RWX hackers can remotely control users' computers

The "RWX hacker" variant JK (Win32.Hack. RWX. jk) is a backdoor hacker program similar to the malicious behavior of pigeons.

Win32.Troj. Mnless is a trojan virus that automatically pops up the ad window.

I. RWX hacker variation JK (Win32.Hack. RWX. jk) Threat Level:★★

The virus is similar to the gray pigeon. It connects to a remote hacker host using special technologies. Hackers can take over all functions of the infected computer and perform many harmful operations, this includes obtaining the user's camera screen content, recording user chat records, viewing arbitrary files on the computer, exploiting vulnerabilities for malicious attacks, executing arbitrary system operations, and restarting or disabling the computer. This will not only affect the normal operation of users' computer systems, but also cause leakage of users' private network information and data.

After the virus runs, multiple virus files, such as server44.exe and SVKP. sys, are released, connected to remote hacker hosts, and attacked by vulnerabilities such as Telnet, ICMP, and IGMP.

Ii. Threat Level of "advertising experts" (Win32.Troj. Mnless:★

The virus is an advertisement player that loads itself into the computer's IE and keeps popping up the advertisement window, which not only affects the normal operation of the computer, but also occupies system resources, it may lead to crashes and other phenomena. In addition, it can also perform self-update through the network. We recommend that you upgrade the antivirus software virus database in time to prevent viruses from interfering.

After the virus runs, the tuvutuv. dll and removalfile. bat virus files are released, and the registry is modified to enable automatic startup upon startup.