CreateRestorePoint:
CHR StartupUrls: Default -> "hxxp://houmpage.com/?src=nt&ssid=1451060996&a=1003801&uuid=3fc049e9-2b23-4b91-921d-a263fc6b2eee"
CHR DefaultSearchURL: Default -> hxxp://houmpage.com/search/?src=ds&q={searchTerms}&ssid=1451060996&a=1003801&uuid=3fc049e9-2b23-4b91-921d-a263fc6b2eee
CHR DefaultSearchKeyword: Default -> g
2015-03-09 13:30 - 2015-03-09 13:30 - 0005487 _____ () C:\Users\BR\AppData\Roaming\BYAIAMUF
2015-01-25 08:12 - 2015-01-25 08:12 - 0002086 _____ () C:\Users\BR\AppData\Roaming\GNOK
Task: {075A7F1D-3A43-4054-8D5A-D102A8F4442A} - System32\Tasks\{410CCC64-E636-4240-9A70-8EF172796611} => pcalua.exe -a C:\Windows\Installer\{1570DEC4-94DE-493E-8E34-BD382B813BAA}\NewShortcut21_8693CCF9731C4DD9B4AEAE59063B04A4.exe -d "C:\Program Files (x86)\Mozilla Firefox" -c C:\Users\BR\AppData\Local\Temp\Dragon-3.dxf
Reg: reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
Reg: reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
Reg: Reg Delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg" /F
RemoveProxy:
EmptyTemp:
CMD: bitsadmin /reset /allusers