[MD5.4C260DE6B554A670546578426BB0C604] - (...) -- C:\Documents and Settings\All Users\Application Data\BrowserProtect\2.5.1005.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe [2469992] [PID.656]
M3 - MFPP: Plugins - [Administrateur] -- C:\Documents and Settings\Administrateur.POST\Application Data\Mozilla\Firefox\Profiles\o17pv9u1.default\searchplugins\babylon1.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Documents and Settings\Administrateur.POST\Application Data\Mozilla\Firefox\Profiles\o17pv9u1.default\searchplugins\BrowserProtect.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Documents and Settings\Administrateur.POST\Application Data\Mozilla\Firefox\Profiles\o17pv9u1.default\searchplugins\utorrentbarfr-customized-web-search.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Documents and Settings\Administrateur.POST\Application Data\Mozilla\Firefox\Profiles\o17pv9u1.default\searchplugins\Web Search.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\babylon.xml
M2 - MFEP: prefs.js [Administrateur - o17pv9u1.default\ffxtlbr@babylon.com] [] Babylon Toolbar v1.5.0 (.Babylon.)
M2 - MFEP: prefs.js [Administrateur - o17pv9u1.default\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}] [] uTorrentBar_FR v10.13.40.15 (.Conduit Ltd..)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://search.conduit.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
http://www.searchamong.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs =
http://search.babylon.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
http://www.searchamong.com O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (...) -- F:\Utilitaires\Logiciels\IDM\crack\IDMIECC.dll (.not file.) =
O2 - BHO: uTorrentBar_FR - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\uTorrentBar_FR\prxtbuTor.dll
O2 - BHO: SearchAmong Toolbar - {0E1230F8-EA50-42A9-983C-D22ABC2EED3B} . (.Pas de propriétaire - SearchAmong Toolbar.) -- C:\Program Files\SearchAmong Toolbar\SearchAmongToolbar.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} . (.Babylon BHO - Pas de description.) -- C:\Program Files\BabylonToolbar\BabylonToolbar\1.8.7.2\bh\BabylonToolbar.dll
O2 - BHO: Setuprog Toolbar - {f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Setuprog\tbSetu.dll
O3 - Toolbar: Setuprog Toolbar - [HKLM]{f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Setuprog\tbSetu.dll
O3 - Toolbar: uTorrentBar_FR Toolbar - [HKLM]{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\uTorrentBar_FR\prxtbuTor.dll
O3 - Toolbar: SearchAmong Toolbar - [HKLM]{0E1230F8-EA50-42A9-983C-D22ABC2EED3B} . (.Pas de propriétaire - SearchAmong Toolbar.) -- C:\Program Files\SearchAmong Toolbar\SearchAmongToolbar.dll
O20 - AppInit_DLLs: . (...) - C:\Documents and Settings\All Users\Application Data\BrowserProtect\2.5.1005.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.dll
O23 - Service: BrowserProtect (BrowserProtect) . (...) - C:\Documents and Settings\All Users\Application Data\BrowserProtect\2.5.1005.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\BrowserProtect.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1715567821-2147031749-1417001333-500Core.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1715567821-2147031749-1417001333-500UA.job
O40 - ASIC: (no name) - {9D71D88C-C598-4935-C5D1-43AA4DB90836} . (...) -- C:\Program Files\Bifrost\server.exe
O40 - ASIC: Installed Component - S-1-5-21-1715567821-2147031749-1417001333-500 - >{X9B49E34-C7CC-11D0-8953-00A0C90347FF} -- Not Hexadécimal CLSID
O42 - Logiciel: Babylon Chrome Toolbar - (.Babylon Ltd.) [HKLM] -- {E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
O42 - Logiciel: Babylon toolbar - (.BabylonToolbar.) [HKLM] -- BabylonToolbar
O42 - Logiciel: SearchAmong Toolbar version 1.0 - (.SearchAmong.) [HKLM] -- {C7456F74-B576-4A8E-BAB2-538C99EE38F0}_is1
O42 - Logiciel: Setuprog Toolbar - (.Pas de propriétaire.) [HKLM] -- Setuprog Toolbar
O42 - Logiciel: uTorrentBar_FR Toolbar - (.uTorrentBar_FR.) [HKLM] -- uTorrentBar_FR Toolbar
[HKCU\Software\AppDataLow\Software\Conduit]
[HKCU\Software\BabylonToolbar]
[HKCU\Software\Bifrost]
[HKCU\Software\ConduitSearchScopes]
[HKCU\Software\Conduit]
[HKCU\Software\DataMngr]
[HKCU\Software\DataMngr_Toolbar]
[HKCU\Software\Setuprog]
[HKCU\Software\Smartbar]
[HKCU\Software\Softonic]
[HKCU\Software\uTorrentBar_FR]
[HKLM\Software\Babylon]
[HKLM\Software\Bifrost]
[HKLM\Software\Conduit]
[HKLM\Software\DataMngr]
[HKLM\Software\Setuprog]
[HKLM\Software\uTorrentBar_FR]
O43 - CFD: 26/12/2012 - 14:01:21 - [2,343] ----D C:\Program Files\BabylonToolbar
O43 - CFD: 23/10/2010 - 16:52:15 - [0,047] ----D C:\Program Files\Bifrost
O43 - CFD: 11/12/2012 - 20:12:59 - [0,609] ----D C:\Program Files\Conduit
O43 - CFD: 26/12/2012 - 14:28:15 - [0,976] ----D C:\Program Files\SearchAmong Toolbar
O43 - CFD: 11/12/2012 - 20:13:26 - [2,452] ----D C:\Program Files\Setuprog
O43 - CFD: 17/12/2012 - 19:23:22 - [4,849] ----D C:\Program Files\uTorrentBar_FR
O43 - CFD: 26/12/2012 - 13:59:40 - [0,009] ----D C:\Documents and Settings\Administrateur.POST\Application Data\Babylon
O43 - CFD: 26/12/2012 - 14:28:51 - [0] ----D C:\Documents and Settings\Administrateur.POST\Application Data\BabylonToolbar
O43 - CFD: 17/12/2012 - 19:23:21 - [4,564] ----D C:\Documents and Settings\Administrateur.POST\Local Settings\Application Data\Conduit
O43 - CFD: 12/12/2012 - 18:51:32 - [0,215] ----D C:\Documents and Settings\Administrateur.POST\Local Settings\Application Data\Setuprog
O43 - CFD: 26/12/2012 - 14:40:27 - [6,056] ----D C:\Documents and Settings\Administrateur.POST\Local Settings\Application Data\uTorrentBar_FR
O64 - Services: CurCS - 14/12/2012 - C:\Documents and Settings\All Users\Application Data\BrowserProtect\2.5.1005.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe - BrowserProtect (BrowserProtect) .(...) - LEGACY_BROWSERPROTECT
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("avg.install.userHPSettings", "http://search.babylon.com/?affID=113357&tt=5212_2&babsrc=HP_ss&mntrId=6c1ef74f00000000000[...] => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("avg.install.userSPSettings", "Search the web (Babylon)"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("browser.newtab.url", "http://search.babylon.com/?affID=113357&tt=5212_2&babsrc=NT_ss&mntrId=6c1ef74f000000000000001641a[...] => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("browser.search.selectedEngine", "Search the web (Babylon)"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("browser.startup.homepage", "http://search.babylon.com/?affID=113357&tt=5212_2&babsrc=HP_ss&mntrId=6c1ef74f0000000000000[...] => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.1000234.TWC_TMP_city", "ALGIERS"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.1000234.TWC_TMP_country", "DZ"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.addressBarTakeOverEnabledInHidden", "true"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.autoDisableScopes", -1); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.browser.search.defaultthis.engineName", true); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.cbcountry_001.enc", "RFo="); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.cbfirsttime.enc", "V2VkIERlYyAxOSAyMDEyIDIzOjU3OjQ4IEdNVCswMDAwIChHcmVlbndpY2gp"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.CBOpenMAMSettings.enc", "MA=="); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.defaultSearch", "true"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.embeddedsData", "[{\"appId\":\"129351529700743801\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFra[...] => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.enableAlerts", "always"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.enableSearchFromAddressBar", "true"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.Facebook_Mode.enc", "Mg=="); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.Facebook_User_Locale.enc", "ZW4="); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.FirstTime", "true"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.firstTimeDialogOpened", "true"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.FirstTimeFF3", "true"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.fixPageNotFoundError", "true"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.fixPageNotFoundErrorInHidden", "true"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.fixUrls", true); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.installType", "xpe"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.isCheckedStartAsHidden", true); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.isFirstTimeToolbarLoading", "false"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.isNewTabEnabled", true); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.isPerformedSmartBarTransition", "true"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.keyword", true); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.LoginRevertSettingsEnabled", false); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.migrateAppsAndComponents", true); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"poop:\",\"EB_MAIN_FRAME_URL\":\"https%3A%2F%2Fwww.facebook.com[...] => ZHPHosts White List
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.openThankYouPage", "true"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.openUninstallPage", "false"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.PairingKey.enc", "NjQ1RDFCNjY0MzZEOTg2NkE1MkQ1NzMyRjAxNzkzQTM4NTQ4RjBENg=="); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.revertSettingsEnabled", "false"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.scriptSource.enc", "aHR0cDovLzEyNy4wLjAuMToxMDAwMC9ndWkv"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.search.searchAppId", "129351529700743801"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.search.searchCount", "0"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2851639&SearchSource=2&q="); => Toolbar.Conduit
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.searchInNewTabEnabledInHidden", "true"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"http://uTorrent[...] => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"uTorrentBar_FR\[...] => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.serviceLayer_services_appsMetadata_lastUpdate", "1356867005279"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.serviceLayer_services_appTracking_lastUpdate", "1356910525391"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1356867125777"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1355961467636"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.serviceLayer_services_login_10.13.40.15_lastUpdate", "1356910634485"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1355961467738"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.serviceLayer_services_searchAPI_lastUpdate", "1356867006882"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.serviceLayer_services_serviceMap_lastUpdate", "1356867005009"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.serviceLayer_services_toolbarContextMenu_lastUpdate", "1355961467685"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.serviceLayer_services_toolbarSettings_lastUpdate", "1356910633859"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.serviceLayer_services_translation_lastUpdate", "1356867006852"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.settingsINI", true); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.shouldFirstTimeDialog", "false"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.smartbar.CTID", "CT2851639"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.smartbar.homepage", true); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.smartbar.toolbarName", "uTorrentBar_FR "); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.smartbar.Uninstall", "0"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.startPage", "TRUE"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.toolbarBornServerTime", "20-12-2012"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.toolbarCurrentServerTime", "31-12-2012"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.url_history0001.enc", "aHR0cDovL3d3dy5mYWNlYm9vay5jb20vOjo6Y2xpY2toYW5kbGVyOjo6MTM1NjczMDE4ODU1MSwsLGh0dHA6Ly[...] => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.UserID", "UN31752806889435970"); => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639.uTTorrents.enc", "eyJidWlsZCI6Mjg3MDUsImxhYmVsIjpbXSwidG9ycmVudHMiOltbIjcxOTQwREI2RTVENTg5Njc3Mzc4QTBBNTJBREQ[...] => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("CT2851639_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1356910959400,\"isWithState\"[...] => Toolbar.Agent
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.admin", false); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.aflt", "babsst"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.appId", "{BDB69379-802F-4eaf-B541-F8DE92DD98DB}"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.autoRvrt", "false"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.bbDpng", "30"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.cntry", "DZ"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.dfltLng", "en"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.dpkLst", ""); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.excTlbr", false); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.hdrMd5", "4880CA5B2727B9F2DD2CA6807602652E"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.id", "6c1ef74f000000000000001641ad2d0a"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.instlDay", "15700"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.instlRef", "sst"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.8.7.214:01:21"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.pnu_base", "{\"newVrsn\":\"59\",\"lastVrsn\":\"59\",\"vrsnLoad\":\"\",\"showMsg\":\"false\",\[...] => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.prtnrId", "babylon"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.rvrt", "false"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.sg", "azb"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.smplGrp", "azb"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.tlbrId", "base"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "http://search.babylon.com/?babsrc=TB_def&mntrId=6c1ef74f000000000000001641ad2d[...] => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.vrsn", "1.8.7.2"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar.vrsni", "1.8.7.2"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar_i.babExt", ""); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar_i.babTrack", "affID=113357&tt=5212_2"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar_i.excTlbr", false); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar_i.newTab", false); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar_i.smplGrp", "none"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar_i.srcExt", "ss"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.8.7.214:01:23"); => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("keyword.URL", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2851639&SearchSource=2&q="); => Toolbar.Conduit
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("smartbar.conduitHomepageList", "http://search.conduit.com/?ctid=CT2851639&SearchSource=13&CUI=SB_CUI"); => Toolbar.Conduit
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("smartbar.conduitSearchAddressUrlList", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2851639&SearchSource=2&q="); => Toolbar.Conduit
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("smartbar.originalHomepage", "http://search.babylon.com/?affID=113357&tt=5212_2&babsrc=HP_ss&mntrId=6c1ef74f000000000000[...] => Infection BT (Toolbar.Babylon)
O69 - SBI: prefs.js [Administrateur - o17pv9u1.default] user_pref("smartbar.originalSearchEngine", "Search the web (Babylon)"); => Infection BT (Toolbar.Babylon)
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} [DefaultScope] - (Search the web (Babylon)) -
http://search.babylon.com =
O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (uTorrentBar_FR Customized Web Search) -
http://search.conduit.com => Toolbar.Conduit
O69 - SBI: SearchScopes [HKCU] {EFAC1655-4A54-4B3E-AF24-E9CC22EB2551} - (Web Search) -
http://www.searchamong.com => Infection BT (Adware.Bandoo)
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {afdbddaa-5d3f-42ee-b79c-185a7020515b} [DefaultScope] - (Setuprog Customized Web Search) -
http://search.conduit.com => Toolbar.Conduit
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {afdbddaa-5d3f-42ee-b79c-185a7020515b} [DefaultScope] - (Setuprog Customized Web Search) -
http://search.conduit.com => Toolbar.Conduit
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {afdbddaa-5d3f-42ee-b79c-185a7020515b} [DefaultScope] - (Setuprog Customized Web Search) -
http://search.conduit.com => Toolbar.Conduit
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {afdbddaa-5d3f-42ee-b79c-185a7020515b} [DefaultScope] - (Setuprog Customized Web Search) -
http://search.conduit.com [HKLM\Software\Classes\AppID\esrv.EXE] => Infection PUP (PUP.Funmoods)
[HKLM\Software\Classes\b] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\Babylon.dskBnd] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\Babylon.dskBnd.1] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\bbylnApp.appCore] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\bbylnApp.appCore.1] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\escort.escortIEPane] => Infection PUP (PUP.Funmoods)
[HKLM\Software\Classes\escort.escortIEPane] => Infection PUP (PUP.Funmoods)
[HKLM\Software\Classes\escort.escortIEPane.1] => Infection PUP (PUP.Funmoods)
[HKLM\Software\Classes\escort.escortIEPane.1] => Infection PUP (PUP.Funmoods)
[HKLM\Software\Classes\esrv.BabylonESrvc] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\esrv.BabylonESrvc.1] => Infection BT (Toolbar.Babylon)
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}] => Toolbar.Agent
[HKLM\Software\Classes\CLSID\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}] => Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}] => Toolbar.Agent
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] => Infection BT (Adware.Agent)
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] => Infection BT (PUP.ClaroSearch)
[HKLM\Software\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}] => Toolbar.Agent
[HKLM\Software\Classes\CLSID\{291BCCC1-6890-484a-89D3-318C928DAC1B}] => Infection BT (Toolbar.Babylon)
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}] => Toolbar.Agent
[HKLM\Software\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}] => Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}] => Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4a99-B4B6-146BF802613B}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}] => Toolbar.Conduit
[HKLM\Software\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] => Infection BT (Adware.IncrediBar)
[HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] => Infection BT (Adware.IncrediBar)
[HKLM\Software\Classes\TypeLib\{5297E905-1DFB-4A9C-9871-A4F95FD58945}] => Infection BT (Adware.DoubleD)
[HKLM\Software\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}] => Infection BT (Toolbar.Babylon)
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] => Toolbar.Skype
[HKLM\Software\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] => Toolbar.Skype
[HKLM\Software\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] => Toolbar.Skype
[HKLM\Software\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}] => Toolbar.Agent
[HKLM\Software\Classes\CLSID\{97F2FF5B-260C-4ccf-834A-2DDA4E29E39E}] => Infection BT (Toolbar.Babylon)
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49dd-99D7-DC866BE87DBC}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}] => Infection BT (Toolbar.Babylon)
[HKCU\Software\Microsoft\Active Setup\Installed Components\{9D71D88C-C598-4935-C5D1-43AA4DB90836}] => Infection Diverse (Trojan.Bifrose)
[HKLM\Software\Microsoft\Active Setup\Installed Components\{9D71D88C-C598-4935-C5D1-43AA4DB90836}] => Infection Diverse (Trojan.Bifrose)
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] => Toolbar.Skype
[HKLM\Software\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] => Toolbar.Skype
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] => Toolbar.Skype
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}] => Toolbar.Conduit
[HKLM\Software\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}] => Infection PUP (Adware.Funmoods)
[HKLM\Software\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}] => Infection BT (Toolbar.Babylon)
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D6533F74-218B-41BE-9D91-5BD471FECFFD}] => Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{D6533F74-218B-41BE-9D91-5BD471FECFFD}] => Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D6533F74-218B-41BE-9D91-5BD471FECFFD}] => Toolbar.Conduit
[HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}] => Infection PUP (Adware.Funmoods)
[HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}] => Infection PUP (Adware.Funmoods)
[HKLM\Software\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}] => Infection BT (Toolbar.Babylon)
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5}] => Conduit Setuprog Toolbar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5}] => Conduit Setuprog Toolbar
[HKLM\Software\Classes\CLSID\{f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5}] => Conduit Setuprog Toolbar
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5}] => Conduit Setuprog Toolbar
[HKLM\Software\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb] => Infection PUP (Toolbar.Babylon)
[HKLM\Software\Google\Chrome\Extensions\paoponfhfdfnjgddpnpjkambkcgdaaib]
[HKCU\Software\BabylonToolbar] => Infection BT (Toolbar.Babylon)
[HKLM\Software\BabylonToolbar] => Infection BT (Toolbar.Babylon)
[HKCU\Software\ConduitSearchScopes] => Toolbar.Conduit
[HKCU\Software\DataMngr] => Infection PUP (PUP.BearShare)
[HKLM\Software\DataMngr] => Infection PUP (PUP.BearShare)
[HKCU\Software\PriceGong] => Infection BT (Adware.PriceGong)
[HKCU\Software\Softonic] => Toolbar.Conduit
[HKCU\Software\uTorrentBar_FR] => Toolbar.Conduit
[HKLM\Software\uTorrentBar_FR] => Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar] => Infection BT (Toolbar.Babylon)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentBar_FR Toolbar] => Toolbar.Conduit
[HKLM\Software\Classes\Toolbar.CT2552113] => Toolbar.Conduit
[HKLM\Software\Classes\Toolbar.CT2851639] => Toolbar.Conduit
[HKLM\Software\Classes\ToolBand.ToolBandObj] => Toolbar.Agent
[HKLM\Software\Classes\ToolBand.ToolBandObj.1] => Toolbar.Agent
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{98889811-442D-49DD-99D7-DC866BE87DBC} => Infection BT (Toolbar.Babylon)
C:\Program Files\BabylonToolbar => Infection BT (Toolbar.Babylon)
C:\Program Files\Conduit => Toolbar.Conduit
C:\Program Files\SearchAmong Toolbar => Infection BT (Adware.SearchAmong)
C:\Program Files\uTorrentBar_FR => Toolbar.Conduit
C:\Documents and Settings\Administrateur.POST\Application Data\Babylon => Infection BT (Toolbar.Babylon)
C:\Documents and Settings\Administrateur.POST\Application Data\BabylonToolbar => Infection BT (Toolbar.Babylon)
C:\Documents and Settings\Administrateur.POST\Application Data\PriceGong => Infection BT (Adware.PriceGong)
C:\Documents and Settings\Administrateur.POST\Local Settings\Application Data\Conduit => Toolbar.Conduit
C:\Documents and Settings\Administrateur.POST\Local Settings\Application Data\uTorrentBar_FR => Toolbar.Conduit
C:\Documents and Settings\Administrateur.POST\Application Data\Mozilla\Firefox\Profiles\o17pv9u1.default\Smartbar
C:\Documents and Settings\Administrateur.POST\Application Data\Mozilla\Firefox\Profiles\o17pv9u1.default\Extensions\ffxtlbr@babylon.com
O90 - PUC: "6207E55EA2FE71A4AA7ABD89AEF31D1B" . (.Babylon Chrome Toolbar.) -- C:\WINDOWS\Installer\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}\BabylonSetup.ico
O90 - PUC: "6E4256D9FC512584FB0740EF79A3D31E" . (.Windows Live Toolbar.) -- C:\WINDOWS\Installer\{9D6524E6-15CF-4852-BF70-04FE973A3DE1}\ToolbarIcon
FirewallRaz
EmptyFlash
Emptytemp