by Kontaminator
Written in Visual Basic
Released in February 2006
Made in Columbia
Server: dropped file: c:\WINDOWS\system32\Herramienta de Actualización.exe size: 200,704 bytes port: 236, 1000, 1516, 2345, 4444, 6198 TCP startup: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "PCTOOLS" data: c:\windows\system32\Herramienta de Actualización.exe tested on Windows XP August 22, 2006MegaSecurity