We went to an interview for the 1st level of support and asked, "how are you remove a virus from a computer?
my answer was a good updated antivirus software and also try to safe-mode.
Q2. What if the Anti-virus can not delete this file?
I said, find the location of the file and try to delete from the heart this very spot.
Q3. what if Windows will not delete this file?
I would simply like format where a backup.
ok, some of those answers were wrong told by the interviewer. someone could give me the right answers to these please, so I know what and to do all that?
my answer was a good updated antivirus software and also try to safe-mode.
Q2. What if the Anti-virus can not delete this file?
I said, find the location of the file and try to delete from the heart this very spot.
Q3. what if Windows will not delete this file?
I would simply like format where a backup.
ok, some of those answers were wrong told by the interviewer. someone could give me the right answers to these please, so I know what and to do all that?
2 comments:
(From old blog's comments)
T1, to isolate the computer network, start with a live CD containing antivirus software, scanning the PC.
Reason: When you load the pc the virus could change form, files or damage will not let you install a antivrus program.
Q2. Check if the file is a file system or not, if not locate and remove manual, always a good idea to check if his share in an applicatin you use, sometimes right software can be considered as a virus.
Q3. Use a software unlock remove all handels on the file, attach the hard disk in OS X or Linux PC and delete from there, or load with a live cd linux and remove within Linux. Do not join a Windows PC because the virus could spread.
(From old blog's comments)
One of the main things you need to cope with a virus that your AV software will not remove is to recognize that there May be both a file and a memory-resident portion of the virus. If you can not delete the file it is probably because the virus has found a mechanism itself write in the memory process and the virus locks the disk file so you can not delete. Update AV software to May this point have no effect on a virus already resident if it has been adjusted in order to understand how AV is a program of work. To solve the problem you will probably need to start from a single operating system (as a bootable CD) and launch an analysis of the AV against the operating system disk. If this does not solve the problem booting from the CD and delete the offending file manually (always assuming you've identified). I think that is what they have been for research
Personally, I think the questions are too simplistic in these days of e-mail and Web trojan / malware infections. They are much more likely to contract infections that traditional viruses that are generally quickly killed by large populations of users who have a software update AV.
Post a Comment