Welcome to the Virus Encyclopedia of Panda Security.
It attacks certain security tools, such as antivirus programs and firewalls, belonging to several companies. It attemps to download a file to the computer.
|First detected on:||Sept. 12, 2005|
|Detection updated on:||April 16, 2006|
|Yes, using TruPrevent Technologies
Mitglieder.EV is a Trojan that attacks several security tools, such as antivirus programs and firewalls belonging to different companies, if they are installed on the affected computer:
- It deletes key files for their correct functioning.
- It deletes entries of the Windows Registry that allow them to be automatically run.
- It stops services associated to those programs.
- It ends processes belonging to applications that provide updates for antivirus programs.
Mitglieder.EV attempts to download a file called OSA5.GIF from different web addresses, and then runs it.
Mitglieder.EV does not spread automatically using its own means. It has been massively sent attached to email messages.
Mitglieder.EV is easy to recognize once it has affected the computer, as it opens the Notepad program when it is run, but without displaying any text.