Technical Information
- [<HKLM>\SYSTEM\ControlSet001\Services\AntipWinsx32_] 'Start' = '00000002'
- '<Current directory>\AntiSpSetup.exe'
- '<SYSTEM32>\dobstd.exe'
- '<SYSTEM32>\dbgExp32.exe' -install
- '<Current directory>\AntiSpSetup.exe' (downloaded from the Internet)
- %TEMP%\temp_172140.bat
- <Current directory>\AntiSpSetup.exe
- %TEMP%\temp_176593.bat
- <SYSTEM32>\dobstd.exe
- <SYSTEM32>\bills.dat
- <SYSTEM32>\setupixs.dat
- <SYSTEM32>\dbgExp32.exe
- <SYSTEM32>\dbgExp32.exe
- 'as####tispyware.net':80
- as####tispyware.net/installex_download.cgi?id################
- DNS ASK as####tispyware.net