Ransom Guard is providing several features (see below), and Ransom Shelter is doing backups of files which are about to be modified (files in the Backup(AppCheck) folder are protected by AppCheck) Ransom Guard / Ransom Shelter:
Weird, I'm not sure if I'm cool with this. I must say it's a bit confusing. It's not clear if these options are needed to stay safe from damage, and if so, why are they optional? Also, auto backup is only available in the Pro version but Protective Shelter seems to be related to it.
"Auto backup" is doing a backup of folders "Auto Backup - Backup Sources" in a regular interval to: "Auto Backup(AppCheck)" "Ransom Shelter" is doing a back up of files which are about to be modified to: "Backup(AppCheck)" If the user doesn't need a special feature, then it can be disabled (MBR protection, File Protection in shared folders, ...) Or, if a MBR protection is already installed, it should be disabled in AppCheck. etc... It's better to make it optional and the user can enable/disable specific features.
Yes, but I wonder if it's enough to stay safe from all damage by enabling real-time protection only? I'm talking about the options that are shown in the main GUI.
The download of version v2.0.1.19 and the new changelog has been removed from the website Maybe there are issues with the new version and they have removed it just in case.
AppCheck v2.0.2.1 Released (23 June 2017) https://www.checkmal.com/page/product/appcheck/ Download: https://www.checkmal.com/download/AppCheckSetup.exe Yeah, it is only delayed by 24 hours. Should be no problem to wait. I update it manually because some other apps might prevent it from updating after i have switched to Locked Down (ERP+AG)
I have encountered my first False Positive. After upgrading and starting of the application "TV-Browser" (based on Java) it was detected by AppCheck "Ransom Behavior detected". I guess because TV-Browser has created and moved a lot of files in the AppData and temporary directory. Event Log: Detection Log (excerpt): I have selected all files in the Quarantine "Restore to original location" and all files has been successfully restored The MD5-checksum of restored files can be seen in the Event Log:
AppCheck v2.0.2.2 Released (26 June 2017) https://www.checkmal.com/page/product/appcheck/ Download: https://www.checkmal.com/download/AppCheckSetup.exe
AppCheck v2.0.2.3 Released (28 June 2017) https://www.checkmal.com/page/product/appcheck/ Download: https://www.checkmal.com/download/AppCheckSetup.exe Some information about the Pety Ransomware is available on the website (with screenshots):
Hi Does the FREE version detail the ransomware location so that we can manually remove it? Only the PRO version will automatically remove the ransomware after detection Thanks
AppCheck v2.0.2.4 Released (04 July 2017) https://www.checkmal.com/page/product/appcheck/ Download: https://www.checkmal.com/download/AppCheckSetup.exe
AppCheck v2.0.2.5 Released (20 July 2017) https://www.checkmal.com/page/product/appcheck/ Download: https://www.checkmal.com/download/AppCheckSetup.exe New version with enhanced MBR Protection (GPT environment), added Self Protection and some more changes:
AppCheck v2.0.2.6 Released (24 July 2017) https://www.checkmal.com/page/product/appcheck/ Download: https://www.checkmal.com/download/AppCheckSetup.exe
AppCheck v2.0.2.7 Released (27 July 2017) https://www.checkmal.com/page/product/appcheck/ Download: https://www.checkmal.com/download/AppCheckSetup.exe
Funny thing that there is an Korean IP behind which (in the past) spread malware. Nope, I'll skip this product.
Its a Korean cybersecurity company. A solid product judging from its extensive ransomware testing here: https://www.checkmal.com/page/resource/video/ AppCheck is a BB/heuristic scanning engine that checks ransomware according to expected behavior instead of through definition files. That's why it can stop zero-day threats traditional AV solutions leave unaddressed.