We have a thorough description of the problem: This verdict (Trojan.Multi.Accesstr.a) is used to detect files cmd.exe and powershell.exe which are kept in the system folder under different names. In similar reqests from customers we have encountered the following: File C:\Windows\system32\sethc.exe is in fact cmd.exe, which can be used to gain unauthorized access to the system. Because the original sethc.exe could not be found, the disinfection could not be performed correctl