2 Replies Latest reply on Aug 13, 2016 4:53 AM by catdaddy

    Artemis!E20AB9852C08 (Trojan)

    yogeshsawai

      Got alert from epo. when I chekced on access scan log of system I found below comment in it.

      8/5/2016    5:47:43 AM    Deleted     NT AUTHORITY\SYSTEM    C:\Windows\System32\rundll32.exe    C:\Users\username\AppData\Roaming\Kingsoft\office6\update\down\wpsupdate.exe    Artemis!E20AB9852C08 (Trojan)    e20ab9852c0858f5d1bebc8ccbc0d5a6 (MD5)

      Deleted        C:\Windows\System32\svchost.exe    C:\UserName\AppData\Roaming\Kingsoft\office6\update\down\wpsupdate.exe    Artemis!E20AB9852C08 (Trojan)    e20ab9852c0858f5d1bebc8ccbc0d5a6 (MD5)