Virus: vundo / virtumonde

Bonjour et Au secours!!!!,

J'ai d'abord essayé de parcourir les reponses pour eviter un post sur un thème déjà abordé, mais je ne suis toujours pas arrivée à me défaire de ce virus -

Voilà ce que j'ai fait:
j'ai d'abord ajouté AntiVir en plus de mon avast (peur que avast ne soit pas bien installé)

J'ai fait un scan vundofix mais il n'a rien trouvé, ensuite j'ai lancé virtumondebegone et voici les résultats:


[07/04/2008, 22:17:02] - VirtumundoBeGone v1.5 ( "C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temporary Internet Files\Content.IE5\3QVGV10S\VirtumundoBeGone[1].exe" )
[07/04/2008, 22:17:08] - Detected System Information:
[07/04/2008, 22:17:08] - Windows Version: 5.1.2600, Service Pack 2
[07/04/2008, 22:17:08] - Current Username: Compaq_Propriétaire (Admin)
[07/04/2008, 22:17:09] - Windows is in NORMAL mode.
[07/04/2008, 22:17:09] - Searching for Browser Helper Objects:
[07/04/2008, 22:17:09] - BHO 1: {1EB4BF0F-852F-4B75-B8FB-21EDAF9DC3C8} ()
[07/04/2008, 22:17:09] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/04/2008, 22:17:09] - Checking for HKLM\...\Winlogon\Notify\ljJBrqOH
[07/04/2008, 22:17:09] - Found: HKLM\...\Winlogon\Notify\ljJBrqOH - This is probably Virtumundo.
[07/04/2008, 22:17:09] - Assigning {1EB4BF0F-852F-4B75-B8FB-21EDAF9DC3C8} MSEvents Object
[07/04/2008, 22:17:10] - BHO list has been changed! Starting over...
[07/04/2008, 22:17:10] - BHO 1: {1EB4BF0F-852F-4B75-B8FB-21EDAF9DC3C8} (MSEvents Object)
[07/04/2008, 22:17:10] - ALERT: Found MSEvents Object!
[07/04/2008, 22:17:10] - BHO 2: {49F52407-CDCF-4C43-85BA-F1EBA31B961C} ()
[07/04/2008, 22:17:10] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/04/2008, 22:17:10] - Checking for HKLM\...\Winlogon\Notify\opnnlMCr
[07/04/2008, 22:17:10] - Key not found: HKLM\...\Winlogon\Notify\opnnlMCr, continuing.
[07/04/2008, 22:17:10] - BHO 3: {9C28EAFB-FF50-4F42-8D39-A006129CC907} ()
[07/04/2008, 22:17:10] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/04/2008, 22:17:10] - Checking for HKLM\...\Winlogon\Notify\jkkJbcCs
[07/04/2008, 22:17:11] - Found: HKLM\...\Winlogon\Notify\jkkJbcCs - This is probably Virtumundo.
[07/04/2008, 22:17:11] - Assigning {9C28EAFB-FF50-4F42-8D39-A006129CC907} MSEvents Object
[07/04/2008, 22:17:11] - BHO list has been changed! Starting over...
[07/04/2008, 22:17:11] - BHO 1: {1EB4BF0F-852F-4B75-B8FB-21EDAF9DC3C8} (MSEvents Object)
[07/04/2008, 22:17:11] - ALERT: Found MSEvents Object!
[07/04/2008, 22:17:11] - BHO 2: {49F52407-CDCF-4C43-85BA-F1EBA31B961C} ()
[07/04/2008, 22:17:11] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/04/2008, 22:17:11] - Checking for HKLM\...\Winlogon\Notify\opnnlMCr
[07/04/2008, 22:17:11] - Key not found: HKLM\...\Winlogon\Notify\opnnlMCr, continuing.
[07/04/2008, 22:17:12] - BHO 3: {9C28EAFB-FF50-4F42-8D39-A006129CC907} (MSEvents Object)
[07/04/2008, 22:17:12] - ALERT: Found MSEvents Object!
[07/04/2008, 22:17:12] - BHO 4: {E6B91C03-9ACC-4052-9195-A7F4DE71C3E6} ()
[07/04/2008, 22:17:12] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/04/2008, 22:17:12] - Checking for HKLM\...\Winlogon\Notify\vtUolKEt
[07/04/2008, 22:17:12] - Key not found: HKLM\...\Winlogon\Notify\vtUolKEt, continuing.
[07/04/2008, 22:17:12] - Finished Searching Browser Helper Objects
[07/04/2008, 22:17:12] - *** Detected MSEvents Object
[07/04/2008, 22:17:12] - Trying to remove MSEvents Object...
[07/04/2008, 22:17:13] - Terminating Process: IEXPLORE.EXE
[07/04/2008, 22:17:18] - Terminating Process: RUNDLL32.EXE
[07/04/2008, 22:17:20] - Disabling Automatic Shell Restart
[07/04/2008, 22:17:21] - Terminating Process: EXPLORER.EXE
[07/04/2008, 22:18:15] - Suspending the NT Session Manager System Service
[07/04/2008, 22:18:18] - Terminating Windows NT Logon/Logoff Manager
[07/04/2008, 22:18:20] - Re-enabling Automatic Shell Restart
[07/04/2008, 22:18:22] - File to disable: C:\WINDOWS\system32\ljJBrqOH.dll
[07/04/2008, 22:18:22] - Removing HKLM\...\Browser Helper Objects\{1EB4BF0F-852F-4B75-B8FB-21EDAF9DC3C8}
[07/04/2008, 22:18:23] - Removing HKCR\CLSID\{1EB4BF0F-852F-4B75-B8FB-21EDAF9DC3C8}
[07/04/2008, 22:18:25] - Adding Kill Bit for ActiveX for GUID: {1EB4BF0F-852F-4B75-B8FB-21EDAF9DC3C8}
[07/04/2008, 22:18:26] - Deleting ATLEvents/MSEvents Registry entries
[07/04/2008, 22:18:26] - Removing HKLM\...\Winlogon\Notify\ljJBrqOH
[07/04/2008, 22:18:27] - Searching for Browser Helper Objects:
[07/04/2008, 22:18:27] - BHO 1: {49F52407-CDCF-4C43-85BA-F1EBA31B961C} ()
[07/04/2008, 22:18:27] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/04/2008, 22:18:27] - Checking for HKLM\...\Winlogon\Notify\opnnlMCr
[07/04/2008, 22:18:27] - Key not found: HKLM\...\Winlogon\Notify\opnnlMCr, continuing.
[07/04/2008, 22:18:27] - BHO 2: {9C28EAFB-FF50-4F42-8D39-A006129CC907} (MSEvents Object)
[07/04/2008, 22:18:27] - ALERT: Found MSEvents Object!
[07/04/2008, 22:18:27] - BHO 3: {E6B91C03-9ACC-4052-9195-A7F4DE71C3E6} ()
[07/04/2008, 22:18:27] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/04/2008, 22:18:27] - Checking for HKLM\...\Winlogon\Notify\vtUolKEt
[07/04/2008, 22:18:27] - Key not found: HKLM\...\Winlogon\Notify\vtUolKEt, continuing.
[07/04/2008, 22:18:27] - Finished Searching Browser Helper Objects
[07/04/2008, 22:18:27] - *** Detected MSEvents Object
[07/04/2008, 22:18:27] - Trying to remove MSEvents Object...
[07/04/2008, 22:18:28] - Terminating Process: IEXPLORE.EXE
[07/04/2008, 22:18:28] - Terminating Process: RUNDLL32.EXE
[07/04/2008, 22:18:29] - Disabling Automatic Shell Restart
[07/04/2008, 22:18:29] - Terminating Process: EXPLORER.EXE
[07/04/2008, 22:18:29] - Suspending the NT Session Manager System Service
[07/04/2008, 22:18:30] - Terminating Windows NT Logon/Logoff Manager
[07/04/2008, 22:18:30] - Re-enabling Automatic Shell Restart
[07/04/2008, 22:18:30] - File to disable: C:\WINDOWS\system32\jkkJbcCs.dll
[07/04/2008, 22:18:30] - Removing HKLM\...\Browser Helper Objects\{9C28EAFB-FF50-4F42-8D39-A006129CC907}
[07/04/2008, 22:18:30] - Removing HKCR\CLSID\{9C28EAFB-FF50-4F42-8D39-A006129CC907}
[07/04/2008, 22:18:30] - Adding Kill Bit for ActiveX for GUID: {9C28EAFB-FF50-4F42-8D39-A006129CC907}
[07/04/2008, 22:18:31] - Deleting ATLEvents/MSEvents Registry entries
[07/04/2008, 22:18:31] - Removing HKLM\...\Winlogon\Notify\jkkJbcCs
[07/04/2008, 22:18:31] - Searching for Browser Helper Objects:
[07/04/2008, 22:18:31] - BHO 1: {49F52407-CDCF-4C43-85BA-F1EBA31B961C} ()
[07/04/2008, 22:18:31] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/04/2008, 22:18:31] - Checking for HKLM\...\Winlogon\Notify\opnnlMCr
[07/04/2008, 22:18:31] - Key not found: HKLM\...\Winlogon\Notify\opnnlMCr, continuing.
[07/04/2008, 22:18:31] - BHO 2: {E6B91C03-9ACC-4052-9195-A7F4DE71C3E6} ()
[07/04/2008, 22:18:31] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/04/2008, 22:18:31] - Checking for HKLM\...\Winlogon\Notify\vtUolKEt
[07/04/2008, 22:18:31] - Key not found: HKLM\...\Winlogon\Notify\vtUolKEt, continuing.
[07/04/2008, 22:18:31] - Finished Searching Browser Helper Objects
[07/04/2008, 22:18:31] - Finishing up...
[07/04/2008, 22:18:31] - A restart is needed.
[07/04/2008, 22:18:39] - Attempting to Restart via STOP error (Blue Screen!)

[07/05/2008, 2:39:11] - VirtumundoBeGone v1.5 ( "C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temporary Internet Files\Content.IE5\3QVGV10S\VirtumundoBeGone[1].exe" )
[07/05/2008, 2:39:19] - Detected System Information:
[07/05/2008, 2:39:19] - Windows Version: 5.1.2600, Service Pack 2
[07/05/2008, 2:39:19] - Current Username: Compaq_Propriétaire (Admin)
[07/05/2008, 2:39:19] - Windows is in NORMAL mode.
[07/05/2008, 2:39:19] - Searching for Browser Helper Objects:
[07/05/2008, 2:39:19] - BHO 1: {A6006408-1AFC-4546-9343-CA1FB40B59A4} ()
[07/05/2008, 2:39:19] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/05/2008, 2:39:19] - Checking for HKLM\...\Winlogon\Notify\opnnlMCr
[07/05/2008, 2:39:19] - Key not found: HKLM\...\Winlogon\Notify\opnnlMCr, continuing.
[07/05/2008, 2:39:19] - BHO 2: {E6B91C03-9ACC-4052-9195-A7F4DE71C3E6} ()
[07/05/2008, 2:39:19] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/05/2008, 2:39:19] - Checking for HKLM\...\Winlogon\Notify\vtUolKEt
[07/05/2008, 2:39:19] - Key not found: HKLM\...\Winlogon\Notify\vtUolKEt, continuing.
[07/05/2008, 2:39:19] - Finished Searching Browser Helper Objects
[07/05/2008, 2:39:19] - Finishing up...
[07/05/2008, 2:39:19] - Nothing found! Exiting...

[07/05/2008, 9:02:35] - VirtumundoBeGone v1.5 ( "C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temporary Internet Files\Content.IE5\3QVGV10S\VirtumundoBeGone[1].exe" )
[07/05/2008, 9:02:41] - Detected System Information:
[07/05/2008, 9:02:41] - Windows Version: 5.1.2600, Service Pack 2
[07/05/2008, 9:02:41] - Current Username: Compaq_Propriétaire (Admin)
[07/05/2008, 9:02:41] - Windows is in NORMAL mode.
[07/05/2008, 9:02:41] - Searching for Browser Helper Objects:
[07/05/2008, 9:02:41] - BHO 1: {30D4FBF3-AAF4-422D-BCEE-B09DA9D6F787} ()
[07/05/2008, 9:02:41] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/05/2008, 9:02:41] - Checking for HKLM\...\Winlogon\Notify\opnnlMCr
[07/05/2008, 9:02:41] - Key not found: HKLM\...\Winlogon\Notify\opnnlMCr, continuing.
[07/05/2008, 9:02:41] - BHO 2: {53707962-6F74-2D53-2644-206D7942484F} (Spybot-S&D IE Protection)
[07/05/2008, 9:02:41] - BHO 3: {E6B91C03-9ACC-4052-9195-A7F4DE71C3E6} ()
[07/05/2008, 9:02:41] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/05/2008, 9:02:41] - Checking for HKLM\...\Winlogon\Notify\vtUolKEt
[07/05/2008, 9:02:41] - Key not found: HKLM\...\Winlogon\Notify\vtUolKEt, continuing.
[07/05/2008, 9:02:41] - Finished Searching Browser Helper Objects
[07/05/2008, 9:02:41] - Finishing up...
[07/05/2008, 9:02:41] - Nothing found! Exiting...

[07/06/2008, 9:20:26] - VirtumundoBeGone v1.5 ( "C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temporary Internet Files\Content.IE5\MO911GGS\VirtumundoBeGone[1].exe" )
[07/06/2008, 9:20:31] - Detected System Information:
[07/06/2008, 9:20:31] - Windows Version: 5.1.2600, Service Pack 2
[07/06/2008, 9:20:31] - Current Username: Compaq_Propriétaire (Admin)
[07/06/2008, 9:20:31] - Windows is in NORMAL mode.
[07/06/2008, 9:20:31] - Searching for Browser Helper Objects:
[07/06/2008, 9:20:31] - BHO 1: {1B502BB3-F095-482C-B62F-72242A916C20} ()
[07/06/2008, 9:20:31] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/06/2008, 9:20:31] - Checking for HKLM\...\Winlogon\Notify\opnnlMCr
[07/06/2008, 9:20:31] - Key not found: HKLM\...\Winlogon\Notify\opnnlMCr, continuing.
[07/06/2008, 9:20:31] - BHO 2: {53707962-6F74-2D53-2644-206D7942484F} (Spybot-S&D IE Protection)
[07/06/2008, 9:20:31] - BHO 3: {E6B91C03-9ACC-4052-9195-A7F4DE71C3E6} ()
[07/06/2008, 9:20:31] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/06/2008, 9:20:31] - Checking for HKLM\...\Winlogon\Notify\vtUolKEt
[07/06/2008, 9:20:31] - Key not found: HKLM\...\Winlogon\Notify\vtUolKEt, continuing.
[07/06/2008, 9:20:31] - Finished Searching Browser Helper Objects
[07/06/2008, 9:20:31] - Finishing up...
[07/06/2008, 9:20:31] - Nothing found! Exiting...

ensuite j'ai lancé symantec remove tool: rien trouvé
J'ai après désactivé la restauration du système et ai relancé les scans..même résultats.
QUant à Spybot, il a trouvé dans les 60 'problèmes' mais lorsque je clique sur le bouton 'resoudre les problèmes, tout se fige (sablier) et dans gestionnaire programme: programme ne repond pas.
Je voulais ensuite installer BHO Demon, mais ne l'ai pas trouvé disponible.

Entretemps j'ai désinstallé AntiVir, car les fenêtres qui s'ouvraient tous les deux secondes avec ce Bip nonstop, et ca pendant les 2 jours depuis que j'essaye de mon débarasser du/des virus - j'en pouvais plus...

Si quelqu'un pourrait m'aider? Je ne sais plus quoi faire du tout

Merci