Pest 1.0
(Backdoor.Win32.Pestdoor.10)
(TrojanDropper.Win32.Juntador.e)

by MonkeyCircus & Rabid Tangerine

Written in Delphi

Released in June 2002

more versions 


PEST is a remote administration tool.
It will allow you to remote control any PC over a TCP/IP connection (Internet connection). 
There are two main parts to the remote administration tool; a client and a server.
There are two servers included with this version,
The binded 'server with MSN informer.exe' (cannot be edited in the server editor)
and a unpacked 'server.exe' (can be edited in edit server, but has no MSN informer).
I suggest you use the Server with the MSN informer, because it is smaller, 
and has the unique MSN informer function.
NOTE: THE BINDED SERVER WITH MSN INFORMER ALWAYS RUNS ON THE PEST V1.0 DEFAULT PORT: 11831

To take control of another computer, we suggest you follow these steps.
We also suggest you use MSN messenger, to take advantage of the MSN messenger
automatic IP address informer included in this version.

1.) Sign into your MSN messenger account using the MSN messenger instant messaging program. 

2.) Use the 'send a file or photo' function to send one of your online contacts 
    the file included with pest called 'Server.exe' 
	(you can rename the file if you wish e.g. My_pic.exe)

3.) When the file finishes sending and the person you sent it to has run the
    server.exe file, run the 'PEST v1.exe' (the client part of PEST) on your computer. 

4.) At the top left of PEST, enter the IP address of the computer you are going 
    to take control of. Then click connect. 

5.) Use the functions listed on the left hand side menu bar in PEST v1 to control
    the remote computer. Have Fun! 

NOTE: NEVER USE THE CPU FEATURES UNLESS YOU KNOW WHAT YOU ARE DOING!
using the CMOS wipe function will cause the target computer to malfunction
while attempting to boot, the mother board of the remote computer may have to be replaced.

This program will allow you to steal the MSN .net passport password of the user
using the remote computer. Just use the PEST v1 file manager to upload the
'MSN password stealer.exe' program onto the remote computer,
then execute the file on the remote computer.
The user will see a message box appear and be prompted to enter their MSN messenger password.
This information will be stored in a file on the remote computers hard disc called 'os32779.txt'.
You can then download this file off the remote cmoputers hard disc.
(NOTE: some comuters will report an I/O error when trying to create the .txt file,
so you may want to upload a file to the remote computers hard disc
called 'os32779.txt' ready for use with the password stealer.

MonkeyCircus & Rabid Tangerine


Server:
C:\WINDOWS\SYSTEM\winregse.exe 

size: 494 KB

port: 11831, 29559 TCP

startup:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
MegaSecurity