RogueKiller download 215




RogueKiller is an anti-malware program written in C++ and able to detect and remove generic malwares and some advanced threats such as rootkits, rogues, worms, …

Based on generic ways to find malware by their behaviour (heuristics), on classic anti-malware analysis (signature finding) and on undocumented hacks, RogueKiller can find/remove most of the basic malware (rogues, trojans, …) and some advanced threats like ZeroAccess or TDSS that behave more like rootkits.

RogueKiller is an anti-malware maintained by a small team, and thus new detections are based on “most spread threats“. We react quickly to integrate detection and removal of what we think can be a global threat and affect a big amount of users across the world.

Here’s a little summary of what RogueKiller is able to do:

  • Kill malicious processes
  • Stop malicious services
  • Unload malicious DLLs from processes
  • Find/Kill malicious hidden processes
  • Find and remove malicious autostart entries, including :
    1. Registry keys (RUN/RUNONCE, …)
    2. Tasks Scheduler (1.0/2.0)
    3. Startup folders
  • Find and remove registry hijacks, including :
    1. Shell / Load entries
    2. Extension association hijacks
    3. DLL hijacks
    4. Many, many others …
  • Read / Fix DNS Hijacks
  • Read / Fix Proxy Hijacks
  • Read / Fix Hosts Hijacks
  • Read / Fix malicious Master Boot Record (MBR) or Volume Boot Record (VBR), even hidden with a rootkit
  • List / Fix SSDT – Shadow SSDT – IRP Hooks (Even with inline hooks)
  • Find and restore system files patched / hidden by a rootkit


RogueKiller is a GUI-ed tool (since the new version), so it’s easy to use. However, one can have difficulties to interpret the results and know what needs to be fixed. This is normal and malware removal is somewhat tricky. We’ve made a documentation to help you, please read it in case of need. If you still have problems, please feel free to post the scan log on the forum. They know how to interpret it and they will guide you in the removal (for free, of course).


RogueKiller is available in the following languages, detected by computer’s language. If your language is not inside and you think it would be useful, if you can translate from/to Engligh please go on that forum thread, all you need is explained.

French, English, Arabic, German, Italian, Czech, Dutch, Portuguese (Braz), Spanish, Chinese, Polish


Premium version

RogueKiller has a Premium version, with some cool features! Check it out now.


Please read, it’s important for us!

RogueKiller is a free software, updated about once a week. It needs perpetual watch on live malware, and constant improvements to crush bugs, handle new malware and add new cool features.
Advertisements on the website are with Licenses purchases the only reliable way to get our developers paid for all that hard work. If you like the software, please help us to maintain it by purchasing a Premium License (see above). It’s cheap, lifetime, and our best strength for keeping the software efficient against new threats.
If you don’t want to buy a license, you can contribute in a valuable way by making a small (or generous, depends on your mood) donation with Paypal or Bitcoin. Don’t hesitate to leave a message explaining your thankfulness with your donation, this is an important thing for the team! :)
If you don’t wish to donate, you can still express your thankfulness (lucky you! :)) by liking us on social networks (below).


paypal-donate-euros paypal-donate-dollars paypal-donate-pounds
Scan to Donate Bitcoin
Like this? Donate Bitcoin to at:
Bitcoin 1EgX5TQNdamxuSQd4rV2wfi459Rch9QGGZ


RogueKiller Download



Please choose a version and mirror:

Download RogueKiller (FossHub):

Download RogueKiller (Cloud):

Download RogueKiller (Local):

Download RogueKiller (Old GUI):


Social Links:

facebook google_plus twitter youtube



After trying RogueKiller, we strongly recommend to give a chance to Malwarebytes. That’s a generic antimalware, compatible with your antivirus.
The paid version has a real-time protection that catches a lot of malware unknown by most of antiviruses.


User guide


Disclaimer. RogueKiller is able to send feedback report automatically in order to help developers to fix bugs and improve the software. The content is not sensitive, and does not contain personal data, only software related data. This feedback is used for real time statistics of in-the-wild threats (see below). If you disagree with this, please do not use this software.

Disclaimer 2. RogueKiller, by design, can detect some false positives. We made the choice to “sometimes” detect wrong things (marked as suspicious) and have a very high efficiency against malware rather than never detect legit things and miss a lot of malware. That said, you have always the choice to uncheck items before hitting deletion (and report them as false positive to us!)


RogueKiller is easy to use. Basically, a classic use would be the following:

  1. Launch the program. Wait for the Prescan to finish
  2. Hit the “Scan” button. Wait for the scan to finish.
  3. Perform a quick visual check of what has been found in the different tabs. Leave unchecked what you want to keep.
  4. Hit that “Delete” button. Wait for the end of deletion.


The official tutorial, which is quite complete can be found here. There is also a documentation to understand the reports.



Little demo against the latest ZeroAccess variant:




If you encounter any problem, have any doubt, and just want to thank, make a suggestion or provide any help, please feel free to contact us with any mean provided in the contact page of the website. You can also use the forum, as always. Before opening a thread for an issue, please check the FAQ and the known issues.











RogueKiller, thanks to its automated feedback, send some information in real time about currently spreading threats. It allows us to be prepared and warn people that a new attack is in effect, or that a 0-day is been exploited. More, we can see which operating systems are most used, which languages, and so.

Leave a Reply

215 thoughts on “RogueKiller download

  • Michael Jackson

    I wanted you to know that I use your scanner religiously as part of my anti-malware suite but the last version is killing my Bomgar and Logmein processes that I use to connect to customer’s computers as part of my job and they don’t come back. I can’t scan the customer’s computer remotely because of this. I want to donate to you for your hard work but is there anything you can do to stop it from killing those legitimate processes? bomgar-scc.exe and LMI.. I’ll have to get a log file so you can see exactly what the processes names are that are being unloaded/killed. Thank you!

      • Michael Jackson

        The pre-scan still kills Bomgar and Logmein processes and they don’t come back, I’m trying to create a log file but don’t know if the pre-scan results are captured in the log file. Do you have a honeypot machine I can connect to with Logmein and Bomgar and then run your software so you can see what the pre-scan does?

  • David Wilkerson

    I have been using this awesome tool since it first was released. I specialize in malware removal and have been doing it for 20 years, with that said, this program makes my life much easier. I have seen paid software fail miserably where the FREE version of RogueKiller gets the job done no problem. I built a program to make my IT life easier, one of the functions is to download the latest versions of software tools to help me fix issues I run into and you can bet, this is one of the tools I download every time. Back in the day I ran malwarebytes first, but now I run this first and malwarebytes gets the scraps haha. Keep up the great work tigzy and I plan on getting a premium version soon.

  • Dan

    Well, I just downloaded the portable version of RogueKiller to get an idea for the quality of the program. Now that the scan of my personal machine is complete, I must admit to being underwhelmed. It found nothing in any but the first tab, which is good, but this tool stopped a number of regular applications.

    It caused my explorer.exe to crash twice, because I use the application 7+ Taskbar Tweaker (use of inject.dll to get the taskbar tweaks to work), which is clearly not a malware. After I clicked away the first set of error messages due to that, it did the same again because of my BitTorrent Sync client, which also injects a SyncShellContextMenu.dll for some reason. Granted, I didn’t know about the latter injection, but I had been using this decentralized and encrypted sync method for a while now. After that it killed off regular executable files like the SpotifyWebHelper.exe while I was listening to music on my Spotify desktop client. Then it suddenly closed my mIRC client. Finally it shut down the Update Application (Agent.exe).

    Worst of all, RogueKiller did all this due to, what appears to be, the strange reason “Suspicious.Path”.

    Thanks for the effort to you developers, but this application is useless to me. Not only does it fail in basic user-friendliness by killing suspicious applications unasked, but it doesn’t seem to recognize some fairly wide-spread software. I can sort of understand why it would complain about .dll injections, but even there BitTorrent Sync shouldn’t be that unknown of an application. How it thinks some Spotify or Battle.Net background tasks to be suspicious software, I can’t understand either. The same is true for mIRC, which has been the leading windows-based IRC chat software for the past 20 years!

  • Chuck.Norris

    Dude i been using this for a long time and was waiting for you to go live to buy a key for $30 bucks like you had before but now you want $100 to use it on multiple computers. Because your such a greedy bastard you get $0 and ill continue using ADW thanks.

    • tigzy Post author

      I think you missed something. Free version stays free.
      Premium is just a way to support development (yeah, we need to eat at some point), it’s not mandatory.

      • Michael Jackson

        PLEASE ignore brainless, ungrateful, tools like Chuck Norris wanna-be there, it’s foolish idiots like him that make developers stop caring and updating their products. I guarantee he has never bought any of the anti-malware apps he uses including yours because he’s a cheap fool who expects ‘FREE” to be top of the line for nothing. I think you’re doing an excellent job and if I can just get Bomgar’s processes to stop being killed or unloaded in the pre-scan, I will be glad to buy the premium version. Some of us actually use your product for a living. Where can I send the log for a scan that shows where bomgar-scc.exe is being killed by the pre-scan? I have one at last. LMI (Logmein) seems to have stopped being killed but Bomgar still is in the pre-scan. Please let me know so you can white-list it and I can buy the Premium version, your scanner rocks! :-)

  • Gordon

    Has anyone found a solution to the newer poweliks, so far it is showing a default ime application? It is on xp and newer. Xp seems especially troublesome so far.

  • Michael

    My problems with malware have been resolved. But RogueKiller deleted connection to OneDrive. And left a connection to Google Drive and Asus Webstore. How can I use RogueKiller and leave OneDrive?

  • ME

    Ran rogue killer and items popped up in the Anti root kit in green. None looked like malicious paths no virus warning came up. Should I be worried?