Probably sounds like a broken record but soon. We found a few issues during testing today (stupid UAC) that we want to clean up before releasing. But glad to hear things are running smooth on your end.
Will have to wait for the documentation that accompanies the new release to better understand what each setting does.
Funny you should mention that. Just updated the documentation a little bit ago. https://www.ransomoff.com/docs.php
Hi Dave - with HIPS-Lite, which options are on by default? I have them all enabled now, so I have forgotten which ones were on by default ... is it as per the top most snapshot in the documentation link above?
Always the best to everyone! For Windows 10 Users Hoping that fix this issue with Heilig RansomOff From: shmu26 https://malwaretips.com/threads/ransomoff-kills-a-rat.76623/#post-684816 Post: # 9 FYI A week ago I went to the Heilig RansomOff website, downloaded the version that was being featured (RC) and it totally borked my system, because the drivers are not co-signed by Microsoft, so on Windows 10 you must disable secure boot, or your computer simply won't boot. I don't know what installation files you people are using, or what version of Windows you are installing it on, but be careful. The dev told me that he would mod the installation file to check the system for this potential problem, I don't know for sure if he did that quite yet. I am hoping he did... If, during installation, Windows gives you a warning about unsigned drivers, you must uninstall the program immediately, before you reboot, or else say hello to your system image restore CD. Actually, you could also opt to disable secure boot, if you so wish. Agree 100% and hoping that will fix this problem with Windows 10! The above!!! This has been going on for awhile. Please listen! So that one does not have to disable secure boot!!!! Moose
This would apply to anyone that had done a fresh install Win 10 1607+. For anyone that upgraded from Win 7 to Win 10, it does not. Microsoft code cert. driver enforcement only applies to fresh Win 10 1607+ OS installs. And ........... those Microsoft code driver certs. are very expensive. Only good for that boot session. So you will have to do so on every boot.
The HIPS-Lite is a combination of some existing features from the previous version plus some new additions. So the things that were already being done will be enabled by default. But everything else will need to be turned on if desired.
I might can answer that plainly I think. With Ransomoff on (2) machines i have, those are always offline. I test it more aggressively without "live" net connection. Still works just fine either way for me. Windows 10.
Thanks. From what I know RO is a sig-less software NOT using AI/ML. I supposed it uses some kind of behavior-based or heuristics to detect ransomware. As such it's more of an offline software for protection. Of course online is more for updating the software in areas like compatibility issues, vulnerabilities, bug fixes and new features. If this is the case then having RO connecting to its cloud and using AI/ML would definitely boost its detection and capability, no?
OK I see. BTW, I just saw the new screenshots in the updated manual, it's looking good! A small request, perhaps you can make the images open in a new tab.
The download for RO should be taken down from the website if it's going to destroy someone's windows 10 computer. Are at least have a warning on the website about this problem.
Thanks for everyone's patience. We just uploaded 5.2017.306.5218 for wide release. Obviously the big changes are the UI and the HIPS-Lite features. So enjoy and if you find any issues or have problems please let me know.
@HeiDef et al, anything to consider for Sandboxie users? anything to consider for Shadow Defender users? Thanks
RO is signature-less. Ransomware is different than other types of malware. You can characterize ransomware fairly well and build detection methods around that. Malware in general is a bit more nebulous (bad is sometimes in the eye of the beholder) so it makes sense to use ML techniques. For RO though, if something is detected on one system then every other system will also detect it without needing updates or sharing data through the cloud because again it's signature-less. The same heuristics apply.
Well considering those wipe changes there's probably not much utility in using RansomOff in conjunction with SB or SD. But for compatibility purposes, I'm not sure what the issues may be between them.
Didn't you have load time issues with the previous version as well? Is this on your newer Win 10 machine or your Win 7?
