WRDRIVE32.EXE is Worm Kolab

Alex NightWatcher: Solved!

Fix it immediately:

The file WRDRIVE32.EXE is malware related.
You must delete the file WRDRIVE32.EXE immediately!
Delete the file WRDRIVE32.EXE without delay!
Kill the process WRDRIVE32.EXE and remove WRDRIVE32.EXE from the Windows startup.

Malware Analysis of WRDRIVE32.EXE
Full path on a computer: %Windir%\wrdrive32.exe

How to quickly detect WRDRIVE32.EXE presence?

Registry:

• HLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\Microsoft Driver Setup = “%Windir%\wrdrive32.exe”
• HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Microsoft Driver Setup: “%Windir%\wrdrive32.exe”

Files:

• %Windir%\wrdrive32.exe

Recommended: UnHackMe anti-rootkit and anti-malware

Premium software: RegRun Security Suite (Good choice for removal and protection)

Written by NightWatcher

Malware Hunter.
Google+

Tags: Kolab, Worm, WRDRIVE32.EXE

Comments

Tell me what you're thinking...
and oh, if you want a pic to show with your comment, go get a gravatar!

You must be logged in to post a comment.

• Greatis Software

  • Error- No such interface supported
  • Fix 80073712 Error
  • Free Download
  • Popular Posts
  • Restore TCPIP.SYS
  • Send a file

• AverScanner

  AverScaner- EveryDay Malware Scan

• Testimonials

  Bob

  The UnHackMe is a real program, no spyware or phish and works great and is easy to use. Enjoy!

• Impove boot up time

  Run a free scan to diagnose your PC: Start Test!

• Blogroll

  • RegRun removes rootkits/malware that your antivirus could not.
  • Removing rootkits is best done from the outside!
  • UnHackMe – rootkit killer!
• 
•