About the Regedit: You created that to handle a problem in 2009. If you get a malware infection that prevents the executables from running, you need to deal with that, not create a Registry shortcut. Recommend that you delete this.

I need to check some Registry entries:Please run this Custom CFScript:

• 
  [1]. Close any open browsers.
  [2]. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
  [3]. Open notepad> click on Format> Uncheck 'Word Wrap'> and copy/paste the text in the code below into it:Be sure to scroll down to include ALL lines.

Code:

File::
RegLock::
[HKEY_USERS\S-1-5-21-3934910652-234392554-2896648687-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserC hoice]
[HKEY_USERS\S-1-5-21-3934910652-234392554-2896648687-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserC hoice]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Save this as CFScript.txt, in the same location as ComboFix.exe


Referring to the picture above, drag CFScript into ComboFix.exe

When finished, it will produce a log for you at C:\ComboFix.txt . Please paste in your next reply.
====================
Is the Security Center still running okay? One of the locked Registry entries I'm checking is:
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)

I have not been able to identify this entry.

Due to inactivity, this thread is being closed. If you still have the problem, please send me a PM and include the URL http://www.techspot.com/vb/topic163156-2.html to have the thread reopened.