Welcome to the Virus Encyclopedia of Panda Security.
It connects to a server and accepts remote control commands that are run in the affected computed. It prevents the user from accessing certain web pages belonging to antivirus companies. It spreads via e-mail, across the Internet and across networks.
|First detected on:||April 5, 2005|
|Detection updated on:||April 5, 2005|
|Yes, using TruPrevent Technologies
Mytob.S is a worm with backdoor characteristics. It connects to a server and accepts remote control commands that are run in the affected computed.
In addition to this, Mytob.S prevents the user from accessing certain web pages belonging to antivirus companies.
Mytob.S uses different means to spread:
- It spreads via e-mail, in a message with variable characteristics.
- It exploits the LSASS vulnerability to spread across the Internet.
- It attempts to access network shared resources using passwords that are typical or easy to guess.
If you have a Windows XP/2000 computer, it is highly recommendable to download the security patch for the LSASS vulnerability from the Microsoft website.
Mytob.S is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.