If you cannot find them, collect any critical data from the machine and reinstall the OS.
First, great job on the Flash presentation. It leaves no doubt about the behavior you're seeing.
This article has some great general guidance for dealing with malware infections which I recommend.
https://www.experts-exchange.com/articles/5124/Stop-the-Bleeding-First-Aid-for-Malware.html
This article has some great general guidance for dealing with malware infections which I recommend.
https://www.experts-exchange.com/articles/5124/Stop-the-Bleeding-First-Aid-for-Malware.html
When you scan with MalwareBytes, be sure you do it in safe mode.
It's much more effective that way.
I also recommend sign up for a free trial of HitmanPro and scan
http://www.surfright.nl/en/hitmanpro/
It's much more effective that way.
I also recommend sign up for a free trial of HitmanPro and scan
http://www.surfright.nl/en/hitmanpro/
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi all,
Thanks for all replies, specially of Dr Kahn and Michael-Best. Your suggestions made my computer clean.
Regards,
Marcelo Camarate
Thanks for all replies, specially of Dr Kahn and Michael-Best. Your suggestions made my computer clean.
Regards,
Marcelo Camarate
Glad to help.
Regards,
Michael
Regards,
Michael
Try to scan with malwarebytes anti malware, this one is also quite good in detecting and removing malware. Also check proxy settings of the browsers and new and unknown extensions/plugins.