Active Scan. Scan your PC free
Download Cloud Antivirus Gratis

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.

Encyclopedia GetVirusCard True 0


Threat LevelModerate threatDamageHighDistributionNot widespread
Common name:Redlof.A
Technical name:VBS/Redlof.A
Threat level:Low
Subtype: Worm
Effects:  It does not have any destructive effects. Its only purpose is to spread to as many computers as possible.       

Affected platforms:

Windows XP/2000/NT/ME/98/95

First detected on:May 9, 2002
Detection updated on:May 14, 2009
Repair utility:Panda QuickRemover
Country of origin:SPAIN

Brief Description 


Redlof.A is a worm with no destructive effects whose only purpose is to infect other computers.

To carry out infection, Redlof.A copies its code to HTT files, which are used to view system folders as Web pages. From that moment on, when the affected user opens a folder, they will be running the worm without knowing. This worm can also infect files with the HTML extension.

This worm spreads via e-mail very quickly.  To do this, it hides its code in the file that serves as stationary for all the messages the affected user sends through the Outlook mail client.

Redlof.A exploits the vulnerability affecting the VM ActiveX component, which allows a virus to be run simply when a web page that contains the viral code is viewed. More information about this vulnerability as well as the corresponding security patch can be found on Microsoft's website.

Visible Symptoms 


Redlof.A shows no messages or warnings that indicate its presence on affected computers.