I just wanted to try the ability of CIS built-in TasK Manager to detect hidden rootkit processes. It,s not a test as I don,t have samples. Just found out phide_ex.exe rootkit. It,s a load of BSODs but after multiple tries I managed to run it in a vmware player session without any BSOD. TaskManager of CIS detected it ( hidden process) very well. Hidden process is also dectected by Gmer but not ProcessExplorer. Just wanted to share it. It was better if they could label the process hidden as well.