What is Li Jun doing now?

Before Li Jun started "Panda Burning Incense", he was not well-known in the hacker circle. It was not until the incident broke out that people knew he was a figure. However, becoming famous also put him in jail, and he was eventually sentenced to four years in prison. The more than 100,000 he earned from selling viruses was also turned over to the state treasury. In prison, Li Jun obtained a reduced sentence by writing detoxification software for the public security organs, and was released from prison early on December 24, 2009.

Ten days after he was released from prison, Li Jun submitted his resume to the well-known domestic Jinshan Company, saying that he had reformed and hoped that Jinshan Company could give him an opportunity to use his profession to repay society. Kingsoft was very moved and immediately said: "Come and work as a customer service officer with us!"

Although he was eventually hired by Kingsoft as an "Internet Security Observer", his monthly salary was only 3,000 yuan. In desperation, Li Jun had to leave Jinshan and apply for jobs at Rising, Qihoo, Jiangmin and other anti-software companies. However, these companies were not interested in him, and one company even directly refused Li Jun's visit.

On June 13, 2013, Li Jun opened an online casino in Lishui, Zhejiang, making millions of dollars, involving tens of millions in gambling capital. On January 8, 2014, he was arrested by the police on suspicion of opening a casino and sentenced to three years in prison. According to time calculation, he should be released from prison now, but looking through his Weibo, the latest one is still at the end of 2012.

The impact and harm of the Panda Incense-burning virus:

The Panda Incense-burning virus will delete files with the extension gho, making it impossible for users to use ghost software to restore the operating system. "Panda Burning Incense" infects the system's .exe.com.f.src.html.asp files and adds virus URLs, causing IE to automatically connect to the specified virus URL to download the virus as soon as the user opens these webpage files.

The files autorun.inf and setup.exe are generated in each partition of the hard disk, which can be spread through U disks and mobile hard disks, and run using the automatic playback function of the Windows system to search for . The exe executable file is infected, and the infected file icon changes to a "panda burning incense" pattern.

"Panda Burning Incense" can also be spread through various methods such as shared folders and simple user passwords. This virus will add virus code at the end of all web page files in the infected computer.

If the computers of some website editors are infected by the virus, after uploading web pages to the website, users will also be infected by the virus when browsing these websites. It is reported that many well-known websites have been attacked by such attacks and viruses have been implanted one after another.