Prosiak 0.61 server
(Backdoor.Win32.Prosiak 0.61)

by DeathSpy

Compressed with ASPack

Made in Poland

more versions 


Server:
dropped files:
c:\WINDOWS\SYSTEM\keylog.log   size: 0 bytes 
c:\WINDOWS\SYSTEM\MSJET32.EXE  size: 243.180 bytes
 
port: 800, 23, 44444 TCP

startup:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices "Microsoft DLL Loader"
data: msjet32.exe 

tested on Windows 98
November 18, 2004
MegaSecurity