Roguekiller is a popular, effective tool to remove some stubborn malware but be warned; you better know what you’re doing. While a lot of more well-known tools will simply scan and delete for you, this tool will show you everything it finds that is a possible problem. You need to know what to remove and what not to remove. In the screenshots below you will see where it found 7 potential PUP’s on a clean install of Windows 7. Your results may vary, but simply put - be careful and do your homework!
Roguekiller uses heuristics detection as a generic ways to find malware by their behavior the adds-on classic anti-malware analysis (signature finding) to assist in finding known and undocumented hacks. It is an You are not allowed to view links. Register or Login to view. able to detect/find/remove most of the basic malware that you will encounter and some more advanced threats like ZeroAccess or TDSS that behave more like You are not allowed to view links. Register or Login to view..
RogueKiller can:
[*]Kill malicious processes
[*]Stop malicious services
[*]Unload malicious DLLs from processes
[*]Find/Kill malicious hidden processes
[*]Find and remove malicious autostart entries, including :
1: Registry keys (RUN/RUNONCE, …)
2: Tasks Scheduler (1.0/2.0)
3: Startup folders
[*]Find and remove registry hijacks, including :
1: Shell / Load entries
2: Extension association hijacks
3: DLL hijacks
4: Many, many others …
[*]Read / Fix DNS Hijacks (DNS Fix button)
[*]Read / Fix Proxy Hijacks (Proxy Fix button)
[*]Read / Fix Hosts Hijacks (Hosts Fix button)
[*]Restore shortcuts / files hidden by rogues of type “Fake HDD“
[*]Read / Fix malicious Master Boot Record (MBR), even hidden behind rootkit
[*]List / Fix SSDT – Shadow SSDT – IRP Hooks (Even with inline hooks)
[*]RogueKiller can find and restore system files patched / faked by a rootkit
[*]
Changelog:
[*]V11.0.13 02/22/2016
=================
- moved signatures loading at the beginning of the scan
- core preparation for V12
- Added detections
[*]Homepage: You are not allowed to view links. Register or Login to view.