Home
Topics
Microsoft Windows desktop operating systems security management
Patches, alerts and critical updates
How did a rootkit get on my Windows machine?

Ask the Expert

How did a rootkit get on my Windows machine?

Is there any way to figure out how a rootkit made its way onto my system?

Maybe. With enough time, patience and (likely) money, anything's possible. There are a million ways for a rootkit to infect your system, such as not having anti-malware software installed and a piece of malware automatically infects your system; or you are missing a patch and someone exploits that and installs the rootkit himself. The problem with rootkits is that every potential avenue of infection could be covered up or modified so there's no way of really knowing unless you have known clean copies of log files, network captures, etc., to analyze -- and those can be very hard to come by.

More News and Tutorials

Articles

Related glossary terms

Terms for Whatis.com - the technology online dictionary
- application monitoring (app monitoring)
- drive-by download

This was first published in January 2008

Join the conversationComment

Share

Comments

Results

Contribute to the conversation

All fields are required. Comments will appear at the bottom of the article.

Back to top

More from Related TechTarget Sites

Virtual Desktop
Windows Server
Windows IT
Exchange

Virtual Desktop
- How inline deduplication is changing the VDI storage landscape
  
  VDI storage has long been a challenge for virtual desktop admins, but inline deduplication is changing all that.
- Taking advantage of VM snapshots in a virtual desktop environment
  
  With VM snapshots, you can make one desktop VM into many. Just watch out for performance when snapshotting in a virtual desktop environment.
- Planning and managing virtual desktop pools
  
  Virtual desktop pools make management easier, but you have to plan for them and remember that the way you create pools depends on your VDI platform.
Windows Server
- Office, 32-bit Windows fixes included in Patch Tuesday update
  
  Microsoft offered five bulletins in June's Patch Tuesday updates, with 19-vulnerability critical Internet Explorer patch and Windows Server 2008 fixes.
- Q&A: Anderson talks BYOD management in Windows Server 2012 R2
  
  Microsoft's Brad Anderson talks about changes to expect in Windows Server 2012 R2 features, including some to security and enterprise mobility.
- Q&A: Microsoft's Brad Anderson talks Windows Server 2012 R2
  
  Microsoft's Brad Anderson discusses new features in Windows Server 2012, including a faster update cycle and cross-platform integration.
Windows IT
- Eight questions to ask yourself before moving to C-suite management
  
  There are many opportunities that come with working in C-suite management, but you should answer these eight questions before a move to mahogany row.
- SharePoint 2013 features: what's new, what's changed and what's gone
  
  Some existing SharePoint features were replaced or dropped in SharePoint 2013. Here's how to work through the changes.
- Prevent hacking in your enterprise with these nine easy steps
  
  There are no foolproof ways to completely stop hacking in an enterprise, but follow these proven and common sense methods to reduce your risk.
Exchange
- How to synchronize SharePoint 2013 lists with Outlook 2013
  
  Give users access to various SharePoint 2013 lists through Outlook 2013 with just a few simple configuration steps.
- Spotlight on top new Exchange 2013 features
  
  There are several new Exchange 2013 features that should interest those debating an upgrade. We examine several standouts and how to work with them.
- How to modify OWA 2013 to support Microsoft Lync
  
  Properly modifying OWA 2013 is necessary to allow users Lync functionality such as instant messaging and presence. We offer the necessary steps here.

All Rights Reserved,Copyright 2008 - 2013, TechTarget