Very interesting...and certainly very enlightening. HMPA is infact more than just about ransomeware protection so to duplicate & surpass it's protection then one would seem to need AppCheck PLUS a host of other specific apps to cover all the areas that HMPA does. So an interesting question to ponder on...to AppCheck + others or to HMPA? Hmmmmmm...must investigate more.
HMPA is a very fine application and indeed has more utility than AppCheck; aside from the anti-exploit functionality, it will also protect against those Fortress-Class (exe encryptors) ransomware. And the Loman boys always do a nice job in correcting things on the rare occasion that these are demonstrated. They are very, very good and should be complimented for their professionalism. On the other hand, AppCheck Pro with the autobackup functionality will provide great benefit for those who wouldn't know a backup if it smacked them in the head. So AppCheck will protect those wo don't protect themselves.
Bien dite, cruelsister...an clear and objective view of the differences between the two...especially in the case of the point that AppCheck will "provide great benefit for those who wouldn't know a backup if it smacked them in the head".
I always installed Avast Free hardened aggressive mode (file shield only) on PC's of friends and relatives with minimal security awareness. Because those people never have a backup - recovery in place, i will install AppCheck Free also in future in case something slips through this cloud based whitelist (Avast aggressive mode). For more security aware people VoodooShield (free) and AppCheck (free) also compliment each other nicely.
I think i found something: #4888 It protects 70 file formats, but at least the files must have a file structure. TXT-files are not protected
I didn't suggest it did, I mean normal backups as in backup software that was around long before the ransomware paranoia...I wonder what the next generation of "they're out to get me" scareware will be
Peter- it isn't a system backup as you point out. But the Pro version does backup your personal files (and whatever else you choose to protect) anywhere you want to have it saved to. That's the beauty of the product! They actually are aware of what ransomware is made to encrypt and will give you the ability to restore files if you mess up abd get hit by ransomware. It's not Acronis or Macrium, nor is it intended to be.
Hi CS. I agree, and have tested the pro product, and actually it works pretty well. But also reveals a terrible weakness in all of these products. Testing we discovered those back up area's are created and written to by a raw access method. That means all the windows mechanisms used to protect those files and folders can't be protected at all. The Appcheck can't be stopped writing to them. The problem is as there are more and more of these anti ransomware programs, if the malware authors go to writing their encryption files in this manner it's game over for all these programs is it not?
Yes you are right @cruelsister , on the Auto Backup tab you can choose the Backup Sources. These sources are utilized when a ransomware hits and start to encrypt files for AppCheck to restore them by deleting encrypted ones and copying or restoring those from the sources folders. And yes, one can choose AutoBackup location.
you mean this one? https://www.wilderssecurity.com/thr...iscussion-thread.324841/page-350#post-2565073
Would be possible with any security product with a HIPS. Almost all HIPS have the ability to monitor low level disk access. Rule 1. Allow AppCheck low level access to backup folders. Rule 2. Block all other low level access to backup folders. However, most security products w/HIPS have excellent ransomware protection so you don't need AppCheck. -EDIT- However since it appears AppCheck process itself is unprotected, malware can hijack it, do a hollow process routine on it and insert its encryption code there, then encrypt all its backup files bypassing any HIPS protection.
It will be worth the cost in my opinion, the Pro version is lighter on resources than any in it's class that I have used. They are aiming for a March release date for the US market
Confirmed, ^^^^ Just received this from one of the developers via my email... "Hi, Paul. Thank you for your interest of our product. Our plan for international release is targeted to March. Thank you for your information. Best Regards, Ikko."
@clubhouse1 Yeah, it was Ikko, a very nice guy over at CheckMal. Great software, with honorable people behind it, it's becoming a trend
I don't understand all the hype for this product https://www.mrg-effitas.com/wp-content/uploads/2016/07/Zemana_ransomware_detection.pdf https://www.mrg-effitas.com/wp-content/uploads/2016/11/MRG-Effitas-360-Assessment-Q3-2016.pdf Zemana and other products for example had has very good results against ransomware, the only thing that AppCheck adds is the backup, but anyone worried for the security that much to install this (3rd 4th layer of protection while most people just have 1 av) should already have a backup solution. I'm not promoting Zemana but just mention it because is a product that can run alongside any AV.
The biggest problem I see is everyone is getting on the band wagon which means the bad guys are going to work around it. I am currently playing with a solution that fits Kees 2nd stage.
Just another tool that detect ransomware and it effectiveness relies partially in the backup. According to MRG test zemana and other products stopped the 100% of ransomware, so? I see nothing impressive unless we have a real comparative of products not just an isolated test that can't be compared with anything because you can't reproduce it in the same conditions therefore you don't have a reference. If I make a youtube video for zemana against 10 "0day" ransomware samples and it stops the 100%, then zemana is bulletproof or: Are these really "0 day" or "old" malware? Would other products perform the same? It's a good product, or I was just lucky and picked samples that by chance it was able to detect? 10 samples is enough? ... Basically this is what most of the youtube video do, and I think people is taking the wrong conclusions from them. Maybe someday we will see Appcheck in a real comparative and we will have a surprise about it efficiency, for good, or bad.
Hi guest The weakness in all these tools is that by the time they detect ransomware, you are already infected. Pete
