The Trojan Horse Vundo can cause your computer to crash.
computer problems image by kuhar from Fotolia.com
The Trojan Horse Vundo is spread when users click on malicious links attached to emails. Once the Trojan Horse Vundo infects your computer, it launches popup advertisements which download harmful files. In addition, the Trojan Horse Vundo may slow your computer, decrease your available memory, change your Internet settings, add icons to your desktop, cause your computer to crash and redirect your Web browser to random Web sites. Fortunately, the Trojan Horse Vundo can be removed by following the steps below.
Run Your Antivirus Program
Step 1
Open your antivirus program. If you do not have an antivirus program, consider downloading a free program, such as Windows Defender or Avast.
Step 2
Update your antivirus program. If you do not know how to update your antivirus program, consult the manufacturer homepage. An out of date antivirus program may not be able to detect or remove the Trojan Horse Vundo.
Step 3
Run a full scan of your computer using your antivirus program. Most antivirus programs have a "Run a full scan" or "scan your computer" button. Running a full scan of your computer with an up to date antivirus program should detect and remove all traces of the Trojan Horse Vundo from your computer.If it does not, consider running a second antivirus program. Not all antivirus programs are created equal and some may detect viruses that others do not. If running a second antivirus program still does not detect and remove all traces of the Trojan Horse Vundo, continue to the next step.
Delete Infected Registry Keys
Step 1
Hold down the Windows key and press "R." The Run box opens.
Step 2
Type "regedit" without the quotation marks into the" Run" box and click "OK." The Registry Editor opens.
Step 3
Locate the following registry values in the left pane of the Registry Editor and delete them. To delete a registry value, right-click on it and select "Delete." Deleting the wrong registry value can impair your computer. Thus, you should exercise caution while completing this step.
"HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Active State"
"HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce*WinLogon"
"HKEY_LOCAL_MACHINE\Software\Microsof\tWindows\CurrentVersion\RunOnce*[filename]"
"HKEY_CLASSES_ROOTCLSID{2316230A-C89C-4BCC-95C2-66659AC7A775}"
"HKEY_CLASSES_ROOTCLSID{8109AF33-6949-4833-8881-43DCC232B7B2}"
"HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ATLEvents.ATLEvents"
"HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ATLEvents.ATLEvents.1"
"HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{02F96FB7-8AF6-439B-B7BA-2F952F9E4800}"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{02F96FB7-8AF6-439B-B7BA-2F952F9E4800}"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{2316230A-C89C-4BCC-95C2-66659AC7A775}"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{8109AF33-6949-4833-8881-43DCC232B7B2}"
"HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Active State"
Photo Credits
- computer problems image by kuhar from Fotolia.com
