Ups. Sorry^^ Nu ist hier das hoffentlich komplette:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~~
Funde für "infected"
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~~
Sat Jul 16 18:55:04 2005 => File C:\WINDOWS\system32\DrPMon.dll infected by "Trojan.Win32.Agent.db" Virus! Action Taken: No Action Taken.
Sat Jul 16 18:55:19 2005 => File c:\windows\system32\dwrszo.exe infected by "Trojan.Win32.Agent.cp" Virus! Action Taken: No Action Taken.
Sat Jul 16 18:55:38 2005 => File c:\windows\system32\dwrszo.exe infected by "Trojan.Win32.Agent.cp" Virus! Action Taken: No Action Taken.
Sat Jul 16 19:03:41 2005 => File C:\Dokumente und Einstellungen\Kevin\Lokale Einstellungen\Temporary Internet Files\Content.IE5\01234567\DrPMon[1].dll infected by "Trojan.Win32.Agent.db" Virus! Action Taken: No Action Taken.
Sat Jul 16 19:04:30 2005 => File C:\Dokumente und Einstellungen\Kevin\Lokale Einstellungen\Temporary Internet Files\Content.IE5\0VQFGHUD\svcproc[1].exe infected by "Trojan.Win32.Stervis.c" Virus! Action Taken: No Action Taken.
Sat Jul 16 19:05:06 2005 => File C:\Dokumente und Einstellungen\Kevin\Lokale Einstellungen\Temporary Internet Files\Content.IE5\CTAJ8TYJ\Poller[1].exe infected by "Trojan.Win32.Agent.cp" Virus! Action Taken: No Action Taken.
Sat Jul 16 19:45:12 2005 => Scanning File C:\Quarantäne\infected.log [**]
Sat Jul 16 19:45:13 2005 => File C:\Quarantäne\svcproc.exe.Vir infected by "Trojan.Win32.Stervis.c" Virus! Action Taken: No Action Taken.
Sat Jul 16 19:45:14 2005 => File C:\Quarantäne\svcproc.exe.Vir.0 infected by "Trojan.Win32.Stervis.c" Virus! Action Taken: No Action Taken.
Sat Jul 16 19:45:14 2005 => File C:\Quarantäne\svcproc.exe.Vir.1 infected by "Trojan.Win32.Stervis.c" Virus! Action Taken: No Action Taken.
Sat Jul 16 19:45:14 2005 => File C:\Quarantäne\svcproc.exe.Vir.2 infected by "Trojan.Win32.Stervis.c" Virus! Action Taken: No Action Taken.
Sat Jul 16 19:45:14 2005 => File C:\Quarantäne\svcproc.exe.Vir.3 infected by "Trojan.Win32.Stervis.c" Virus! Action Taken: No Action Taken.
Sat Jul 16 19:45:14 2005 => File C:\Quarantäne\svcproc.exe.Vir.4 infected by "Trojan.Win32.Stervis.c" Virus! Action Taken: No Action Taken.
Sat Jul 16 20:02:48 2005 => File C:\WINDOWS\system32\DrPMon.dll infected by "Trojan.Win32.Agent.db" Virus! Action Taken: No Action Taken.
Sat Jul 16 20:10:45 2005 => File D:\Polaris\Download\Xray.exe infected by "HackTool.Win32.Xray.a" Virus! Action Taken: No Action Taken.
Sat Jul 16 20:33:29 2005 => Total Disinfected Files: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~~
Funde für "tagged"
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~~
Sat Jul 16 18:55:21 2005 => File D:\Polaris\polaris.exe tagged as not-a-virus:Client-IRC.Win32.mIRC.601. No Action Taken.
Sat Jul 16 19:03:00 2005 => File C:\Dokumente und Einstellungen\Kevin\Lokale Einstellungen\Temp\nsvAE6.tmp tagged as "not-a-virus:AdWare.BetterInternet". Action Taken: No Action Taken.
Sat Jul 16 19:03:22 2005 => File C:\Dokumente und Einstellungen\Kevin\Lokale Einstellungen\Temp\VRV\aurareco.exe tagged as "not-a-virus:AdWare.BetterInternet". Action Taken: No Action Taken.
Sat Jul 16 19:04:09 2005 => File C:\Dokumente und Einstellungen\Kevin\Lokale Einstellungen\Temporary Internet Files\Content.IE5\0VQFGHUD\aurora[1].exe tagged as "not-a-virus:AdWare.BetterInternet.c". Action Taken: No Action Taken.
Sat Jul 16 19:05:04 2005 => File C:\Dokumente und Einstellungen\Kevin\Lokale Einstellungen\Temporary Internet Files\Content.IE5\CTAJ8TYJ\Nail[1].exe tagged as "not-a-virus:AdWare.BetterInternet.b". Action Taken: No Action Taken.
Sat Jul 16 19:07:37 2005 => File C:\Games\Drug Wars\DWTrainer.exe tagged as not-a-virus:CrackTool.Win32.HotHook. No Action Taken.
Sat Jul 16 19:53:43 2005 => File C:\WINDOWS\Nail.exe tagged as "not-a-virus:AdWare.BetterInternet.b". Action Taken: No Action Taken.
Sat Jul 16 20:07:28 2005 => File D:\downloads\mirc616.exe tagged as not-a-virus:Client-IRC.Win32.mIRC.616. No Action Taken.
Sat Jul 16 20:09:28 2005 => File D:\mIRC\mirc.exe tagged as not-a-virus:Client-IRC.Win32.mIRC.616. No Action Taken.
Sat Jul 16 20:10:25 2005 => File D:\Polaris\Addons\trsc-winamp_plugin__103.exe tagged as not-a-virus:Tool.Win32.Reboot. No Action Taken.
Sat Jul 16 20:10:49 2005 => File D:\Polaris\polaris.exe tagged as not-a-virus:Client-IRC.Win32.mIRC.601. No Action Taken.
Sat Jul 16 20:22:37 2005 => File E:\Drugwars 1.3.1080.rar tagged as not-a-virus:CrackTool.Win32.HotHook. No Action Taken.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~~
Statistiken:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~~
Sat Jul 16 20:33:29 2005 => Total Virus(es) Found: 26
Sat Jul 16 20:33:29 2005 => Total Errors: 84
Sat Jul 16 20:33:29 2005 => Time Elapsed: 01:38:39
Sat Jul 16 20:33:29 2005 => Total Objects Scanned: 87710
Sat Jul 16 18:54:20 2005 => Virus Database Date: 2005/07/16
Sat Jul 16 20:33:29 2005 => Virus Database Date: 2005/07/16
Sat Jul 16 20:43:55 2005 => Virus Database Date: 2005/07/16
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~~
~~~~~~~ © Haui ;-) ~~~~~~~
~~~~~~~ Dank an Cidre ~~~~~~~

@Phytagoras
Agent.db
hier ein paar infos
http://www.sophos.de/virusinfo/analy...ojagentdb.html
ich kann dir nur raten dein system neu aufzusetzen, da es sich um ein backdoor handelt.
hier eine anleitung http://www.trojaner-board.de/showpos...28&postcount=2


sry
chaosman