Previous http://www.politechbot.com/p-02116.html
And now DIRT has been liberated so we may study it. See cryptome.org
The program raterm.exe included with DIRT allows you to connect to any infected PC without any username or password! You can upload or download files, and run any program on the target. Port 2001 is used by default, so someone who likes do such things can easily scan for listening machines. After they've found one, they can connect to the target and download the default infector desktop.exe, which has the e-mail address of the snooping party in it in plain text.
</fwd>