I tried the first suggestion of adding my sites to the trusted sites in ie8 properties. That didn't appear to work.
I installed Malwarebytes and ran the program. Here are the logs.
Malwarebytes' Anti-Malware 1.39
Database version: 2526
Windows 5.1.2600 Service Pack 3
7/29/2009 11:45:50 AM
mbam-log-2009-07-29 (11-45-50).txt
Scan type: Quick Scan
Objects scanned: 100008
Time elapsed: 6 minute(s), 56 second(s)
Memory Processes Infected: 1
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 2
Folders Infected: 0
Files Infected: 3
Memory Processes Infected:
C:\Program Files\AntiMalware\AntiMalware.exe (Rogue.RegTool) -> Not selected for removal.
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Folders Infected:
(No malicious items detected)
Files Infected:
C:\Program Files\AntiMalware\AntiMalware.exe (Rogue.RegTool) -> Not selected for removal.
C:\WINDOWS\mywinsys.ini (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\RECYCLER\ADAPT_Installer.exe (Heuristics.Malware) -> Quarantined and deleted successfully.
Malwarebytes' Anti-Malware 1.39
Database version: 2534
Windows 5.1.2600 Service Pack 3
7/30/2009 10:29:23 PM
mbam-log-2009-07-30 (22-29-23).txt
Scan type: Quick Scan
Objects scanned: 102704
Time elapsed: 9 minute(s), 45 second(s)
Memory Processes Infected: 1
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
C:\Program Files\AntiMalware\AntiMalware.exe (Rogue.RegTool) -> Unloaded process successfully.
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
C:\Program Files\AntiMalware\AntiMalware.exe (Rogue.RegTool) -> Quarantined and deleted successfully.
How did you know this was a Rogue malware tool? . Do I uninstall the RegTool and Antimalware?
Edited by bellamente, 30 July 2009 - 10:46 PM.