Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

Troj/LdPinchFam

Mar 11, 2004 11:57PM PST

Aliases
PWS-LDPinch, PWSteal.Trojan

Type
Trojan

Members of the LdPinch family of Trojans send passwords and confidential information to a remote location and provides backdoor access to the computer.
When first run the Trojan moves itself to the Windows folder and adds its pathname to the following registry entry, to run itself on startup:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\putil

The Trojan periodically attempts to send confidential information to a remote location. The information includes:

More: http://www.sophos.com/virusinfo/analyses/trojldpinchfam.html

Discussion is locked