- HEUR:Trojan.Win32.Miner.gen -> c:\programdata\windowstask\appmodule.exe ( AVAST4: Win64:CoinminerX-gen [Trj] )
- HEUR:Trojan.Win32.Miner.gen -> c:\programdata\windowstask\microsofthost.exe ( AVAST4: Win64:CoinminerX-gen [Trj] )
- not-a-virus:HEUR:RiskTool.Win32.BitMiner.gen -> c:\programdata\windowstask\xmrig-cuda.dll ( AVAST4: Win64:CoinminerX-gen [Trj] )
- not-a-virus:RemoteAdmin.Win32.RDPWrap.h -> c:\program files\rdp wrapper\rdpwrap.dll
- Trojan.BAT.Agent.bhf -> c:\programdata\windows\install.bat ( AVAST4: Other:Malware-gen [Trj] )
- Trojan.Script.Miner.a -> c:\users\5795~1\appdata\local\temp\rknrl.vbs
- Trojan.VBS.Starter.mj -> c:\programdata\windows\install.vbs