Rootkits As Fast As Possible
HTML-код
- Опубликовано: 4 окт 2024
- What are rootkits, and why can they be so much more dangerous than other kinds of malware?
Get $20 off your first purchase by visiting LittleBits.com/...
Follow: / linustech
Join the community: linustechtips.com
License for image used in this video: creativecommon...
god i never realised how much better their audio has gotten
Looking for this comment, I was
@@legitbananaman3082 also Linus is rushing so much it reminds me a little of his first linus tech video where he was all anxious to now. They've come faaaaaaar. I didn't even notice either I've been a regular viewer since the start.
lmao
this legit sounds like it was off a 2004 huaweii android phone lmao
I'm using $10 speakers and that was my first thought too
"Cyber criminals"
Oh you mean Riot games anti-cheat
Wait a second, are you being serious? I just installed the riot games anticheat and my computer has been acting up. If I download anything, it automatically says that it is a virus and my dad says that it is a rootkit virus
Celpro it's just a satire but be careful anti cheat or not it's still rootkit it can bust your pc real quick
@@celpro5205 I also play valorant everyday and i have vanguard anti cheat. It won't do anything bad to your pc but it has access to literally everything because it works on ring 0. Riot is a trusted company so they won't use your information for anything bad.
@@jammel3653 but riot is owned by tencent. Tencent has some history on stealing some data and selling it to the CCP
@@blueberrypimp8460 no it isnt satire its actually real it affects cpu and gpu cycles , might break your ssd and hdd/ delete all your data
I love how Linus change what he is reading on the monitor across him with a secret button hooked on his belt under his shirt.
nice catch
I never noticed that lol
What has been seen cannot be unseen. Don't they usually have people on the set that manage the teleprompter?
Thanks... now I will always see it forever and ever and ever and ever.....
Whaaaat? So this is what he is doing? I had noticed it in other videos and i thought he was umm...touching his parts...like some creep weirdos do :P
Malwarebytes has a separate root kit scanner now
Thank goodness!
Lots of AVs have this now.
For me the main Malwarebytes can scan for rootkit's
Im here because of Valorants Vanguard AntiCheat LUL.
we're all here because of it
I don't even know what is Valorant
Nice likes
What is that?
fastn't boi i’m not it was in my recommend but it’s ok
great, now I'm paranoid.
TL;DR YOU DON'T WANT A ROOTKIT.
+Mew [Jacob/PwnAzn] Ah, but do I want a rootkit rootkit? O_o
+Mew [Jacob/PwnAzn] But there so fun to make
+Mew [Jacob/PwnAzn] Rootkit - too late, now i know why that song is named like that, its too late once you get a rootkit
Not all rootkits are evil (There in your antivirus software)
TL:DR *NO*
Types of Viruses as fast as possible please
i love ur profile picture
Bernie Sanders vira*
you mean Wiruses and Vindows right?
Muffinz47 lel vinedows
Bernie Sanders
Malware : damage your System
Spyware : observe you all the time and keylogging(with a Keylogger)
Adware : farm money by using your Computer to watch ads in the background
Ransomware : encrypting all your files, trying to make you pay a ransom to its creator
And far more
In theory, there could be build "rootkit" method that could already be implemented to your monitors to send data trough hidden wifi signals or build into custom tailored motherboard or in every single consumer motherboard. And even servers too that would require physically altering the hardware itself that they actually already are doing.
you could also protect yourself by disconnecting from the internet, taking apart your pc and locking every component in a different safe box in different countries.
Prime Derivative And put the SSD in the Falcon Heavy.
Or trowing them to the closest lake, sea or ocean.
*OVERKILL*
N - 0 n0
Or put them into a box and send them to the moon
Who's here after people are calling Valorant's anti-cheat a rootkit?
Me I wanna remove it
not me
epic games launcher has root access too
sort of everything you have in your computer has or had root access. vanguard has root access from hour 0 to when you destroy the hard drive
So what happens if you work on a virtual machine, can you still get infected with a rootkit on your Base OS?
no not unless you have sharing set to bidirectional if you did your screwed
@Garblehead it doesn't work like that, there is no such thing as VM exploit, sometimes after closing the VM the virus can stay in the RAM and affect your host computer.
The best thing is to delete the virtual hard disk created after closing VM and restarting your host machine
@@kekwnet there have been exploits that use vmware tools to infect the host
starts buffering at "system slow down" =|
+Salpeteroxid gets paranoid?
Mihail Georgescu Illuminati!
+Salpeteroxid Illuminati LOL
Chris Yang For sure!
Lol, that pb
Sony spreading more STDs than Limewire and kazaa😂😂
Just because you put 2 laughing emojis in your comment doesn't mean it's actually funny.
+TheJoJmaster 😄😄😄😄😄😄
😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄
Isyriel Funniest comment today!
😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄😄
So this is what Riot Vanguard is for Valorant.
Lmao we get this recommended now
Here before the valorant brainlets go "bUt Ur ruNniNg wINdOws!!!1!!11!"
I got a particularly nasty rootkit that legitimately destroyed my hard drive to the point that its impossible to boot off of or store data without corruption.
Ah yes
Valorant anti cheat
Ah yes
Dystopian chinese rootkit to prevent people ruining my fun and games >:((((((((
Very epic
no not me
these things are devastating... Im was disabled at a middling age, contracted Guillain-Barre at 32, and it costed me everything. I was an avid PC gamer then, but wasnt able to stay with it with my quite modest disability income.. a little more than year ago, I had decided to set some funds back little by little and finally build me a decent PC, got a GTX 1080, Ryzen 7 3700X, and a 16GB Team Group Xtreem ARGB 3200kit, and about 6 weeks ago, I finally got the last piece of my build purchased, an ASUS Hero VIII mainboard, I was elated... and as it is right now, I no longer have that PC as it was virtually destroyed by a BIOS/ACPI rootkit and I didnt have the funds to get professional services to get in dealt with, Im not certain, but I believe the rootkit originated from the Hero mainboard as I bought it openbox. and through my network in my apartment, it also infected my Android-based TV box... so now Im basically living in the stone ages after all that saving funds ! Nor could I return or get replaced any of the hardware I had purchased as my Amazon, Newegg and Paypal accounts, along with Facebook, Twitter etc, were hijacked from me and Ive yet been unable to recover them. Im absolutely devastated. All I can say is, as a safety measure... avoid "open box" purchases if you can, these rootkits can take everything from you !
The feeling when Linus says "You guessed it" and you said the correct answer.
This channel is awesome. Every time I'm like "I don't even know what rootkits are, but I might as well know everything about them!".
Thanks for the information, Linus, now I've enabled Secure Boot and switched to UEFI only from Legacy mode.
And here I was thinking Rootkit was just the name of a music artist on Monstercat, lol.
Tristan Crawford YES
Tristan Crawford u know it
i would bet he named himself after the rootkit
Get this Valorant out of my pc lol
Ryan what?
Mike Wazzup nothin
Unfortunately, you never know if its gone or not.
Karim M. Elsayad scary
Just had the nasty "Windows Process Manager" rootkit, could not get rid of it without reformatting my entire PC and OS.
Now I will always trust my anti virus warnings.
I will never forget the time my sister installed a 'game' that turned out to contain a rootkit.
Kind of the best thing that could have happened. I had to install Linux until I could buy a new windows key and never went back! :D
If it does not give the attacker kernel access, it is not a root kit. Your distinction at 1:58 is not a distinction between 2 types of root kits, but the distinction between root kit and not a root kit. Specifically a root kit is a set of software or hardware components that allow you to run arbitrary code as the root user (or in the windows world, as the system user). That necessarily gives you the attacker authority to modify kernel code running on the system.
Also i'm disappointed you didn't mention infected USB as part of this video. Focusing on downloads only does the community a disservice.
Celestial Cereal
In most cases, if it downloaded (but didn't install) (let's say it was a drive-by download) to a non-admin account, wouldn't it need permission to install and access the kernel though?
Wouldn't it be just like how a driver would need permission to download? I'm specifically asking about if there are no previous malware to use as an exploit, like a keylogger program that it could read, could there still be an exploit it could use?
Oh, don't feel bad I'm only in my second semester (where the actual core programs begin). I've got a long way to go before I'm an official geek.
Celestial Cereal
Thank you for answering my questions. I didn't know that some Intel CPU's have backdoors. By the way you worded it I assume it's just Intel, but to be sure I'll ask; does AMD do that to?
+Celestial Cereal check windows updates kb3075549,kb3080149 they are loggers from MS-uinstall and hide! kb3035583 is for win10, once you ok the put me on the list it writes gvx and that's harder to remove since it gives "installer permission"I've had in the past where the intel virus warning pop up-just answer NO. And like this guy says, only download from a mgr site for drivers.
t103prototype Th reason I mentioned USB at the end of my initial post is that is probably the easiest way to get code running in kernel mode without prompting UAC on windows. The plug-and-play drivers stored on a USB device are just installed when you plug in the device. So don't plug in USB sticks with an unknown origin.
In *nix environments, yes software only has the permissions of the user it is running as, in windows it is a bit more complicated since what is sometimes called the "system user" is a set of execution permissions but technically not a user.
A rootkit is a piece of malware that is running as the root user (nix) or with system permissions (windown).
On windows, there are a few ways to bypass UAC as a malware developer, but they all require either esoteric setups on the target machine, infected hardware to be plugged into the target system, or exploiting existing software already running with system permissions (note that a service running as the system user can install drivers without prompting UAC and you don't get UAC when installing windows updates). the last of those threee is probably the most common way of infecting a system with a root kit, followed by subverting UAC by getting the user to click through it.
Trabber Shir
Wow that was a nice explanation. You answered my question and then some. Do you work in an IT field?
Please do more of these. Has Techquickie done over hashes/hash types, or pw cracking softwares?
I'm surprised there wasn't a Rootkit (Artist on Monstercat) song in this video, it would of made it perfect.
whos here because of Valorant?
yes sir here i got it in my pc but building a new one very soon
Valorant reddit is in full damage control lolololol
Seen that this is a rootkit soooo
*China #1*
i searched linux valorant out of curiosity and got this
Delete System32, it's a root kit
+DRONEROC128 Yeah, like you can do something like that easily nowadays without UAC and NT SERVICE\TrustedInstaller user privilege systems (and file usage handles) getting in your way in Windows.
+3l H4ck3r C0mf0r7 yah guys this is a joke don't do thay
gousaid67 It was actually possible to do in Win95 afaik. You did break your OS when doing that, so after a reset your computer stopped booting. The only way someone could do this on recent versions would be by booting to an external copy of Windows PE. Doing this will also break a new Windows OS, so if you wanna break your computer, you know the way.
i know that, thats why im warning other, even if the windows folder is protected, its still possible with the admin permission
gousaid67 Yup.
My Antivirus(Avast) has the option to create a USB Drive that I can boot off so i can check also the Kernel and even BIOS/UEFI.
I have a choice between 144p and 1080p HAHA.
Well 1+4+4=9 and 1+0+8+0=9 so they must be basically the same thing.
Also 9=3x3=lummrty cnfrmd
+David Cox OMFG You've cracked the code. ILLUMINATI!!!
i got 480p XD
If you look closer you'll realize that even the other resolutions are connected to the illuminati...
480p
4+8+0=12 12/4=3
240p
2+4+0=6 6/2=3
But wait there's more, remember all those numbers we used to divide? What if we average them?
3+2+3+4+3+3+3+3=24 24/8=3!!!!!!!!!
David Cox Illuminati Confirmed....
I love how the audio on this channel went echo -> no echo -> echo again over time. lol
Probably has to do with the super high ceiling in their new office, I guess.
Whoopp 360p Club.
+raidersk8er9 Yay!
Nice ... I uploaded a video witch was 1080p 60fps and well it was 360p for ... 2 days ...
u dont need to watch techquickie tho, just listen
The Echo... Linus! the Echo!
Actually, that's reverb. ;)
thanks for amplifing that feeling of hopelessness
valorant: *i'm going to pretend I didn't see that*
This video reminded me of how much I hate the English language for saying "colonel" as "kernel"
Yeah I bet you don't mispronounce things either
One of the most sinister forms of malware prevalent today is the dreaded DRM.
SecuROM OP, plz nerf.
Welcome to 2020 where we have more of these DRMs!
@@cystonks5374 Welcome to 2022 where we have Firmware viruses that destroy PC'S in minutes!
YOUR ANIMATIONS WERE UNBELIEVABLE I DO NOT KNOW HOW DO YOU DESIGN YOUR VIDEO.
Got a rootkit in Linux ? Delete /usr. it's where they are.
Delete / and install Windows.
no
instead get to the terminal and type rm -rf
@@kirinplays3822 Hold on.. I see what you are trying to pull.
I know the whole "type rm -rf to fix linux" meme is going around and i decided to make a Linux VM to test it out, Welp, that was the end of that VM
@@heal0152 the only useful thing i learned from toy story
@@snbeast9545 No
You guys missed a great opportunity to use a song by Rootkit. Such as Against the Sun or Just Do It.
+LkMMoDC I know, right? xD
I had a virus that placed itself onto the MBR, so after removal, every time the pc was restarted, the virus would be back in action! But there was a simple fix which involved the Windows 7 install CD, which replaced that corrupted MBR. I went through pages on multiple forums until I found the solution, so I went back to said forums and spread the GOSPEL! :p
A clean install works 90% of the time, but as said here, if it manages to get into you GPU you’re screweing
Well rootkits can now also get onto your wifi so if you are on that wifi it will automatically download and run it :(
Windows rootkit: *infects my MBR*
Me: *installs Linux*
Rootkit: nooooo you can't just install something i can't infect
Me: hahahaha Linux mint go brrr
@@PennsylvaniaEAS you do know advanded malware can infect into yoir network and when you go on that network it immedietly downloads
@@milanek1527 malware downloading itself
Linux go BRRR
(Almost no malware is made to work on Linux, hence it can download itself all it wants but it won't work )
I love how linus implied Sony were distributing malware 1:45
school teachers said I couldnt get into there computers well 5 mins and one rootkit later im on a teachers pc right now
Wait... Does Linus STILL work for NCIX? I still see him in their videos...
COME ON DOWN TO LITTLE BITS
Jesse the food is so small
was waiting for this. knew id find it if i scroll down far enough hahaha
0:50 on UNIX/POSIX files ARE settings, as everything is a file.
am i a file?
_Riot Vanguard_
This guy did a great job of explaining Rootkits👍😎
@Techquickie
Looks like littlebits moved, that's clever thou DIY circuits.
Linus, you forgot to put a download link in the description.
I had that music rootkit. Messed up my CD drive. Never recovered.
good video, but seriously. little bits is possibly one of the coolest things i have ever seen. I can see future me buying at least a couple kits just to play with and learn a new hobby. How do you get the coolest sponsors?
Im glad I watched this before downloading Valorant
Just a quick idea for this old video you guys did a while back the people in lmg that know enough about it should have a contest where four people try to repair a computer that has had a rootkit deployed on it and the person that fixes it the fastest wins The Challenge at the same time you could explain a little bit more in detail about how rootkits are fixed and precautionary steps to take to stop them or to fix them just a idea for some more cool videos
Would flashing the BIOS with new firmware remove a BIOS rootkit, or would the rootkit prevent that/reinfect the newly flashed?
Depends on the type, really. I'm sure some rootkits could be designed in such a way that it could do that.
define "flashing"
Its funny that you uploaded because I was thinking about rooting my htc one m8
You may not see cheaters in Valorant one day, in exchange your GPU may be hijacked to mine whatevercoin until it sears itself.
So basically if you have a rootkit, you're screwed.
Valorant has a rootkit, be carefull
I don't understand who thought it was a good idea, I guess Riot truly is bought out by China.
@@bloodyz6892 but if they do shady stuff people will find out because Riot is a pretty big company so I think its safe.
@@FritoTheLay it's probably safe from riot hackers using this as a way to get on our computers is the real shit
Not all rootkits are malicious
@@FritoTheLay no it isnt safe dont be a fanboy
As soon as I saw this vid, I turned on rootkit scans for Malwarebytes.
it sounds like a really helpful tool for Android
ikr
Sounds like an offbrand busybox
@@KSPAtlas it's been 5 years what the hell
Oh i remember trying out Littlebits!
I think I am gonna wish it for Christmas.
I thought this was going to be a video about rooting android phones :P
I'll tell you how to remove RootKits. Backup your very important files and encrypt it. Then scan for Rootkits and throw the old PC and get a new one.
Anyone know the music producer named Rootkit? That's where I first heard that word
yeah man ambush is a great song.
***** But I loved Concrete Jungle xD
***** But I like deep house...
Yep haha!
Holy SHIT. I didn't realize how much better LTT has gotten at clean audio
A little things to prevent most attacks witch malware:
Use NoScript in your Browser!
And if you youally want to stay on the safe site, go with Linux (also good for those who want to test a Rootkit themself (Metasploid seams to work really good))
4:02 is that a Hp Compaq nc6320?
TDSSKiller came in helpful a few times when I got infected with rootkits
Tencent btw. China btw
360p yay
+Dylan Sands :(
+Dylan Sands only pros watch on 144 :D
HD for me yaay
+Dylan Sands I got 480 :(
Excuse me sir, but us rich people have fiber optic upto 2160p! yay!
No one:
Literally No one:
Me watching this video after downloading Valorant..
You just described everyone...
why do you keep touching your right hip? are you adjusting volume or teleprompter speed?
Recommended after watching someordinadygamer's video about Valorant
You're the dude who did the fire truck demo!
Ping as fast as possible plz !
+Damager Guy Ping is simply the amount of time it takes for one computer to send a message to another, and for that 2nd computer to send the message back to the first. It's like saying "hello" to your friend, and them saying "hi" back. If you measure the amount of time it takes for you to say hello and them to respond with hi, then that's ping time on a more human scale.
HitchhikerG3 Your correct it's P2P Game but for Server based Game. In which it Time takes to reach the server. EG: You say hi. It goes to server. Your friend gets the message from the server. But the ping is the time to reach the server instead of your friend.
+Damager Guy Ha ha.
Dhruv Collins Well, sort of. Ping doesn't go through an external server to get from one place to another (hence why a lot of sysadmins on networks enjoy blocking it), so it still has the same functions (client-client or client-server). If you ping a friend or a server, it'll go directly to them and back, and not through some external server first.
HitchhikerG3 A better Example: You upload a file A to a server. Your friend goes to the server and downloads that file.
P2P - You upload the file directly to his computer.
I got a rootkit once from a Bellsouth DSL Install CD and since the PC had to be directly on the DSL modem to initialise it the PC got infected almost instantly by malware that was aware of the rootkit.
*Happy Tencent noises*
They always shop Denis into the weirdest spots lmaoooo
Hello can you guys make me a pc part list:
1. I want the most powerful gaming beast
2.I dont mind about budget it can go up to 50.000$
3. Plus monitors,gaming set
No
+Mark Andzejevski
1. cpu= 5960x.
2. vid card(s)= 4 gtx titan x
3. Ram = ANY ddr4 ram that is meant to run above 2400mhz.
4. motherboard= asus, asrock, or gigabyte are solid choices.
5. Windows installed storage drive= intel 750 ( pick the size appropriate for your needs).
6. case= whatever you want as long as it supports full sized regular atx boards and has a MININUM of 8 pci expansion slot-support.
7. Monitor= www.amazon.com/BenQ-BL3201PH-Monitor-32-Inch-LED-Lit/dp/B00O1B5M9I/ref=pd_cp_pc_0#customerReviews .
8. Sound card= Mayflower Electronics Objective 2odac combo unit for around 300 bucks.
9. Speaker set= that you'll have to play around it to find your preference.
10. Headphone/headset = any great pair of headphones with a Antlion modmic attached...or if you MUST get a pre-built headset...= Kingston hyper x cloud.
11. Keyboard and mouse= again..that's just something you'll want to play around with. I love my Logitech 710+ and g600.
12. Operating System= facts are fact regardless of how you slice it. If you're a hardcore gamer and want to ensure everything " just works". You're basically stuck with Windows.
+aRazzey Is there a site where i can build a computer and then buy it. (with shipping to Lithuania)
+Mark Andzejevski pcpartpicker.com/p/QBgPpg
Hey Linus,
For You Information,
When a person buys a prebuilt Desktop / Laptop from companies like: Hewlett Packard [HP] or Dell you will have to download your computers Device Drives from the Support Page of your exact model of Desktop or Laptop from Hewlett Packard or Dell.
Hewlett-Packard: support.hp.com/us-en/drivers/
Dell: www.dell.com/support/home/us/en/04/?app=drivers
Wow, 360p club.
This VDO is being used by my organisation as malware turorial in their learning portal. Not sure if they took your permission . Linus , you can contact me if this infringes any of the copywrite law..
internet aids basically
Thanks a lot Linus, this cleared a lot of things for me :)
Valorant brought me here
Marco J not me but good for you for having a pen anti virus
I FUCKING LOVE DENNIS SO MUCH
Who’s here cos of Doom Eternal?
Nope, Vanguard
(Valorant's anti-cheat system)
God the audio quality
360p club
Rootkit makes the best Drumstep XD
Fuck yes!!
I feel bad Dennis is becoming a running joke omg I laughed so hard.
You can hear echo. As good as Brandon's makeshift studio is, you guys really need to get a sound-dampened studio.
Soo... basically there’s no way to know if you been rootkit so if I think I have been, then I’m screwed?
So some actual useful advice:
Do a scan with 'RogueKiller by Tigzy' which can often kill currently running rogue processes and unlock them for removal.
Then a full scan using 'MalwareBytes AntiMalware'.
If this doesn't work, use 'HiJack This' to create a logfile and post its contents in a question on a tech-help forum and see what other experts advise.
btw, if you get the Pro version of Mbam and also install their free Anti-Exploit software you may reduce your risk of getting infected.
so if a rootkit gets int the bios....what would u do?
+LinusTechTips +Techquickie this video was uploaded on my birthday.
:P
OMG LITTLE BITS!!! I’ve always wanted some!