CTB Blocker: Any Tested, Proven Protection Program Against ?

[Robert11]

Hello,

As I have mentioned, I was infected by that TCB Blocker trojan.

Will be purchasing a new pc, and certainly don't want it again.

Have contacted many, many, of the virus software prevention folks, with a very specific question
regarding if their product has been tested against, and will (definitely) prevent it ?

Nothing but "canned" responses.
Just basically what a great product they offer, but no addressing of my question.
Not an even "we think so".

Anyone know of a product that most definitely works against this specific trojan, and its varients ?

Thanks,
Bob

 

[MoxieMomma]

Hi:

Did you see the helpful replies in your other thread about this, especially these:

by Jacee: http://www.sevenforums.com/system-s...lease-sr-citizen-post3050953.html#post3050953

by Tookeri: http://www.sevenforums.com/system-s...lease-sr-citizen-post3051042.html#post3051042

I expect that other forum members with interests in malware/security might have additional suggestions.

Cheers,

 

[Tookeri]

About Sandboxie that I mentioned in your other thread, here's an example of what a similar malware, Cryptowall, does if it detects it's running in a virtual environment: http://www.sevenforums.com/security...are-variant-has-new-defenses.html#post2981906

Malware detecting it's running in a virtual environment knows it's not safe, for two reasons:
- It's easier to track both changes and the malware in a Sandbox
- The encryption process won't be successful as it only has access to a virtual filesystem and not the real one

And if a malware would run inside Sandboxie anyway, it would only encrypt virtual copies of your files and not your real ones.

Anti-exploit products like HitmanPro.Alert3 have techniques to trick malware into thinking it's running in a virtual environment. It has other features as well, but I recommend a virtual environment like Sandboxie over any detection/block products. Or maybe both