RkUnhooker v3.31 released

Discussion in 'other anti-malware software' started by StevieO, Apr 7, 2007.

Thread Status:
Not open for further replies.
  1. StevieO

    StevieO Registered Member

    Fixed: bug with Notify Routines and Code Hooks Detector, thanks to FlowerCode
    Fixed: drivers identification bug

    Updated: ILHA to bypass some user mode rootkits with patch-protection technology

    Added: bypassing of locking of the system files by some rootkits
    Added: UNC full support for Files Scan / Operations (should eliminate some old bugs)

    $h3||(0d3 entering the team :)

    RkU3.31.150.420.exe - 147kb

    MD5 - 1FC261BE43D1119B4F627B18578759B3


  2. WilliamP

    WilliamP Registered Member

    How do I get 420 on my system?
  3. Get

    Get Guest

    You mean how to download it?
  4. WilliamP

    WilliamP Registered Member

    I saved it to disk. The icon is on my desk top,but how do I open it? I have it now . I have 7 Zip and was able to open it with that. Thank you.
    Last edited: Apr 7, 2007
  5. EP_X0FF

    EP_X0FF Registered Member

    Just fyi, it is archived with WinRAR v3.6 :)
  6. WilliamP

    WilliamP Registered Member

    Thank you. The 7 Zip worked great.
  7. SystemJunkie

    SystemJunkie Resident Conspiracy Theorist

    Hm, one thing is not so good: Code hooks detection takes more time for scanning process then in v.3.30.

    Someone created sleeps or delays, new programmer, new delay, isn´t it? Not good.
    Last edited: Apr 16, 2007
  8. EASTER.2010

    EASTER.2010 Guest

    I notice it too. Considerably slower than it used to run. I can only guess that engine wasn't part of the transfer of ownership and was replaced by a more slower one. Dunno.
  9. coldplay

    coldplay Registered Member

    any comparison to panda antiRK and avg antiRK
  10. SystemJunkie

    SystemJunkie Resident Conspiracy Theorist

    Exactly. That could be a reason.
  11. fcukdat

    fcukdat Registered Member

    I can't remember where i read it(poss now defunct RKU support forum) but Pushick had modified part of the operations to enchance some part of the tool's functionability.This might have been a trade off with reguards slower scan times but IRC the modification(improvement) had EP_X0FF seal of approval.

    Still folks i think your making a fuss about nothing.
    RKU is still the most advanced and effective same drive forensic ARK tool and it is still free:D
  12. SystemJunkie

    SystemJunkie Resident Conspiracy Theorist

    RkU V3.31 is unstable, it crashes. Damn, guys make it better as before.
  13. SystemJunkie

    SystemJunkie Resident Conspiracy Theorist


    This proves the questionability of the latest Rku 3.31 version.

    Rku 3.30 remains stable and does not falsify in contrary to Rku 3.31.

    Something is damnly wrong with Rku 3.31.

    Also related to the ssdt-ntdll.dll Bug of rku 3.31.
  14. Longboard

    Longboard Registered Member

  15. EASTER.2010

    EASTER.2010 Guest

    If i learned anything at all about exciting and useful detection programs, and with any programs for that matter, it's that at some point along the way, eventually updated versions will stumble and maybe even fall hard. That's why i keep "ALL" versions from beta releases on up, safely stored to return to them should that need happen to arise. This is no perfect science by any stretch and seems it requires very sensitive attention to detail, and even then a flaw can crop up. It's just the unmistakable nature from the originators of the Platform we all use. $M Windows
Thread Status:
Not open for further replies.