I've noticed that a lot of spyware renders itself untouchable by
anti-spyware software by using permissions to protect it's registry
entries. I was thinking of running something like this:
subinacl /subkeyreg HKEY_LOCAL_MACHINE /grant=everyone=f
To allow easier removal. I know that MS recommends that "everyone" not be
given full rights, but I can't really take the time to reset each locked
key, so I figure this would be faster.
What does the collective think?
I also found a program called Danger Tools
http://peter.verhas.com/progs/c/nt/pvt/
that allows me to run a command prompt with System priviledges. Would
running the anti-spyware software from that prompt allow me to bypass the
permissions in the registry?
T
