"pcbutts1" <pcbutts1@leythosthestalker.com> wrote in message
news:f963ph$si$1@blackhelicopter.databasix.com...
> "Dustin Cook" <spamfilterineffect.see.sig@nowhere.com> wrote in message
> news:Xns9983B2AE42C73HHI2948AJD832@69.28.186.121.. .
>> BugHunter does not edit the registry of the system in any way, it
>> simply identifies and optionally removes found files. As BugHunter
>> relies on dat file technology similar to that of a virus scanner,
>> updates to the datafile and the program itself will be released from
>> time to time on the Website.
>>
>> For NTFS based operating systems, BugHunter can be run from a BartPE
>> cdrom. BugHunter will run under NTFSDOS, but odd results have been
>> reported using it. For example, the date/time stamp of the log file
>> will be wrong. Scanning does not seem to be affected.
>
> That makes it a crappy program. How can you completely remove malware
> without modifying the registry keys they generate? The registry keys are
> what causes re-infection on reboot. my program Remove-it does modify the
> registry it completely removes all targeted malware/Spyware and every
> known variant and it has no problems with NTFS.


How can a registry key cause a re-infection if the files it refers to don't
exist? It is impossible for a registry key by itself to cause an infection.
I guess technically it's possible for a registry key to cause a legitimate
program to execute with a parameter that caused a stack overflow or
something but have you ever seen this? If a re-infection happens on a reboot
there are still some malware files on the computer.

Your program can run from a WinPE environment, load the registry from the OS
on the hard drive, including all the user portions, and remove every trace
of malware? How come we're not all using it? I'd actually pay money for a
program that could do that. I have to do it manually now.

Removing malware registry keys is a nice feature but not required to get rid
of malware.

--
Kerry Brown