Welcome to the Virus Encyclopedia of Panda Security.
It opens the port 33322 and waits for remote control commands to carry out on the computer, and it attempts to download a file from several websites. On demand, it could send itself out via email.
|First detected on:||Jan. 23, 2006|
|Detection updated on:||Jan. 26, 2006|
|Yes, using TruPrevent Technologies
Mitglieder.HJ is a Trojan with backdoor characteristics that opens the port 33322 and acts a proxy server. Additionally, it waits for remote control commands to carry out on the affected computer, such as start an SMTP server or update itself.
Additionally, it attempts to download from several websites a text file, which contains a list of IP addresses.
Mitglieder.HJ does not spread automatically using its own means. However, receiving the appropriate command, it could send itself out via email using the remote SMTP server smtp.wanadoo.fr.
Mitglieder.HJ is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.