- HEUR:Trojan.Win32.Blouiroet.gen -> c:\programdata\rundll\2x64.dll ( AVAST4: Win64:Malware-gen )
- HEUR:Trojan.Win32.Blouiroet.gen -> c:\programdata\rundll\x64.dll ( AVAST4: Win64:Malware-gen )
- HEUR:Trojan.Win32.Miner.gen -> c:\programdata\windowstask\appmodule.exe ( AVAST4: Win64:CoinminerX-gen [Trj] )
- HEUR:Trojan.Win32.Miner.gen -> c:\programdata\windowstask\microsofthost.exe ( AVAST4: Win64:CoinminerX-gen [Trj] )
- not-a-virus:HEUR:RiskTool.Win32.BitMiner.gen -> c:\programdata\windowstask\xmrig-cuda.dll ( AVAST4: Win64:CoinminerX-gen [Trj] )
- Trojan.BAT.Agent.bhf -> c:\programdata\windows\install.bat ( AVAST4: Other:Malware-gen [Trj] )
- Trojan.BAT.Hosts.j -> c:\programdata\microsoft\temp\h.bat ( AVAST4: Other:Malware-gen [Trj] )
- Trojan.VBS.Starter.mi -> c:\programdata\rundll\start.vbs ( AVAST4: Other:Malware-gen [Trj] )
- Trojan.VBS.Starter.mj -> c:\programdata\windows\install.vbs
- UDS:Trojan.Win32.Agentb.a -> c:\programdata\install\cheat.exe