- Kaspersky Labs has detected Backdoor.WinCE.Brador.a, the first backdoor for PDAs running under PocketPC (based on Windows CE). Brador is a classic Trojan backdoor program: it opens the infected machine for remote administration. Brador is 5632 bytes in size and it infects handhelds running Pocket PC. After the backdoor is launched, it creates an svchost.exe file in the Windows autorun folder, thus maintaining full control over the system every time the handheld is turned on. Brador then identifies the machine's IP address and sends it to the author, informing him that the handheld is in the Internet and the backdoor is active. Finally, Brador opens port 2989 and awaits further commands.