Name : dvldr32.exe
Path : %SYSTEM%\dvldr32.exe
[ C:\Windows\System32\dvldr32.exe ]
type : Network
Name : Worm/Deloader.A
level : Low
Dvldr32.exe is the main
component dropped by Deloader worm. It is a
network worm, uses TCP port 445 to infect the
target system. It uses list of password
combinations to gain access to the administrator
account. Deloader also drops backdoor programs in
the infected system. The worm will not spread
When executed, it copies
to Windows System folder as Dvldr32.exe.
It also extracts a remote network utility PSEXEC.EXE
and a backdoor program INST.EXE. The backdoor
program drops several files in the infected
Deloader modifies the
registry entries to start automatically. The
registry modification will be HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Current
Version\Run= messnger = %system%\Dvldr32.exe.
The backdoor program
dropped by the worm can be used to access files
remotely. The worm also disables networks shares
in the infected system. Deloader mainly targets
Windows 2000 and XP systems.
How can I protect my
Solo has incorporated
dvldr32.exe in its signature file to protect
users from this worm attack. Solo antivirus
registered users are already protected from this
worm. Make sure that you have installed
registered version of Solo Antivirus to protect
your system from all virus threats.
to remove this worm?
antivirus can detect and remove dvldr32.exe
safely. Use the following link to Download
30 day trial version of Solo antivirus
to remove viruses from your computer.
Solo anti-virus not only
scans for all viruses, it contains a unique System
Integrity Checker to protect you from
New Internet Worms, Backdoors and
malicious VB, Java Scripts. It also
effectively removes all existing Internet Worms,
File viruses, malicious VB, Java scripts, Trojans,
Backdoors, boot sector, partition table and macro
purchase Solo antivirus using the link