Event ID - 902

Port No902
Service NamePEST
RFC Doc0
ProtocolTCP
DescriptionThis nondestructive virus infects EXE files in the %windows% and %system% directories. %windows% is usually the C:\Windows directory and %system%is usually the C:\Windows\System directory.
Reference LinkPEST
AttackSolution:

Click Start>Run, type Regedit then hit the Enter key.
In the left panel, double click the following:
HKEY_LOCAL_MACHINE>Software>CLASSES>exefile
>shell>open>command
In the right panel, right click this registry value and then modify the data, "C:\Windows\System\Win32.Pest.exe””%1”%*” with this:
{Default} “”%1”%*”
Scan your system with Trend Micro antivirus. Delete all files detected as PE_PEST.A. To do this Trend Micro customers must download the latest pattern file and scan their system. Other email users may use HouseCall

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught

Did this information help you to resolve the problem?

Yes: My problem was resolved.
No: The information was not helpful / Partially helpful.