Some guy I thought was better than this sent me some stuff infected with "Backdoor.SdBot.05.gen", how can I figure out how that trojan is configured or if it's an infected file at all? I remember seeing some apps which just stripped all the configureation settings from the awsome sub7/netbus trojans, but I dunno about SdBot (and before anyone jumps up and start screaming, that stuff up there was irony). And how about just asking him? Well, believe me I will ask whenever I get the hold of him again..

Anyway, I've tried to monitor packets and registery changes. Which resulted in nothing, nothing at all.

Any help would be appreciated.