Hi everyone:
Having read through many postings on this forum regarding Rootkits and the intensive low-level work by someone with expert level knowledge required to remove them, leads to me to ask three important questions...
1) If the Rootkit gets past NAV/NIS 2010 what can the casual user do, aside from coming to this Forum, to possibly remediate it?
2) I have seen many tools being targeted at Rookits, particularly the ones that Quads uses (one of our Guru's) and wonder if there is a more integrated and automated solution. Obviously, these Rootkits are still going to be coming and what if Quads and others are not here any longer or do not have the time? Other security related websites almost have a waiting list for help.
3) What is Symantec doing to keep on the cutting edge of Rootkits? Substantial progress has been made but nothing is perfect, particularly with these newer generation ones.
One more thing. Perhaps Symantec could create just *one* webpage to submit every type of threat and/or false positive, instead of scrambling to find the correct link. I have many bookmarked, but the average user, IMHO, might be totally overwhelmed with this.
Please elaborate!
TIA