I've said this multiple times: generally, if the malware is allowed to runn under administrative account, it will (well, can) be the master of the machine NO MATTER what the AV does. That's the fact. We can make it harder, but there's no ultimate solution.
Talking about NT-based systems - Win9x is a joke in terms of security anyway.