can't get rid of "DisableRegedit"

Welcome to Majorgeeks!

You have not completed ALL the steps in the READ & RUN ME sticky thread.

Settings like you are mentioning are often just configure by software that you are using to block various malware. Check your settings. Otherwise complete ALL steps in the READ & RUN ME and attach the logs like it requests.

 

You skipped part of step 0 in the read where it talks about emptying quarantine folders. You did not empty the below:

C:\Documents and Settings\All Users\Application Data\Authentium\Curtains150\Quarantine\Quarantine

Panda only shows the above and some cookies for multiple user accounts. Bitdefender fixed what it found.

Did someone actually install AdwareAlert is it just the trial version? This used to be considered a rogue tool and I'm not sure it is of much value to have on your PC wasting resources. If it is a trial version, you should definitely uninstall it.

Who's PC is this? I see multiple user accounts!
And who is the administrator and owner?

Please run the below tool which run very quickly and attach the runkeys.txt log.

Using GetRunKey

 

Do the below (use your hack first if necessary).

Copy the bold text below to notepad. Save it as fixme.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.

Now reboot! After reboot, delete the below folder:
C:\Program Files\AdwareAlert

Now tell me if you are still having problems.

 

You have this installed: http://www.authentium.com/products/curtains.htm

Perhaps you need to check how it is configured. Maybe it is locking this setting.



Let's get a Startup List with HijackThis.

• Run HijackThis, click Open the Misc Tools section
• Put a check in the List also minor sections (full) check box.
• Now click the Generate StartupList Log button.
• This will create a file named startuplist.txt in the same folder that HijackThis is installed into.
• Also a notepad file will open with this startuplist in it.
• Attach the startuplist.txt file to your next message.

Let's get an installed programs list from HijackThis too!

• Run HijackThis, click Open the Misc Tools section
• Click Open Uninstall Manager
• Click Save List (generates uninstall_list.txt)
• Click Save, to save it to a file where you can find it.
• Attach the uninstall_list.txt file to your next message.

 

I know what it is! I was just wondering if something related to it could be causing this locking of of the registry. You said you have no problem in safe mode. Does this software run in safe mode? Are you logging into the same user account in safe mode?

Maybe you should try uninstalling this software to see what happens. Right now your problems do not appear to be malware related.



Below are a couple comments having nothing to do with your problems. They are just a heads up:

You have old versions of the below two programs installed. Get the new versions from the given links:
BitComet 0.59 ----> BitComet 0.64Mozilla Firefox (1.5) ----> Mozilla Firefox 1.5.0.2


Also the below should be uninstalled since you already have the current 5.0 Update 6 installed.
J2SE Runtime Environment 5.0 Update 3

 

I knew it had to be behind your problem!