RkUnhooker v3.31 released

Discussion in 'other anti-malware software' started by StevieO, Apr 7, 2007.

Thread Status:
Not open for further replies.
  1. StevieO
    Offline

    StevieO Registered Member

    Fixed: bug with Notify Routines and Code Hooks Detector, thanks to FlowerCode
    Fixed: drivers identification bug

    Updated: ILHA to bypass some user mode rootkits with patch-protection technology

    Added: bypassing of locking of the system files by some rootkits
    Added: UNC full support for Files Scan / Operations (should eliminate some old bugs)

    $h3||(0d3 entering the team :)

    RkU3.31.150.420.exe - 147kb

    MD5 - 1FC261BE43D1119B4F627B18578759B3

    http://rkunhooker1.narod.ru


    StevieO
  2. WilliamP
    Offline

    WilliamP Registered Member

    How do I get 420 on my system?
  3. Get
    Offline

    Get Guest

    You mean how to download it?
  4. WilliamP
    Offline

    WilliamP Registered Member

    I saved it to disk. The icon is on my desk top,but how do I open it? I have it now . I have 7 Zip and was able to open it with that. Thank you.
    Last edited: Apr 7, 2007
  5. EP_X0FF
    Offline

    EP_X0FF Registered Member

    Just fyi, it is archived with WinRAR v3.6 :)
  6. WilliamP
    Offline

    WilliamP Registered Member

    Thank you. The 7 Zip worked great.
  7. SystemJunkie
    Offline

    SystemJunkie Resident Conspiracy Theorist

    Hm, one thing is not so good: Code hooks detection takes more time for scanning process then in v.3.30.

    Someone created sleeps or delays, new programmer, new delay, isn´t it? Not good.
    Last edited: Apr 16, 2007
  8. EASTER.2010
    Offline

    EASTER.2010 Guest

    I notice it too. Considerably slower than it used to run. I can only guess that engine wasn't part of the transfer of ownership and was replaced by a more slower one. Dunno.
  9. coldplay
    Offline

    coldplay Registered Member

    any comparison to panda antiRK and avg antiRK
  10. SystemJunkie
    Offline

    SystemJunkie Resident Conspiracy Theorist

    Exactly. That could be a reason.
  11. fcukdat
    Offline

    fcukdat Registered Member

    I can't remember where i read it(poss now defunct RKU support forum) but Pushick had modified part of the operations to enchance some part of the tool's functionability.This might have been a trade off with reguards slower scan times but IRC the modification(improvement) had EP_X0FF seal of approval.

    Still folks i think your making a fuss about nothing.
    RKU is still the most advanced and effective same drive forensic ARK tool and it is still free:D
  12. SystemJunkie
    Offline

    SystemJunkie Resident Conspiracy Theorist

    RkU V3.31 is unstable, it crashes. Damn, guys make it better as before.
  13. SystemJunkie
    Offline

    SystemJunkie Resident Conspiracy Theorist

    http://i8.tinypic.com/4kjmnol.png

    This proves the questionability of the latest Rku 3.31 version.

    Rku 3.30 remains stable and does not falsify in contrary to Rku 3.31.

    Something is damnly wrong with Rku 3.31.

    Also related to the ssdt-ntdll.dll Bug of rku 3.31.
  14. Longboard
    Offline

    Longboard Registered Member

  15. EASTER.2010
    Offline

    EASTER.2010 Guest

    If i learned anything at all about exciting and useful detection programs, and with any programs for that matter, it's that at some point along the way, eventually updated versions will stumble and maybe even fall hard. That's why i keep "ALL" versions from beta releases on up, safely stored to return to them should that need happen to arise. This is no perfect science by any stretch and seems it requires very sensitive attention to detail, and even then a flaw can crop up. It's just the unmistakable nature from the originators of the Platform we all use. $M Windows
Thread Status:
Not open for further replies.