02-22-2016 , 12:00 PM
Roguekiller is a popular, effective tool to remove some stubborn malware but be warned; you better know what you’re doing. While a lot of more well-known tools will simply scan and delete for you, this tool will show you everything it finds that is a possible problem. You need to know what to remove and what not to remove. In the screenshots below you will see where it found 7 potential PUP’s on a clean install of Windows 7. Your results may vary, but simply put - be careful and do your homework!
Roguekiller uses heuristics detection as a generic ways to find malware by their behavior the adds-on classic anti-malware analysis (signature finding) to assist in finding known and undocumented hacks. It is an anti-malware program able to detect/find/remove most of the basic malware that you will encounter and some more advanced threats like ZeroAccess or TDSS that behave more like rootkits.
RogueKiller can:
[*]Kill malicious processes
[*]Stop malicious services
[*]Unload malicious DLLs from processes
[*]Find/Kill malicious hidden processes
[*]Find and remove malicious autostart entries, including :
1: Registry keys (RUN/RUNONCE, …)
2: Tasks Scheduler (1.0/2.0)
3: Startup folders
[*]Find and remove registry hijacks, including :
1: Shell / Load entries
2: Extension association hijacks
3: DLL hijacks
4: Many, many others …
[*]Read / Fix DNS Hijacks (DNS Fix button)
[*]Read / Fix Proxy Hijacks (Proxy Fix button)
[*]Read / Fix Hosts Hijacks (Hosts Fix button)
[*]Restore shortcuts / files hidden by rogues of type “Fake HDD“
[*]Read / Fix malicious Master Boot Record (MBR), even hidden behind rootkit
[*]List / Fix SSDT – Shadow SSDT – IRP Hooks (Even with inline hooks)
[*]RogueKiller can find and restore system files patched / faked by a rootkit
[*]
Changelog:
[*]V11.0.13 02/22/2016
=================
- moved signatures loading at the beginning of the scan
- core preparation for V12
- Added detections
[*]Homepage: http://www.adlice.com/software/roguekiller/
Roguekiller uses heuristics detection as a generic ways to find malware by their behavior the adds-on classic anti-malware analysis (signature finding) to assist in finding known and undocumented hacks. It is an anti-malware program able to detect/find/remove most of the basic malware that you will encounter and some more advanced threats like ZeroAccess or TDSS that behave more like rootkits.
RogueKiller can:
[*]Kill malicious processes
[*]Stop malicious services
[*]Unload malicious DLLs from processes
[*]Find/Kill malicious hidden processes
[*]Find and remove malicious autostart entries, including :
1: Registry keys (RUN/RUNONCE, …)
2: Tasks Scheduler (1.0/2.0)
3: Startup folders
[*]Find and remove registry hijacks, including :
1: Shell / Load entries
2: Extension association hijacks
3: DLL hijacks
4: Many, many others …
[*]Read / Fix DNS Hijacks (DNS Fix button)
[*]Read / Fix Proxy Hijacks (Proxy Fix button)
[*]Read / Fix Hosts Hijacks (Hosts Fix button)
[*]Restore shortcuts / files hidden by rogues of type “Fake HDD“
[*]Read / Fix malicious Master Boot Record (MBR), even hidden behind rootkit
[*]List / Fix SSDT – Shadow SSDT – IRP Hooks (Even with inline hooks)
[*]RogueKiller can find and restore system files patched / faked by a rootkit
[*]
Changelog:
[*]V11.0.13 02/22/2016
=================
- moved signatures loading at the beginning of the scan
- core preparation for V12
- Added detections
[*]Homepage: http://www.adlice.com/software/roguekiller/