Generic.sdbot.aeedce9e

Bonjour,

Generic.Sdbot.AEEDCE9E est-il un virus ou malware quelconque ?

Bitdefender 2008 sous vista premium le détecte mais il se trouve dans une archive et il ne peut le supprimer

Apparemment il a été détecté une première fois avant meme que l'ordi que je viens de faire assembler ne me soit livré; serait-ce un des composants des pilotes installés par le constructeur ?

Merci d'avance

Trouver d'autres publications étiquetées avec

Réponses

unknown

Hello toupiti,

and sorry for using English, but I cannot handle French as well as I would need for answering.

The Sdbot name is used for trojans (not viruses) with a malware action described here:

http:// www.bitdefender. com/ VIRUS-1000034-en--Backdoor.SDBot.Gen.html

(remove all the <space> characters from the link)

Please send me a copy of the (infected) file for analysis and afterwards I will be able to answer your second question, too.

Have a nice day!

toupiti

Hello toupiti,

and sorry for using English, but I cannot handle French as well as I would need for answering.

The Sdbot name is used for trojans (not viruses) with a malware action described here:

http:// www.bitdefender. com/ VIRUS-1000034-en--Backdoor.SDBot.Gen.html

(remove all the <space> characters from the link)

Please send me a copy of the (infected) file for analysis and afterwards I will be able to answer your second question, too.

Have a nice day!

Thank you for reply

I do not know exactly wich file was infected; Bitdefender said that this malware was inside an archive and it could not do anything

But I also saw in the "évènements" that this malware had been found on august 29th, that is to say the day windows was installed by the manufacturer

I am not beside this computer yet but, in a few days, I'll send you a copy of the screen of bitdefender

Thanks and i'll be back soon

Toupiti

toupiti

Hello toupiti,

and sorry for using English, but I cannot handle French as well as I would need for answering.

The Sdbot name is used for trojans (not viruses) with a malware action described here:

http:// www.bitdefender. com/ VIRUS-1000034-en--Backdoor.SDBot.Gen.html

(remove all the <space> characters from the link)

Please send me a copy of the (infected) file for analysis and afterwards I will be able to answer your second question, too.

Have a nice day!

Hello Lirima,

I am back; I do not find how to insert pictures in this reply, so i have sent my word document on the web, you can find it here:

http://perso.orange.fr/agnes.g/agl/bitdefe...-2007-09-06.doc

May be I should send this mail on the english forum ? tell me what is the best

sorry for my bad english !

toupiti

unknown

Hello again,

Please send me one of the files detected as SdBot (all the 5 files are identical) because it seems that it is indeed a trojan.

If your computer was connected to a network, it may have been infected while installing windows. It happens sometimes...

[Your English is good, but you can use French if you feel more comfortable, I will do my best to understand.]

[i think it's ok to let the topic here.]

toupiti

Hello again,

Please send me one of the files detected as SdBot (all the 5 files are identical) because it seems that it is indeed a trojan.

If your computer was connected to a network, it may have been infected while installing windows. It happens sometimes...

[Your English is good, but you can use French if you feel more comfortable, I will do my best to understand.]

[i think it's ok to let the topic here.]

OK, please tell me the way to send you this file

Thank you

unknown

Choose one of the infected files and put it into a password protected archive. You can use any archiver you'd like. If don't have any, you may download and use 7-zip from http:// www.7-zip.org/ download.html (remove <space> characters from link).

Then send me the archive by e-mail (as attachment) to lboeriu@bitdefender.com.

If you have any questions about following these steps, please ask.

toupiti

Choose one of the infected files and put it into a password protected archive. You can use any archiver you'd like. If don't have any, you may download and use 7-zip from http:// www.7-zip.org/ download.html (remove <space> characters from link).

Then send me the archive by e-mail (as attachment) to lboeriu@bitdefender.com.

If you have any questions about following these steps, please ask.

bonjour Lirima,

je reprends le français; voila la situation actuelle:

Apres une nouvelle analyse, bitdefender a détecté un fichier infecté (woot.wink) à la racine C: mais il ne pouvait rien faire.

J'ai décidé de le copier-coller sur une disquette; Bitdefender l'a alors immédiatement intercepté et mis en quarantaine.

J'ai alors supprimé les points de restauration et défragmenté puis lancé plusieurs analyses approfondies avec Bitdefender: il ne trouve plus de fichier infecté pour l'instant ... et windows vista premium semble tourner normalement.

Je reste vigilante !

Théoriquement, tous les fichiers infectés ont été automatiquement envoyés à Bitdefender.

Les anciens fichiers infectés sont maintenant en quarantaine mais:

1) je ne sais pas comment on y accède

2) N'est-il pas dangereux de travailler avec ?

Que me conseilles-tu ? Le problème semble résolu (humm... j'espère ! )

Merci et bon dimanche !

Toupiti

(if you want I can try to say all this in english too)

unknown

Hello toupiti,

If the infected files were quarantined, then you are safe. The files were moved to c:\program files\softwin\<bitdefender version>\quarantine (you should translate the path for the French version) and they are stored there in a non-executable form, so you can handle them without risks.