Malwarebytes Anti-Rootkit Beta

Malwarebytes Anti-Rootkit (MBAR) is a tool designed to detect and remove sophisticated, stealthy forms of malware called “Rootkits”.  Rootkits are hidden forms of malware which most normal malware scanning tools cannot detect or remove. Rootkits have the ability to infect the very core or ‘root’ of an operating system and hide the existence of certain processes and malicious programs from normal methods of detection. Rootkits can also enable continued privileged access to a computer to make system level modifications, leaving the system heavily compromised. MBAR provides a comprehensive system scan to check for rootkits that includes drivers, MBRs (Master Boot Records) and VBRs (Volume Boot Records).

Malwarebytes Anti-Rootkit (MBAR) has been tested and proven to be effective against the following types of rootkits:

  • Kernel mode drivers hiding themselves, like TDL1, TDL2/TDSS, MaxSS, Srizbi, Necurs, Cutwail, etc.
  • Kernel mode driver patchers/infectors, embedding malicious code into core files of an Operating System, such as TDL3, ZeroAccess, Rloader, etc.
  • Master Boot Record infectors such as TDL4, Mebroot/Sinowal, MoastBoot, Yurn, Pihar, etc.
  • Volume Boot Record/OS Bootstrap infectors like Cidox
  • Disk Partition table infectors like SST/Elureon
  • User mode patchers/infectors like ZeroAccess.
  • And many more!

Download: Malwarebytes Anti-Rootkit Beta | 13.1 MB (Freeware)
View: Malwarebytes Anti-Rootkit Homepage

Report a problem with article
Previous Story

Design patent gives a look at a potential future Nokia handset

Next Story

GameStop: Gamers won't buy next Xbox if it blocks used games


Commenting is disabled on this article.

ChrisJ1968 said,
11 issues already found. man it's sometimes hard to be perfectly vigilant against garbageware

You had 11 rootkits?!?! Nothing personal, but that is insane. I could see 1 or maybe 2 rootkits on a wide open system, but 11 is over the top. You will want to rethink whatever security plan you are currently using. Of course, this IS beta software, so I wonder how many false positives are going to show up. After reading your comment, I am using it to scan my system now. I will reply back with anything it finds.


Well, as suspected, I got a false positive on my system:

This one is part of the Microsoft DirectX installer. I checked the file's properties and it reported that the file itself, and it's associated security certificate belong to Microsoft.

And to verify the file further, I looked it up on RunScanner, which reported it being a safe file:

I hope that the things it found on your system are false positives too!