Endpoint Protection

Hi All,

May I ask what will be our resolution to detect, remove and prevent this type of Malware. I already update our SEP 14 manager and all SEP client but still we encounter this Hijack.FolderOptions. 

Any Idea how to prevent it to occur again?

Thank you.

Nestor.

You can try running a threat analysis scan from the SymDiag tool. Additionally, there is the Norton Power Eraser. If you have a hash of the malicious file then submit it to Symantec for review.

Hi  Rian,

    Actually, we did use the Symdiag Tool and seems that it cannot detect this malware.  We have been using Symantec Endpoint  for the past 5 years and initially this last month, we encountered and quarantined w32.Ippedo virus.  After we have run the Diag tool.  Seems all are clean but  when the malwarebytes tool was run on every workstation.  It is telling us the a hijack.folder options malware has been detected and was removed.  But it always comes back after a day on 3 to 4 workstations.  This malware has has not been detected by symantec or any other AV other than malwarebytes.  Thanks in advance.

Regards,

Francis

See here:

https://www.symantec.com/docs/TECH98929

Probably best to re-image the box then.