What is a rootkit

A rootkit is a program designed to provide hackers with administrative access to your computer without you knowing. It can be used to remotely control a device. A rootkit hides its presence on a PC, usually within some of the lower layers of the operating system.

Where a rootkit comes from

Rootkits can be installed in many ways, including through commercial security products and seemingly safe, third-party application extensions. Rootkits can't spread by themselves, but instead are one component of blended threats.

How to recognize a rootkit

Detecting rootkit-like behavior can be tedious work. When searching your system memory, monitor all ingress points for invoked processes, keeping track of imported library calls (from DLLs) that may be hooked or redirected to other functions. If you want to be sure there is no rootkit on your PC, you can use a rootkit scanner, found in any rootkit removal tool (e.g. Avast Free Antivirus & Anti-malware tool).

How to remove a rootkit

Any rootkit scanner is able to detect rootkits and rootkit-like behavior. When scanning for rootkits, most programs will suspend any rootkits, but deleting the rootkits themselves sometimes has to be done manually. Avast Free Antivirus offers the best, free rootkit scanner and remover.

How to prevent rootkits
  • Use updated antivirus software and firewall protection.
  • Regularly scan your devices with a rootkit scanner and remove all detected rootkits using rootkit removal software.
Use an anti-rootkit to protect yourself

There is no better way to recognize, remove and prevent rootkits than to use an antivirus tool with a rootkit scanner and remover, the best of which is provided for free by Avast.

Why Avast?
  • Consistently rated “excellent” by industry experts
  • Trusted by 400 million people worldwide
  • It’s the "Antivirus with the lowest impact on PC performance” (AV comparatives)
  • Best features - unbreakable password security, home network protection, browser cleaning and much more
  • All for FREE