x
48h OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
SPECIAL OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
HALLOWEEN OFFER
take advantage of our
terrific discounts
BUY NOW AND GET A 50% OFF
x
CHRISTMAS OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 40% OFF
x
SPECIAL OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 50% OFF
x
BLACKFRIDAY OFFER
Buy the best antivirus
at the best price
TODAY ONLY UP TO 70% OFF
x
CYBERMONDAY OFFER
Buy the best antivirus
at the best price
(Only for homeusers)
TODAY ONLY UP TO 70% OFF
Active Scan. Scan your PC free
Panda Protection

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.

Mytob.MF

Threat LevelModerate threatDamageHighDistributionNot widespread
Common name:Mytob.MF
Technical name:W32/Mytob.MF.worm
Threat level:Low
Type:Worm
Effects:  

It ends several processes belonging to security tools, among others, and prevents users from accessing several websites. It spreads via email in a message with variable characteristics.

Affected platforms:

Windows 2003/XP/2000/NT/ME/98/95

First detected on:Dec. 30, 2005
Detection updated on:Jan. 2, 2006
StatisticsNo
Proactive protection:
Yes, using TruPrevent Technologies

Brief Description 

    

Mytob.MF is a worm that ends processes belonging to several security tools, such as antivirus programs and firewalls, among others. It also ends processes belonging to other malware.

Aditionally, it prevents users from accessing certain web pages, mostly belonging to antivirus companies.

Mytob.MF spreads via email, in a message with variable characteristics.

Visible Symptoms 

    

Mytob.MF is easy to recognize, as it reaches the computer in a message with the following characteristics:

  • Sender:
    abuse@ %recipient's mail domain%
  • Subject: one of the following:

    Abuse Seport
  • Message:
    Dear Customer,

    We received several abuse complaints concerning your online activity.
    As we do not support any illegal activities on our network, this cannot be tolerated.
    For more info about the illegal actions, check the attached document.
    Please verify if your info in the abuse report is correct, that we know if legal action has to be taken.

    Yours Sincerely, The
    %string% Abuse Department

    where %string% is the text string between the 'at' character and the first dot in the recipient's mail domain.
    For example, if the recipients's mail domain is panda.software.com, %string% would be panda.

    Attachments:
    ABUSE_SEPORT.ZIP