Download Article
Download Article
Removing rootkits can be difficult, as they often bury themselves deep into the operating system. If you're worried you have a rootkit, follow our guide for locating and removing it from your Windows PC or Mac.
Steps
-
Run a Microsoft Defender scan. To do so, open Windows Security, go to Virus & threat protection, and choose "Quick scan". You can also run a full scan.
- Microsoft Defender will inform you if you need to run Microsoft Defender Offline.
-
Start an offline scan. From the same screen as Virus & threat protection, choose "scan options" and choose "Microsoft Defender Offline scan". Your PC will restart.
-
Check the scan results after restart. If your PC detected rootkits, it will inform you that it was able to remove them.
-
Reinstall Windows. If a rootkit has caused a deep infection, then the only way to remove the rootkit is to reinstall Windows. Do this from an external media device instead of using the built-in Windows installer.
-
Have your hardware replaced. Some rootkits are able to infect the BIOS, which will require a repair to fix. If you still have a rootkit after a repair, you may need to get a new PC.
Advertisement
-
Update your Mac. Mac updates do not just add new features; they also remove malware, including rootkits, and fix security holes. Apple has numerous built-in security features to protect from malware, including rootkits.
-
Accept prompts to move malware to the Trash. If your Mac detects a malicious program, it will ask you to move it to the Trash. That way, malware, including rootkits, cannot cause problems on your machine.
-
Reinstall macOS. Unfortunately, there are no known rootkit detectors on macOS. If you still suspect a rootkit is on your device, you should reinstall macOS. Doing so removes most apps and any possible rootkits on your machine.
-
Have your hardware replaced. Some rootkits are able to infect the BIOS, which will require a repair to fix. If you still have a rootkit after a repair, you may need to get a new Mac.
Advertisement
-
Back up your data first. Unfortunately, there are no known rootkit detectors on iPhone. Rootkits can be difficult to remove and they often manifest themselves as developer profiles or hide themselves in jailbreaks.
-
Enter DFU mode. To do so, turn off your phone while it is connected to your computer. On iPhone 8 and later, press the volume up then volume down then power keys and hold the power button for three seconds. Then hold the power and volume down buttons together for ten seconds. Then release the power button and continue holding the volume down button. This will enter recovery mode.
- On iPhone 7, you do not have to press the volume up and volume down keys at the beginning.
- On iPhone 6s and earlier, use the home button instead.
-
Click on Restore iPhone/iPad... in iTunes or in Finder. This will erase all data but also remove any jailbreaks and/or rootkits present on your iOS device. You can recover your downloaded apps using iCloud or iTunes backup.
Advertisement
Community Q&A
Search
-
QuestionIsn't Kaspersky spyware?Achaius DimalibotCommunity AnswerIt's not spyware. It is an antivirus software, and it also works like Windows Defender.
Ask a Question
200 characters left
Include your email address to get a message when this question is answered.
Submit
Advertisement
Tips
Submit a Tip
All tip submissions are carefully reviewed before being published
Name
Please provide your name and last initial
Thanks for submitting a tip for review!
About This Article
Thanks to all authors for creating a page that has been read 55,073 times.
Advertisement