Had a few clients that got scammed for people to remote into their PC. Indication that its a scam is when they have a support.client.exe file in their download folder. What this does is installs ConnectWise screenconnect service. Typically the files are stored under Users\{Username}\Appdata\local\Apps\2.0 and if you check services you will see screenconnect service running. I stop the service. Then disable the service and then delete the 2.0 folder.
If you check the location of the files under services for screenconnect will show where the files got installed.
Recent Comments