Defrag Tools #108 - Sysinternals SysMon - Mark Russinovich

Play Defrag Tools #108 - Sysinternals SysMon - Mark Russinovich

The Discussion

  • User profile image

    There's one (obvious) thing sorely missing from the tool but as you said, if it was implemented then it might become something the malware authors would anticipate. Now they might not bother.

    Stronger approach would be to have MS ship Windows with some sort of rootkit-detection dongle that had eg. USB port with debug ability and a network or wifi for getting updates externally to the rootkit detection algos without going through the compromised system.

  • User profile image

    Great tool. Already been using it but always nice to see the developers giving some detail about it. And more features on the way... good stuff!

  • User profile image

    Thanks for providing this tool outside of Microsoft!!

Add Your 2 Cents