PcTek9
Well-Known Member
- Reaction score
- 87
- Location
- Mobile, AL
We all know that a virus or trojan in an executable format can be obfuscated by running tools that apply a sort of encoding effect giving the malware a virtual polymorphic encapsulation, or even just recoding the internal commands using alternative methods of structuring the code. Each time this is done, fewer and fewer antivirus products will pick up that malware.
Lately, many evil-ware writers are even using encoding/translation products to metamorphosize their product into the realm of scripted commodities resulting in usually zero antivirus/malware programs being able to effectively identify the original product.
Enter the customer whose pc stays clean 2 weeks, and they are back again... Questioning why you can't fix their pc to last in a clean state while they surf the net with the malware iq of a computer neophyte in the digital equivalent of skinny dip apparel. How do you handle them... So I am always trying something different for these types of customers.
Educating them is definitely a way to decrease your bottom line, but do it anyway, most of the won't bother to read it. What you could do though, if you are serious about helping them, is the following:
1) ask if you may provide them a limited user account with a full explanation of what that is signed and sealed.
2) click or unclick the checkboxes in explorer that prevent 3rd party toolbar add ons.
3) why not click or unclick the button to delete everything that's living in their browser temp folder on close?
4) rather than running vbs scripts you could have the system ignore them, or open them in notepad for viewing or ...disable the windows scripting host altogether which will stop vbs and js.
In extreme cases, i've actually installed a hardware card on their system that simply returns certain folders or the entire pc to the way it used to be, you can do the same thing with some software packages. Your joy.
* Do make certain your customer and YOU have a 100% understanding of the changes you make to their system before you do it.
Lately, many evil-ware writers are even using encoding/translation products to metamorphosize their product into the realm of scripted commodities resulting in usually zero antivirus/malware programs being able to effectively identify the original product.
Enter the customer whose pc stays clean 2 weeks, and they are back again... Questioning why you can't fix their pc to last in a clean state while they surf the net with the malware iq of a computer neophyte in the digital equivalent of skinny dip apparel. How do you handle them... So I am always trying something different for these types of customers.
Educating them is definitely a way to decrease your bottom line, but do it anyway, most of the won't bother to read it. What you could do though, if you are serious about helping them, is the following:
1) ask if you may provide them a limited user account with a full explanation of what that is signed and sealed.
2) click or unclick the checkboxes in explorer that prevent 3rd party toolbar add ons.
3) why not click or unclick the button to delete everything that's living in their browser temp folder on close?
4) rather than running vbs scripts you could have the system ignore them, or open them in notepad for viewing or ...disable the windows scripting host altogether which will stop vbs and js.
In extreme cases, i've actually installed a hardware card on their system that simply returns certain folders or the entire pc to the way it used to be, you can do the same thing with some software packages. Your joy.
* Do make certain your customer and YOU have a 100% understanding of the changes you make to their system before you do it.
Last edited:
