Trojan.WMIHijacker.ClnShrt is Malwarebytes’ detection name for Trojans that use the Windows Management Instrumentation (WMI) infrastructure to alter victims’ browser shortcut files in order to add the target site so the browser(s) open with that site.
The majority of these hijackers are installed by bundlers.
Malwarebytes protects users from Trojan.WMIHijacker.ClnShrt by blocking the sites these hijackers try to open.
Malwarebytes blocks yeabests.cc when Trojan.WMIHijacker.ClnShrt is present
Malwarebytes can detect and remove Trojan.WMIHijacker.ClnShrt without further user interaction.
You can use the Malwarebytes Anti-Malware Nebula console to scan endpoints.
Choose the Scan + Quarantine option. Afterwards you can check the Detections page to see which threats were found.
On the Quarantine page you can see which threats were quarantined and restore them if necessary.
Select your language