What To Do When Your AntiVirus Fails
Your trusty antivirus software found a virus on your system, but it can't remove the infection, even after multiple scans, removal attempts, and system restarts. Now what do you do? |
Do You Need New AntiVirus Software?
First, make sure your antivirus software is up to date. Malware changes constantly and antivirus vendors constantly revise their software engines and the virus signature databases that are used to identify viruses. It's possible you have a new species of infection that the updated version of your antivirus software can eliminate. So click the "Update Now" button (or its equivalent) in your antivirus software and try again.
If that doesn't work, try different antivirus programs. Every developer has its own ways of rooting out malware. Not one antivirus program is the best at eliminating every type of malware. You could uninstall your anti-virus software and try another one. See my list of Free Anti-Virus Programs if you want to replace your security software. But another option is to try some specialized anti-malware tools until you find one that works on the particular infection you have caught. Here are three popular anti-malware programs that will supplement your existing protection.
Malwarebytes Anti-Malware (MBAM) specializes in malware that standard antivirus programs miss, according to the company. It has an excellent track record of eliminating rootkits and keyloggers. It does not focus on vulnerabilities in third-party programs (such as the widespread PDF code execution exploit) because standard antivirus programs handles such things pretty well. However, it does detect and block payload downloads and remote code execution triggered by such exploits.
ComboFix is an advanced tool that should be used only by computer experts. In the hands of the average non-technical user, ComboFix often does more harm than good. That's because the program does not always do the complete job of identifying and removing suspected malware files. It will remove many well-known viruses, but it does not remove more obscure or recently developed viruses. Instead, ComboFix generates a rather large and technical log file listing the locations of suspect files, altered registry keys, and other problems. The user is expected to manually correct the problems that could not be automatically removed. One wrong deletion and your system may not boot. This tool is powerful, but better suited for uber-geeks, not ordinary mortals.
SuperAntiSpyware gets high marks on finding and eliminating spyware, adware, rootkits, keyloggers, and many other types of malware. Most infections are removed automatically; however, rootkits have to be removed manually after rebooting in Safe mode. Some users complain that SuperAntiSpyware takes too long to do a full system scan, but that's a price you pay for thoroughness.
All the detective work involved in eliminating a stubborn virus is very time-consuming. Your best bet may be Windows System Restore, which can return your system to an earlier state before the infection was acquired. Another option is to back up all of your data files (not applications, which may be infected), reformat the hard drive and reinstall Windows. Then you will have to reinstall all of your application software and data files. This drastic procedure is also time-consuming, but it should leave you with a clean, stable system.
What would you do if your antivirus failed to remove an infection? Post your comment or question below...
|
|
Share this article with friends! |
|
Posted by Bob Rankin on 12 May 2011
| Need More Help? Try the AskBobRankin Updates Newsletter. It's Free! |
 |
Prev Article: Is Your Email Secure? |
The Top Twenty |
Next Article: How To Stop Fax Spam |
 |
|
Link to this article from your site or blog. Just copy and paste from this box: |
Post your Comments, Questions or Suggestions
Free Tech Support -- Ask Bob Rankin
Subscribe to AskBobRankin Updates: Free Newsletter |
||
|
Copyright © 2005
- Bob Rankin - All Rights Reserved
Privacy Policy -- See my profile on Google. |
||
Article information: AskBobRankin -- What To Do When Your AntiVirus Fails (Posted: 12 May 2011)
Source: http://askbobrankin.com/what_to_do_when_your_antivirus_fails.html
Copyright © 2005 - Bob Rankin - All Rights Reserved
Free
Most recent comments on "What To Do When Your AntiVirus Fails"
Posted by:
steven
12 May 2011
Thanks, for years, I was wondering why the warning about combofix. I was lucky, I always ignored the logs. I used Malware bytes, Super antispyware after combofix.
Posted by:
Mary
13 May 2011
Even if several different scans come back clean and no viruses or spyware are detected, you can't be 100% sure that something is so deeply embedded nothing can find it. Get an external hard drive and use Macrium Reflect free, Paragon Backup & Recovery free, or even Windows 7 backup to make a system image.
http://www.macrium.com/ReflectFree.asp
http://www.paragon-software.com/home/br-free/
Configure your machine, install all your programs, update everything, and image it. If your machine gets infected, restore from that clean image and get new updates. You'll be back online in less than an hour compared to the many hours needed to reformat and reinstall everything from scratch. An ounce of prevention ...
Posted by:
Dave
13 May 2011
I have been servicing and cleaning up PC for many years. And have seen some really nasty viruses.
One of the worst viruses used the system bios on the motherboard as a safe-haven, so that even after a complete re-format and OS load it would return.
My current favorite method of attacking the nasty viruses out there, is to boot the computer in SAFE MODE and install and run Malwarebytes. This has got to be the best and fastest way to get rid of most of the viruses out there. Then
after is runs, I re-boot in normal mode and complete the clean-up with AVG, Glary Utilities,
etc. etc.
When I am done the system is returned to like new
condition.
Posted by:
Bruce
13 May 2011
When I had a trojan that my Antivirus program detected and identified, but could not remove, I used another computer and searched the web for info on that trojan. The trojan had ruined my Restore file. The web gave me instructions on how to setup my computer and use Malwarebytes Anti-Malware to remove it - which it did!
Posted by:
Andy
13 May 2011
Leo, excuse me for saying but you said that a system restore might be a best bet. This is true but it does depend. It depends if the virus or malware has also infected the restore point. If so, then it wouldn't matter if you restored, you'd get the infection back anyway.
Posted by:
steven
13 May 2011
Is it possible for a virus to flash the bios and install it there?
EDITOR'S NOTE: Boot sector viruses are pretty much extinct, as I understand it.
Posted by:
Jason
14 May 2011
I have to agree with Dave's recommendation of booting in safe mode and trying MalwareBytes Anti-Malware before anything else.
I have cleaned several computers that had so many viruses they couldn't even function. Following the reboot safe mode (with networking), updating MBAM and doing a scan, restored both computers to full operability.
One of them required a deep scan that took several hours but I think that'd be the exception. This was a computer that previously had no antivirus, no firewall, no antimalware, nothing. It was even behind 3-6 months in Windows updates (something many of malware programs do is to block you form getting any updates).
MBAM is truly a lifesaver.