Search Solo Products, Services and others Overview of the Site Design and Build a Career Contact us for customer service and other feedback info SRN Micro Privacy Statement

 


NETD32.EXE PROCESS INFORMATION

Process Name  : Netd32exe

Process Path : %SYSTEM%\netd32.exe [ C:\Windows\System32\netd32.exe ]

Process type    : Internet Worm

Malware Name : W32.Sluter.B.Worm

Alias             : W32.Randex.F, W32/Sluter-B, Backdoor.Sdbot.gen

Threat level : Low

Process Details

                     Netd32.exe is the main component dropped by Randex worm. Sluter.b aka Randex is a modified variant of Sluter worm, spreads using network shares.  Sluter worm scans for IP addresses and infects systems with weak password or no password.

                     When executed, Sluter.B copies to Windows System folder as NETD32.EXE [ Example C:\WINNT\SYSTEM32\NETD32.EXE ]. Then it modifies the registry RUN section to load automatically. The registry modification is given below.

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
"Microsoft Network Daemon for Win32" = "netd32.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices
"Microsoft Network Daemon for Win32" = "netd32.exe"

                     Sluter.B worm connects to IRC channel and allows full  access to the infected system. Using this backdoor facility, hackers can steal data from the infected systems.

How can I protect my system?

                   Solo has incorporated netd32.exe in its signature file to protect users from this worm attack. Solo antivirus registered users are already protected from this worm. Make sure that you have installed registered version of Solo Antivirus to protect your system from all virus threats.

How to remove this worm?

                   If you are already infected with netd32.exe process, run Solo anti-virus and choose Delete option to remove the worm components. Then reset your admin password with longer one.

                   Solo antivirus can detect and remove Sluter.B aka Randex worm safely. Use the following link to Download 30 day trial version of Solo antivirus to remove viruses from your computer.

                   Solo anti-virus not only scans for all viruses, it contains a unique System Integrity Checker to protect you from New Internet Worms, Backdoors and malicious VB, Java Scripts. It also effectively removes all existing Internet Worms, File viruses, malicious VB, Java scripts, Trojans, Backdoors, boot sector, partition table and macro viruses.

You can purchase Solo antivirus using the link