MSN Virus

AngelJeany

Hallo,
Ich habe seit gestern auch diesen tollen MSN Virus (myalbum2007...) und versuch den so schnell wie möglich wieder loszubekommen!

Ich habe eine Datenträgerbereinigung gemacht und mein System bei ComboFix durchlaufen lassen.

2007-07-01 16:27:15 -------- dc----w C:\DOKUME~1\JEANNE~1\ANWEND~1\Screenshot Sender
2007-07-01 15:30:38 -------- dc----w C:\Programme\Windows Live Safety Center
2007-06-09 11:47:37 -------- dc----w C:\Programme\Messenger Plus! Live
2007-05-29 15:47:38 -------- dc----w C:\Programme\PowerLame
2007-05-19 11:44:36 -------- dc----w C:\Programme\MSN Messenger
2007-05-16 15:11:44 683,520 -c--a-w C:\WINDOWS\system32\inetcomm.dll
2007-04-25 14:22:27 144,896 -c--a-w C:\WINDOWS\system32\schannel.dll
2007-04-18 16:13:24 2,854,400 -c--a-w C:\WINDOWS\system32\msi.dll
2007-04-16 20:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll
2007-04-16 20:45:54 1,710,936 -c--a-w C:\WINDOWS\system32\wuaueng.dll
2007-04-16 20:45:48 549,720 -c--a-w C:\WINDOWS\system32\wuapi.dll
2007-04-16 20:45:42 325,976 -c--a-w C:\WINDOWS\system32\wucltui.dll
2007-04-16 20:45:36 203,096 -c--a-w C:\WINDOWS\system32\wuweb.dll
2007-04-16 20:45:28 92,504 -c--a-w C:\WINDOWS\system32\cdm.dll
2007-04-16 20:45:20 53,080 -c--a-w C:\WINDOWS\system32\wuauclt.exe
2007-04-16 20:45:20 43,352 -c--a-w C:\WINDOWS\system32\wups2.dll


((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
{53707962-6F74-2D53-2644-206D7942484F}=C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2005-05-31 01:04]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Programme\Java\jre1.6.0_01\bin\ssv.dll [2007-03-14 03:43]
{9030D464-4C02-4ABF-8ECC-5164760863C6}=C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-04-17 13:32]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"="C:\Programme\Gemeinsame Dateien\Ahead\Lib\NeroCheck.exe" [2006-01-12 15:40]
"LogitechCommunicationsManager"="C:\Programme\Gemeinsame Dateien\LogiShrd\LComMgr\Communications_Helper.exe" [2007-02-08 01:12]
"LogitechQuickCamRibbon"="C:\Programme\Logitech\QuickCam10\QuickCam10.exe" [2007-02-08 01:13]
"ShStatEXE"="C:\Programme\Network Associates\VirusScan\SHSTAT.exe" [2003-09-29 07:10]
"McAfeeUpdaterUI"="C:\Programme\Network Associates\Common Framework\UpdaterUI.exe" [2003-09-10 03:11]
"SunJavaUpdateSched"="C:\Programme\Java\jre1.6.0_01\bin\jusched.exe" [2007-03-14 03:43]
"Adobe Reader Speed Launcher"="C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 03:06]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-30 14:00]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe" [2006-11-16 19:04]
"MsnMsgr"="C:\Programme\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:55]
"MSMSGS"="C:\Programme\Messenger\msmsgs.exe" [2004-10-13 18:24]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"{72953178-2755-4F0D-8069-E91B886DF860}"="sysprinters.dll" []

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"appinit_dlls"=NVDESK32.DLL


**************************************************************************

catchme 0.3.721 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-07-02 10:53:00
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Completion time: 2007-07-02 10:53:57

--- E O F ---

Was soll ich jetzt machen?