There’s been quite a few of these Winldra variants we’ve been finding (this is the keylogger behind the identity theft ring we stumbled onto a while back).
Not one of the machines we found infected were running Windows XP Service Pack 2. ALL of the infestations are occurring on older Windows XP systems.
During one test, I went to a site that installed the keylogger. Windows XP SP2, no problem. Didn’t even touch the machine. Unpatched — zing! Instantly infected.
To those that insist on not upgrading to SP2, you are nuts. Sorry, it’s the plain truth. You’re playing with fire.