Microsoft security software detects and removes this threat.

This trojan downloader can download and run files on your computer.

It is a member of the Win32/Vundo family that deliver out-of-context pop-up advertisements.

Windows Defender Antivirus detects and removes this threat.

 

Win32/Vundo is a multiple-component family of malware that delivers "out of context" pop-up advertisements. Variants of the family may also download and run other files, including malware and adware.

Vundo is often installed as a browser helper object (BHO) without your consent, by other malware.

This family uses advanced defensive and stealth techniques to escape detection and to hinder removal. 

Windows Defender detects and removes this threat.

This threat is classified as a trojan downloader. It tries to download and install other malware or unwanted software.

Some downloader trojans target specific files on remote websites. Others target a specific URL that points to a website with exploit code that can automatically download and run software or malicious code on your PC.

More details are available in the Win32/Vundo family description.

 

Win32/Vundo is a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files.

Vundo is often distributed as a DLL file and installed on an affected machine as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.

 

Trojan:Win32/Vundo.KZ is a variant of Win32/Vundo, a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files. Vundo is often distributed as a DLL file and installed on an affected machine as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.

 

For more information, please see the Win32/Vundo analysis elsewhere in our encyclopedia.

Trojan:Win32/Vundo.LO is a generic detection for a trojan that injects its code into running processes and downloads and executes arbitrary files.

TrojanDropper:Win32/Vundo.R is a variant of Win32/Vundo, a multiple-component family of programs that deliver "out of context" pop-up advertisements.

TrojanDropper:Win32/Vundo.R installs Adware:Win32/EoRezo, and may also download and execute arbitrary files.

Trojan:Win32/Vundo.gen!BY is a generic detection for members of the Win32/Vundo family, a multi-component family that delivers 'out-of-context pop-up advertisements'. Trojan:Win32/Vundo.gen!BY has also been observed modifying and redirecting search engine results on specified web browsers.

 

Trojan:Win32/Vundo.RF is a member of Win32/Vundo - a multiple component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files. Vundo is often distributed as a DLL file and installed on an affected computer as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.

Trojan:Win32/Vundo.X is a trojan that exists as a Browser Helper Object (BHO). Win32/Vundo.X falsely reports problems with the computer, in order to convince users to purchase a promoted product. It may connect to a remote web server to download updates or other arbitrary files, and use stealth methods to make it difficult to remove. 

Worm:Win32/Vundo.A is a worm that spreads by copying itself to mapped drives in the computer. Vundo is also a family known to display pop-ups that are usually related to fake antivirus software. It may prevent security processes and features from functioning properly.

Trojan:Win32/Vundo.gen!O is a component of Win32/Vundo - a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files.

 

Vundo is often distributed as a DLL file and installed on an affected machine as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.

Win32/Vundo is a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files.

Vundo is often distributed as a DLL file and installed on an affected machine as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.

Win32/Vundo is a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files.

Vundo is often distributed as a DLL file and installed on an affected machine as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.

Win32/Vundo is a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files.

Vundo is often distributed as a DLL file and installed on an affected machine as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.

Worm:Win32/Vundo.B is a worm that spreads by copying itself to mapped drives on the affected computer. It is a member of Win32/Vundo - a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files.

 

This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.

Win32/Vundo is a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files.

Vundo is often distributed as a DLL file and installed on an affected machine as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.