Are there any 64-bit Microsoft rootkit detection tools?

Question

Are there any 64-bit Microsoft rootkit detection tools?

Anonymous

I received an email in my spam folder that says they hacked my PC with a RAT trojan and accessed my webcam.

I'm looking for a rootkit detection tool that works with Windows 10.

Is there anything available from Microsoft?

Something similar to the Sysinternal toolkit?

Thank you for any help you can provide!

Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question.

0 comments

Answer accepted by question author

2 additional answers

Answer 1

Hi TheBigM60, I am Rob, an independent and a 12 time and dual award MVP specializing in Windows troubleshooting and Bluescreen analysis. Please remember as independents we are not responsible for the development of Windows or the computer hardware and drivers. If you will work with me I will be here to help until the issue is resolved.

Windows Defender Offline - also scans for RootKits

https://support.microsoft.com/en-us/help/17466/windows-defender-offline-help-protect-my-pc

Run and review the results of a Windows Defender Offline scan

https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-antivirus/windows-defender-offlinehttps://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-antivirus/windows-defender-offline

Microsoft's Safety Scanner and Windows Defender have some rootkit protection. WD's scan includes scanning for RootKits.

Microsoft's Sysinternals RootKit Revealer - Free

https://docs.microsoft.com/en-us/sysinternals/downloads/rootkit-revealer

Microsoft Doc's - RootKits

https://docs.microsoft.com/en-us/windows/security/threat-protection/intelligence/rootkits-malware

Bleeping Computer - Windows Anti-RootKit

https://www.bleepingcomputer.com/download/windows/anti-rootkit/

Standard Disclaimer: There are links to non-Microsoft websites. The pages appear to be providing accurate, safe information. Watch out for ads on the sites that may advertise products frequently classified as a PUP (Potentially Unwanted Products). Thoroughly research any product advertised on the sites before you decide to download and install it.

Please let us know the results and if you need further assistance. Feedback definitely helps us help all.

Answer 2

Even though that is probably a Hoax or Scam it would be a good idea to check for malware.

If you need to check for malware here are my recommendations - these will allow you to do a thorough check and removal without ending up with a load of spyware programs running resident which can cause as many issues as the malware and maybe harder to detectas the cause.

No one program can be relied upon to detect and remove all malware. Added that often easy to detect malware is often accompanied by a much harder to detect and remove payload. So its better to be overly thorough now than to pay the high price later. Check withthese to an extreme overkill point.

How do I find and remove a virus?

http://windows.microsoft.com/en-US/windows-8/ho...

TDSSKiller.exe. - Download to the Desktop - then go to it and Right Click on it - RUN AS ADMIN it will show any infections in the report after running - if it will not run change the name from tdsskiller.exe to tdsskiller.com. Whether it finds anything or notdoes not mean you should not check with the other methods below.

http://support.kaspersky.com/viruses/solutions?...

Microsoft Safety Scanner

http://www.microsoft.com/security/scanner/en-us...

Malwarebytes - free

http://www.malwarebytes.org/products/malwarebyt...

SuperAntiSpyware Portable Scanner - Free

http://www.superantispyware.com/portablescanner...

AdwCleaner

http://www.bleepingcomputer.com/download/adwcle...

Hitman Pro is a second opinion scanner, designed to rescue your computer from malware (viruses, trojans, rootkits, etc.) that have infected your computer despite all the security measures you have taken (such as anti virus software, firewalls, etc.).

http://www.surfright.nl/en/hitmanpro

Zemana - scroll down to Free - Advanced Malware Detection and Removal - also Effective against Rootkits and BootKits

https://zemana.com/en-US/AntiMalware

What is Windows Defender Offline?

http://windows.microsoft.com/en-US/windows/what...

Windows Defender Offline system requirements

http://windows.microsoft.com/en-US/windows/wind...

If needed here are some online free scanners to help

http://www.eset.com/onlinescan/

Other Free online scans

http://www.google.com/search?hl=en&source=h...

Standard Disclaimer: There are links to non-Microsoft websites. The pages appear to be providing accurate, safe information. Watch out for ads on the sites that may advertise products frequently classified as a PUP (Potentially Unwanted Products). Thoroughly research any product advertised on the sites before you decide to download and install it.

Please let us know the results and if you need further assistance. Feedback definitely helps us help all.

Answer 3

Brian Tillman 25,040 Independent Advisor

Chances are that the message you received was a scam.

0 comments

Answer 4

Anonymous

My initial thoughts exactly, Brian!

I'm even more confident of the scam now after running a couple of rootkit detectors found via Rob's links.

0 comments

Answer 5

Thank you for your help, Rob!

I regularly run a Windows Defender Full Scan and offline scan with no problems found.

Since I keep Windows 10 up-to-date, I was looking for some additional help.

I immediately suspected it was a scam as I had received some "marriage proposals" from some folks who had scanned my newly posted L*****In profile.

But, I wanted to be sure, so I put out the call for rootkit detectors.

Share via

Are there any 64-bit Microsoft rootkit detection tools?

2 additional answers