Service Request Ticket - # 76067

Service Request Information

CONTACT Name Dukes, Gary   View open tasks   View tasks from last 30 days   Schedule Change Contact Date Jun 17, 2020 03:44 PM
Department VP Student Affairs Phone 88221
Location Email dukesg@wou.edu Request for more information Send 'Keeping in touch' email Send 'I'm thinking of you' email
SR INFO Type WOU #
Priority Equipment Type
Status Flagged
Description
Computer Edit WOU # 20180613[Edit Inv] (opens in a new window) Bldg/Room OFF PDR
Service Tag Description Apple 27-inch iMac with Retina 5K Display #Z0TP
Serial No. D25Y406PJ1GN Location PDR

CPU 3.4GHz Quad-Core Intel Core i5


OS MAC OS X 10.14 (Mojave) Software MSDesktop Ed Office 201* for MAC XXXX2018007938;

Wired NIC 68:FE:F7:08:43:85


Wireless NIC 18:81:0E:E0:49:88


Bluetooth NIC 18:81:0E:E0:49:89

TECHS Submitted by Megan Thibeault Contact thibeaultm@wou.edu 88925
Primary Technician Contact rushingj@wou.edu 89242

Tracking

Entered by Date Memo
John Rushing
Email

Public
Entered by Date Memo
John Rushing Jun 18, 2020 09:08 AM 
Status changed from (2) Scheduled to (5) Completed
 Add Attachment
John Rushing Jun 18, 2020 09:08 AM 
We could not locate the file on his email, but we 
did find the local copy on his HD and removed it.  
It was from March 2018.
 Add Attachment
Megan Thibeault Jun 18, 2020 08:12 AM 
Task reassigned to John Rushing.
 Add Attachment
Bradley Karkanen Jun 17, 2020 04:12 PM 
Status changed from (1) Pending to (2) Scheduled
 Add Attachment
Bradley Karkanen Jun 17, 2020 03:55 PM 
****This is an outgoing email****
Hi Gary,

I need some additional information regarding 
service request #76067

Description: Sophos Alert

Is there a good time for me to stop by and take a 
look at your iMac. It looks like Sophos detected a 
sketchy email attachment in your Mac Mail folder 
probably from a spam email. Just want to make sure 
things are clean.
 Add Attachment
Public
Bradley Karkanen Jun 17, 2020 03:51 PM 
Task reassigned to Bradley Karkanen.
 Add Attachment
Megan Thibeault Jun 17, 2020 03:44 PM 
****This is an email****
What happened: We could not clean up a threat.

Where it happened: W20180613

Path: /Users/dukesg/Library/Mail/V6/F177B2E2-876E-4BB7-B9D5-5675F8C05528/[Gmail].mbox/All Mail.mbox/CF40934B-6C84-4286-85F3-8FCB2CD3B520/Data/0/4/Attachments/40446/2/Business Proposal.html

What was detected: Mal/Phish-A

User associated with device: W20180613\dukesg

How severe it is: High

What Sophos has done so far: We attempted to clean up (unless the threat is on a Linux computer).

What you need to do: In the Sophos Central Admin console, go to the Alerts page and find the threat alert. Click on the threat name to see details and cleanup advice on the Sophos website. Then go to the affected computer and clean up the threat manually.
 Add Attachment