by Kontaminator
Written in Visual Basic
Released in January 2006
Made in Columbia
Server: dropped file: c:\WINDOWS\system32\Herramienta de Actualización.exe size: 200,704 bytes port: 2345, 1000, 236, 6198, 4444, 1516 TCP HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "PCTOOLS" data: c:\windows\system32\Herramienta de Actualización.exe tested on Windows XP January 06, 2006MegaSecurity