NEWS
PARASITES
SOFTWARE
FORUM
DIRECTORY

 
 
 
 
 
 
  

Remove Rodun. Description and removal instructions

 
Title: Rodun
Type: Viruses
Severity scale:Rodun severity is 65  (65 / 100)
 
Rodun is a macro virus that infects Microsoft Word documents. Once executed, the threat disables Microsoft Word virus protection, lowers overall system security, disables Windows firewall and essential system tools and features such as the Task Manager, Registry Editor or System Restore. Rodun also changes Windows theme and desktop colors and displays certain messages. On predefined date the virus attempts to delete archives, spreadsheets and text documents, some executables, multimedia and configuration files located in the Windows folder or in the root of the main hard disk.

FORUM:
Discuss Rodun in
spyware removal forum

Rodun properties:
• Hides from the user
• Stays resident in background

Automatic Rodun removal:

remover for Rodun

Rodun manual removal:

Delete registry values:
HKEY_CURRENT_USER\Software\Microsoft\Office\9.0\Word\Security\Level=1
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools=1
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr=1
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun=1
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoCloseKey=1
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFind=1
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRun=1
HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\SystemRestore\DisableSR=1
HKEY_CURRENT_USER\Software\Policies\Microsoft\WindowsFirewall\DomainProfile\EnableFirewall=0
HKEY_CURRENT_USER\Software\Policies\Microsoft\WindowsFirewall\StandardProfile\EnableFirewall=0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore\DisableSR=1
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active\Rodune
HELP:
how to remove registry entries

Delete directories:
C:\Windows\Book
C:\Winnt\Book
C:\Windows\Car
C:\Winnt\Car
C:\Windows\Game
C:\Winnt\Game
C:\Windows\Girl
C:\Winnt\Girl
C:\Windows\Movie
C:\Winnt\Movie
C:\Windows\Music
C:\Winnt\Music
C:\Windows\Study
C:\Winnt\Study
C:\Windows\Text
C:\Winnt\Text
C:\Windows\Woman
C:\Winnt\Woman
Misc:
The virus uses files with various names.

Other programs to remove Rodun:

• Malwarebytes Anti Malware - Review - Download
• Malwarebytes Anti Malware - Review - Download
• Windows Defender - Review - Download

Information added: 28/09/05
Information updated: 28/09/05

Additional resources related to Rodun:

Attention: If you know or you have a website or page about Rodun removal, feel free to add a link to this list: add url



more resources

Post Comment:

Attention: Use this form only if you have additional information about Rodun parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.



Enter security code:

Latest spyware news:
Similar parasites:
Latest Spyware Threats: VirusProtect Pro | VirusLocker | SpyCrush | ContraVirus | SpyLocked | SpyDawn | AntiVerminser | SpywareQuake | VirusBurst | AntiVermins | AntiVermeans | Zlob | PopCorn.net | MovieLand | TagASaurus | BraveSentry | VirusBurster | SystemDoctor | VirusRescue | MalwareWipe | SpySheriff | CmdService | Smitfraud | SpywareStrike | WinFixer | WinHound | PestTrap | UnSpyPC
Agreement of Use | Privacy policy | Webmasters | Contact us | RSS Feeds
© 2001-2008 2-spyware.com All Rights Reserved. Reproduction in part or whole without written permission is prohibited. Powered by: eSolutions.