>Russian spam/proxy software. Widely used by Russian miscreants. >Question, what did you use to de-obfuscate? Oh , since it was self de-obfuscating it contained the code to do so , I just hijacked that ( perl's unpack() function) John