- Backdoor.Win32.RMS.pn -> c:\programdata\windows\rutserv.exe ( BitDefender: Trojan.GenericKD.3007448 )
- HEUR:Trojan-Downloader.Win32.Deyma.gen -> c:\programdata\windowstask\sys.exe ( AVAST4: Win32:PWSX-gen [Trj] )
- HEUR:Trojan-Downloader.Win32.Deyma.gen -> c:\programdata\bebca3bc90\tdun.exe ( AVAST4: Win32:PWSX-gen [Trj] )
- HEUR:Trojan-Spy.Win32.Convagent.gen -> c:\programdata\windowstask\audiodg.exe ( BitDefender: Gen:Trojan.Heur.AutoIT.2, AVAST4: Win32:Malware-gen )
- HEUR:Trojan.Win32.Miner.gen -> c:\programdata\windowstask\microsofthost.exe ( AVAST4: Win64:CoinminerX-gen [Trj] )
- HEUR:Trojan.Win32.Miner.gen -> c:\programdata\windowstask\appmodule.exe ( AVAST4: Win64:CoinminerX-gen [Trj] )
- not-a-virus:HEUR:RiskTool.Win32.BitMiner.gen -> c:\programdata\windowstask\xmrig-cuda.dll ( AVAST4: Win64:CoinminerX-gen [Trj] )
- not-a-virus:RemoteAdmin.Win32.RDPWrap.h -> c:\rdp\rdpwinst.exe
- not-a-virus:RemoteAdmin.Win32.RDPWrap.h -> c:\program files\rdp wrapper\rdpwrap.dll
- Trojan.BAT.Agent.bhf -> c:\programdata\windows\install.bat ( AVAST4: Other:Malware-gen [Trj] )
- Trojan-PSW.Win32.Delf.aidq -> c:\programdata\install\utorrent.exe
- Trojan.VBS.Starter.mj -> c:\programdata\windows\install.vbs
- Trojan.Win32.Autoit.acbae -> c:\programdata\windowstask\winlogon.exe ( AVAST4: Win32:Malware-gen )
- Trojan.Win32.Autoit.acbae -> c:\programdata\realtekhd\taskhost.exe
- UDS:Trojan.Win32.Miner -> c:\programdata\realtekhd\taskhostw.exe ( AVAST4: Win64:Malware-gen )
- UDS:Trojan.Win32.Miner -> c:\programdata\setup\update.exe