Trojaner-Board - mein Microsoft Essential hat TrojanerDropper Rotbrow.A,E und D entdeckt

Hallo, kämpfe immer noch mit Packs...
Code:
Farbar Service Scanner Version: 10-11-2013

Ran by Alena (administrator) on 14-11-2013 at 23:38:06

Running from "C:\Users\Alena\Downloads"

Microsoft® Windows Vista™ Home Premium  Service Pack 1 (X86)

Boot Mode: Normal

****************************************************************
 

Internet Services:

============
 

Connection Status:

==============

Localhost is accessible.

LAN connected.

Google IP is accessible.

Google.com is accessible.

Yahoo.com is accessible.
 
 

Windows Firewall:

=============
 

Firewall Disabled Policy: 

==================
 
 

System Restore:

============
 

System Restore Disabled Policy: 

========================
 
 

Security Center:

============
 
 

Windows Update:

============
 

Windows Autoupdate Disabled Policy: 

============================
 
 

Windows Defender:

==============

WinDefend Service is not running. Checking service configuration:

The start type of WinDefend service is set to Demand. The default start type is Auto.

The ImagePath of WinDefend service is OK.

The ServiceDll of WinDefend service is OK.
 
 

Windows Defender Disabled Policy: 

==========================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]

"DisableAntiSpyware"=DWORD:1
 
 

Other Services:

==============
 
 

File Check:

========

C:\Windows\system32\nsisvc.dll => MD5 is legit

C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit

C:\Windows\system32\dhcpcsvc.dll => MD5 is legit

C:\Windows\system32\Drivers\afd.sys

[2013-11-14 18:53] - [2011-04-21 14:16] - 0273408 ____A (Microsoft Corporation) 48EB99503533C27AC6135648E5474457
 

C:\Windows\system32\Drivers\tdx.sys => MD5 is legit

C:\Windows\system32\Drivers\tcpip.sys

[2013-11-14 18:39] - [2010-06-16 16:59] - 0898952 ____A (Microsoft Corporation) 782568AB6A43160A159B6215B70BCCE9
 

C:\Windows\system32\dnsrslvr.dll

[2013-11-14 18:52] - [2011-03-02 15:49] - 0086528 ____A (Microsoft Corporation) 4805D9A6D281C7A7DEFD9094DEC6AF7D
 

C:\Windows\system32\mpssvc.dll

[2013-11-13 20:19] - [2008-01-18 23:34] - 0393216 ____A (Microsoft Corporation) D1639BA315B0D79DEC49A4B0E1FB929B
 

C:\Windows\system32\bfe.dll

[2013-11-13 20:17] - [2008-01-18 23:33] - 0328704 ____A (Microsoft Corporation) 8582E233C346AEFE759833E8A30DD697
 

C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit

C:\Windows\system32\SDRSVC.dll => MD5 is legit

C:\Windows\system32\vssvc.exe

[2013-11-13 20:16] - [2008-01-18 23:33] - 1054720 ____A (Microsoft Corporation) D5FB73D19C46ADE183F968E13F186B23
 

C:\Windows\system32\wscsvc.dll

[2013-11-13 20:16] - [2008-01-18 23:37] - 0061440 ____A (Microsoft Corporation) 683DD16B590372F2C9661D277F35E49C
 

C:\Windows\system32\wbem\WMIsvc.dll

[2013-11-13 20:16] - [2008-01-18 23:37] - 0161792 ____A (Microsoft Corporation) 00B79A7C984678F24CF052E5BEB3A2F5
 

C:\Windows\system32\wuaueng.dll

[2013-11-13 20:16] - [2008-01-18 23:37] - 1695232 ____A (Microsoft Corporation) D79538B67FA641E986855DEF651E78FE
 

C:\Windows\system32\qmgr.dll

[2013-11-13 20:18] - [2008-01-18 23:36] - 0758272 ____A (Microsoft Corporation) 02ED7B4DBC2A3232A389106DA7515C3D
 

C:\Windows\system32\es.dll

[2012-11-17 08:38] - [2012-11-17 08:38] - 0269312 ____A (Microsoft Corporation) 3CB3343D720168B575133A0A20DC2465
 

C:\Windows\system32\cryptsvc.dll

[2013-11-13 20:18] - [2008-01-18 23:34] - 0128000 ____A (Microsoft Corporation) 6DE363F9F99334514C46AEC02D3E3678
 

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit

C:\Windows\system32\ipnathlp.dll => MD5 is legit

C:\Windows\system32\iphlpsvc.dll

[2012-11-17 03:43] - [2012-11-17 03:43] - 0190464 ____A (Microsoft Corporation) 6A35D233693EDC29A12742049BC5E37F
 

C:\Windows\system32\svchost.exe => MD5 is legit

C:\Windows\system32\rpcss.dll

[2012-11-17 03:47] - [2012-11-17 03:47] - 0551424 ____A (Microsoft Corporation) 301AE00E12408650BADDC04DBC832830
 
 
 

**** End of log ****