Microsoft security software detects and removes this threat.

This trojan downloader can download and run files on your computer.

It is a member of the Win32/Vundo family that deliver out-of-context pop-up advertisements.

Windows Defender Antivirus detects and removes this threat.

 

Win32/Vundo is a multiple-component family of malware that delivers "out of context" pop-up advertisements. Variants of the family may also download and run other files, including malware and adware.

Vundo is often installed as a browser helper object (BHO) without your consent, by other malware.

This family uses advanced defensive and stealth techniques to escape detection and to hinder removal. 

Windows Defender detects and removes this threat.

This threat is classified as a trojan downloader. It tries to download and install other malware or unwanted software.

Some downloader trojans target specific files on remote websites. Others target a specific URL that points to a website with exploit code that can automatically download and run software or malicious code on your PC.

More details are available in the Win32/Vundo family description.

 

Trojan:Win32/Vundo.gen!BY is a generic detection for members of the Win32/Vundo family, a multi-component family that delivers 'out-of-context pop-up advertisements'. Trojan:Win32/Vundo.gen!BY has also been observed modifying and redirecting search engine results on specified web browsers.

Win32/Vundo is a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files.

Vundo is often distributed as a DLL file and installed on an affected machine as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.

 

Trojan:Win32/Vundo.KZ is a variant of Win32/Vundo, a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files. Vundo is often distributed as a DLL file and installed on an affected machine as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.

 

For more information, please see the Win32/Vundo analysis elsewhere in our encyclopedia.

Trojan:Win32/Vundo.LO is a generic detection for a trojan that injects its code into running processes and downloads and executes arbitrary files.

TrojanDropper:Win32/Vundo.R is a variant of Win32/Vundo, a multiple-component family of programs that deliver "out of context" pop-up advertisements.

TrojanDropper:Win32/Vundo.R installs Adware:Win32/EoRezo, and may also download and execute arbitrary files.

TrojanDropper:Win32/Vundo.J is a trojan that stops certain antimalware processes. It injects code into certain processes and may also display pop-up advertisements.

Trojan:Win32/Vundo.KAT is a trojan that is a member of Win32/Vundo - a multiple-component family of programs that deliver out-of-context pop-up advertisements. They may also download and execute arbitrary files. This family uses advanced defensive and stealth techniques to escape detection and to prevent its removal.

Trojan:Win32/Vundo.NV is a component of Win32/Vundo - a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files.

Trojan:Win32/Vundo.MF is a variant of Win32/Vundo, a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files. Vundo is often distributed as a DLL file and installed on an affected machine as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.

For more information, please see the Win32/Vundo analysis elsewhere in our encyclopedia.

Worm:Win32/Vundo.B is a worm that spreads by copying itself to mapped drives on the affected computer. It is a member of Win32/Vundo - a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files.

 

This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.

TrojanDropper:Win32/Vundo.H is a trojan that installs a variant of Win32/Vundo detected as Trojan:Win32/Vundo.gen!C. Win32/Vundo.gen!C is a generic detection for a multi-component family of programs that deliver 'out of context' pop-up advertisements to the computer on which they are installed and may download and execute arbitrary files.

Trojan:Win32/Vundo.LN!dll is a generic detection for a component of Win32/Vundo - a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files, which can include additional malware or unwanted software.

 

Trojan:Win32/Vundo.LN!dll is distributed as a DLL file and installed on an affected machine by other Vundo components as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.

Trojan:Win32/Vundo.RJ is a member of Win32/Vundo - a multiple component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files. Vundo is often distributed as a DLL file and installed on an affected computer as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.

Trojan:Win32/Vundo.gen!AV is a component of Win32/Vundo - a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files.

Trojan:Win32/Vundo.RO is a member of Win32/Vundo - a multiple component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files. Vundo is often distributed as a DLL file and installed on an affected computer as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.

Trojan:Win32/Vundo.HT is a variant of Win32/Vundo, a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files.

Vundo is often distributed as a DLL file and installed on an affected machine as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.