The simple way to do it is using Windows PE boot CD for checking a computer.
But how often you will do it?
Sometimes: May be one time per week, may be not.
It′s not enough!
The rootkit can start his work today or tomorrow. This why you need a way to quickly check a computer for rootkits without luck.
We can offer you to check your computer every Windows boot-up!
But rootkits are not invulnerable!
The simple way to kill a rootkit is to shutdown your computer.
A rootkit can revive after reboot using:
The second chance is not the simple because the user can control the file integrity using Microsoft or another software.
Third chance is more often used. But rootkit detectors easily detect it.
The fake Winlogon DLLs are not the surprise for us very long ago :-)
The hidden kernel driver is the top of the hacker skills. This is one reason why the Partizan was created.
Unfortunately Microsoft prevents Partizan for interacting with user using keyboard and it is a real problem for creating the shell like "cmd". Why they don′t?
I think you need ask Microsoft.
Anyway it′s not a technical problem. It′s the Microsoft decision.
We need to get a workaround.
We use the command file (RRI). Partizan opens the command file and executes the tasks listed in it. After that the Windows boot will continue.
RegRun Platinum Secure Start will run the special copy of UnHackMe software for comparing Partizan information with current visible. It will be notify you if it found something suspicious.
To be sure that it′s not false positive alert you will be prompted to reboot again. It′s required because the some services drivers may be deleted at startup and this will cause the alarm.
What you need to do in this case?
If you have enough computer skill to use professional tools included to the RegRun Platinum - OK, you can do it. If not, you can send detailed system report to the Greatis Support center: http://greatis.com/support and we will send the special file for auto cleaning your computer. The service is free for RegRun′s users.