- HEUR:Trojan.Win32.Generic -> c:usershomeappdataroamingupdateexplorer.exe ( DrWEB: BackDoor.Andromeda.662 )
- HEUR:Trojan.Win32.Generic -> c:usershomeappdataroamingwindowsupdatemsupdate.exe ( DrWEB: BackDoor.IRC.NgrBot.42 )
- HEUR:Trojan.Win32.Generic -> c:usershomeappdataroamingwindows livelpobrfyapo.exe ( DrWEB: BackDoor.IRC.NgrBot.42 )
- HEUR:Trojan.Win32.Generic -> c:usershomeappdataroamingwindowsupdatelive.exe ( DrWEB: BackDoor.IRC.NgrBot.42 )
- HEUR:Trojan.Win32.Generic -> c:usershomeappdataroamingmicrosoftwindowsthemeskvk gkq.exe ( DrWEB: Trojan.Packed.29982 )
- HEUR:Trojan.Win32.Generic -> c:usershomeappdataroamingwindowsupdateupdater.exe ( DrWEB: BackDoor.Andromeda.662 )
- HEUR:Trojan.Win32.Generic -> c:usershomeappdataroamingc731200 ( DrWEB: BackDoor.Andromeda.662 )
- not-a-virus:AdWare.BAT.Clicker.af -> c:program filesinternet exploreriexplore.bat
- not-a-virus:AdWare.BAT.Clicker.af -> c:program files (x86)mozilla firefoxfirefox.bat
- not-a-virus:RiskTool.Win64.BitCoinMiner.tb -> c:usersбатырappdataroamingsvchost.exe ( DrWEB: Trojan.BtcMine.793 )
- Trojan-Ransom.NSIS.Onion.lqe -> c:usershouseappdatalocalesdmtion7e828a4a.exe
- Trojan-Ransom.NSIS.Onion.lqe -> quarantinecusershouseappdatalocaltemp7e828a4a.exe. xbad
- Trojan-Ransom.Win32.Xorist.fnarp -> axr1pi4bn2k6mmm.exe
- Trojan-Ransom.Win32.Xorist.fnarp -> gbtel.exe