Start::
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-2077671028-3459961108-1282865966-1001\...\Run: [Chromium] => "c:\users\rayan\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction
HKU\S-1-5-21-2077671028-3459961108-1282865966-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.accueil-nav.com/ 
SearchScopes: HKU\S-1-5-21-2077671028-3459961108-1282865966-1001 -> DefaultScope {2B19DB12-7F73-4A76-8F1E-2941D524B5E0} URL = hxxp://www.accueil-nav.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2077671028-3459961108-1282865966-1001 -> {2B19DB12-7F73-4A76-8F1E-2941D524B5E0} URL = hxxp://www.accueil-nav.com/search?q={searchTerms} 
Edge HomeButtonPage: HKU\S-1-5-21-2077671028-3459961108-1282865966-1001 -> hxxp://www.accueil-nav.com/ 
Edge Notifications: HKU\S-1-5-21-2077671028-3459961108-1282865966-1001 -> hxxps://www.facebook.com; hxxps://sauwoaptain.com; hxxps://yakrl.mdhok.pro 
CHR Notifications: Default -> hxxps://sauwoaptain.com
CHR StartupUrls: Default -> "hxxp://www.google.fr/","hxxp://www.accueil-nav.com/"
C:\Users\Rayan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhoagceacaklimpcejjofabngcjkebfg
C:\Users\Rayan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nccfgpamboionigdpfjmijhlgmgdbael 
CHR HKLM\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg] 
CHR HKLM\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael]
CHR HKU\S-1-5-21-2077671028-3459961108-1282865966-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg] 
CHR HKU\S-1-5-21-2077671028-3459961108-1282865966-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael]
CHR HKLM-x32\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg] 
CHR HKLM-x32\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael] 
2020-03-10 02:27 - 2020-03-10 02:27 - 000000000 ____D C:\ProgramData\ByteFence 
2020-03-09 21:56 - 2020-03-09 22:04 - 000000000 ____D C:\Program Files (x86)\Chromium
2020-03-09 21:55 - 2020-03-11 02:31 - 000000000 ____D C:\Program Files (x86)\Digital Communications 
c:\users\rayan\appdata\local\chromium
EmptyTemp:
End::