NIS did not catch this malware which places incessant popups based upon urls visited.  The file is called "SMAD".  It was located in C:\users\"User Name"\app data\local\temp\.  When I ran a quick NIS check on this file, NIS reported that it was OK and behaving normally.  My internet surfing was certainly not normal, with random popups appearing to have some connection to the sites I visited.