Backdoor:Win32/Kreen!dha

Use the following free Microsoft software to detect and remove this threat:

• Microsoft Defender Antivirus for Windows 8 and Windows 10, or Microsoft Security Essentials for Windows 7 and Windows Vista
• Microsoft Safety Scanner

You should also run a full scan. A full scan might find hidden malware.

Disable macros loading in Office programs

To help prevent malicious files from running macros that might download malware automatically, change your settings to Disable all except digitally signed macros. You can also disable macro loading through the Group Policy settings.

Office 16 provides a Group Policy setting that enables you to block macros from running in Word, Excel and PowerPoint files from the Internet. See how to block macros from running in Office 16 files from the Internet for details.

Use Office 365 Advanced Threat Protection.

Office 365 Advanced Threat Protection has a machine learning capability to help your network administrators block dangerous email threats. See the Overview of Advanced Threat Protection in Exchange: new tools to stop unknown attacks, for details.

Use cloud protection

The Microsoft Active Protection Service (MAPS) uses cloud protection to help guard against the latest malware threats. It’s turned on by default for Microsoft Security Essentials and Windows Defender for Windows 10. 

• Check if MAPS is enabled on your PC

Get more help

You can also see our advanced troubleshooting page for more help.

If you’re using Windows XP, see our Windows XP end of support page.