Welcome to the Virus Encyclopedia of Panda Security.
|Effects: ||It does not have any destructive effects. Its only purpose is to spread to as many computers as possible. |
|First detected on:||May 9, 2002|
|Detection updated on:||May 14, 2009|
|Country of origin:||SPAIN|
Redlof.A is a worm with no destructive effects whose only purpose is to infect other computers.
To carry out infection, Redlof.A copies its code to HTT files, which are used to view system folders as Web pages. From that moment on, when the affected user opens a folder, they will be running the worm without knowing. This worm can also infect files with the HTML extension.
This worm spreads via e-mail very quickly. To do this, it hides its code in the file that serves as stationary for all the messages the affected user sends through the Outlook mail client.
Redlof.A exploits the vulnerability affecting the VM ActiveX component, which allows a virus to be run simply when a web page that contains the viral code is viewed. More information about this vulnerability as well as the corresponding security patch can be found on Microsoft's website.
Redlof.A shows no messages or warnings that indicate its presence on affected computers.