Technical Information
- [<HKLM>\System\CurrentControlSet\Services\svci7ikm] 'ImagePath' = '<SYSTEM32>\svchost.exe -k svci7ikm'
- [<HKLM>\SYSTEM\CurrentControlSet\Services\svci7ikm\Parameters] 'ServiceDll' = '<SYSTEM32>\aptiwua3a.dll'
- 'svci7ikm' <SYSTEM32>\svchost.exe -k svci7ikm
- <SYSTEM32>\aptiwua3a.dll
- <SYSTEM32>\aptiwua3a.dll
- '<SYSTEM32>\cmd.exe' /c "del <Full path to file> >> NUL' (with hidden window)
- '<SYSTEM32>\svchost.exe' -k svci7ikm
- '<SYSTEM32>\cmd.exe' /c "del <Full path to file> >> NUL