Virus.VBS.Redlof.A or Redlof is a virus written in Visual Basic Script.


After being run, the virus will immediately copy itself to the Windows directory under the alias Kernel.dll. The virus also creates files named kjwall.gif in the System32 and Web Directories. It then drops a core file, folder.htt.


The infected folder will spread the folder.htt to every single retrievable directory on the infected system. The virus then writes itself to the end of HTM files, allowing itself to infect computers when they are opened. It will also infect the following files as they are opened: iejit.htm, offline.htm, related.htm, tip.htm, folder.htm, wum.htm.


Securelist (Kaspersky Labs), Virus.VBS.Redlof.a

Ad blocker interference detected!

Wikia is a free-to-use site that makes money from advertising. We have a modified experience for viewers using ad blockers

Wikia is not accessible if you’ve made further modifications. Remove the custom ad blocker rule(s) and the page will load as expected.