Real quick: Great article by Mark Russinovich on how he finds a Sony DRM root-kit on his system. That guy is a great hacker. It would have taken me 10x longer to pull off what he did, and I have most of those tools (except for the Kernel debugger/windbg harness).
Note: Try to pull this off in Windows without Sysinternal’s tools. Try to pull off this kind of introspection in any other OS. The message: other OS’s better get their tools up to snuff or the DRM storm will overcome them.
Note 2: Wouldn’t it be cool to do that kind of detective work for a living wage?