v1.1.0.97RC
ESET SysInspector v1.1.0.97RC contains the following differences:
New Features:
• Added detection of master boot record (MBR) infecting rootkits, such as Win32/Mebroot, to anti-stealth device driver.
• Added information about objects detected by anti-stealth device driver, such as registry entries, services and drivers.
• Added listing of hidden processes located by anti-stealth device driver.
• Added anti-stealth device driver which dynamically loads at runtime to detect rootkits and other hidden objects. Items detected using the driver will be assigned a risk level of "9" and shown in red.
• Added ability to compare two log files (specify two log files on the command line to compare, or run ESET SysInspector and select File→Compare Log from the main menu to compare against the currently-displayed log file).
• Added command line option /SILENT to suppress display of the progress bar when generating reports.
• Added command line option /BLANK to start ESET SysInspector without creating (or loading) a log file
• Added Cancel button in Save Log File dialog.
• Added PID number to listed processes.
• Added Owner to listed processes.
• Added information about associated extensions to Registry/Shell Open Commands.
• Added display of services' states (running, stopped) to Services listing
• Added full information about Windows version (instead of just build number).
• Added display of logical drives and their capacity.
Changes:
• Rewrote Processes section.
• Rewrote collector/gatherer logic for services and drivers to display information for all drivers.
• Changed the default format used to save the log file from XML to ZIP-compressed XML (can still be opened by dragging saved XML or ZIP file onto program shortcut).
• Changed default log file name from "SystemStatusLog" to quot;SysInspector-%COMPUTERNAME%-YYMMDD-HHMM."
• Changed license agreement behavior to now display each time program is run (skipped if EULA file is present in the same folder as the ESET SysInspector program file).
• Changed information displayed in About dialog.
• Changes to user interface:
· Some nodes now only show parents by default (Processes, File Details, Shell Open Commands and so forth) to improve readability.
• Separated display of local-remote information in Network Connections to improve readability.
· Cleaned up user interface to fix small issues with font sizes, location of displayed text and so forth.
Fixes:
• Fixed bug with listing modules under 64-bit versions of Windows
• Fixed bug in evaluation of Network Connections
• Fixed problem with not loading .ZIPped log files when dragged-and-dropped onto an ESET SysInspector shortcut.
• Fixed problem with reporting more than 4GB of memory on 64-bit systems.
• Fixed problem with viewing log files when ESET SysInspector is started using the SendTo item from the context menu
• Fixed flickering when resizing ESET SysInspector's display window.
Known issues:
• Not all processes listed in Network Connections have .EXE file information listed.
• Display bug in column listing process owners.
• ESET SysInspector does not evaluated itself when run from a network share.
• ESET SysInspector does not run under Windows Server 2008 Core.
v1.0.0.3
ESET SysInspector v1.0.0.3 contains the following differences:
• initial release
REV.20080412-1301AG
