avast! Boot-time scan and Rootkits

« previous next »

Print

Pages: [1] Go Down

Author Topic: avast! Boot-time scan and Rootkits (Read 3573 times)

0 Members and 1 Guest are viewing this topic.

RejZoR

Polymorphic Sheep
Serious Graphoman
Posts: 9406
We are supersheep, resistance is futile!

avast! Boot-time scan and Rootkits

« on: July 09, 2005, 08:08:41 PM »

I was thinking something...
Rootkits are designed to hide files and functions from OS itself.
So even antivirus cannot detect them.
Now if we perform boot-time scan,all OS elements are gone and rootkits are useless.
So avast! has some advantage over other AVs right? Or am i missing something?

Logged

Visit my webpage Angry Sheep Blog

Vlk

Avast CEO
Serious Graphoman
Posts: 11658
Please don't send me IM's. Email only. Thx.

Re: avast! Boot-time scan and Rootkits

« Reply #1 on: July 09, 2005, 08:35:19 PM »

That depends on what kind of rootkits are we talking about. Most of them (but not all) are device drivers, and actually load even before the boot time scanner.

Logged

If at first you don't succeed, then skydiving's not for you.

RejZoR

Polymorphic Sheep
Serious Graphoman
Posts: 9406
We are supersheep, resistance is futile!

Re: avast! Boot-time scan and Rootkits

« Reply #2 on: July 09, 2005, 08:53:45 PM »

I thought you get just basic functionality at boot-time. Looks like it's not that simple...

Logged

Visit my webpage Angry Sheep Blog

Vlk

Avast CEO
Serious Graphoman
Posts: 11658
Please don't send me IM's. Email only. Thx.

Re: avast! Boot-time scan and Rootkits

« Reply #3 on: July 09, 2005, 08:56:18 PM »

At this stage, the device driver can (but necessarily doesn't have to be) loaded. It's more or less its decision at which stage of the boot process to load...

Logged

If at first you don't succeed, then skydiving's not for you.

Print

Pages: [1] Go Up

« previous next »

SMF 2.0.18 | SMF © 2015, Simple Machines
XHTML
RSS
WAP2

Page created in 0.055 seconds with 22 queries.