Howto discover stealth software hidden files

I was prying around MS Research Site and I found this interesting article that explain a simple method to detect if there are hidden files installed by stealth programs such as RootKits, Trojans, and Keyloggers.

Basically it create a list of all the files when operating system is running (and stealth sw can make them invisible) and then it compare it with a list created when the system was started from a Live CD distribution.
Tags:

About author

Vittorio Pavesi