I hate to see rootkits begin to elevate to "kiddie" status. First the overlong registry key name invisibility trick, now $sys$. Soon, anyone will be able to hide code from Windows.

Yet, no patches from Microsoft to fix this. They don't think its a problem. (someone please prove me wrong and show a link at least to the reg key name hack.)

I swear, the only hope for high security lies in hardware which monitors the hard drive, ram, and processor. If those components do something the hardware monitor doesn't expect (based on rule sets describing what the user expects), it logs and/or blocks the action.