50 € Virus Windows wird "geblockt"

ComboFix 12-03-18.04 - admoin 20.03.2012   9:32.4.2 - x86
Microsoft Windows 7 Professional   6.1.7601.1.1252.49.1031.18.2013.1160 [GMT 1:00]
ausgeführt von:: c:\users\Nils\Desktop\ComboFix.exe
AV: Avira Desktop *Enabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Enabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Vorheriger Suchlauf -------
.
c:\users\Gast\AppData\Local\Mozilla\Firefox\Profiles\kt0qu9kz.default\Cache\0\46\CD044d01
c:\users\Gast\AppData\Local\Mozilla\Firefox\Profiles\kt0qu9kz.default\Cache\1\31\4F022d01
c:\users\Gast\AppData\Local\Mozilla\Firefox\Profiles\kt0qu9kz.default\Cache\2\28\EB555d01
c:\users\Gast\AppData\Local\Mozilla\Firefox\Profiles\kt0qu9kz.default\Cache\2\A1\F1A55d01
c:\users\Gast\AppData\Local\Mozilla\Firefox\Profiles\kt0qu9kz.default\Cache\3\6D\8EE16d01
c:\users\Gast\AppData\Local\Mozilla\Firefox\Profiles\kt0qu9kz.default\Cache\4\2D\E4FCCd01
c:\users\Gast\AppData\Local\Mozilla\Firefox\Profiles\kt0qu9kz.default\Cache\5\49\C9491d01
c:\users\Gast\AppData\Local\Mozilla\Firefox\Profiles\kt0qu9kz.default\Cache\6\7C\65C70d01
c:\users\Gast\AppData\Local\Mozilla\Firefox\Profiles\kt0qu9kz.default\Cache\9\DE\7C592d01
c:\users\Gast\AppData\Local\Mozilla\Firefox\Profiles\kt0qu9kz.default\Cache\D\A1\4A9CCd01
c:\users\Gast\AppData\Local\Mozilla\Firefox\Profiles\kt0qu9kz.default\Cache\E\52\AEF5Dd01
.
.
(((((((((((((((((((((((   Dateien erstellt von 2012-02-20 bis 2012-03-20  ))))))))))))))))))))))))))))))
.
.
2012-03-20 08:42 . 2012-03-20 08:42	--------	d-----w-	c:\users\Gast\AppData\Local\temp
2012-03-20 08:42 . 2012-03-20 08:42	--------	d-----w-	c:\users\Default\AppData\Local\temp
2012-03-20 08:14 . 2012-03-20 08:42	--------	d-----w-	c:\users\Nils\AppData\Local\temp
2012-03-20 08:14 . 2012-03-20 08:39	--------	d-----w-	c:\users\admoin\AppData\Local\temp
2012-03-20 07:56 . 2012-02-08 06:03	6552120	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{31BE8D34-6A03-4348-8702-4D36E8EE382B}\mpengine.dll
2012-03-19 16:19 . 2012-03-19 16:19	--------	d-----w-	c:\program files\ESET
2012-03-17 16:23 . 2012-03-17 16:23	--------	d-----w-	c:\program files\Common Files\Java
2012-03-17 16:23 . 2012-03-17 16:22	476904	----a-w-	c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
2012-03-17 16:22 . 2012-03-17 16:22	--------	d-----w-	c:\program files\Java
2012-03-16 19:34 . 2011-11-19 14:50	3968368	----a-w-	c:\windows\system32\ntkrnlpa.exe
2012-03-16 19:34 . 2011-11-19 14:50	3913584	----a-w-	c:\windows\system32\ntoskrnl.exe
2012-03-16 13:47 . 2012-03-13 04:38	97208	----a-w-	c:\program files\Mozilla Firefox\components\browsercomps.dll
2012-03-16 13:47 . 2012-03-13 04:36	44472	----a-w-	c:\program files\Mozilla Firefox\mozglue.dll
2012-03-16 13:47 . 2012-03-13 04:36	592824	----a-w-	c:\program files\Mozilla Firefox\gkmedias.dll
2012-03-16 13:47 . 2012-03-13 04:35	626688	----a-w-	c:\program files\Mozilla Firefox\msvcr80.dll
2012-03-16 13:47 . 2012-03-13 04:35	548864	----a-w-	c:\program files\Mozilla Firefox\msvcp80.dll
2012-03-16 13:47 . 2012-03-13 04:35	479232	----a-w-	c:\program files\Mozilla Firefox\msvcm80.dll
2012-03-16 12:33 . 2012-02-03 03:54	2343424	----a-w-	c:\windows\system32\win32k.sys
2012-03-16 12:33 . 2012-02-10 05:38	1077248	----a-w-	c:\windows\system32\DWrite.dll
2012-03-16 12:32 . 2012-01-25 05:32	58880	----a-w-	c:\windows\system32\rdpwsx.dll
2012-03-16 12:32 . 2012-01-25 05:32	129536	----a-w-	c:\windows\system32\rdpcorekmts.dll
2012-03-16 12:32 . 2012-01-25 05:27	8192	----a-w-	c:\windows\system32\rdrmemptylst.exe
2012-03-16 12:32 . 2012-02-17 05:34	826880	----a-w-	c:\windows\system32\rdpcore.dll
2012-03-16 12:32 . 2012-02-17 04:14	183808	----a-w-	c:\windows\system32\drivers\rdpwd.sys
2012-03-16 12:32 . 2012-02-17 04:13	24576	----a-w-	c:\windows\system32\drivers\tdtcp.sys
2012-03-05 20:40 . 2012-03-05 20:40	--------	d-----w-	c:\users\Gast\AppData\Roaming\OpenOffice.org
2012-03-05 16:32 . 2012-03-14 18:38	--------	d-----w-	c:\users\Gast\AppData\Roaming\skypePM
2012-03-05 16:32 . 2012-03-16 12:23	--------	d-----w-	c:\users\Gast\AppData\Roaming\Skype
2012-03-05 15:00 . 2012-03-05 15:00	--------	d-----w-	c:\users\Gast\AppData\Roaming\Avira
2012-02-29 23:22 . 2012-02-29 23:22	--------	d-----w-	c:\users\admoin\AppData\Roaming\Avira
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-17 16:22 . 2010-07-04 13:51	472808	----a-w-	c:\windows\system32\deployJava1.dll
2012-03-01 09:43 . 2011-06-03 09:12	414368	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-23 08:18 . 2010-07-03 12:44	237072	------w-	c:\windows\system32\MpSigStub.exe
2012-02-15 13:14 . 2012-02-09 11:19	137416	----a-w-	c:\windows\system32\drivers\avipbb.sys
2012-01-04 08:58 . 2012-02-16 14:31	442880	----a-w-	c:\windows\system32\ntshrui.dll
2011-12-30 05:27 . 2012-02-16 14:31	478720	----a-w-	c:\windows\system32\timedate.cpl
2012-03-13 04:38 . 2012-03-16 13:47	97208	----a-w-	c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\\Phone\Skype.exe" [2010-05-13 26192168]
"CTSyncU.exe"="c:\program files\Creative\Sync Manager Unicode\CTSyncU.exe" [2007-07-17 868352]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TpShocks"="TpShocks.exe" [2010-07-01 337256]
"TPHOTKEY"="c:\program files\Lenovo\HOTKEY\LVOSDSVC.exe" [2010-07-27 64952]
"PWMTRV"="c:\progra~1\ThinkPad\UTILIT~1\PWMTR32V.DLL" [2010-08-25 894312]
"AcWin7Hlpr"="c:\program files\Lenovo\Access Connections\AcTBenabler.exe" [2010-09-17 31592]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-04-22 1725736]
"CTCheck"="c:\program files\Creative\Creative ZEN\ZEN Media Explorer\CTCheck.exe" [2007-11-06 397312]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-02-11 137752]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-02-11 171032]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-11 172568]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-01-03 37296]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-12-15 258512]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
" Malwarebytes Anti-Malware  (cleanup)"="c:\programdata\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll" [2012-01-13 1081416]
.
c:\users\Nils\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.2.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2010-5-20 1195008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-08-11 136176]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-08-11 136176]
R3 NETw5s32;Intel(R) Wireless WiFi Link der Serie 5000 Adaptertreiber für Windows 7 32-Bit;c:\windows\system32\DRIVERS\NETw5s32.sys [2010-03-17 6758912]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000-Serie - Adaptertreiber für Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 Power Manager DBC Service;Power Manager DBC Service;c:\program files\ThinkPad\Utilities\PWMDBSVC.EXE [2010-08-25 75112]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S0 TPDIGIMN;TPDIGIMN;c:\windows\System32\DRIVERS\ApsHM86.sys [2010-06-16 20592]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-12-15 36000]
S1 lenovo.smi;Lenovo System Interface Driver;c:\windows\system32\DRIVERS\smiif32.sys [2008-05-12 13480]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 AntiVirSchedulerService;Avira Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-12-15 86224]
S2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;c:\program files\LENOVO\VIRTSCRL\lvvsst.exe [2010-04-07 93032]
S2 LFKAS;Service of LFKA;c:\program files\Lenovo\ATK Hotkey\LFKAS.exe [2009-04-15 208896]
S2 TPHKSVC;Anzeige am Bildschirm;c:\program files\LENOVO\HOTKEY\TPHKSVC.exe [2010-04-07 63928]
S2 vpnagent;Cisco AnyConnect VPN Agent;c:\program files\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe [2010-08-16 592120]
S3 MTsensor32;PU ACPI UTILITY;c:\windows\system32\DRIVERS\PuAcpi32.sys [2009-06-04 14344]
S3 NETwNs32;___ Intel(R) Wireless WiFi Link der Serie 5000 Adaptertreiber für Windows 7 32-Bit;c:\windows\system32\DRIVERS\NETwNs32.sys [2010-07-14 6814720]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-06-23 275048]
S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
.
.
Inhalt des "geplante Tasks" Ordners
.
2012-03-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-08-11 07:58]
.
2012-03-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-08-11 07:58]
.
2012-03-20 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
- c:\program files\PC-Doctor\uaclauncher.exe [2010-12-13 21:55]
.
2012-03-20 c:\windows\Tasks\SystemToolsDailyTest.job
- c:\program files\PC-Doctor\pcdrcui.exe [2010-12-13 21:55]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2967869
mStart Page = hxxp://www.bigseekpro.com/splitcam/{40C3E58D-7C5A-4B7C-B9A1-4D521A33BDDC}
IE: Free YouTube Download - c:\users\admoin\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
TCP: DhcpNameServer = 192.168.2.1
DPF: 55963676-2F5E-4BAF-AC28-CF26AA587566 - vpnweb.cab
FF - ProfilePath - c:\users\admoin\AppData\Roaming\Mozilla\Firefox\Profiles\zq91q2yq.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2967869&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - GIGA Deutsch Customized Web Search
FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT2967869&SearchSource=13
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'Explorer.exe'(7260)
c:\progra~1\ThinkPad\UTILIT~1\PWMTR32V.DLL
c:\progra~1\ThinkPad\UTILIT~1\GR\PWMRT32V.DLL
c:\progra~1\ThinkPad\UTILIT~1\PWMIF32V.DLL
.
Zeit der Fertigstellung: 2012-03-20  09:44:43
ComboFix-quarantined-files.txt  2012-03-20 08:44
ComboFix2.txt  2012-03-18 20:58
.
Vor Suchlauf: 17 Verzeichnis(se), 30.800.756.736 Bytes frei
Nach Suchlauf: 18 Verzeichnis(se), 30.606.938.112 Bytes frei
.
- - End Of File - - 1E93833519317E05B650189813FDED70