Overclock.net › Forums › Software, Programming and Coding › Other Software › Question about deleting a virus
New Posts  All Forums:Forum Nav:

Question about deleting a virus

post #1 of 6
Thread Starter 
As many of you might know, when you delete a file on your computer, it is not completely deleted and you're still able to recover the deleted files with a recovery program.

Now, let's say an anti-virus deleted a virus. Does the AV permanently delete the virus? Or does it just hide it away somewhere we're not able to see, but can still able recover it with a recovery program?
Main
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 3570K ASRock Z77 Pro3 Galaxy 560Ti G.Skills DDR3 
Hard DriveOSMonitorPower
WD Cavier 250GB + SimpleTech 320GB EXHDD Windows 7 x64 Samsung 19" SyncMaster 940BW OCZ 600w GameXStream 
Case
COOLER MASTER Centurion 5 
  hide details  
Reply
Main
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 3570K ASRock Z77 Pro3 Galaxy 560Ti G.Skills DDR3 
Hard DriveOSMonitorPower
WD Cavier 250GB + SimpleTech 320GB EXHDD Windows 7 x64 Samsung 19" SyncMaster 940BW OCZ 600w GameXStream 
Case
COOLER MASTER Centurion 5 
  hide details  
Reply
post #2 of 6
this is good question i think the only way to truely get rid of a virus is to wipe the drive with a good zeroing program like DBAN then reformat but i also think the av program will make sure that the file is totally untouchable by any other program including recovery progs
post #3 of 6
I would go onto Norton's website and find out how bad the virus is if its not that bad then they will have directions on how to manually remove the virus this is the best shot you have at getting rid of it.

But, Bitemarks is right the only real way to be sure its gone for good is a total fresh install.

I haven't heard of a virus that survives after a fresh install but people do get reinfected by connecting directly to the net without a firewall either hardware or software with early versions of XP so before you delete everything get all the security patches from another machine.
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i7-2600K ASUS P8Z68 DELUXE/GEN3 Sapphire Radeon HD 6970 2 GB G.SKILL 8GB Ripjaws X Series DDR3 1600MH 
Hard DriveOptical DriveOSMonitor
OCZ Solid 3 120GB ASUS 20X DVD±R DVD Burner with LightScribe Windows 7 Ultimate SP1 x64 Gateway XHD3000 30" 
KeyboardPowerCaseMouse
Logitech G15 CORSAIR CMPSU-1000HX Lian Li PC-G70-B Razor Naga 
  hide details  
Reply
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i7-2600K ASUS P8Z68 DELUXE/GEN3 Sapphire Radeon HD 6970 2 GB G.SKILL 8GB Ripjaws X Series DDR3 1600MH 
Hard DriveOptical DriveOSMonitor
OCZ Solid 3 120GB ASUS 20X DVD±R DVD Burner with LightScribe Windows 7 Ultimate SP1 x64 Gateway XHD3000 30" 
KeyboardPowerCaseMouse
Logitech G15 CORSAIR CMPSU-1000HX Lian Li PC-G70-B Razor Naga 
  hide details  
Reply
post #4 of 6
I guess most AVs store them in a quarantine.

Wait no, nevermind. Didn't answer your question correctly...

Carry on lol
Vapor
(19 items)
 
  
CPUMotherboardGraphicsRAM
Core i5-2500K ASUS P8P67 Pro PNY GeForce GTX 470 G.SKILL Ripjaws X 4GB DDR3-1600 
Hard DriveHard DriveCoolingCooling
Samsung 840 Series Western Digital Caviar Green 1TB (Advanced Format) Swiftech Apogee XT Swiftech MCW80 
CoolingCoolingCoolingOS
XSPC D5 Dual Reservoir Magicool Extreme Dual 120mm Radiator Phobya Xtreme 200mm Radiator Microsoft Windows 8 Pro 
MonitorKeyboardPowerCase
Dell G2410 Logitech K520 OCZ ModXStream Pro 600w Corsair 600T SE 
MouseAudio
Logitech M310 Brainwavz HM3 
  hide details  
Reply
Vapor
(19 items)
 
  
CPUMotherboardGraphicsRAM
Core i5-2500K ASUS P8P67 Pro PNY GeForce GTX 470 G.SKILL Ripjaws X 4GB DDR3-1600 
Hard DriveHard DriveCoolingCooling
Samsung 840 Series Western Digital Caviar Green 1TB (Advanced Format) Swiftech Apogee XT Swiftech MCW80 
CoolingCoolingCoolingOS
XSPC D5 Dual Reservoir Magicool Extreme Dual 120mm Radiator Phobya Xtreme 200mm Radiator Microsoft Windows 8 Pro 
MonitorKeyboardPowerCase
Dell G2410 Logitech K520 OCZ ModXStream Pro 600w Corsair 600T SE 
MouseAudio
Logitech M310 Brainwavz HM3 
  hide details  
Reply
post #5 of 6
if it's deleted, and something remains to resurrect it, it would take more effort to unerase data, than simply create a new instance of the virus. meaning, if the virus has something remaining to resurrect itself as you say, then why take that effort of something remains to still cause havok on the machine? viruses sometimes use the system restore information to retrieve deleted files that were deleted, i think most anti-virus progs have contingencies for this type of resurrection now.
Black Box 3
(13 items)
 
  
CPUMotherboardGraphicsHard Drive
i7 920 4GHz 1.248 VCore Gig EX58-UD3R 5870 2x160GB Hitachi RAID 0, 500GB WD 
Optical DriveOSPowerCase
ASUS DRW-2014L1T Windows 7 Ultimate 64bit SilverStone Zeus 850w Antec 902 
  hide details  
Reply
Black Box 3
(13 items)
 
  
CPUMotherboardGraphicsHard Drive
i7 920 4GHz 1.248 VCore Gig EX58-UD3R 5870 2x160GB Hitachi RAID 0, 500GB WD 
Optical DriveOSPowerCase
ASUS DRW-2014L1T Windows 7 Ultimate 64bit SilverStone Zeus 850w Antec 902 
  hide details  
Reply
post #6 of 6
Quote:
Originally Posted by TaiDinh View Post
As many of you might know, when you delete a file on your computer, it is not completely deleted and you're still able to recover the deleted files with a recovery program.

Now, let's say an anti-virus deleted a virus. Does the AV permanently delete the virus? Or does it just hide it away somewhere we're not able to see, but can still able recover it with a recovery program?
To understand what's going on you need a little background about how HDD's store files. At some point on the drive there is the data that the file contains, and in another point there is a table that tells the drive where on the disk each file is located. When you delete a file the normal way, you delete the record of the file rather than the file itself. The data is still there, but the drive doesn't know where it is. Data recovery programs work by finding where the data of a "deleted" file is. I would guess that most AV programs delete things the normal way, so the data is still there but not accessible
It goes to eleven
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6300 DS3 EVGA 8600GTS 2GB XMS2 DDR2-800 
Hard DriveOSMonitorKeyboard
1.294 TB Arch Linux/XP Samsung 226bw Eclipse II 
PowerCaseMouse
Corsair 520HX Lian-Li v1000B Plus G7 
  hide details  
Reply
It goes to eleven
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6300 DS3 EVGA 8600GTS 2GB XMS2 DDR2-800 
Hard DriveOSMonitorKeyboard
1.294 TB Arch Linux/XP Samsung 226bw Eclipse II 
PowerCaseMouse
Corsair 520HX Lian-Li v1000B Plus G7 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Other Software
Overclock.net › Forums › Software, Programming and Coding › Other Software › Question about deleting a virus