Skip to main content
Published Sep 19, 2008 | Updated Sep 15, 2017

Trojan:Win32/Vundo.IA

Detected by Microsoft Defender Antivirus

Aliases: Trojan:Win32/Vundo.gen!T (other) Trojan.Vundo.EZO (BitDefender) Win32/Vundo.AHO (CA) Trojan.Virtumod.based.18 (Dr.Web) W32/Virtumonde.XXA (Norman) Trojan.Vundo (Symantec)

Summary

Win32/Vundo is a multiple-component family of programs that deliver 'out of context' pop-up advertisements. They may also download and execute arbitrary files.
Vundo is often distributed as a DLL file and installed on an affected machine as a Browser Helper Object (BHO) without a user's consent. This family uses advanced defensive and stealth techniques to escape detection and to hinder removal.
Manual removal is not recommended for this threat. To detect and remove this threat and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as the Microsoft Safety Scanner (http://go.microsoft.com/fwlink/?LinkId=212742). For more information, see http://www.microsoft.com/protect/computer/viruses/vista.mspx.
Follow us