RogueKiller Changelog

New in version 10.1.0.0

December 11th, 2014
  • Added detections
  • Fixed mbamservice false positive

New in version 10.0.9.0 (December 8th, 2014)

  • Fixed Xpaj false positive with DiskCryptor MBR
  • Added DiskCryptor MBR signature
  • Added detections
  • TrueSight 1.0.4: Better shellcode module detection
  • IAT Hooks: Better shellcode module detection

New in version 10.0.8.0 (November 20th, 2014)

  • Added detections
  • Fixed bug of processes not killed
  • Now process memory is scanned before path scan

New in version 10.0.7.0 (November 20th, 2014)

  • Now process pages are scanned for whitelist
  • Updated Yara engine
  • Added detections
  • Reverted some command line to free version: -nodriver -nokill -nopop -nothirdparty

New in version 10.0.6.0 (November 13th, 2014)

  • Fixed a bug in Process module (not enough rights to get process path)
  • Fixed a bug in AV whitelist detection
  • Added detections

New in version 10.0.5.0 (November 11th, 2014)

  • Now AV processes are whitelisted
  • Added language separator for "Your language here"
  • Added Injected process heuristic detection
  • Fixed bad Zeus signature
  • More aggressive against Poweliks processes
  • Added detections
  • Updated links

New in version 10.0.4.0 (October 29th, 2014)

  • Added link to translations in language menu
  • Added Delay IAT in PE module
  • Added Delay IAT hooks in antirootkit
  • Now IAT hooks are printed to UI as they are scanned
  • Removed ctfmon from sensitive processes
  • Now detects Zeus variants
  • Now informative texts are not elided
  • Better choices (currency/amount) for Paypal form
  • Removed unused resources
  • Improvements in quarantine module
  • Now DNS entries show country IP in text report
  • PREMIUM: Added quarantine handler
  • Added detections

New in version 10.0.3.0 (October 22nd, 2014)

  • New user-agent: Now sends extended vendor names for real time monitoring
  • Added detections

New in version 10.0.2.0 (October 16th, 2014)

  • Added detection of services hidden from SCM and from registry
  • Dropped command line support in free version
  • Removed EAT hooks (useless)
  • Improved IAT hooks scanner (now scans all modules instead of main module)
  • Fixed a bug in driver library (driver could not load under certain circumstances)
  • Added Czech translation
  • Added tooltip with detection level (for colorblind people)
  • Added detections