Short Bio

This is a generic detection for Trojans that are present on affected systems as altered Microsoft files. Thus, the files will be signed by the actual Microsoft Corporation but are no longer the original files. A malicious payload will have been added to the file.


Malwarebytes can remove the threat without further user interaction. It can not always replace the file with the original, so users may want to run the Windows System File Checker after the removal has been completed.

Cybersecurity info you can’t do without

Want to stay informed on the latest news in cybersecurity? Sign up for our newsletter and learn how to protect your computer from threats.

Select your language