I agree this project looks really promising, glad there are good projects like these popping up these days
New beta-Release: RansomOff v5.2017.131.8772 (11 May 2017) New Feature: Folder Protection (deny, deceive, hide)
Just wanted to note that we posted version 5.2017.131.8772 (Beta). We also just want to thank everyone for their continued support. RansomOff is becoming more stable and feature rich with every release but if there is something you feel it is lacking, please let us know.
+1 Edit: Will replicate my Secure Folders settings in RO, switch off SF, and give it a whirl. A neat addition to RO. Btw would it not be an idea to be able to toggle protection, as one can for SF?
The toggling now is for all folder protections at once from the Protection Status window. Are you saying having a per folder toggle?
Hi Does RansomOff delete the ransomware besides just Deny/Allow? How about identifying the ransomware and then prompt the user for deletion? I think AppCheck Pro and Temasoft Ranstop don't have these features too Thanks
When you click 'Deny' RansomOff will perform an automatic cleanup which includes deleting the ransomware file itself along with all files and registry keys created by that process. Outside of malware testers, most would probably want the ransomware to be deleted without delay. However, RansomOff does have an undelete feature where you can restore files it has deleted.
Done. I haven't tested the protection yet, but in terms of configuration, it is an improvement over SF in that one can set trusted apps per folder. However, one can't secure at the drive / root level, like SF. There may be a technical reason for this.
I added one folder with documets to Folder protection and set to Read Only. When try to rename files no alert, try to delete files no problem...where is the protection? With program Secure Folders I can't do anything with protected folders.
Please read the documentation. You have to add at least one program to the exemption list. https://www.ransomoff.com/docs.php
Maybe it is useful to display it in the window of RansomOff. Like: "This protection has no effect without an exempted process" / "You have to add at least one exempted process" or a similar note.
Ok, do that and now is working ok Here is the test with Ransim (ransomware simulator) One question, I didn't see any pop-up of blocked stuff, settings are like this:
Wow, I haven't tested it yet, but it's looking good, I really like the GUI. The documentation also looks nice.
RansomOff looks very promising indeed. I haven't installed it yet because I still don't know if it is compatible with Kaspersky Internet Security, but I'll definitely keep on following this thread. Thanks very much for all you do here, @HeiDef . It's very much appreciated.
And we appreciate the feedback from the community. Only helps to make RansomOff better. We've tested RansomOff with KIS a few weeks ago and there were some negative interactions but the latest version seems to play pretty nicely with existing security software especially if you exempt it. We'll do another bit of testing on the latest version just to see how they work together and let you know.
Glad it's working for you. We designed it to require at least one process exempted per folder kind of as a safety switch to make sure you can always access your files. If that's not necessary, it's not an issue to remove that requirement. Just would like to hear from the group on their thoughts. Not sure exactly why you didn't see any alerts but it looks like all the RanSim attempts were blocked. We'll run it to see what's going.
Hi Can you let us know when you intend to release its 1st stable version? You can't forever beta-test the program. Thanks
HeiDef, as a result of your participation, and communication with our forum members, you have earned Developer status. Congratulations!