Key features
* Scans running processes, windows registry and local hard drives for rootkits.
* Identifies known rootkits and selects, by default, files for removal which will remove the rootkit component of the malware without compromising OS integrity.
* Allows users to remove unidentified hidden files, but does not allow removal of essential system files when hidden by an identified rootkit.
* Once the user has run a scan, the screen prompts the user through the necessary steps until every rootkit has been removed.
* Users can switch between the GUI and command-line functionality.
* Both context sensitive and command-line help are available.
Changelog:
* Enhanced detection and cleanup facilities.
* Users can install and uninstall Sophos Anti-Rootkit using standard Windows procedures (i.e. the Windows Start menu, and the Windows Add/Remove Programs menu option).
* The file sarscan.log is cumulative and is timestamped. The file sarclean.log is cumulative and is not timestamped.
