ComboFix 13-10-09.01 - pastucha 2013-10-12   0:45.1.4 - x86
Microsoft Windows 7 Home Premium   6.1.7600.0.1252.1.1033.18.1012.570 [GMT -7:00]
Running from: G:\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Created a new restore point
.
.
(((((((((((((((((((((((((   Files Created from 2013-09-12 to 2013-10-12  )))))))))))))))))))))))))))))))
.
.
2013-10-12 08:21 . 2013-10-12 07:36	--------	d-----w-	c:\windows\Panther
2013-10-12 07:53 . 2013-10-12 07:53	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-10-12 07:41 . 2013-10-12 07:44	--------	d-----w-	c:\windows\system32\wbem\Performance
2013-10-12 07:36 . 2013-10-12 07:37	--------	d-----w-	c:\users\pastucha
2013-10-12 07:36 . 2013-10-12 07:36	--------	d-----w-	C:\Recovery
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - FASTFAT
*NewlyCreated* - VOLSNAP
.
.
------- Supplementary Scan -------
.
TCP: DhcpNameServer = 172.31.79.142 172.31.79.144 157.54.104.75 157.54.14.146 157.54.14.162 157.54.80.10
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-10-12  00:55:52
ComboFix-quarantined-files.txt  2013-10-12 07:55
.
Pre-Run: 46 006 591 488 bytes free
Post-Run: 45 818 994 688 bytes free
.
- - End Of File - - BBD7AA7557E4117455908DB029EB6115
A36C5E4F47E84449FF07ED3517B43A31