Risk Level 2: Low

Printer Friendly Page

Discovered: November 20, 2004
Updated: February 28, 2009 1:14:28 AM
Type: Trojan
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows XP
CVE References: CVE-2004-1050

Trojan.Vundo is a component of an adware program that downloads and displays pop-up advertisements. It is known to be installed by visiting a Web site link contained in a spammed email.

Note: As of February 25, 2009, Symantec began observing an increase in the number of Trojan.Vundo infections as a direct result of W32.Ackantta.B@mm.

For more information, please read the following:


  • Initial Rapid Release version May 9, 2006
  • Latest Rapid Release version April 8, 2009 revision 040
  • Initial Daily Certified version May 9, 2006
  • Latest Daily Certified version April 8, 2009 revision 033
  • Initial Weekly Certified release date May 10, 2006

Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment


  • Wild Level: Medium
  • Number of Infections: 1000+
  • Number of Sites: 10+
  • Geographical Distribution: Medium
  • Threat Containment: Moderate
  • Removal: Moderate


  • Damage Level: Medium
  • Payload: May download potentially malicious files on to the compromised computer.


  • Distribution Level: Low

Writeup By: David Curran
Search by name
Example: W32.Beagle.AG@mm
Norton products protect against CONFICKER
Windows Vista Security