Why does a machine keep getting infected??

Discussion in 'Windows 7 Help and Support' started by geo77, Mar 4, 2014.

  1. geo77

    geo77 New Member

    Joined:
    Mar 4, 2014
    Messages:
    29
    Likes Received:
    0
    Hello all,

    A friend's computer has windows 7 with an antivirus and the up to date definitions, and the user is a Standard user, the computer keeps getting infected.

    I have cleaned this computer before, but it just keeps happening. I've noticed that this happens a lot with windows, shouldn't having an antivirus, spyware checker, prevent the computer from getting infected??

    Can you tell I'm not a windows user?? lol

    Thanks for any help.
     
  2. Fixer1234

    Fixer1234 Senior Member

    Joined:
    Aug 3, 2012
    Messages:
    481
    Likes Received:
    37
    Not all antivirus software is created equal. Some are much better than others, so some malware will slip through any program. There should be only one (good) anti-virus program actively running in the background (more than one will slow the computer to a crawl). However, you can regularly do manual scans using other programs to catch anything the primary one missed. There are numerous evaluations and recommendations (from true third parties) of the good anti-virus software available (much of it free).

    That said, if that computer is repeatedly getting infected, first ensure that the anti-virus checkers are run and rerun until they report a clean machine. When an active virus is infecting a computer, it is infecting new files even while the anti-virus software is running. It often takes multiple scans to completely clean it out.

    Second, be aware that some web sites are basically contagion breeders (two types: essentially scam sites created to spread malware and legit sites that have become infected). There are various add-ons for browsers that will flag known problem sites and alert you before you click on them. As you can imagine, these sites are rarely esoteric sites of narrow special interest. They are typically sites designed to suck in people by offering free stuff, solutions to common problems, magical cures for diseases, porn, etc.

    Third, the user can be the "source" by being gullible, overly trusting, and unaware of the social engineering scams used to get people to open infected email or click on malware sites. Users need to develop "radar" for the common scams that are used to infect computers. The safe habit is not to open any email you don't recognize or if you're not sure, open it in text mode with everything in the message disabled. If the email software has a preview window with text mode, much of the problem stuff can be spotted there.
     
  3. bassfisher6522

    bassfisher6522 Essential Member

    Joined:
    Aug 27, 2008
    Messages:
    4,878
    Likes Received:
    317

    My guess would be the users web preferences and habits!!!!!
     
  4. badrobot

    badrobot Senior Member

    Joined:
    Jun 14, 2012
    Messages:
    1,020
    Likes Received:
    102
    A serious infection cannot be fixed by multiple scans, etc. Once a virus sets in, it will reside in your system registry. You can control it's activity but you cannot stop it from coming back. After each attempt to remove the virus, it will just hibernate and starts attacking again after a while. The only solution to stop persistent virus is to perform a system recovery or clean install. That means wiping out the hard drive.
     
  5. Joe S

    Joe S Excellent Member

    Joined:
    Jan 12, 2009
    Messages:
    3,785
    Likes Received:
    113
    What AV is on your friend's machine? There is a big difference in how effective the different programs are. Your friends online habits could be contributing. Things like adult sites, computer hacker type sites, torrent sites to name a few. Opening emails and just clicking on links or attachments to see what the are. Have you tried running the scan in safe mode? I just saw this http://www.komando.com/downloads/240696/free-virus-removal-for-windows?utm_medium=nl&utm_source=asd&utm_content=2014-03-02-article_0_0-cta but haven't had time to check it out more.
    Joe
     
  6. Fixer1234

    Fixer1234 Senior Member

    Joined:
    Aug 3, 2012
    Messages:
    481
    Likes Received:
    37
    Not necessarily true. Most decent virus checkers test the registry. Wiping the hard drive and starting over is a last resort that is not usually required.
     
  7. badrobot

    badrobot Senior Member

    Joined:
    Jun 14, 2012
    Messages:
    1,020
    Likes Received:
    102
    That is why I specified "serious" infection. & "persistent" virus if that is the case here. Common infection is essily fixable. Plus, if the user knows what he is doing, image restoration is the quickest fix if he is making image bsckups. It's like wiping out the hard drive without starting over.

    Personally I don't take my chances with viruses no matter how big or small. I have 3 PCs sharing a central filing system. It's faster for me to do image restoration than scanning and trying to fix a virus. There is no clear indication if the virus is gone. It's a "wait and see" game.
     
    #7 badrobot, Mar 5, 2014
    Last edited: Mar 5, 2014
  8. geo77

    geo77 New Member

    Joined:
    Mar 4, 2014
    Messages:
    29
    Likes Received:
    0
    Thanks fellas for all that info.
     

Share This Page

Loading...