RansomOff

Discussion in 'other anti-malware software' started by co22, Mar 28, 2017.

  1. B-boy/StyLe/

    B-boy/StyLe/ Registered Member

    Joined:
    Sep 19, 2012
    Posts:
    496
    Location:
    Bulgaria
  2. cruelsister

    cruelsister Registered Member

    Joined:
    Nov 6, 2007
    Posts:
    1,649
    Location:
    Paris
    There's always an option to disable the Windows Script Engine, Powershell, etc. But if a person sees the need to do this they are in essence admitting that is whatever Protection methods are being used are inadequate.

    Personally I prefer an overall solution that does not need the user to shut things down in order to provide adequate protection. But maybe that's just me...
     
  3. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,788
    Location:
    .
    You not alone. Same here...
     
  4. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,591
    Location:
    U.S.A.
    I have done so for some time with zip negative effect other than a HIPS alert when I manually run cmd.exe(also one that should be monitored) or PowerShell. Now a software developer and the like would of course have issues with these restrictions.
     
  5. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590
    I block all those processes with Appguard. Have never seen a negative effect. I don't call that a weakness, I call it smart.
     
  6. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    I also block these processes, err, well rather ERP does it for me.

    ERP alerts and holds them up like a HIPS where you can read the paths/filename/destination etc.
     
  7. B-boy/StyLe/

    B-boy/StyLe/ Registered Member

    Joined:
    Sep 19, 2012
    Posts:
    496
    Location:
    Bulgaria
    Well, I have trust in my security setup but don't really see a reason to keep it enabled since I don't use it. Disabling a unnecessary and dangerous feature for extra security never hurt. It is called hardening of the OS. Call me a noob if you want but I don't care.

    +1
     
  8. askmark

    askmark Registered Member

    Joined:
    Jul 7, 2016
    Posts:
    392
    Location:
    united kingdom
    +1 :thumb:
     
  9. guest

    guest Guest

    New beta-Release:
    RansomOff v5.2017.107.8077 (Beta)
     
  10. guest

    guest Guest

    New beta-Release:
    RansomOff v5.2017.116.6374 (Beta)
    Edit: RansomOff v5.2017.116.7686 (Beta)
    https://www.ransomoff.com/#downloads
     
    Last edited by a moderator: Apr 26, 2017
  11. askmark

    askmark Registered Member

    Joined:
    Jul 7, 2016
    Posts:
    392
    Location:
    united kingdom
    Thanks for posting these updates. If you dont mind me asking, do you use any software to monitor the web site for changes or is done manually?
     
  12. guest

    guest Guest

    No, i don't monitor them. Sometimes i look for updates, and if i can find an update i'll try to post it.
     
  13. paulderdash

    paulderdash Registered Member

    Joined:
    Dec 27, 2013
    Posts:
    4,638
    Location:
    Under a bushel ...
    @mood As someone who has looked at these softs and having some insight into how they work, could one run RansomOff alongside HMP.A and AppCheck (your sig). Would there be any benefit, or are mechanisms similar and cause conflict?

    I run HMP.A CryptoGuard (AppCheck excluded in Exploit Mitigations) and AppCheck free on one machine, just AppCheck free on the other. Was wondering if I could play with RansomOff alongside on at least the latter machine, or should I remove AppCheck first.
     
  14. guest

    guest Guest

    I would at least remove AppCheck if you want to test RansomOff.
    They are both "Anti-Ransomware"-solutions, so it might be better to install only one of these products.
     
  15. paulderdash

    paulderdash Registered Member

    Joined:
    Dec 27, 2013
    Posts:
    4,638
    Location:
    Under a bushel ...
    Trying to download x64 version, just get an error screen.

    Dunno if it's just me, or a temporary Heilig Defense glitch.
     
  16. clubhouse1

    clubhouse1 Registered Member

    Joined:
    Sep 26, 2013
    Posts:
    1,124
    Location:
    UK
    Just tried, same as you for 64bit, just a white screen with "error"
     
  17. paulderdash

    paulderdash Registered Member

    Joined:
    Dec 27, 2013
    Posts:
    4,638
    Location:
    Under a bushel ...
    OK - thanks for confirming.
     
  18. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    Error :(
     
  19. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590
    Interesting. I've never gotten it to install. Curious to test. Oh well.
     
  20. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    Working now. Just D/L RansomOff.5.2017.116.7686.BETA.x64
     
  21. guest

    guest Guest

    Yes, it is working now.
    RansomOff_Release_BETA.png
    According to the digital signature It was timestamped half an hour ago.
     
  22. HeiDef

    HeiDef Developer

    Joined:
    Apr 6, 2017
    Posts:
    388
    Location:
    Arlington, VA
    We had a server issue but then just went ahead and uploaded another build once we got it fixed.
     
  23. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    Can a new changelog be posted?
     
  24. HeiDef

    HeiDef Developer

    Joined:
    Apr 6, 2017
    Posts:
    388
    Location:
    Arlington, VA
    It was just a few minor bug fixes of things we found after posting the previous version. But we just added a new change log entry to reflect that.
     
  25. HeiDef

    HeiDef Developer

    Joined:
    Apr 6, 2017
    Posts:
    388
    Location:
    Arlington, VA
    Concur that it's best to only have one solution of something running. Generally products in the same category bump heads.

    We'll test it out though to see what issues, if any, do occur.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.