Aliases
Backdoor.SdBot.gen, W32/Sdbot.worm.gen, W32.HLLW.Donk, BKDR_SDBOT.GEN
Type
Trojan
Description
Troj/Sdbot-GN is a backdoor Trojan which runs in the background as a service process and allows unauthorised remote access to the computer via IRC channels.
Troj/Sdbot-GN copies itself to the Windows system folder as netlogin32.exe and cool.exe and creates the following registry entry so that the Trojan is run when a user logs on to Windows:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\
Microsoft System Checkup = netlogin32.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices\
Microsoft System Checkup = netlogin32.exe
The following registry entry will also be created:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\
NT Logging Service = syslog32.exe
http://www.sophos.com/virusinfo/analyses/trojsdbotgn.html

Chowhound
Comic Vine
GameFAQs
GameSpot
Giant Bomb
TechRepublic