Start::
CreateRestorePoint:
VirusTotal: C:\Program Files (x86)\UVaoM.exe;C:\Program Files (x86)\Common Files\ouuAOzo.exe;C:\Users\OLEG\AppData\Local\pcc.exe;C:\Users\OLEG\jQYoVEiaUOosd.exe;C:\Users\OLEG\AppData\Local\pcc.exe
HKU\S-1-5-21-1852546007-4047479139-3619749950-1004\...\MountPoints2: {b8e2454c-bc2c-11e7-9465-c8d3ffe4f367} - "F:\setup.exe"
GroupPolicy: Restriction <==== ATTENTION
GroupPolicy\User: Restriction <==== ATTENTION
2018-02-22 16:10 - 2018-02-22 16:10 - 003174912 _____ C:\WINDOWS\msime.exe
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {362296B9-6D60-45CC-9680-7F0CE4A70698} - no filepath
1624-02-24 06:22 - 1624-02-24 06:22 - 000059904 ____N (Microsoft Corporation) C:\Users\OLEG\jQYoVEiaUOosd.exe
1624-02-24 06:22 - 1624-02-24 06:22 - 000174592 ____N (Microsoft Corporation) C:\Program Files (x86)\UVaoM.exe
1624-02-24 06:22 - 1624-02-24 06:22 - 000059904 ____N (Microsoft Corporation) C:\Program Files (x86)\Common Files\ouuAOzo.exe
2018-01-31 13:43 - 2018-01-31 13:49 - 050090848 _____ (Sony) C:\Users\OLEG\AppData\Local\pcc.exe
2018-02-21 21:48 - 2018-02-21 21:48 - 002623160 _____ () C:\Users\OLEG\AppData\Local\Temp\hcv_mailruhomesearch (1).exe
2018-02-21 21:49 - 2018-02-21 21:49 - 002623160 _____ () C:\Users\OLEG\AppData\Local\Temp\hcv_mailruhomesearch (2).exe
2018-02-21 21:49 - 2018-02-21 21:50 - 002623160 _____ () C:\Users\OLEG\AppData\Local\Temp\hcv_mailruhomesearch (3).exe
2018-02-21 21:48 - 2018-02-21 21:48 - 002623160 _____ () C:\Users\OLEG\AppData\Local\Temp\hcv_mailruhomesearch.exe
2018-02-21 21:49 - 2018-02-21 21:49 - 002309672 _____ () C:\Users\OLEG\AppData\Local\Temp\im_installer.exe
2018-02-21 21:49 - 2018-02-21 21:49 - 000707065 _____ (ZRFXRD ) C:\Users\OLEG\AppData\Local\Temp\Installer.exe
2018-02-21 21:49 - 2018-02-21 21:49 - 003815936 _____ () C:\Users\OLEG\AppData\Local\Temp\installer_mi.exe
2018-02-21 21:48 - 2018-02-21 21:48 - 000572408 _____ (Mail.Ru) C:\Users\OLEG\AppData\Local\Temp\LiteDistrib.exe
2018-02-21 21:50 - 2018-02-21 21:50 - 002623160 _____ () C:\Users\OLEG\AppData\Local\Temp\mailruhomesearch.exe
2018-02-21 21:50 - 2018-02-21 21:50 - 000882936 _____ (DLTG ) C:\Users\OLEG\AppData\Local\Temp\mkt3.exe
2018-02-21 21:51 - 2018-02-21 21:51 - 002004480 _____ (Calculator) C:\Users\OLEG\AppData\Local\Temp\Setup.exe
EmptyTemp:
Reboot:
End::