Follow:

 

Trojan:Win32/Vundo.gen!D


Trojan:Win32/Vundo.gen!D is a component of Win32/Vundo - a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files.
Vundo is often distributed as a DLL file and installed on an affected machine as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.


What to do now

Manual removal is not recommended for this threat. Use Microsoft Security Essentials or another up-to-date scanning and removal tool to detect and remove this threat and other unwanted software from your computer. For more information on Microsoft security products, see http://www.microsoft.com/protect/products/computer/default.mspx.

Threat behavior

Trojan:Win32/Vundo.gen!D is a component of Win32/Vundo - a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files.
Vundo is often distributed as a DLL file and installed on an affected machine as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.
 
For more information, please see the Win32/Vundo analysis elsewhere in our encyclopedia.
 
Analysis by Ray Roberts

Symptoms

There are no obvious symptoms that indicate the presence of Trojan:Win32/Vundo.gen!D.

Prevention


Alert level: Severe
First detected by definition: 1.45.287.0
Latest detected by definition: 1.187.2347.0 and higher
First detected on: Oct 07, 2008
This entry was first published on: Apr 07, 2008
This entry was updated on: May 20, 2010

This threat is also detected as:
No known aliases