Bootkit

Bootkits are an advanced form of rootkits that take the basic functionality of a rootkit and extend it with the ability to infect the master boot record (MBR) or volume boot record (VBR) so that the bootkit remains active even after a system reboot.

Bootkits are designed to not only load from the master boot record but also remain active in the system memory from protected mode through the launch of the operating system and during the computer s active state.

Anti-Malware Tools vs. Bootkits

A key feature of a bootkit is that it is unable to be detected by the typical means of an operating system or anti-malware tool because its components reside completely outside of the standard file systems. And while most anti-malware tools will simply delete or quarantine files that have been infected, because a bootkit infects the master boot record, these tools aren t able to delete or move the MBR without damaging the computer. As a result, bootkits can be an extremely problematic type of malware. According to Kaspersky Lab, there is good news in that in many cases, systems infected by a bootkit can be cleaned with the TDSSKiller utility.

Three highly publicized examples of bootkits are the Stoned Bootkit, Evil Maid Attack and Alureon.

Forrest Stroud
Forrest Stroud
Forrest is a writer for Webopedia. Experienced, entrepreneurial, and well-rounded, he has 15+ years covering technology, business software, website design, programming, and more.

Top Articles

List of Windows Operating System Versions & History [In Order]

The Windows operating system (Windows OS) refers to a family of operating systems developed by Microsoft Corporation. We look at the history of Windows...

How to Create a Website Shortcut on Your Desktop

Website Shortcut on Your Desktop reviewed by Web Webster   This Webopedia guide will show you how to create a website shortcut on your desktop using...

What are the Five Generations of Computers? (1st to 5th)

Reviewed by Web Webster Each generation of computer has brought significant advances in speed and power to computing tasks. Learn about each of the...

Hotmail [Outlook] Email Accounts

Launched in 1996, Hotmail was one of the first public webmail services that could be accessed from any web browser. At its peak in...

SHA-256

SHA-256 is an algorithm used for hash functions and is a vital component...

Document Management System

A document management system is an automated software solution businesses and organizations use...

Conti Ransomware

Conti ransomware first emerged in 2020. It uses a ransomware as a service...