1. Symantec/
  2. Security Response/
  3. VBS.Loding.A@mm


Risk Level 1: Very Low

August 15, 2001
February 13, 2007 11:52:43 AM
Also Known As:
Worm, Virus

VBS.Loding.A@mm is a script which uses an exploit to run arbitrary code. It contains instructions to send email using Microsoft Outlook. The email message contains a link that would have downloaded a virus; however, the page that it linked to has been closed.

The email message is in the following format:

Subject: Computer Secrets !
Message: If you are using Win9x/Me, visit the following page will upgrade your pc performance. If you are not using Win9x/Me or don't want to upgrade your pc, only forward this page to your friends. Maybe your friends need it. <dead link>

If you clicked the link (while it was still active), it would have gone the Web page and run the script, which would have perpetuated itself.

Additional precautions that you can take:
  • If you are using Norton AntiVirus 2002, which includes Script Blocking, make sure that Script Blocking is enabled (the default).
  • If you are using Norton AntiVirus 2001, a free program update that includes Script Blocking is available. Please run LiveUpdate to obtain this.
  • For earlier versions of Norton AntiVirus, SARC offers a tool to disable the Windows Scripting Host.

Antivirus Protection Dates

  • Initial Rapid Release version August 16, 2001
  • Latest Rapid Release version September 28, 2010 revision 054
  • Initial Daily Certified version August 16, 2001
  • Latest Daily Certified version September 28, 2010 revision 036
  • Initial Weekly Certified release date pending
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Patrick Nolan

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube