Kaspersky AV 5.0 question and weird Windows problem

[kyparrish]

Since I installed Kaspersky a few days ago, I've noticed that my computer takes much much longer to boot up than it did when I had Avast antivirus installed. I mean, the hard drive loads stuff up for like 2 minutes after my desktop appears.

Relevant specs: X2 3800+ @ 2.4, 1gb of ram (2gb this weekend), 200gig Seagate ATA/100 HDD

------------------------------------

2nd question:

About a week ago, I tried installing Kazaa (STUPID, I know). I hadn't used it in years, and was wondering if it was any better. I didn't even download anything.

I promptly uninstalled it and all the assorted crap that came with it, but since then avast found like 10 viruses, and adaware found 50 entries. My computer seems to be rid of all the crap, but now it's acting very strange when it comes to administrator privileges. For example, when I upgraded iTunes to a newer version, it asked if I wanted iTunes to be the default player for audio files, I clicked yes, then it said "You lack authorization to do this." Also, the Windows firewall is completely borked, if I try to enable it, it just says "Windows Firewall is unavailable" like it doesn't exist. I can't even access it through the control panel.

I tried reinstalling SP2, and it didn't help at all.

Stupid price to pay for being bored one day and wanting to check out kazaa....

Any ideas?

 

[kyparrish]

bump

 

[mechBgon]

First of all, you mention both Avast and Kaspersky. They're not both actually installed at the same time, right?

Secondly, what viruses were found, and where were they located? Can you remember at least the families from which they came (Mytob, Bagle/Beagle, or so forth)?

Third, have you also run some other antispyware programs such as Windows Defender beta (formerly Microsoft AntiSpyware beta), and Spybot Search & Destroy?

Fourth, try this routine to run an additional antivirus check: http://www.omnicast.net/~tmcfadden/scan.txt This can take a while, so maybe set it up and then launch it before you go to bed. It doesn't require any formal installation, it just does a one-shot check/removal.

Before you run the above check, maybe also check for rootkits using F-Secure Blacklight: http://www.f-secure.com/blacklight Rename any suspicious things it finds.

Also, I would configure Kaspersky as shown in the video clip on my page here and run a scan with it in Safe Mode too. Note the use of Extended Databases, which is not the default setting. That tells Kaspersky to look for spyware/adware/etc.

If it were me and my system had caught ten viruses, I'd just Drop The Bomb On It? with a complete formatting and reinstallation :evil:



edit: fixed busted link

 

[evilharp]

Originally posted by: kyparrish
Since I installed Kaspersky a few days ago, I've noticed that my computer takes much much longer to boot up than it did when I had Avast antivirus installed. I mean, the hard drive loads stuff up for like 2 minutes after my desktop appears.

I tried installing Kazaa (STUPID, I know). I hadn't used it in years, and was wondering if it was any better. I didn't even download anything. ... Also, the Windows firewall is completely borked, if I try to enable it, it just says "Windows Firewall is unavailable" like it doesn't exist. I can't even access it through the control panel.

I promptly uninstalled it and all the assorted crap that came with it, but since then avast found like 10 viruses, and adaware found 50 entries.
Any ideas?

My Suggestions/Advice

1) Kaspersky scans "Startup Objects" every time you boot up (ie. RAM, Boot Sectors, startup objects, etc...). Look hard at you system to find out what you are loading when your system starts. Kaspersky Antivirus (KAV) 5.0 does take a while to complete this process, but once it is done you hardly notice it is there. The more processes you load, the longer it takes (most spyware loads on startup).

KAV 6.0 is faster on startup, and should be available soon (no idea on the release date). If you are interested, you can beta test it to try it out. I'm currently testing build 286 (RC5) and I have not encountered any issues yet.

2) Kazza.... sounds like a rootkit or a really nasty virus to me. The windows firewall is really weak at defending itself from infections, as viruses can switch it off or hack its "exceptions list" through the registry. Definately use blacklight (as Mechbgon suggested) and Rootkit Revealer to look for the hidden processes that are killing your system.

If you consider Kazaa again, get a good software firewall (ie Kerio, Zonealarm, Outpost, etc..) and lock down your system (i.e. in and out protection). If you have broadband/adsl get a hardware firewall (available in most routers now) for true port protection (hard lock).

3) Backup your critical data (ie. e-mail/files/documents/pictures and not programs or downloaded installs) and nuke your system. Do a full format of your HD/array and reinstall.

Re-install in this order:

a) your system (OS + SP2)
b) AV (use KAV 5's extended dbase for full protection) and firewall (+ their updates). Set up your internet, and lock it down. Stealth your system!!
c) drivers (download and scan before install. You may need to disable or relax your AV/Firewall during the installs as multiple registry entries will be made. Make sure you are "off-line" when you do this)
d) base applications (office suite, e-mail client, web browser, anti-spyware. Not games, IM, P2P, IRC clients, etc..) Don't use IE unless you really need to (i.e. certain websites where lazy developers write specfically/exclusively for IE -or- sites where activeX is absolutely required such as Windows Update)
e) test your system. Hit it hard with the tests on Shields up ( <a target=_blank class=ftalternatingbarlinklarge href="https://www.grc.com/x/ne.dll?bh0bkyd2"><a target=_blank class=ftalternatingbarlinklarge href="https://www.grc.com/x/ne.dll?bh0bkyd2">https://www.grc.com/x/ne.dll?bh0bkyd2</a></a> ) and PC Flank
f) scan (spyware, viruses, trojans, etc..) the backed up critical data from your old install before you try to use it. Clean it, and reinstall it.
g) install games/other software
h) use a limited account This will protect your system as malware will not have admin privledges.
i) steer clear of P2P and Warez.
j) choose your freeware/shareware carefully (adware/spyware/malware's #1 source of infection)