- HEUR:Trojan-Spy.Win32.Windigo.gen -> \csrss.exe._489baaa1dffa5a7a2546b8ede0385f611c8d57 7a ( AVAST4: Win32:TrojanX-gen [Trj] )
- HEUR:Trojan.Win32.Generic -> \winmonfs.sys._5763c2cfdac09ac4a15bad619fa1c821b63 178e9 ( AVAST4: Win32:Rootkit-gen [Rtk] )
- HEUR:Trojan.Win32.Marut.vho -> \windefender.exe._abd1312c5727ac2a64ae5add1706d47c d65386eb ( AVAST4: Win32:Trojan-gen )
- Trojan.Win32.Kepiten.a -> \ef8e20de4084.exe._903f730256b50408d79d25869d3548e 0f2c84cad ( AVAST4: Win32:TrojanX-gen [Trj] )
- Trojan.Win32.Kepiten.a -> \3a10368c3899.exe._903f730256b50408d79d25869d3548e 0f2c84cad ( AVAST4: Win32:TrojanX-gen [Trj] )
- Trojan.Win32.KillAV.rjy -> \winmonprocessmonitor.sys._e7743a9e741a05c7c974efb f5272761295132d0d
- UDS:DangerousObject.Multi.Generic -> \scheduled.exe._6a6887ad2c05b5f4e1bb28b902f3a441bf 655604 ( AVAST4: Win32:DropperX-gen [Drp] )
- VHO:Rootkit.Win32.Agent.elob -> \winmon.sys._6f8b2963d0d6b5b3c66c7d018c6649405b14c 7ab