Rootkits
Detecting
rootkits
is a major challenge for anti-virus programs. Rootkits have full
administrative access to the computer and are invisible to users and
hidden from the list of running processes in the
task manager. Rootkits can modify the inner workings of the
operating system[50] and tamper with antivirus programs.
Damaged files
Files which have been damaged by computer viruses are normally
damaged beyond recovery. Anti-virus software removes the virus code from
the file during disinfection, but this does not always restore the file
to its undamaged state. In such circumstances, damaged files can only
be restored from existing backups; installed software that is damaged
requires re-installation.
[51]
Firmware issues
Active anti-virus software can interfere with a
firmware update process.
[52] Any writeable firmware in the computer can be infected by malicious code.
[53] This is a major concern, as an infected
BIOS could require the actual BIOS chip to be replaced to ensure the malicious code is completely removed.
[54] Anti-virus software is not effective at protecting firmware and the
motherboard BIOS from infection.
[55]
No comments:
Post a Comment