is a Trojan
that infects a system with malicious Browser Helper Objects
and .dll files attached to Winlogon and Explorer.exe. The infection is responsible for launching unwanted pop ups, advertising for rogue antispyware programs, and downloading more malicious files which hampers system performance. Newer variants of Vundo typically use bogus warning messages to indicate that your computer is infected with spyware or has critical errors
as a scare tactic to goad you into downloading a rogue security application
like WinFixer, WinAntiVirus Pro, ErrorSafe, SystemDoctor, WinAntiSpyware, WinAntiSpy, WinReanimator and others to fix it. The messages can mimic system messages so they appear as if they are generated by the Windows Operating System.
If you are not experiencing pop ups or bogus alerts, then you probably are not infected. If you want to be sure you can perform a scan with Malwarebytes Anti-Malware
. Instructions with screenshots
Vundo spreads via Internet Relay Chat (IRC) and peer-to-peer networks, through emails containing links to websites that exploit your web browser’s security holes and by exploiting a vulnerability in older versions of Sun Java. When you click on a link in a Vundo-laced email, Internet Explorer launches a site that stealthy installs the Trojan so that it can run every time you startup Windows.