Welcome to the Virus Encyclopedia of Panda Security.
It attacks certain security tools, such as antivirus programs and firewalls, belonging to several companies. It downloads a file to the computer.
|First detected on:||May 31, 2005|
|Detection updated on:||Jan. 14, 2006|
|Yes, using TruPrevent Technologies
Mitglieder.DC is a Trojan that attacks several security tools, such as antivirus programs and firewalls belonging to different companies, if they are installed on the affected computer:
- It stops services associated to those programs.
- It ends processes belonging to applications that provide updates for antivirus programs.
- It also deletes the entries in the Windows Registry that store settings for those programs.
Mitglieder.DC attempts to download a file called OSA.GIF from different web addresses. This fake GIF file is in fact an executable file belonging to the Trojan Downloader.CYB.
Mitglieder.DC does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, email messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.
Mitglieder.DC is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.