I am seeing a Tamper Protection alert on my SEP server. The alert is
Scan type: Tamper Protection Scan
Event: Tamper Protection Detection
Security risk detected: C:\WINDOWS\SYSWOW64\WERFAULT.EXE
File: C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\LUTeleTool.exe
Location: C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin
Computer: CABA0W8SEP1
User: SYSTEM
Action taken: Access denied
Date found: Monday, August 10, 2015 9:55:56 PM
This is the first time this has alerted. We have multiple servers that replicate and the LUTeleTool.exe does not appear in the Bin folder on my other server. I am not sure if this can be ignored or if this is something to be concerned with. I am not able to find any information on LuTeleTool.exe. Any information is appreciated.
Thanks,