I just got this brutal email from our local Resnet folks on campus:
Quote:
Your computer is exhibiting symptoms of being infected with sdbot-
<http://securityresponse.symantec.com/avcenter/venc/data/backdoor.sdbot.s.html>
Sdbot is a trojan, which is different from run-of-the-mill viruses in
that someone, somewhere can have complete control of your machine
whenever they wish. Why can't I just remove the virus? Well...
The problem with just cleaning up is that the machine has potentially
been under the complete control of someone else. You *can't* know what
else may have been done to the machine, nor what else may have been
installed. Examples of things that *could* have been placed on the
machine include sniffers, keystroke loggers, backdoor services,... The
list is endless. Removing the sdbot files won't touch any other
malware on the machine. Personal information, such as credit card
numbers, passwords, etc. are also in jeopardy while using a computer
infected with sdbot.
As a result of the infection, your network connection has been
disabled. In order to restore Internet access you will need to reformat
your computer using the instructions at our website-
Once you have reformatted, reply to this e-mail address stating you
have reformatted and give your first and last name and your connection
can be re-enabled.
After your connection is re-enabled, make sure you have the
University's anti-virus software installed-
Also, you will want to visit Windows Update and download all critical
patches-
-ResNet Staff
|
And my question is a pretty simple one. How the hell did I get an sdbot trojan? I never download anything, my computer is password protected, and I only visit a select few sites. For those of you who have read anything about my current roomate problems, I was wondering if there is a way to use a boot disk or something to give me an sdbot trojan. Because I honestly don't know how I could have gotten it any other way!