SCF Advanced Search

  • Total Posts: 41450
  • Total Topics: 14956
  • Online Today: 509
  • Online Ever: 51419
  • (01. January 2010., 10:27:49)

Author Topic: by Ashraf: [Windows] 13 top best free rootkit removal anti-rootkit programs 2013  (Read 15529 times)

0 Members and 1 Guest are viewing this topic.


  • SCF VIP Member
  • *****
  • Posts: 3611
  • KARMA: 157
  • Gender: Female
This article is a direct copy paste from an article by Ashraf, also known from and

Some articles just don't need any alterations or comments. This article is one of them. Do visit the original page for the full experience!

Below a copy paste (with links and screenshots, sigh)...


13 top best free Windows rootkit removal tools and anti-rootkit programs

Malware is bad. No one likes malware. Rootkit is one of the worst forms of malware because rootkits hide themselves “under” or “within” the Windows operating system, making harder to detect and remove than other types of malware. Because of this, rootkit is one of the only forms of malware that has specialized removal software, known as anti-rootkit programs.

Now that doesn't mean security suites and anti-virus programs don’t have anti-rootkit capabilities built in; in fact, most security suites and anti-virus programs do indeed have anti-rootkit protection built into them.

Rather, what I mean to say is there is a special class of software out there that specialize in removal of rootkits, aka anti-rootkit programs. And we have compiled a list of nine free anti-rootkit programs for you to pick from. Enjoy!


AVG Anti-Rootkit

Panda Anti-Rootkit

F-Secure BlackLight Rootkit Detection

Vba32 AntiRootkit

Sophos Anti-Rootkit (now known as Sophos Virus Removal Tool)

Malwarebytes Anti-Rootkit


Bitdefender Rootkit Remover

Comodo Cleaning Essentials


Kaspersky TDSSKiller

Dr.Web CureIt

Microsoft Malicious Software Removal Tool


Before we delve into which one is the “best”, it should be noted no anti-rootkit tool is perfect. Because of the way rootkits work, it is very possible that anti-rootkit program A is unable to remove rootkit Z but can remove rootkit Y while anti-rootkit program B is unable to remove rootkit Y but can remove rootkit Z. In other words, it is always good to have multiple anti-rootkit utilities at your disposal because they cover each others weaknesses.

However, that doesn’t mean all anti-rootkit programs are equal. Indeed, some anti-rootkit programs are better than others. So which is the best?

Well, immediately thrown out of the race are AVG Anti-Rootkit, Panda Anti-Rootkit, F-Secure BlackLight Rootkit Detection, Vba32 AntiRootkit, and Comodo Cleanning Essentials. Why? Because these five programs are no longer actively developed and will only remove old(er) rootkits. That leaves Sophos Anti-Rootkit, Malwarebytes Anti-Rootkit (which is still in Beta), aswMBR (which is based on GMER technology), Bitdefender Rootkit Remover, GMER, Kaspersky TDSSKiller, Dr.Web CureIt, and Microsoft Malicious Software Removal Tool in the race.

Out of these eight anti-rootkit programs, the top four are Sophos Anti-Rootkit, Malwarebytes Anti-Rootkit, aswMBR, and Kaspersky TDDSKiller. Of these anti-rootkit programs, all four programs are ones that you want to keep in your anti-rootkit toolkit because, as I mentioned previously, no one anti-rootkit program can remove rootkits. That being said, unfortunately, Sophos Anti-Rootkit and Kaspersky TDDSkiller haven’t yet been updated to officially work with Windows 8 (they may still work with Windows 8, but Windows 8 isn’t officially supported by them). So Malwarebytes Anti-Rootkit ranks on the top of my list as the top best free rootkit removal program, followed by aswMBR, Kaspersky TDDSkiller, and Sophos Anti-Rootkit.


In this article, we have listed 13 free rootkit removal programs for Windows XP, Vista, Windows 7, and Windows 8. Wether you decide to download our top picks or any other on this list, we hope these programs will help you stay safe.

And another favorite of the giveawayoftheday community, Giovanni, ofcourse had something to add to Ashraf's list ; -> try a freeware called “OSHI Unhooker”, it’s in my view a terrific FREE APP against rootkits, since it uses extremely complex and unique heuristics algorithms and in-depth system analysis in order to detect and remove any kind of rootkits out there, including the unknown ones:

        !  --  !
!!!... Karma ...!!!


~~~ ~~~

Conare nullius momenti videri fortasse missilibus careant
All spelling mistakes are my own and may only be distributed under the GNU General Public License! – (© 95-1 by Coredump; 2-013 by DevNullius)

TAGS » aswMBR, AVG Anti-Rootkit, Bitdefender Rootkit Remover, Comodo Cleaning Essentials, Dr.Web CureIt, F-Secure BlackLight Rootkit Detection, Featured, GMER, kaspersky tdsskiller, Malwarebytes Anti-Rootkit, Microsoft Malicious Software Removal Tool, Panda Anti-Rootkit, Sophos Anti-Rootkit, Vba32 AntiRootkit, Windows, Windows anti-rootkit software, Windows Security Software, Windows Software
More information about bitcoin, altcoin & crypto in general? GO TO

Cuisvis hominis est errare, nullius nisi insipientis in errore persevare... So why not get the real SCForum employees to help YOUR troubled computer!!! SCF Remote PC Assist

Samker's Computer Forum -


  • SCF VIP Member
  • *****
  • Posts: 3611
  • KARMA: 157
  • Gender: Female
From Giovanni @

He mentions these tools besides the ones already described;

Comodo Rescue Disk (==> My Personal First Choice)

Kaspersky AVZ Antiviral Toolkit (==> My Personal First Choice)
EDIT: This is a strange product. From Kaspersky, but not officially. Details are sketchy, but from Kaspersky...  ??? From: ..." of Kaspersky’s SOS Tool and Kaspersky Home User and Enterprise Workstation products. AVZ Utility is built to diagnose and find infections that Kaspersky is not currently detecting. ... . AVZ can also be used in standalone by downloading the AVZ utility"

SpyDllRemover + RemoteDLL + StreamArmor + Hidden CMD Detector (Windows XP to Windows 7)
EDIT: It is NOT for windows 8. Compat mode will let the program run though...
EDIT: VERY interesting tool! With surprising results, even on my (assumed to be) malware free PC... :|
EDIT: I've never encountered one of those... Pez? :) At least something not to ignore: running the tool is 1 second work!

I also would like to recommend this tool from them: ExeScan, PE File Anomaly Detector ( It is a console based expert tool to examine file headers in a smart and friendly way. A picture says more than my ramblings:

And if that tool is not detailed enough, if you need to actively trace an executables workings... See PyMal. It has several wrapper functions to manipulate Executable as well as running Processes. It also offers some advanced features like Injected Code Detection and Hook Detection using Passive Image Referencing. I have to admit that I have no idea what I just said...  :angel:

And lastly I think their BHO removal tool is smart too when you are dealing with an infected system (

Hidden File System Reader
EDIT: does NOT support Windows 8. Windows 8 users can use Hidden File Finder (


More information about bitcoin, altcoin & crypto in general? GO TO

Cuisvis hominis est errare, nullius nisi insipientis in errore persevare... So why not get the real SCForum employees to help YOUR troubled computer!!! SCF Remote PC Assist


  • SCF Administrator
  • *****
  • Posts: 7528
  • KARMA: 322
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • - Samker's Computer Forum
Excellent list D.!

I'm sure We'll kick ass to huge number of rootkits.  :police:


  • SCF Advanced Member
  • ***
  • Posts: 176
  • KARMA: 22
Nice job pal.thanx


  • SCF Newbie
  • *
  • Posts: 9
  • KARMA: -6
  • Gender: Male
Amazing its need for me thanks for this help.

- - -

(- - - link removed by Admin, because of breaking TOU: - - -)

Samker's Computer Forum -


With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters)

Enter your email address to receive daily email with ' - Samker's Computer Forum' newest content:

Terms of Use | Privacy Policy | Advertising