hayc59 tipped me off that you folks had a thread here. Thanks G. My only report is that I've been using it since the beginning. No problems and it has found nothing.
I received the identical warning to the guy on post #26 and proceeded to delete the registry key. The key is installed by Adobe Acrobat 9.0 Professional (at least in my case) and it broke the install. I am running the latest version of MBAR 1.01.0.1011.
Thank you for the feedback. Though Microsoft has said for a long time now that this feature should not be used there are still software vendors that do use it but you find much more abuse by malware than legit vendors. Even in XP, Microsoft says this is bad practice and may not be supported in future versions of Windows. AppInit_DLLs in Windows 7 and Windows Server 2008 R2 Hopefully we'll come up an update on this issue in a future build before release. Just a reminder that it is still beta software and anyone using it should be taking proper precautions to ensure the safety of their machine before using it. Thank you
Group Policy Hardening: disable turning off System restore = false positive Please check on value, enabled should be reported, not disabled, thanks
Within the MBAR folder there is the ReadMe.rtf file with explanations. Bleeping Computer has a Tutorial as well: how to use malwarebytes anti-rootkit
I also got the AppInit_DLLs warning with the latest version. The scan completes fine without removing this registry entry, and results come back clean anyway. When I search in regedit for this entry it cannot be found, still the MBAM Anti-rootkit tells me that it's there. I suspect this may be because of Rollback RX but I'm not sure. I just ran the scan again and opted to delete the entry, I will now reboot to see if something stops working. Any opinions would be welcome! PS: I just rebooted and everything seems to be fine. All my programs function as normal. I don't know why that entry was there in the first place. My computer has never been infected, I'm actually quite paranoid about my security setup...