[Log] Probleme de Toolbar

Bonjour!
Suite a mon probleme de toolbar avc internet explorer exprimé précédemment dans un autre article on ma demandé de faire un hijack this et un log xp. J'ai Dja scanné avc clean up ad aware et spybot!

Voici les logs pourriez-vous me dire ce qu'il en ait s'il vous plait?

Aves Logxp:
Rapport fait à 17:05:45,15 le 26/12/2005

Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\Documents and Settings\Default User\Application Data

29/11/2003 17:06 62 desktop.ini
29/11/2003 17:06 <REP> Microsoft
29/11/2003 17:06 <REP> ..
29/11/2003 17:06 <REP> .
1 fichier(s) 62 octets
3 R‚p(s) 20820983808 octets libres
Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\Documents and Settings\All Users\Application Data

26/12/2005 11:29 <REP> Spybot - Search & Destroy
25/12/2005 00:15 1755 QTSBandwidthCache
29/10/2005 14:05 <REP> Ahead
02/10/2005 13:57 <REP> Kaspersky Anti-Virus Personal
17/09/2005 11:10 <REP> Windows Genuine Advantage
18/04/2005 10:03 <REP> five wma new clock
10/04/2005 15:18 <REP> Macrovision
18/03/2005 19:35 <REP> Messenger Plus!
12/03/2005 16:08 <REP> MSN Messenger 6.2.0137
31/10/2004 13:12 <REP> Symantec
11/10/2004 20:34 <REP> Viewpoint
02/10/2004 09:11 <REP> Apple Computer
02/10/2004 09:10 <REP> QuickTime
29/09/2004 19:31 <REP> Film thunk meal tray
25/09/2004 14:35 <REP> pixelStorm
27/07/2004 21:09 <REP> MSN6
29/11/2003 17:38 <REP> Adobe
29/11/2003 17:06 62 desktop.ini
29/11/2003 17:06 <REP> ..
29/11/2003 17:06 <REP> .
29/11/2003 17:06 <REP> Microsoft
2 fichier(s) 1817 octets
19 R‚p(s) 20820983808 octets libres
Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\Documents and Settings\Johan\Application Data

24/12/2005 22:09 <REP> Nero
20/11/2005 10:16 <REP> Xfire
22/10/2005 22:57 <REP> Gearbox Software
22/10/2005 21:31 <REP> THQ
12/10/2005 13:54 <REP> SignBaseLite
21/09/2005 17:21 <REP> Google
22/08/2005 19:15 <REP> F-Secure
19/06/2005 11:35 <REP> ubi.com
03/03/2005 20:24 <REP> Talkback
26/01/2005 18:39 <REP> Yahoo! Messenger
22/01/2005 14:38 <REP> .gaim
15/01/2005 16:10 <REP> Real
27/11/2004 14:31 <REP> Picajet.com
14/11/2004 18:36 <REP> Symantec
12/11/2004 09:17 <REP> Thunderbird
11/11/2004 15:09 <REP> Mozilla
16/10/2004 12:24 <REP> Shareaza
16/10/2004 12:04 <REP> Kazaa Lite
15/10/2004 19:27 <REP> drive four roam
11/10/2004 20:28 <REP> Aim
02/10/2004 11:49 <REP> Copernic
02/10/2004 09:12 <REP> Apple Computer
19/09/2004 16:01 <REP> Lavasoft
18/09/2004 16:03 <REP> Macromedia
27/07/2004 21:09 <REP> MSN6
26/06/2004 16:12 18186 wklnhst.dat
26/06/2004 15:07 <REP> Sun
31/05/2004 15:20 <REP> Leadertech
10/04/2004 16:02 <REP> Ahead
19/03/2004 18:58 <REP> CyberLink
25/12/2003 19:24 <REP> InterTrust
12/12/2003 13:31 68416 GDIPFONTCACHEV1.DAT
30/11/2003 07:24 <REP> AdobeUM
30/11/2003 07:24 <REP> Adobe
29/11/2003 18:53 <REP> Help
29/11/2003 18:53 <REP> Identities
29/11/2003 18:53 62 desktop.ini
29/11/2003 18:53 <REP> ..
29/11/2003 18:53 <REP> .
29/11/2003 18:53 <REP> Microsoft
3 fichier(s) 86664 octets
37 R‚p(s) 20820983808 octets libres
Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\Documents and Settings\Invit‚\Application Data

14/11/2004 18:36 <REP> MSN6
31/10/2004 12:16 <REP> ShopperReports
12/12/2003 14:57 <REP> Help
12/12/2003 14:57 <REP> Identities
12/12/2003 14:57 62 desktop.ini
12/12/2003 14:57 <REP> Microsoft
12/12/2003 14:57 <REP> ..
12/12/2003 14:57 <REP> .
1 fichier(s) 62 octets
7 R‚p(s) 20820983808 octets libres
Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\Documents and Settings\HelpAssistant\Application Data

21/09/2004 19:35 62 desktop.ini
21/09/2004 19:35 <REP> Microsoft
21/09/2004 19:35 <REP> ..
21/09/2004 19:35 <REP> .
1 fichier(s) 62 octets
3 R‚p(s) 20820983808 octets libres
Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\Documents and Settings\Laurence\Application Data

15/01/2005 16:39 <REP> Real
03/12/2004 19:41 <REP> Aim
02/10/2004 17:17 <REP> ShopperReports
24/09/2004 06:59 <REP> Macromedia
22/09/2004 14:23 <REP> Identities
22/09/2004 14:22 62 desktop.ini
22/09/2004 14:22 <REP> Microsoft
22/09/2004 14:22 <REP> .
22/09/2004 14:22 <REP> ..
1 fichier(s) 62 octets
8 R‚p(s) 20820983808 octets libres
Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\Documents and Settings\Gilles.DOMICILE\Application Data

08/12/2005 18:10 <REP> Ahead
05/10/2005 06:21 <REP> SignBaseLite
20/06/2005 06:37 <REP> ubi.com
18/04/2005 16:32 <REP> Yahoo! Messenger
03/03/2005 20:31 <REP> Talkback
20/02/2005 19:20 <REP> .gaim
09/01/2005 11:17 <REP> drive four roam
28/12/2004 09:23 <REP> Real
20/11/2004 10:05 <REP> AdobeUM
20/11/2004 10:04 <REP> Aim
16/11/2004 20:54 <REP> Adobe
13/11/2004 07:45 <REP> Mozilla
03/10/2004 19:00 <REP> Sun
03/10/2004 18:38 <REP> Copernic
03/10/2004 14:35 <REP> MSN6
03/10/2004 06:53 <REP> Apple Computer
02/10/2004 07:12 14132 wklnhst.dat
02/10/2004 06:23 <REP> ShopperReports
26/09/2004 07:42 <REP> Lavasoft
26/09/2004 06:59 <REP> Macromedia
25/09/2004 13:38 <REP> Identities
25/09/2004 13:38 62 desktop.ini
25/09/2004 13:38 <REP> ..
25/09/2004 13:38 <REP> .
25/09/2004 13:38 <REP> Microsoft
2 fichier(s) 14194 octets
23 R‚p(s) 20820983808 octets libres
******************************************
Recherche des taches planifiées dans C:\WIN_XP\tasks

Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\WIN_XP\Tasks

29/10/2005 12:51 364 Symantec NetDetect.job
12/10/2005 13:54 262 AF62D8A391854A73.job
02/10/2005 13:36 262 AAB7DEAE91805326.job
11/09/2005 06:05 278 AE3C4C589237FCFC.job
18/03/2005 19:28 262 AFB0F17A91AB63CA.job
29/09/2004 19:31 232 A2519B7B91861803.job
29/11/2003 17:18 6 SA.DAT
29/11/2003 17:15 65 desktop.ini
29/11/2003 17:15 <REP> .
29/11/2003 17:15 <REP> ..
8 fichier(s) 1ÿ731 octets
2 R‚p(s) 20ÿ820ÿ983ÿ808 octets libres

******************************************
Recherche dans Program files

Le dossier C:\Program Files\C2Media n'existe pas

*************** Fin du rapport ****************
Rapport fait à 16:38:14,70 le 27/12/2005

Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\Documents and Settings\Default User\Application Data

29/11/2003 17:06 62 desktop.ini
29/11/2003 17:06 <REP> Microsoft
29/11/2003 17:06 <REP> ..
29/11/2003 17:06 <REP> .
1 fichier(s) 62 octets
3 R‚p(s) 21306900480 octets libres
Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\Documents and Settings\All Users\Application Data

26/12/2005 11:29 <REP> Spybot - Search & Destroy
25/12/2005 00:15 1755 QTSBandwidthCache
29/10/2005 14:05 <REP> Ahead
02/10/2005 13:57 <REP> Kaspersky Anti-Virus Personal
17/09/2005 11:10 <REP> Windows Genuine Advantage
18/04/2005 10:03 <REP> five wma new clock
10/04/2005 15:18 <REP> Macrovision
18/03/2005 19:35 <REP> Messenger Plus!
12/03/2005 16:08 <REP> MSN Messenger 6.2.0137
31/10/2004 13:12 <REP> Symantec
11/10/2004 20:34 <REP> Viewpoint
02/10/2004 09:11 <REP> Apple Computer
02/10/2004 09:10 <REP> QuickTime
29/09/2004 19:31 <REP> Film thunk meal tray
25/09/2004 14:35 <REP> pixelStorm
27/07/2004 21:09 <REP> MSN6
29/11/2003 17:38 <REP> Adobe
29/11/2003 17:06 62 desktop.ini
29/11/2003 17:06 <REP> ..
29/11/2003 17:06 <REP> .
29/11/2003 17:06 <REP> Microsoft
2 fichier(s) 1817 octets
19 R‚p(s) 21306900480 octets libres
Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\Documents and Settings\Johan\Application Data

24/12/2005 22:09 <REP> Nero
20/11/2005 10:16 <REP> Xfire
22/10/2005 22:57 <REP> Gearbox Software
22/10/2005 21:31 <REP> THQ
12/10/2005 13:54 <REP> SignBaseLite
21/09/2005 17:21 <REP> Google
22/08/2005 19:15 <REP> F-Secure
19/06/2005 11:35 <REP> ubi.com
03/03/2005 20:24 <REP> Talkback
26/01/2005 18:39 <REP> Yahoo! Messenger
22/01/2005 14:38 <REP> .gaim
15/01/2005 16:10 <REP> Real
27/11/2004 14:31 <REP> Picajet.com
14/11/2004 18:36 <REP> Symantec
12/11/2004 09:17 <REP> Thunderbird
11/11/2004 15:09 <REP> Mozilla
16/10/2004 12:24 <REP> Shareaza
16/10/2004 12:04 <REP> Kazaa Lite
15/10/2004 19:27 <REP> drive four roam
11/10/2004 20:28 <REP> Aim
02/10/2004 11:49 <REP> Copernic
02/10/2004 09:12 <REP> Apple Computer
19/09/2004 16:01 <REP> Lavasoft
18/09/2004 16:03 <REP> Macromedia
27/07/2004 21:09 <REP> MSN6
26/06/2004 16:12 18186 wklnhst.dat
26/06/2004 15:07 <REP> Sun
31/05/2004 15:20 <REP> Leadertech
10/04/2004 16:02 <REP> Ahead
19/03/2004 18:58 <REP> CyberLink
25/12/2003 19:24 <REP> InterTrust
12/12/2003 13:31 68416 GDIPFONTCACHEV1.DAT
30/11/2003 07:24 <REP> AdobeUM
30/11/2003 07:24 <REP> Adobe
29/11/2003 18:53 <REP> Help
29/11/2003 18:53 <REP> Identities
29/11/2003 18:53 62 desktop.ini
29/11/2003 18:53 <REP> ..
29/11/2003 18:53 <REP> .
29/11/2003 18:53 <REP> Microsoft
3 fichier(s) 86664 octets
37 R‚p(s) 21306900480 octets libres
Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\Documents and Settings\Invit‚\Application Data

14/11/2004 18:36 <REP> MSN6
31/10/2004 12:16 <REP> ShopperReports
12/12/2003 14:57 <REP> Help
12/12/2003 14:57 <REP> Identities
12/12/2003 14:57 62 desktop.ini
12/12/2003 14:57 <REP> Microsoft
12/12/2003 14:57 <REP> ..
12/12/2003 14:57 <REP> .
1 fichier(s) 62 octets
7 R‚p(s) 21306900480 octets libres
Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\Documents and Settings\HelpAssistant\Application Data

21/09/2004 19:35 62 desktop.ini
21/09/2004 19:35 <REP> Microsoft
21/09/2004 19:35 <REP> ..
21/09/2004 19:35 <REP> .
1 fichier(s) 62 octets
3 R‚p(s) 21306900480 octets libres
Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\Documents and Settings\Laurence\Application Data

15/01/2005 16:39 <REP> Real
03/12/2004 19:41 <REP> Aim
02/10/2004 17:17 <REP> ShopperReports
24/09/2004 06:59 <REP> Macromedia
22/09/2004 14:23 <REP> Identities
22/09/2004 14:22 62 desktop.ini
22/09/2004 14:22 <REP> Microsoft
22/09/2004 14:22 <REP> .
22/09/2004 14:22 <REP> ..
1 fichier(s) 62 octets
8 R‚p(s) 21306900480 octets libres
Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\Documents and Settings\Gilles.DOMICILE\Application Data

08/12/2005 18:10 <REP> Ahead
05/10/2005 06:21 <REP> SignBaseLite
20/06/2005 06:37 <REP> ubi.com
18/04/2005 16:32 <REP> Yahoo! Messenger
03/03/2005 20:31 <REP> Talkback
20/02/2005 19:20 <REP> .gaim
09/01/2005 11:17 <REP> drive four roam
28/12/2004 09:23 <REP> Real
20/11/2004 10:05 <REP> AdobeUM
20/11/2004 10:04 <REP> Aim
16/11/2004 20:54 <REP> Adobe
13/11/2004 07:45 <REP> Mozilla
03/10/2004 19:00 <REP> Sun
03/10/2004 18:38 <REP> Copernic
03/10/2004 14:35 <REP> MSN6
03/10/2004 06:53 <REP> Apple Computer
02/10/2004 07:12 14132 wklnhst.dat
02/10/2004 06:23 <REP> ShopperReports
26/09/2004 07:42 <REP> Lavasoft
26/09/2004 06:59 <REP> Macromedia
25/09/2004 13:38 <REP> Identities
25/09/2004 13:38 62 desktop.ini
25/09/2004 13:38 <REP> ..
25/09/2004 13:38 <REP> .
25/09/2004 13:38 <REP> Microsoft
2 fichier(s) 14194 octets
23 R‚p(s) 21306900480 octets libres
******************************************
Recherche des taches planifiées dans C:\WIN_XP\tasks

Le volume dans le lecteur C s'appelle SYSTME
Le num‚ro de s‚rie du volume est 151C-11D4

R‚pertoire de C:\WIN_XP\Tasks

29/10/2005 12:51 364 Symantec NetDetect.job
12/10/2005 13:54 262 AF62D8A391854A73.job
02/10/2005 13:36 262 AAB7DEAE91805326.job
11/09/2005 06:05 278 AE3C4C589237FCFC.job
18/03/2005 19:28 262 AFB0F17A91AB63CA.job
29/09/2004 19:31 232 A2519B7B91861803.job
29/11/2003 17:18 6 SA.DAT
29/11/2003 17:15 65 desktop.ini
29/11/2003 17:15 <REP> .
29/11/2003 17:15 <REP> ..
8 fichier(s) 1ÿ731 octets
2 R‚p(s) 21ÿ306ÿ900ÿ480 octets libres

******************************************
Recherche dans Program files

Le dossier C:\Program Files\C2Media n'existe pas

*************** Fin du rapport ****************

Avec hijackthis :

Logfile of HijackThis v1.99.1
Scan saved at 16:38:46, on 27/12/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WIN_XP\System32\smss.exe
C:\WIN_XP\SYSTEM32\winlogon.exe
C:\WIN_XP\system32\services.exe
C:\WIN_XP\system32\lsass.exe
C:\WIN_XP\system32\Ati2evxx.exe
C:\WIN_XP\system32\svchost.exe
C:\WIN_XP\System32\svchost.exe
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
C:\WIN_XP\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WIN_XP\SYSTEM32\Ati2evxx.exe
C:\WIN_XP\Explorer.EXE
C:\WIN_XP\system32\spupdsvc.exe
C:\WIN_XP\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WIN_XP\system32\spnpinst.exe
C:\WIN_XP\System32\G-VGA.exe
C:\WIN_XP\system32\Sysocmgr.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Messenger Plus! 3\MsgPlus.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WIN_XP\system32\ctfmon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
c:\progra~1\intern~1\iexplore.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WIN_XP\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WIN_XP\SYSTEM32\notepad.exe
C:\Documents and Settings\Johan\Bureau\Nouveau dossier\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.uhqlcxznwh.info/wftUOidDzOGO_uBA0dnbCMZuA6Al78uUMFuBaB058sdSN7PKyiAY8eG9_/M/7HmE.asp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\windows\system32\blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://runonce.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\windows\system32\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {422630DF-89AE-7B9A-175A-8D92D266345C} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.02.3000.1001\en-xu\stmain.dll
O2 - BHO: (no name) - {99B88611-1369-1A31-60DA-7BD25C38C866} - C:\DOCUME~1\Johan\APPLIC~1\SIGNBA~1\Window Stupid.exe
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [VGAUtil] C:\WIN_XP\System32\G-VGA.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [o27i36X] qashutdn.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WIN_XP\system32\NeroCheck.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\RunServices: [Microsoft Update Machine Network] vupijzf.exe
O4 - HKLM\..\RunServices: [serpe] C:\WIN_XP\System32\serbw.exe
O4 - HKCU\..\Run: [Z1osRWbnS] algfi.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [ctfmon.exe] C:\WIN_XP\system32\ctfmon.exe
O4 - HKCU\..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe -Hide
O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [gluevga] C:\DOCUME~1\Johan\APPLIC~1\DRIVEF~1\BIBONENEW.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\YAHOO!\MESSEN~1\YPAGER.EXE
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\YAHOO!\MESSEN~1\YPAGER.EXE
O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Broken Internet access because of LSP provider 'xfire_lsp_9028.dll' missing
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: fdjeux - https://www.fdjeux.net/classes/fdjeux.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab30149.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab30149.cab
O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab30149.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - http://selfcare.cegetel.net/templates/static/ocx/AFAutoConfig.ocx
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {53F2ACEF-931C-4869-92A7-B3E3E49F0035} (AxPSFRA Control) - http://fr.samsungmobile.com/play/photo/album_fra.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1095516384032
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1126949240515
O16 - DPF: {7142BA01-8BDF-11CF-9E23-0000E8A37440} (Surround Video Control Object) - http://www.accac.es/cases/tourvr/v_orient/canclarens/bin/svideo.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab30149.cab
O16 - DPF: {928626A3-6B98-11CF-90B4-00AA00A4011F} (SurroundVideoCtrl Object) - http://autos.msn.com/components/ocx/survid/MSSurVid.cab
O16 - DPF: {9A54032D-31F7-400D-B184-83B33BDE65FA} (MSN File Upload Control) - http://sc.groups.msn.com/controls/FileUC/MsnUpld.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab30149.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab30149.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/binary/Chess.cab30149.cab
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by102fd.bay102.hotmail.msn.com/activex/HMAtchmt.ocx
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab30149.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{66C61482-AE06-4105-8019-D9A2ED151909}: NameServer = 80.118.192.100 80.118.196.36
O18 - Protocol: CDS300 - {AD43AA67-6860-4531-AC8A-0E68F9CF023E} - E:\Player\__CDS2.dll (file missing)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WIN_XP\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WIN_XP\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe

Merci de votre aide!