[Awshucks]

Recently, with the help of Microsoft I tweaked out a sign in issue with Windows Live Hotmail sign in. The issue was a blank page after sign in. Microsft responded with procedures to remedy the problem but it was not until the second technical advice was the issue resolved. All is fine with sign in with Windows Live Hotmail. A week later as I ran a complete scan with Spyware Sweeper the sweep detected LdPinch Trojan and the source (coming from)as HKLMSoftwaremicrosoftwindowscurrentversionmcd . All was quarantined after the scan. My understanding is that this trojan is a hacker but I am not understanding why would the source come from Microsoft. Any response would be appreciated.

[SpiritWind]

:D Hi :


ALWAYS BEST to ask such question(s) on the Support Forums of the program making the "detection"

and SpySweeper's is at www.castlecops.com/f163-Spysweeper.html . Perhaps their "Known

False Positives" Sticky may have the info in your situation !? Or use their "Online Customer Support"

at [http://webroot.custhelp.com/cgi-bin/webroot.cfg/php/enduser/home.php] .

May want to consider having the "Detection" double-checked by using [http://www.virustotal.com/] !?
Message was edited by: SpiritWind
I assume you mean "SpySweeper" and NOT "Spyware Sweeper", as you wrote in your Post !?

[rgreen4]

Don't confuse the source location on your computer with the true souce of the infection. The trojan was probably placed in that location, maybe in the hopes that it would avoid detection.

[required]

Ok I had the same Trojan show up the same day as Awshucks, detected by Webroots Spy Sweeper. The spyweeper programs days from expiring and I get this critical notice. I ran the file trough the www.virustotal.com/ recommended by spirtworld and it came back clean. I run spy sweeper a couple times a week (it had been run 4 days prior) and over a year it's found 8 problems. I run various security programs regularly, Spybot S&D, AVG daily, Comodo firewall, Spam Fighter, Spy Sweeper, and just as the programs about to run out it finds Ldpinch in the same location as Awshucks. None of the other programs found a problem and I have had no indication anything was amiss with the computer. Any chance it's a way to make sure you renew your Spy Sweeper subscription?

[required]

Should have checked Webroots board first. Found a new post in thier on line help as follows:

Webroot Antivirus/Spy Sweeper is falsely detecting a registry key associated with Windows Live Messenger as a trojan labeled 'LDPinch'. The registry entry is quarantined by Webroot Antivirus/Spy Sweeper, however, there is no severe impact to a user's system. The registry entry is simply restored after restarting the system.

Webroot has identified the erroneous detection and has removed the false positive from the latest definition update. Webroot Antivius/Spy Sweeper will automatically update itself once the definition update is available. If you have any questions or concerns regarding this false positive, please feel free to contact our Support Team by going to webroot.custhelp.com/ and submit a question to us by clicking on "Ask A Question"

Hope that resolves the issue for all.

[Awshucks]

A thanx to required and all others whom contributed.

A big Awshucks thank you....