Regtool - "ScareWare" Cleaner

Regtool has been confirmed as a fake registry cleaning application and comes with a very high threat level. This rogue application is normally downloaded manually from its website or through some malicious websites - without your consent. Do not be impressed by its claim of being an ‘award winning’ registry cleaner with advanced tools. It falsely claims to clean your registry, optimize the browsing ability of your system, remove junk files, de-fragment your registry, and much more.

All it does, however, is worm itself into your system and deluge your system with fake registry errors. Once installed, it hijacks your homepage and may keep on redirecting you to its domain urging you to purchase their worthless junk software to help you fix the errors in your registry. This fake application shows a lot of fake errors, such as:

 

·        98 Registry problems on your PC

·        2 junk files on your PC

·        288 privacy concerns have been found

·        840 bad ActiveX items are not blocked

·        12 performance features are not optimized

 

There is probably nothing wrong with your system and being coerced or scared into buying this product may land you in further problems.

 

Do not purchase any further application from Regtool once your system has been affected by their so-called registry cleaning application. Just remove this application from your system at the earliest opportunity.

 

Symptoms Of Regtool Infection

 

·        Regtool completely slows down your PC’s speed. Once infected, your system takes longer to startup and longer still to get connected to the Internet.

·        It interferes with your Internet settings and may take over as your homepage, or may redirect it to unwanted sites.

·        The malicious tool also adds new shortcuts to the desktop of your computer.

·        Annoying advertisements keep on popping up at you, even when you are offline.

·        Regtool may hijack your mailbox and send hoax, malicious, and unsolicited emails to others in your name.

 

While embedded in the background, this malware program tracks your browsing habits and collects all your personal information. RegTool is an extremely dangerous application that should be removed immediately.

 

When removing RegTool, you will have to remove all information about the tool from your system. This includes files, folders, registry keys, and registry values.

 

The best way to rid yourself of this fake application is to download a good anti-spyware application which will remove Regtool automatically with very little interaction from you. This is best if you are a non-techie with very little knowledge of how the system works.

 

There are, however, many users who will wish to remove it manually. Only try this if you actually know what you are up to.

 

Let our team of experts explain how it is to be done manually.

 

Manually Removing Regtool

 

Here are the steps for manual removal of RegTool:

 

1.      Start by uninstalling Regtool from your computer. Through the ‘Start’ button on the left bottom of your screen go to ‘Settings,’ and then to ‘Control Panel.’ Double-click on ‘Add/Remove Programs’ button and then choose to uninstall Regtool if you see it there.

 

2.      Next, you need to remove the Regtool .exe and .dll files.

 

a.       The Regtool files to be removed are:

 

§         RegTool Scan.job

§         RegTool.lnk

• regtool.exe
• regtool5.dll

 

 

b.      The Regtool folders are:

 

§         [%APPDATA%]\RegTool

§         [%PROGRAM_FILES%]\RegTool

§         [%WINDOWS%]\Installer\{77817E99-59F1-4F76-ACD2-0BEF99045E59}

§         [%PROGRAM_FILES%]\Downloaded Installers\{77817E99-59F1-4F76-ACD2-0BEF99045E59}

§         [%LOCAL_SETTINGS%]\RegTool

 

To remove these files are folders, click on ‘Start’ again and then select Search. Here, search for the RegTool files are folders listed above. When detected, right-click and then select Delete to remove them from your computer.  

 

3.      Next, you need to stop the RegTool processes:

 

a)      Click the ‘Start’ button and then click ‘Run’.

b)      In the Open box that appears, type ‘taskmgr’ and then press Enter to open Task Manager.

c)      Next, open the ‘Processes’ tab.

d)      Search for all .exe files related to Regtool from the list of processes that appear.

e)      Right-click on each of them and click on ‘End Process’.

 

4.      Just like all other software on your computer the fake registry application Regtool, along with all malware, spyware and adware it installs on your computer, also adds several malicious entries and file references to your Windows registry.  These entries not only enable RegTool and other malware programs related to it to launch at system startup, but also enables them to carry out their malicious activities on your system. To get rid of RegTool, you need to remove all the registry keys and values associated with this fake application.

 

Warning: Registry-health is essential for your computer and any incorrect edits to it can leave your PC unbootable. This is why we highly recommend that you make a backup of your registry before you try to make any changes to it.

 

a)      Click the ‘Start’ button and then select ‘Run’.

b)      In the ‘Open’ box, type ‘regedit’ and then click ‘OK’ to open the Registry Editor tool.

c)      In the ‘Registry Editor’ window, look for the following Regtool registry keys and values:

 

§         HKEY_LOCAL_MACHINE\SOFTWARE\RegTool

§         HKEY_CURRENT_USER\SOFTWARE\RegTool

§         HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{77817E99-59F1-4F76-ACD2-0BEF99045E59}

§         HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, RegTool=[%PROGRAM_FILES%]\RegTool\ RegTool.exe –boot

§         HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, RegTool=[%LOCAL_APPDATA%]\Ares\My Shared Folder\ANTIVIRUS\ANTIVIRUS\regtool.exe -boot

 

The ‘Registry Editor’ window has two panes. The left pane displays all the registry keys, and the right pane displays its corresponding value. You need to delete each key or value individually. For this, right-click the entry, and then select ‘Delete’. When prompted, confirm the deletion by selecting ‘Yes’.

 

Removing the Regtool application is an unwieldy and a difficult process. There is no guarantee that all the malware and other rogue elements present have been completely removed. Certain files may be hidden and may reanimate themselves later. In addition, unless you know what you are doing, the manual interference may damage the system further.

 

To avoid further damage and system malfunction, and to ensure that the required result is achieved, our technical team strongly recommends that you use a good and powerful anti-spyware application to remove Regtool.

 

You may also use another genuine and reliable registry cleaner tool to perform a thorough scan of the registry and get rid of all malicious data added by RegTool.

Useful Links:

http://remove-malware.net/how-to-remove-regtool-fake-security-program/

http://www.malwarebytes.org/forums/index.php?showtopic=14443

http://www.emsisoft.com/en/malware/?Adware.Win32.RegTool

Return to the Registry Cleaners Guide

Text copyright 2008-2009 RegistryCleanersInfo.com and may not be reproduced without consent. This is not the official web page of any of the products listed on this site, this is a review page created by an individual. The opinions on this page are the opinions of the author alone.