10 Nov
2010
10 Nov
'10
7:59 p.m.
On Wed, Nov 10, 2010 at 8:08 PM, Joxean Koret joxeankoret@yahoo.es wrote:
El mié, 10-11-2010 a las 20:51 +0100, Marcus Meissner escribió:
This can be enhanced, but there are limits of course. Rootkits probably want to hook the filesystem and there we will probably fail ;)
Rootkits typically want to hook filesystem, network and processes. They want all for them ;)
Presumably, though, under Wine you could detect the attempt to hook those things, and thereby detect the malware?