Welcome to the Virus Encyclopedia of Panda Security.
|Effects: ||It activates on Friday 13th and deletes all the files that are run.
|First detected on:||April 10, 2002|
|Detection updated on:||Nov. 10, 2002|
PtAkkS is a backdoor type Trojan, which allows hackers to gain remote access to the affected computer in order to access confidential information and impede the tasks carried out.
When PtAkkS is installed on a computer, it allows a hacker to gain remote access and carry out, the following actions, among others:
- Obtain information about the user’s computer: Operating System, available memory, memory in use, type of processor and size of the storage drives installed.
- Obtain the name and domain of the user’s computer in a network.
- Display a fake dialog box claiming that a connection error has occurred connection and asking the user to enter a password.
- Reset or block the computer.
- Copy, move, rename, delete, look for, send, receive and run files.
This Trojan consists of two programs:
- The server program, which is installed on the affected computer.
- The client program, which is installed on the hacker's computer.
PtAkkS is easy to identify, as it displays a fake error message when it is run. The attacker can modify the message displayed in the attacked computer, but by default it will be the following:
In addition, PtAkkS reaches the computer in a file compressed with the program WinZip. Therefore, if a suspicious file with the typical icon of WinZip reaches your computer, this Trojan may be trying to install itself on the computer.