Registry Editor Is Requesting Your Permission......

Hello - I thankfully haven't needed any assistance for a couple years, but it's great to have a forum like this when things do come up that I'm unable to figure out. Thank you for this forum!

Yesterday evening I received an email with an attachment "Payment Receipt.jpg.jar" I was expecting a receipt from an online purchase, so I clicked on the attachment. After clicking on the link my AVG antivirus warned me about the file and put it in quarantine. After AVG's prompt to run a full scan I did. It didn't come up with anything new. After a reboot, I now have a flashing Windows Flag in the bottom task section of the screen with the message " Registry Editor Is Requesting Your Permission". When I click on the flag a dialog box opens asking "Do you want to allow the following program to make changes to your computer?" "Program Name: Registry Editor", "Verified Publisher: Microsoft Windows". When "show details" is clicked "Program Location: "C:\windows\SysWOW64|regedit.exe" /s" and C:\users\steve\appdata\local\temp\1RX.....(a reg edit temp file in that folder) is displayed. If I click "show information about this publisher's certificate" a box opens with certificate info for window's driver verification.

I spent a good portion of this afternoon in Windows Safe Mode with Networking and ran a complete AVG scan, MalwareBytes scan, did a CClean, Softpedia remove fake antivirus scan, Super Anti Spyware scan, and another MalwareBytes and AVG after all of the above. Currently the file mentioned in the Windows flag message is not in the temp file. I'm assuming it was removed in one of the above scans/cleans. Other than the flashing flag, everything appears to be working fine on the computer. Before running all the scans/cleans, it seems like it took a very long time to get connected to network, but that could have been my imagination.

To be honest, I don't even know if this Windows flag message is related to the infected email, but the flag popped up right after. I have NOT clicked on the YES button in the flagged message as I don't want to let something be installed or changed that is going to create more problems. But I do want to get rid of the flashing flag message if possible.

This is on a HP Pavilon Desktop running Windows 7 Professional.

Please let me know if you need any additional info or details, and thanks in advance for any assistance you can offer.

Steve

It is good to know, when searching the forums are the answers. Great forum ... going to your detail, what you should do is look for processes in the background to verify that there are processes with rare names "with the name malicious", if it is running in the background if so disable after that, Then or before that if it is the registry editor make a backup of the registry by locating it in your preferred storage hard disk and second backup in the cloud ... it scans so Safe mode to see if it is a bug or could match some Of your programs the emergency window right in the taskbar.

Observe the following tutorial


Observe the following tutorial.

Registry backup - turorial

Thank you for the help and recommendation. After following the tutorial and a reboot, the Windows flag is gone!