0
Not a bug

Reported as virus

bob 3 years ago updated by Ben Burner 3 years ago 2

i BELIEVE THIS MACHINE HAD BEEN UPDATED TO v6

A high-risk incident was detected on HP-SYSTEM1.nysh.local within the group Default Group on 10/12/2016 10:15:41 AM.

Incident Details
00015051.tmp (Trojan.Hachilem) detected by Virus scanner

Threat Name
Trojan.Hachilem

Threat Type
Virus

File Name
c:\program files\screenconnect client (3e18f1df10ce962b)\00015051.tmp

Action Required
To resolve this security risk a reboot is required

ConnectWise Control Version:
Server Affected:
Host Client Affected:
Guest Client Affected:

Good afternoon,


The information provided strongly suggests that a third party infected your ScreenConnect client installation directory with the Hachilem trojan.


Is HP-SYSTEM1.nysh.local the only endpoint with an infected client installation directory or do other endpoints' client installation directories also contain the malicious tmp file?


Regards,

Ben