Yes we have a malware tester over at Malwarebytes forum that only runs samples on the real system and images back.
There are also rollback type apps such as RollbackRX, FD-ISR, AyeRecovery and Comodo Time Machine but I haven't really tried any of those.
Another Shadow Defender/Returnil type app and free ATM is Wondershare Time Freeze.
http://www.wondershare.com/blog/wond...otection-tool/
Yes sir! This is my point exactly. Malware is no longer written by 15 year old kids, it is being written by sophisticated originations that have all the resources we have plus the resources of a large company. They know about VM or sandboxie etc., and they have many ways around it. Don't kid yourself in thinking you are perfectly safe because you are testing in a VM type, or sandbox type of environment.
And that's where you can use the hidedriver.sys within the Buster Sandbox Analyser to hide Sandboxie's processes but even then some malware still won't run.
Why I prefer to use Sandboxie rather than a VM or virtualised real system is that it's way easier to find any droppers in the sandbox rather than searching system wide.
If you know any ways that bypasses Sandboxie please elaborate over at Sandboxie's forum. You can only help an excellent security app get better.
hi !
interesting, i´ve tested both Returnil & Sandboxie, and was thinking about enhancing the security by running both of them,
first start Returnil & then run fx. Firefox in a sandbox.
hmmm, going to try that combination...
"Buster Sandbox Analyser" ?
link ?
do you mean this program ?
Released Buster Sandbox Analyzer 1.23 | Offensive Computing
Here's the link to Buster Sandbox Analyzer over at Sanboxie's Forum.
www.sandboxie.com :: View topic - Buster Sandbox Analyzer
And another over at Wilders.
Buster Sandbox Analyzer - Wilders Security Forums
thanks Jaxryley, that´s the program that is mentioned on the website i posted.
If you have no idea what you're doing while testing malware .... please stay off the Internet
Quote