« previous next »
Pages: [1]   Go Down

Author Topic: Rootkits in Win9x ?  (Read 3536 times)

0 Members and 1 Guest are viewing this topic.

poutnik

  • Guest
Rootkits in Win9x ?
« on: November 11, 2005, 07:27:14 PM »
After searching www and avast forum, I decided to ask:

Are Rootkits dangerous for Win 9x too ? I have read somewhere
they are aimed to NTFS based Windows only......

If yes, is there recommended antitool against them ?
(I use Kerio personal firewall, Avast, Adaware 1.06, Spybot, Spywareblaster.)

Would Avast detect them ?
Logged

RJARRRPCGP

  • Guest
Re: Rootkits in Win9x ?
« Reply #1 on: November 15, 2005, 07:44:53 PM »
Quote from: poutnik on November 11, 2005, 07:27:14 PM
they are aimed to NTFS based Windows only......

You mean NT-based. Because NTFS is a file system.
Logged

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67183
Re: Rootkits in Win9x ?
« Reply #2 on: November 15, 2005, 07:53:21 PM »
Quote from: poutnik on November 11, 2005, 07:27:14 PM
If yes, is there recommended antitool against them ?
(I use Kerio personal firewall, Avast, Adaware 1.06, Spybot, Spywareblaster.)
Right now, no. You'll need manual cleaning and detection.

Quote from: poutnik on November 11, 2005, 07:27:14 PM
Would Avast detect them ?
Answered above... no  :-[
Logged
The best things in life are free.

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89690
  • No support PMs thanks
Re: Rootkits in Win9x ?
« Reply #3 on: November 15, 2005, 08:10:38 PM »
It would appear they are at risk, this is just one rootkit:
http://securityresponse.symantec.com/avcenter/venc/data/pf/hacktool.rootkit.html
Quote
Hacktool.Rootkit
   Category 1
Discovered on: September 27, 2001
Last Updated on: October 21, 2005 02:26:17 PM

Hacktool.Rootkit comprises a set of programs and scripts that work together to allow attackers to break into a system. If Hacktool.Rootkit is detected on a system, it is very likely that an attacker has gained complete control of that system. All files that are detected as Hacktool.Rootkit should be deleted. Infected systems may need to be restored from backups or patched to restore security.

Type:    Trojan Horse
Infection Length:    Varies
   
Systems Affected:    Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows XP

For those on NT based systems, FAT32 or NTFS format, I don't think the different storage/file system make a difference both are vulnerable to rootkits, as the above quote doesn't differentiate.
Logged
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD - 27" external monitor 1440p 2560x1440 resolution - avast! free  24.9.6130 (build 24.9.9452.762) UI 1.0.818/ Firefox, uBlock Origin Lite, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline igor

  • Avast team
  • Serious Graphoman
  • *
  • Posts: 11873
    • AVAST Software
Re: Rootkits in Win9x ?
« Reply #4 on: November 16, 2005, 10:35:39 AM »
Generally, it depends on the particular rootkit.
Driver-based rootkits will be OS-dependent - i.e. NT-based drivers certainly won't work on Win9x.
User-level rootkits may, or may not work on Win9x - depends on the design.
Logged

poutnik

  • Guest
Re: Rootkits in Win9x ?
« Reply #5 on: November 19, 2005, 10:39:50 PM »
Quote from: RJARRRPCGP on November 15, 2005, 07:44:53 PM
You mean NT-based. Because NTFS is a file system.
Sure, I know :-)
Logged
Pages: [1]   Go Up
« previous next »