Welcome to the Virus Encyclopedia of Panda Security.
It opens several ports, in order to receive remote control commands, and uses rootkit techniques, in order to hide its files and Windows Registry entries, among others. It spreads via email and through P2P programs.
|First detected on:||Jan. 21, 2006|
|Detection updated on:||Jan. 24, 2006|
Feebs.E is a worm with backdoor characteristics that opens several ports in order to receive remote control commands to carry out on the affected computer.
Additionally, it uses rootkit techniques in order to hide its files and Windows Registry entries, and the ports it has opened.
It also disables several security programs, thus, leaving the computer vulnerable to the attack of other malware.
Feebs.E spreads via email and through peer-to-peer file sharing (P2P) programs.
One of the means it uses to spread via email is to monitor the network traffic, in order to detect if an email with an attached file and MIME format is being sent, and then it is able to attach itself to the outgoing message.
Feebs.E is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.
However, when Feebs.E spreads via email, it reaches the computer in an email message with an attached file. If it is opened and run, Feebs.E displays the following windows, which simulate a connection establishment and later failure: