Scan Control Dumped @ 19:01:38 24-04-04
Live trojan found (in process memory): DDoS.RAT.SDBot or variant
File: C:\WINDOWS\System32\msnqmgr.exe

Live trojan found (in process memory): DDoS.RAT.SDBot or variant
File: C:\WINDOWS\System32\msnqmgr.exe


Does anyone have info about this trojan or how I can look it up? I already deleted it and its registry items but I'm just curious.

Hi Mischief, Shame you deleted it as DiamondCS would liked to have analysed it :)
If you get anymore please zip it up and send to submit@diamondcs.com.au

From within TDS3 you can look up the Help - Primary List for basic information

Here is more information about it:
http://www.sophos.com/virusinfo/analyses/trojircbots.html

Do a Google search for even more info'

Glad you got rid of it anyway :) - Pilli

Did you also run a HijackThis scan? you can post you log in the HJT forum to make sure you're really clean.
http://www.sophos.com/virusinfo/analyses/trojircbots.html

-{ Quote: "Did you also run a HijackThis scan? you can post you log in the HJT forum to make sure you're really clean.
http://www.sophos.com/virusinfo/analyses/trojircbots.html" }-

Whats a Hijackthis scan? Is it part of TDS or another program? I'm too tired to look it up. Going to sleep now.

HijackThis is one of the tools used on this (and many other forums) to see if your system is really clean from malware it it's autostarts.
There are quite some experts on this board to help you looking and fixing if necessary.
http://www.wilderssecurity.com/showthread.php?t=15913
You can also use the DiamondCS AutoStartViewer from their products page (free tools) or both :)