What is a rootkit?

What is a Rootkit:
Rootkits are one of the most technically advanced malware. They are what
people normally perceive as viruses. Here is what Wikipedia says:

A rootkit is software that enables continued privileged access to a computer
while actively hiding its presence from administrators by subverting
standard operating system functionality or other applications. Once a
rootkit is installed, it allows an attacker to mask the ongoing intrusion
and maintain privileged access to the computer by circumventing normal
authentication and authorization mechanisms.

And here is the most scary part about Rootkits:

Rootkit detection is difficult because a rootkit may be able to subvert the
software that is intended to find it. Detection methods include using an
alternate, trusted operating system; behavioral-based methods; signature
scanning; difference scanning; and memory dump analysis. Removal can be
complicated or practically impossible, especially in cases where the rootkit
resides in the kernel; reinstallation of the operating system may be the
only alternative.

Of course, there are some rootkit scanners that help detect rootkits. Check
out free rootkit removers,

GMER, and


Trend Micro RootkitBuster

I'm Donna J. Jodhan wishing you a terrific day.

