1. Symantec/
  2. Security Response/
  3. VBS.Resreg@mm


Risk Level 1: Very Low

April 11, 2002
February 13, 2007 11:50:28 AM
Also Known As:

VBS.Resreg@mm is an Internet worm that is written in VBScript. It uses Microsoft Outlook to spread as the attachment Freemp3s.vbs.

Some threats, like this one, use the VBScript computer language to run. You can protect yourself from threats that use this language by enabling Script Blocking (Norton AntiVirus 2001/2002) or by disabling or uninstalling Windows Scripting Host. Because the Windows Scripting Host is an optional part of Windows, you can safely remove it from your computer. (Some programs, however, do need this feature installed to function properly.)
  • If you are using Norton AntiVirus 2002, which includes Script Blocking, make sure that Script Blocking is enabled (the default).
  • If you are using Norton AntiVirus 2001, a free program update that includes Script Blocking is available. Run LiveUpdate to obtain this update.
  • For other versions of Norton AntiVirus, Symantec Security Response offers a tool to disable the Windows Scripting Host.
  • To disable Windows Scripting Host in Microsoft Outlook Express only, see the Microsoft Knowledge Base document OLEXP: How to Disable Active Scripting in Outlook Express, Article ID: Q192846.

Antivirus Protection Dates

  • Initial Rapid Release version April 11, 2002
  • Latest Rapid Release version September 28, 2010 revision 054
  • Initial Daily Certified version April 11, 2002
  • Latest Daily Certified version September 28, 2010 revision 036
  • Initial Weekly Certified release date April 12, 2002
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Patrick Nolan

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube