Remember Me
forgot your password?

Symptoms of a Vundo Infection

You may have heard of the Trojan known as Vundo. Hopefully, this isn't because you've had to deal with it yourself! But if you don't get the proper protection, then you may someday. Or you may suspect it's on your computer.

One initial symptom of Vundo is often the “blue screen of death.” This term usually refers to the blue screen you see when Windows shuts down your computer due to danger, or a massive system error. Vundo or one of the malicious programs it delivers, can replace your screensaver with a “blue screen of death” clone!

What's worse, it will negate the “screensaver” tab on your desktop's Properties dialog box.

Why is this? Because it helps scare people into buying the “anti-spyware” offered by the popups that inevitably follow a Vundo infection.

These supposed anti-spyware programs, however, are anything but useful. They are fake programs designed to give false alarm to unsuspecting computer users. They use tricks like the “blue screen of death,” and dropping infected files into a host computer. Then they scan and “discover” those files, in an apparent solution to the computer owner's problems.

Then you, the user, are prompted to buy the “registered” version of the fake antispyware program. You'll be told you need the full version in order to get rid of your infections. But all that will happen is that your problems will go away for a few days, only to return with annoying pop-up ads for other fake antispyware programs.

 

Often Vundo and/or these fake spyware programs will go to more disastrous lengths to scare users into buying these “registered” versions. Some of these programs, for example, disable access to Control Panel and My Documents!

A Vundo infection often leads to browser problems. The browser may refuse to fully load some sites. Google is commonly one of these sites--after all, Vundo's malicious programmers know you're going to try and figure out how to take care of your problem!

Vundo may also cause your icons and task bar to briefly disappear. They do eventually return, but in the meantime, all associated programs have quit working! You may also see warnings that claim your system is “deteriorating”. All in the interest of convincing you to buy some fake anti-spyware.

Many give you problems with web pages as well. It will often cause your browser to “hang”, as if in mid-air--or mid-operation. It will often try and do this if you go to Google. After all, it doesn't want you looking up what's wrong with your computer--it just wants you to buy the “anti-spyware” it tells you about!

Vundo will hide in your system32 directory, which is an essential Windows directory. Even if some of Vundo's component files are deleted, it can still come back. It will often create numerous .dll files with eight-letter random names. Unless they are taken care of, it will re-spawn all over again!

The only solution, really, is to find some quality antivirus software that will take care of your problem for good!

Carl Atkinson

Carl runs a site devoted to helping you rid your computer from all sorts of spyware and malware at http://www.spyzooka.com/

Rate this Article: 0 / 5 stars - 0 vote(s)
Print Email Re-Publish

Add new Comment



Captcha
0
1. bbchin (22:50, 16.02.2009)
Yes, this is a real virus. Vundo is also known as Virtumonde. Just spent a couple of days figuring out how to remove this annoying and literally offending Trojan. In my case, additional browser windows would open during a session, sometimes with adult content. Spybot S&D found it, but couldn't completely fix. So I found another article via Google - http://www.auditmypc.com/virtumonde-remove.asp - directed me to none other than Microsoft's own service called Windows Live OneCare at http://onecare.live.com. The person who wrote article at AuditMyPC provides a lot of detail, but run a complete scan with OneCare (took me overnight) and identified DLLs and infected file in Firefox subdir. Had to restart computer in Safe Mode with Administrator username in order to delete the files.
0
2. ivys (22:27, 03.02.2009)
thanks for telling.. I got an AVG spyware thing saying "trojan horse vundo.er but I have got none of theose symptoms. is that a real virus?
0
3. Phil (22:08, 21.11.2008)
none of the adware, malware or virus scanners I tried worked when I got vundo/virtumonde. I used process explorer to find/view the rogue DLLs, Spybot S&D to delete some of the files and then displayed critical hidden files in system32, renamed them to junk files, restarted and deleted.

  • Latest Security Articles
  • More from Carl Atkinson

Advice On Protecting Your Netbook

By: Mark Walters | 30/12/2009
Useful information and advice on netbooks. Find out how to make a netbook as safe and secure as possible.

Tutorial to Unlock Windows XP Administrator Password!

By: Fiona | 30/12/2009
The Windows XP administrator passwordis the password used to access the "Administrator" account. This account usually doesn't show up on the logon screen and most people don't know it exists. Usually that's okay because you won't need to use your computer under this account very often. There are a few times when you will need this password! When you're accessing the Windows XP Recovery Console or you're trying to boot into Windows XP Safe Mode, you'll need this password before you can contin

Lost or Forgot Computer Password? Reset Windows XP password!

By: Fiona | 30/12/2009
If you have lost or forgotten your password for logging in to a computer running the Windows XP operating system, there are a few different options

Tutorial to Unlock Windows Vista Administrator Password!

By: Fiona | 30/12/2009
Windows Vista administrator password is the password to an account configured with administrator level access in Windows Vista. There doesn't actually have to be an "Administrator" user account. What you need is the password to any account that can act as an administrator. You may need an administrator password in Windows Vista if you're trying to run certain types of programs or access certain Windows Vista password recovery tools.

Find out Windows 7 Password! Reset Windows 7 Password!

By: Fiona | 30/12/2009
There are a few times when you will need this password. You may need an Windows 7 administrator password if you're trying to run certain types of programs or access certain Windows 7 recovery tools.

Tips to Find the Windows Administrator Password

By: Fiona | 30/12/2009
There are several ways to find your administrator password in Windows.

AntiAdd Will Add Spyware to Your PC!

By: Carl Haugen | 30/12/2009
AntiAdd is a misleading antispyware program that erroneously reports threats to the user. This rogue security program advertises through aggressive and frightening warnings, notifying you that spyware, Trojans and other parasites exist on your PC. This application is malware, although it claims to remove this exact thing. Do not spend your money!

Got Security?...Is your PC As Secure As It Can Be?

By: Paul Lubic | 30/12/2009
The environment in which we conduct our home computing tasks, particularly using the Internet, is becoming more and more hazardous to our computer's health. In recent years the threats to our computing environment have gone from relatively harmless recreational hacking of Web sites to today's mass crime waves by organized criminal groups.

Eco AntiVirus is Deceitful Malware

By: Carl Atkinson | 23/12/2009 | Security
If you have been receiving frightening security warnings, you may believe that Eco AntiVirus is a genuine tool to remove spyware and other parasites. Beware; this application is actually a rogue security program designed to trick you, so that you will spend your money on the useless product they promote. There are many scams out there that claim to protect the security of your PC, and this is one of them.

Does LiveProtection Protect Your PC?

By: Carl Atkinson | 09/12/2009 | Security
LiveProtection is another fake application that claims to remove spyware. This rogue security program advertises aggressively toward the user, using fake system notifications that alert you to supposed threats that are on your PC. This rogue states that infections and threats exist on your computer in an effort to get you to download the scan they offer to detect these parasites.

Immunizr Provides No Protection!

By: Carl Atkinson | 04/12/2009 | Computers
Immunizr proclaims itself to be an antispyware program that removes parasites from your PC, but it is actually a rogue security program that's main purpose is to take your money. This application displays fake system notifications, warning the user that infections are on their computer. This is simply an effort to alarm you, so that you will download the scan that is offered and buy the product.

How to Get Rid of f5045_stanres.dll

By: Carl Atkinson | 27/11/2009 | Computers
Everyone gets registry errors; you just can't help it. You wouldn't be here if you didn't get an error like the f5045_stanres.dll error. On the other hand, no one actually knows what to do about them. Sure, you can look up the f5045_stanres.dll error message. You can find all kinds of technical data on the error, but what do you do about registry errors in general?

What Everyone Should Know About the Ycptokenauth.dll Error Message

By: Carl Atkinson | 26/11/2009 | Computers
If you are reading this, then that means you have come across the ycptokenauth.dll error message. First, let me reassure you that your computer is not in any real danger. You can breathe now.

Registry Errors Can Ruin Your Day: Here's How to Stop Them

By: Carl Atkinson | 23/11/2009 | Computers
If you have a Windows computer, the odds are pretty good that you've experienced registry errors. The nature of the Windows registry makes it likely that errors will happen, no matter how careful you are with your computer. Registry errors can be frightening for the novice user, but are often not a big problem and can be dealt with easily. When you get a registry error, don't panic and follow a few simple trouble-shooting steps.

How to Discover Registry Errors like Zcsvcfra.dll and Fix Them Fast

By: Carl Atkinson | 19/11/2009 | Computers
If you are anything like me, you took your registry for granted until you came across a registry error like zcsvcfra.dll. Then all of the sudden, your registry became very important to you. In fact, it became one of the most important things in the world. That's right. While most registry errors go unnoticed, some errors like zcsvcfra.dll stop you dead in your tracks.

The Basics of Registry Errors:x4sevrs.dll

By: Carl Atkinson | 19/11/2009 | Computers
When it comes to registry errors, many people are left in the dark. You see errors like the x4sevrs.dll error and you just don't know what to do. This doesn't have to be the case. All registry errors work the same and they all are solved in the same basic ways. Once you learn a few registry basics, you will be set.

Submit Your Articles Free: Signup
Article Categories




Use of this web site constitutes acceptance of the Terms Of Use and Privacy Policy | User published content is licensed under a Creative Commons License.
Copyright © 2005-2008 Free Articles by ArticlesBase.com, All rights reserved. (0.03, 0, w3)