WEBROOT is a malicious program is a type of virus known as a rootkit and it tries to overwrite part of a computer's hard drive called the Master  Boot Record (MBR). This is where a computer looks when it is switched on for information about the operating system it will be running. Once installed the virus, dubbed Mebroot by Symantec, usually downloads other malicious programs, such as keyloggers, to do the work of stealing confidential information. Most of these associated programs lie in wait on a machine until its owner logs in to the online banking systems of one of more than 900 financial institutions. <<--
Security firm iDefense said Mebroot was discovered in October but started to be used in a series of attacks in early December. Between 12 December and 7 January, iDefense detected more than 5,000 machines that had been infected with the program. Analysis of Mebroot has shown that it uses its hidden position on the MBR as a beachhead so it can re-install these associated programs if they are deleted by anti-virus software. Mebroot cannot be removed while a computer is running. GMER has produced a utility that will scan and remove the stealthy program. It is advised to run this program in safe mode. We like this product a lot but it's not for everyone. So if you are the type that simply likes to press the "scan" button then stick with Panda Anti-Rootkit. Please Note : The OS9USER News Room does not recommend that you do Online Banking. Never put your confidential information in your computer, and you will never have to worry !
Labels: breaking news os9user webroot trojan rookit virus removal online banking financial institutions gmer panda
|
