HMP.Alert is exactly that for me. If I am alerted to an attack, I plan to use that as a signal to do a full restore of my PC with an image made prior to the attack, and that has been kept offline. I also run a standard AV solution as well as several 2nd opinion malware scanners to ensure that I stay clean. But I don't trust anything to clean my system after it has been compromised. There's no telling what got in there if it got past my layered security defenses. Images are actually my #1 security plan.