Tech Support Forum - View Single Post

Sempurna · 02-15-2007, 08:23 PM

Hi ct456568,

That Kaspersky could be legit or malware. If your brother didn't install it, then it is likely malware. Even if it was legit, Kaspersky uses up a lot of system resources, that's why your system slows down. It is arguably the best AV in the world right now, but somewhat resource heavy. Paid versions of Eset's NOD32 program are lighter on resources, and equally good as a quality AV. Even the free Active Virus Shield, by AOL (and based on the Kaspersky engine), is lighter on resources.

You shouldn't have more than one AV on your system. Two or more will seriously compromise the security and speed of your system. If your McAfee is up-to-date, it is a reliable and good AV (although like Microsoft's OneCare it recently failed a major test).

Here's a recent survey done on the effectiveness of most AVs in the market now:
http://www.virus.gr/english/fullxml/default.asp?id=82

Yes, ComboFix was recently pulled because of a vulnerability that a new rootkit exploited. The developer is working on a fix right now. In the meantime, let's use an alternative scanner.

Please download ComboScan by Deckard and save it to your desktop:

Close all applications and windows (including this one).
Double-click on comboscan.exe to run it, and follow the prompts.
When the scan is complete, a text file will open – ComboScan.txt.
Copy (Ctrl + A then Ctrl + C) and paste (Ctrl + V) the contents of ComboScan.txt in your next reply.
A folder, C:\ComboScan, will also open. In it will be another text file, Supplementary.txt.
Please attach Supplementary.txt to your post.

Note: some firewalls may warn that sigcheck.exe is trying to access the internet - please ensure that you allow sigcheck.exe permission to do so.

02-15-2007, 08:23 PM	#7 (permalink)
Sempurna Analyst, Security Team Join Date: Sep 2006 Posts: 1,302 OS: Windows XP SP2	Hi ct456568, That Kaspersky could be legit or malware. If your brother didn't install it, then it is likely malware. Even if it was legit, Kaspersky uses up a lot of system resources, that's why your system slows down. It is arguably the best AV in the world right now, but somewhat resource heavy. Paid versions of Eset's NOD32 program are lighter on resources, and equally good as a quality AV. Even the free Active Virus Shield, by AOL (and based on the Kaspersky engine), is lighter on resources. You shouldn't have more than one AV on your system. Two or more will seriously compromise the security and speed of your system. If your McAfee is up-to-date, it is a reliable and good AV (although like Microsoft's OneCare it recently failed a major test). Here's a recent survey done on the effectiveness of most AVs in the market now: http://www.virus.gr/english/fullxml/default.asp?id=82 Yes, ComboFix was recently pulled because of a vulnerability that a new rootkit exploited. The developer is working on a fix right now. In the meantime, let's use an alternative scanner. Please download ComboScan by Deckard and save it to your desktop: Close all applications and windows (including this one). Double-click on comboscan.exe to run it, and follow the prompts. When the scan is complete, a text file will open – ComboScan.txt. Copy (Ctrl + A then Ctrl + C) and paste (Ctrl + V) the contents of ComboScan.txt in your next reply. A folder, C:\ComboScan, will also open. In it will be another text file, Supplementary.txt. Please attach Supplementary.txt to your post. Note: some firewalls may warn that sigcheck.exe is trying to access the internet - please ensure that you allow sigcheck.exe permission to do so. __________________ Keep this forum alive - if you've been helped at this forum, please do consider a donation. Thank you for your support. Donation link for Tech Support Forum Last edited by Sempurna; 02-15-2007 at 08:27 PM.