Virus sur mon pc aidez moi

Panneau de configuration => programmes et fonctionnalités

J'ai fais desinstaller et rien ne se passe, il ne veut pas se desinstaler :/

oO
Bon demain je te fais le script OTL alors, là je vais me coucher.
Remets un mot demain.

Bonne nuit !

Re bonjour juju ^^
J'attend avec impatience le script otl :) merci

Hello

J'avais oublié t'as bien fait de remettre un mot comme je conseillais ^^

==============================

ATTENTION !!! : Script personnalisé pour cette machine uniquement , ne pas reproduire !!

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."

sur OTL.exe pour le lancer.


▶Copie la liste qui se trouve en gras ci-dessous,

▶ colle-la dans la zone sous "Personnalisation" :


:OTL
IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
IE - HKLM\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2431}: "URL" = http://www1.search-results.com/web?l=dis&q=&o=APN10656&apn_dtid=%5EBND431%5EYY%5EFR&shad=s_0043&gct=ds&apn_ptnrs=%5EAGH&d=431-109&lang=en&atb=sysid%3D431%3Aappid%3D109%3Auid%3D42abbcb0e71733c4%3Asrc%3Dieb%3Ao%3DAPN10656%3Atg%3D&p2=%5EAGH%5EBND431%5EYY%5EFR{searchTerms}
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2431}: "URL" = http://www1.search-results.com/web?l=dis&q=&o=APN10656&apn_dtid=%5EBND431%5EYY%5EFR&shad=s_0043&gct=ds&apn_ptnrs=%5EAGH&d=431-109&lang=en&atb=sysid%3D431%3Aappid%3D109%3Auid%3D42abbcb0e71733c4%3Asrc%3Dieb%3Ao%3DAPN10656%3Atg%3D&p2=%5EAGH%5EBND431%5EYY%5EFR{searchTerms}
IE - HKLM\..\URLSearchHook: {089384fc-8dea-4f30-a3f3-8afbec53a203} - C:\Program Files (x86)\Avanquest_FR_2\prxtbAva0.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {19803860-b306-423c-bbb5-f60a7d82cde5} - C:\Program Files (x86)\WiseConvert_1.5\prxtbWis0.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {cfcb809c-3a22-4616-a916-6c007bd9d920} - C:\Program Files (x86)\FileConverter_1.5\prxtbFile.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {089384fc-8dea-4f30-a3f3-8afbec53a203} - C:\Program Files (x86)\Avanquest_FR_2\prxtbAva0.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {19803860-b306-423c-bbb5-f60a7d82cde5} - C:\Program Files (x86)\WiseConvert_1.5\prxtbWis0.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {cfcb809c-3a22-4616-a916-6c007bd9d920} - C:\Program Files (x86)\FileConverter_1.5\prxtbFile.dll (Conduit Ltd.)
IE - HKCU\..\SearchScopes\{54560FD3-0B8C-4E15-B441-3151BA46345C}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3241952
[2012/12/03 13:58:09 | 000,189,128 | ---- | M] () (No name found) -- C:\USERS\MICKAEL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\6CKGP9EF.DEFAULT\EXTENSIONS\{EEE6C361-6118-11DC-9C72-001320C79847}.XPI
O2 - BHO: (Avanquest FR 2 Toolbar) - {089384fc-8dea-4f30-a3f3-8afbec53a203} - C:\Program Files (x86)\Avanquest_FR_2\prxtbAva0.dll (Conduit Ltd.)
O2 - BHO: (WiseConvert 1.5 Toolbar) - {19803860-b306-423c-bbb5-f60a7d82cde5} - C:\Program Files (x86)\WiseConvert_1.5\prxtbWis0.dll (Conduit Ltd.)
O2 - BHO: (FileConverter 1.5 Toolbar) - {cfcb809c-3a22-4616-a916-6c007bd9d920} - C:\Program Files (x86)\FileConverter_1.5\prxtbFile.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - !{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Avanquest FR 2 Toolbar) - {089384fc-8dea-4f30-a3f3-8afbec53a203} - C:\Program Files (x86)\Avanquest_FR_2\prxtbAva0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (WiseConvert 1.5 Toolbar) - {19803860-b306-423c-bbb5-f60a7d82cde5} - C:\Program Files (x86)\WiseConvert_1.5\prxtbWis0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {A531D99C-5A22-449b-83DA-872725C6D0ED} - No CLSID value found.
O3 - HKLM\..\Toolbar: (FileConverter 1.5 Toolbar) - {cfcb809c-3a22-4616-a916-6c007bd9d920} - C:\Program Files (x86)\FileConverter_1.5\prxtbFile.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Avanquest FR 2 Toolbar) - {089384FC-8DEA-4F30-A3F3-8AFBEC53A203} - C:\Program Files (x86)\Avanquest_FR_2\prxtbAva0.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (FileConverter 1.5 Toolbar) - {CFCB809C-3A22-4616-A916-6C007BD9D920} - C:\Program Files (x86)\FileConverter_1.5\prxtbFile.dll (Conduit Ltd.)
O18 - Protocol\Handler\livecall - No CLSID value found
O18 - Protocol\Handler\msnim - No CLSID value found
O18 - Protocol\Handler\skype4com - No CLSID value found
[2012/12/03 09:58:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FileConverter_1.5
[2012/11/20 22:09:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WiseConvert_1.5

:Commands
[EMPTYTEMP]


▶ Clique sur "Correction" pour lancer la suppression.


▶ Poste le rapport qui logiquement s'ouvrira tout seul en fin de travail apres le redemarrage.

Ok merci je vais faire sa de suite ! :p

Voici voila :

All processes killed
========== OTL ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2431}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2431}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2431}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2431}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{089384fc-8dea-4f30-a3f3-8afbec53a203} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{089384fc-8dea-4f30-a3f3-8afbec53a203}\ deleted successfully.
C:\Program Files (x86)\Avanquest_FR_2\prxtbAva0.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{19803860-b306-423c-bbb5-f60a7d82cde5} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19803860-b306-423c-bbb5-f60a7d82cde5}\ deleted successfully.
C:\Program Files (x86)\WiseConvert_1.5\prxtbWis0.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{cfcb809c-3a22-4616-a916-6c007bd9d920} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cfcb809c-3a22-4616-a916-6c007bd9d920}\ deleted successfully.
C:\Program Files (x86)\FileConverter_1.5\prxtbFile.dll moved successfully.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{089384fc-8dea-4f30-a3f3-8afbec53a203} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{089384fc-8dea-4f30-a3f3-8afbec53a203}\ not found.
File C:\Program Files (x86)\Avanquest_FR_2\prxtbAva0.dll not found.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{19803860-b306-423c-bbb5-f60a7d82cde5} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19803860-b306-423c-bbb5-f60a7d82cde5}\ not found.
File C:\Program Files (x86)\WiseConvert_1.5\prxtbWis0.dll not found.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{cfcb809c-3a22-4616-a916-6c007bd9d920} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cfcb809c-3a22-4616-a916-6c007bd9d920}\ not found.
File C:\Program Files (x86)\FileConverter_1.5\prxtbFile.dll not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{54560FD3-0B8C-4E15-B441-3151BA46345C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{54560FD3-0B8C-4E15-B441-3151BA46345C}\ not found.
C:\USERS\MICKAEL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\6CKGP9EF.DEFAULT\EXTENSIONS\{EEE6C361-6118-11DC-9C72-001320C79847}.XPI moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{089384fc-8dea-4f30-a3f3-8afbec53a203}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{089384fc-8dea-4f30-a3f3-8afbec53a203}\ not found.
File C:\Program Files (x86)\Avanquest_FR_2\prxtbAva0.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{19803860-b306-423c-bbb5-f60a7d82cde5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19803860-b306-423c-bbb5-f60a7d82cde5}\ not found.
File C:\Program Files (x86)\WiseConvert_1.5\prxtbWis0.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cfcb809c-3a22-4616-a916-6c007bd9d920}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cfcb809c-3a22-4616-a916-6c007bd9d920}\ not found.
File C:\Program Files (x86)\FileConverter_1.5\prxtbFile.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\!{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{089384fc-8dea-4f30-a3f3-8afbec53a203} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{089384fc-8dea-4f30-a3f3-8afbec53a203}\ not found.
File C:\Program Files (x86)\Avanquest_FR_2\prxtbAva0.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{19803860-b306-423c-bbb5-f60a7d82cde5} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19803860-b306-423c-bbb5-f60a7d82cde5}\ not found.
File C:\Program Files (x86)\WiseConvert_1.5\prxtbWis0.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{A531D99C-5A22-449b-83DA-872725C6D0ED} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A531D99C-5A22-449b-83DA-872725C6D0ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{cfcb809c-3a22-4616-a916-6c007bd9d920} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cfcb809c-3a22-4616-a916-6c007bd9d920}\ not found.
File C:\Program Files (x86)\FileConverter_1.5\prxtbFile.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{089384FC-8DEA-4F30-A3F3-8AFBEC53A203} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{089384FC-8DEA-4F30-A3F3-8AFBEC53A203}\ not found.
File C:\Program Files (x86)\Avanquest_FR_2\prxtbAva0.dll not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{CFCB809C-3A22-4616-A916-6C007BD9D920} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CFCB809C-3A22-4616-A916-6C007BD9D920}\ not found.
File C:\Program Files (x86)\FileConverter_1.5\prxtbFile.dll not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\livecall\ deleted successfully.
File Protocol\Handler\livecall - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msnim\ deleted successfully.
File Protocol\Handler\msnim - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
C:\Program Files (x86)\FileConverter_1.5 folder moved successfully.
C:\Program Files (x86)\WiseConvert_1.5 folder moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 58264 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Mickael
->Temp folder emptied: 194744123 bytes
->Temporary Internet Files folder emptied: 330856 bytes
->Java cache emptied: 38931735 bytes
->FireFox cache emptied: 56728847 bytes
->Apple Safari cache emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 13279349 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 15041322 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67910 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 304,00 mb


OTL by OldTimer - Version 3.2.43.0 log created on 12142012_122733

Files\Folders moved on Reboot...
C:\Users\Mickael\AppData\Local\Temp\Fichiers Internet temporaires\Content.IE5\X2T2L44P\affich-26656489-virus-sur-mon-pc-aidez-moi[1].htm moved successfully.
C:\Users\Mickael\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Mickael\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\ED8654D5-B9F0-4DD9-B3E8-F8F560086FDF.dat moved successfully.
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

Tu es là ?

oui ^^

où en sont les soucis?

J'ai regarder dans demarrer > Paneaux de configuration > programmes et fonctionnalités et il y'a toujours Avanquest toolbar j'ai essayer de l'enlever mais rien n'y fais ...

Et j'ai encore des soucis :/ Par exemple quand je telecharge un truc avant ça prennais 5 seconde et la sa me marque 4 heures et le telechargement s'arrête :/

Dit moi comment je pourrais supprimer ce trojan banker qui y'a sur mon pc ...

Quel trojan banker ? Qui le détecte ? Un rapport ?

Je pense car dans l'un des rapports que je t'ai envoyé il y'a marqué Trojan banker ^^ et je pense que c'est a cause de cela que mon pc est moins performant qu'avant ...

C'était juste un installeur ...

Fais le ménage on verra après : https://forums-fec.be/entraide/viewtopic.php?f=11&t=229