• Announcements

    • LS.Andy

      Support for other products than adaware, ad block, web protection and Web Companion   05/05/2017

      Support for the following products is handled by the Lavasoft support team: Lavasoft Tuneup Kit Lavasoft PC Optimizer Lavasoft Driver Updater Lavasoft Registry Tuner Lavasoft Privacy Toolbox Lavasoft File Shredder Lavasoft Digital Lock

      For help with these products, contact the support team here: http://www.lavasoft.com/support/supportcenter/
       
Sign in to follow this  
Followers 0
Danny

Malware: quarantine vs delete

4 posts in this topic

 

Hi. While running the system scan for my home edition of Ad-aware, I've been advised that viruses were found, and these were identified as malware. The application recommended that I send the malware to the quarantine chest, which I did, and there does not seem to be any further problem. My question is why not just delete the malware and rid the system of it rather than keep it in quarantine? Is there a possible problem(s) associated with deleting certain types of malware? Just want to improve my understanding of this area. Thanks very much.

Share this post


Link to post
Share on other sites

 

Is there a possible problem(s) associated with deleting certain types of malware?

Yes. This is especially true in removal of spyware and parasites. Sometimes their removal can cause something to not work right. If it is in quarantine, it cannot run from there, but it can be restored to get the program or PC working while other methods of removal are investigated. Or maybe you removed something that later you decide you wish you had not removed. Also there might be an occasional false positive. I've seen viruses infect a system file like Explorer.exe and the AV detected the infection but instead of curing it, deleted Explorer.exe! That's just one example. Putting items in quarantine is the safest way to remove malware. If your PC and your programs are running correctly after a reasonable period of time (say, two weeks), then you can clean out the quarantine files.

 

This is also the reason why these days, we advise those who are disinfecting a computer to NOT turn off the System restore until after the system is clean and working properly. Disabling system restore removes all prior restore points. If something should go wrong during the removal, you have no prior working point to go back to. Sometimes, if a PC is rendered unworkable during malware removal, it would be desirable to have any working condition to go back to (even if an infected one), so that you could at least work through the problem and not be left with a machine dead in the water. So as with quarantined files, clear your system restore after the PC is clean. Turn it off, reboot and turn it right back on again to flush any infected restore backups and to create a fresh clean restore point.

Share this post


Link to post
Share on other sites

I have items quarantined clear back from March. I run the scan about 4 times a month so I have a LOT in quarantine. I don't know much about this stuff. I haven't talked to the right person I guess who can tell me what to do. Should I remove all items in quarantine from my pc up intil a couple weeks ago? My computer SEEMS to be running fine.. Thanks

Share this post


Link to post
Share on other sites
Should I remove all items in quarantine from my pc up intil a couple weeks ago? My computer SEEMS to be running fine.. Thanks

Yes, that sounds like a reasonable period of time :)

Share this post


Link to post
Share on other sites
Sign in to follow this  
Followers 0