We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
TrojanDownloader:Win32/Vundo.J
Aliases: TR/HiolesH.A.2 (Avira) TR/Dldr.Vundo.J.379 (Avira) TR/Dldr.Vundo.J.891 (Avira) Trojan.Mayachok.17758 (Dr.Web) Trojan-Downloader.Win32.Vundo (Ikarus) Backdoor.Win32.Cidox (Ikarus) Win32/Citirevo.AC (ESET) Win32/Citirevo.AD (ESET) Dropper/Win32.Cidox (AhnLab) Backdoor/Win32.Cidox (AhnLab) Trojan/Win32.Cidox (AhnLab) W32/Vundo.CPVT (Norman) Backdoor.Win32.Cidox.azd (Kaspersky)
Summary
Microsoft security software detects and removes this threat.
This trojan downloader can download and run files on your computer.
It is a member of the Win32/Vundo family that deliver out-of-context pop-up advertisements.
To detect and remove this threat and other malicious software that may be installed on your computer, run a full-system scan with an appropriate, up-to-date, security solution. The following Microsoft products detect and remove this threat:
- Microsoft Security Essentials or, for Windows 8, Windows Defender
- Microsoft Safety Scanner
- Microsoft Windows Malicious Software Removal Tool