Superantispyware did not prevent the ransomware install of the three ransomware variants I tested. The only security software I have tested that detects and foils installation of these rogue antivirus programs is Malwarebytes. However if you scan with Superantispyware after the infection it does remove it.
Thanks for the update. I've been considering this product.
Two things I'd be interested in you adding to your tests if you're willing.
1. OpenDNS - http://www.opendns.org
My understanding is that OpenDNS may not always block the installation of malware, but does its best to block known sites that common malware access once installed, essentially crippling the malware. From their malware information page ... 'This means even if the virus has penetrated machines on your network it is rendered useless because it cannot connect back to the botnet
.' Would be interesting to see what the result is.
2. MVP hosts - http://winhelp2002.mvps.org/hosts.htm
I've used this with surprising success with some repeat customers. Had a client bring his malware infected machine back three times in two months with different infections. He uses porn sites that were aggregating content from other sites across the web. After installing this custom host file it stopped. The surprising part is that this hosts file has to be manually maintained so I was expecting limited success. I'm still in regular contact with him but he hasn't seen a re-occurance. The MVP host file I installed is probably 15 months old at this point. Just a little extra to help block the known stuff.