kcooke1983
New Member
- Reaction score
- 1
- Location
- Carrickfergus, Northern Ireland, UK
Hi Guys
I have just picked a laptop up tonight and I will work on it tomorrow evening.
I wanted get a feeling for other techs experience with this virus in advance.
I went to my customers house to diagnose the laptop. Which incidentally is running Win7 64-bit.
If anyone has "liked" my facebook page they will have seen me put a warning out to all my followers.
The warning was in relation to this diagnosis.
The customer had been using facebook as they normally do, a friend/malware pretending to be a friend sent her a message in the chat facility. This message stated that they had been tagged in a photo or something similar and when clicked a new tab/window opened which then produced a warning claiming to be from Norton advising that this was a malicious page and that the user should restart their machine immediately and then do nothing else as "Norton" would take care of the rest.
The user, had real Norton installed as well as Avast. I didn't really get an answer as to why they had 2, thought this was genuine so did as requested.
When the machine booted back up and when it did most of the programs where "gone". None of the shortcuts worked. The program files folders both x86 and standard were practically empty.
I enabled viewing of hidden folders which didn't help as I had assumed said virus had hidden the folders and icons.
Booted into safe mode to see if that made a difference but still the same symptoms.
This program pretending to be Norton then places itself in the system tray, with similar icon to boot. It states "Enhanced Protection Mode Enabled" and advises the user that they need do nothing.
Having done a bit of "Google" research and confirmed that this is a virus trying to fool users. Seems like it succeeded here.
I will be tackling this beast tomorrow evening so wish me luck.
Any advice is welcomed.
I have just picked a laptop up tonight and I will work on it tomorrow evening.
I wanted get a feeling for other techs experience with this virus in advance.
I went to my customers house to diagnose the laptop. Which incidentally is running Win7 64-bit.
If anyone has "liked" my facebook page they will have seen me put a warning out to all my followers.
The warning was in relation to this diagnosis.
The customer had been using facebook as they normally do, a friend/malware pretending to be a friend sent her a message in the chat facility. This message stated that they had been tagged in a photo or something similar and when clicked a new tab/window opened which then produced a warning claiming to be from Norton advising that this was a malicious page and that the user should restart their machine immediately and then do nothing else as "Norton" would take care of the rest.
The user, had real Norton installed as well as Avast. I didn't really get an answer as to why they had 2, thought this was genuine so did as requested.
When the machine booted back up and when it did most of the programs where "gone". None of the shortcuts worked. The program files folders both x86 and standard were practically empty.
I enabled viewing of hidden folders which didn't help as I had assumed said virus had hidden the folders and icons.
Booted into safe mode to see if that made a difference but still the same symptoms.
This program pretending to be Norton then places itself in the system tray, with similar icon to boot. It states "Enhanced Protection Mode Enabled" and advises the user that they need do nothing.
Having done a bit of "Google" research and confirmed that this is a virus trying to fool users. Seems like it succeeded here.
I will be tackling this beast tomorrow evening so wish me luck.
Any advice is welcomed.
