There's nothing
new under the sun, and rootkits are no exception. In the early days of personal
computers, in the age of the DOS command-line operating system, there were
viruses that hid their presence from the users and anti-virus programs. They
did it by intercepting some system calls that were responsible for reading the
files, and lied to the system by filling these calls with fake information.
You could view an
infected file right in front of your eyes and see nothing but legit code! These
viruses were called 'stealth' in those days.
When computers
evolved, Windows replaced the DOS. Old viruses did not run under the new
operating system, and it wasn't easy to develop simple hacks to intercept
system calls in Windows. But time has passed, and now there's a new wave of
viruses that can work on Windows and hide their presence even more efficiently
than the stealth viruses of the old days.
These new viruses
are called rootkits.
Microsoft tried
to address the problem by releasing their own Rootkit Revealer. While being a
correct concept, this tool fails on too many levels. Microsoft Rootkit Revealer
is intended for use by system administrators and software developers. The
results of its work are not detections but rather hint that there's something
in the system that's hidden. And of course, Rootkit Revealer does not remove
rootkits, making its benefits questionable at best for a regular computer user.
Today, using an
antivirus does not guarantee complete safety. A rootkit could install into your
system and fool the antivirus system by hiding itself. The problem is that
modern antivirus programs try to detect rootkits at the time when they are
already active. Antivirus programs use the very functions that are intercepted
by the rootkits specifically for the purpose of deceiving antivirus. It's a gun
vs. armor race and your PC is the firing range.
Complement your
antivirus with a rootkit detection and removal system and liberate your PC from
rootkits! UnHackMe with Partizan technology is highly compatible and designed
to complement other antivirus solutions instead of conflicting with them. The
Partizan technology is unique to UnHackMe. Microsoft states that there exists
no sure way to know of a rootkit's presence from within a running system.
Instead of trying
to combat rootkits on their own ground, Partizan fools them by booting with the
operating system and taking control before any rootkits can load. Being the
first to load, UnHackMe can safely watch all stages of the Windows boot
process, effectively detecting and terminating any activities attempted by the
rootkits.
You can safely
pair UnHackMe with an antivirus of your choice, providing ultimate protection
against all kinds of viruses and rootkits.
Once there's no
rootkit in the computer's memory, detecting and removing one is a matter of
routine. UnHackMe can remove known rootkits by itself or simply block the
rootkit from loading into memory and pass control to your regular anti-virus.
No comments:
Post a Comment