Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works

Changes in RootRepeal 1.3.5

Version 1.3.5
  • Version 1.3.5 (link)
  • -Added: Bypassing of the latest TDSS variants. See note below for v.1.3.3.
  • -Added: RootRepeal now shows the version on the About page.
  • -Fixed: Some general bug fixes.
  • Version 1.3.4 (link)
  • -Fixed: Fixed multiple compatibility problems with Windows Vista SP2 and Windows Server 2008 SP2.
  • Version 1.3.3 (link)
  • -Added: Bypassing of the newer TDSS variants. Even if errors show on startup, RootRepeal should still run correctly.
  • -Improved: Initialization should now be compatible with all versions of Windows up to Windows Vista SP2, and more configurations.
  • -Improved: Reduced false positives in Stealth Code scan - check the options dialog for more detail.
  • -Fixed: Bug in unhooking DbgPrint callbacks on Windows
  • -Fixed: Initialization bug on Windows Vista SP2.
  • -Fixed: Internal speed improvements.
  • -Fixed: Signature verification should now work correctly.
  • Version 1.3.2 (link)
  • -Added: Kernel-mode callbacks viewer and deleter.
  • -Added: Shadow SSDT scan (with unhooking support).
  • -Improved: Many bug fixes in the NTFS filesystem parser.
  • -Improved: Startup - should be more compatible with additional configurations
  • -Improved: Resource handling.
  • -Improved: RootRepeal whitelists some files in the Stealth Objects scan, to reduce false positives. You can control this in the Options dialog.
  • -Fixed: Memory leak when verifying driver signatures.
  • -Fixed: Multiple bugs in startup and the drivers scan.
  • Version 1.3.0 (link)
  • -Added: Additional disk reading method. Please read the FAQ, above, for more details.
  • -Added: Experimental support for verifying the digital signatures of drivers in the drivers scan.
  • -Added: Advanced options for file removal. Please do NOT use these unless you know what they do!
  • -Added: Tool to wipe/copy/delete any file.
  • -Added: A tool to delete registry keys (and all subkeys/values) that have had the permissions or owner changed. Note: This will not delete rootkit-protected registry keys.
  • -Improved: Safe mode support. RootRepeal now fully supports Safe mode.
  • -Fixed: Major bugs in program initialization and files scan.
  • Version 1.2.3 (link)
  • -Added: Stealth Objects scan (scans for hidden handles, threads, modules, kernel code and IRP handlers)
  • -Added: Hidden Services scan.
  • -Added: RootRepeal can now fix MBR modifications caused by the Mebroot trojan.
  • -Improved: Initialization speed and compatibility.
  • -Improved: Files scan speed.
  • -Improved: Scan speed in the Drivers and Processes scan.
  • -Fixed: Display names in the SSDT scan.
  • -Fixed: Intermittant bug in the files scan.
  • -Fixed: Bugs in handling some FAT32 directories.
  • -Added crashdump reporting. If RootRepeal crashes, it will generate two files: a crash dump text file, and possibly a RootRepeal.dmp file. If you experience a crash, please send me those two files.
  • Version 1.1.2 (link)
  • -Improved: Initialization speed.
  • -Fixed: Bugs in handling certain types of directories on NTFS.
  • -Fixed: "Could not find kernel file on disk" bug on initialization.
  • -Fixed: Bugs in scanning for hidden ADSs on NTFS.
  • Version 1.1.1 (link)
  • -Fixed: Bug in the files scan that causes a crash.
  • Version 1.1.0 (link)
  • -Added: SSDT scan page.
  • -Improved: Process scanning on Windows Server 2003 and Windows Vista.
  • -Improved: Process scan internals on all versions of Windows.
  • -Improved: Speed of the files scan.
  • -Improved: Windows Vista SP0 and SP1 support.
  • -Fixed: Bugs in the process scan.
  • -Fixed: Various small bugs, user-interface bugs.
  • -Fixed: Bypassing certain types of malware.
  • -Fixed: Minor bug while using "Wipe File" on a directory.
  • Version 1.0.2 (link)
  • -Added: Showing whether a driver's file is hidden on-disk.
  • -Added: Saving settings to a file.
  • -Improved: "Report" tab - generating a condensed report.
  • -Fixed: Process scan on Windows 2003 Server SP1+
  • -Fixed: BSoD when starting files scan.
  • -Fixed: Crashes while scanning NTFS partitions.
  • -Fixed: Previously terminated processes showing as "hidden" in the processes scan.
  • -Fixed: Bypassing malware that attempts to prevent raw-disk scanning.
  • -Fixed: User-interface bugs.
  • Version 1.0.0 (link)
  • -Initial release.

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP