- HEUR:Trojan.Win32.Miner.gen -> c:\programdata\windowstask\microsofthost.exe
- HEUR:Trojan.Win32.Miner.gen -> c:\programdata\windowstask\amd.exe ( AVAST4: Win64:Malware-gen )
- not-a-virus:RemoteAdmin.Win32.RDPWrap.b -> \rdpconf.exe
- not-a-virus:RemoteAdmin.Win32.RDPWrap.c -> \rdpcheck.exe
- not-a-virus:RemoteAdmin.Win32.RDPWrap.h -> \rdpwinst.exe
- Trojan.Win32.Autoit.flm -> c:\programdata\windowstask\winlogon.exe ( AVAST4: Win32:Malware-gen )
- Trojan.Win32.BitCoinMiner.dsf -> c:\programdata\realtekhd\taskhostw.exe ( AVAST4: Win64:Malware-gen )