Technical Information
- [<HKLM>\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] 'Microsoft Essential Updater' = '%ALLUSERSPROFILE%\Updates\MicrosoftSecurityClient.exe'
- Handler for all processes: %ALLUSERSPROFILE%\Updates\Uam.dll
- %ALLUSERSPROFILE%\updates\microsoftsecurityclient.exe
- %ALLUSERSPROFILE%\updates\uam.dll
- %ALLUSERSPROFILE%\updates\d3d.dll
- %ALLUSERSPROFILE%\updates\windows defender.exe
- %ALLUSERSPROFILE%\lib\shellextention.dll
- %ALLUSERSPROFILE%\updates\config.dll
- '%ALLUSERSPROFILE%\updates\microsoftsecurityclient.exe'
- '%ALLUSERSPROFILE%\updates\windows defender.exe' %d