Welcome to the Virus Encyclopedia of Panda Security.
It connects to an IRC server in order to receive remote control commands and prevents users from accessing several web pages. It spreads via email and across networks.
|First detected on:||May 9, 2005|
|Detection updated on:||May 9, 2005|
|Yes, using TruPrevent Technologies
Mytob.CU is a worm with backdoor characteristics that connects to an IRC server in order to receive remote control commands, such as delete, download and run files.
Mytob.CU ends processes belonging to several security tools and system tools, among others. This leaves the affected computer vulnerable to the attack of other malware.
Aditionally, it prevents users from accessing certain web pages, belonging to antivirus companies.
Mytob.CU uses different means to spread:
- It spreads via email, in a message with variable characteristics.
- It attempts to access network shared resources using passwords that are typical or easy to guess.
Mytob.CU is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.