Discussion in 'other anti-malware software' started by co22, Mar 28, 2017.
They released v. 5.2018.199.6003
Not sure I understand your question.
I think he is asking if RansomOff is more secure than Trend Micro Ransombuster...
"Don't bother asking the innkeeper if the wine is good"
By the way, I installed RansomOff a couple of days ago and I really like it
Ransomoff can really button up your system. It's the only one of the "ransom" programs that I think is worth it.
This forum already knows my satisfaction w/o expression.
I am still and always will be amazed when while testing the beta runs-Ransom0ff rapidly and completely reversed In-Real-Time-Live those worse of the worse ransomwares let out to run on the box. It first stopped the main process in an instant-alerted-then scooped up that foul junk and left nothing to chance that would might restart again. This IS an awesome cutting edge deterrent against that form of PC intrusion.
I could almost guarantee most if not all commercial AV's would have choked-blue screened-or otherwise gone confused on such matters. Call it an assumption but to a large degree a specialty program like this is proven vital against ransomwares specifically! Hence, well named
Ransomoff kept discord from opening for me and i didn't see anything in the logs. When i disabled proctection nothing happen. When I closed ransomoff then the apps started opening.
Does discord start at boot or did you run it after the system loaded?
Discord starts at boot.
Didn't try RansomOff for a long while, but in my security setup (WSA + ZAL) it seems to be redundant, isn't it?
I don't think ZAL does, I've never tested WSA, but none of the traditional suites probably would.
Thanks for your reply.
The new ZAL is just an upgraded version of ZAM, and its 'Pandora Cloud-Sandbox Technology' claims to have Ransomware protection, and according to a 2016 MRG-Effitas report, this technology makes Zemana perform best of the tested products.
IMO, WSA is packed with superior technologies in comparison with many of its competitors. According to a PCMag report of late 2017, its Anti-Ransomware is just as best.
This is why I am afraid of a driver-level conflict of RansomOff with them. Perhaps, @HeiDef would suggest!
I tested ZAM against live malware. wastn't iimpressed, but what ever
I wouldn't worry about driver-level conflicts. The bigger concern would be how RO and ZAL/WSA treat each other in user space. With proper whitelisting RO will leave those program alone but you would want to do the same exemptions so they also leave RO alone as well.
We've had reports of other programs sometimes getting stuck if started at boot so that's why I asked. It doesn't happen often and we have not been able to reproduce on our test systems so it's been hard to figure out why it happens. We'll continue to work on it to see if we can find a solution.
Someone either does some pretty dangerous exploring or else has a powerhouse system quite capable of supporting anti-ransomware layering Of which with that combo I wouldn't be afraid of "directly" running any ransomware out there-even their latest junk. LoL
@sg09- You should be quite safe in that regard-Ransom0ff on it's own is proven really quite formidable in it's own right. Coupled with other security solutions is icing on the cake
In the last MRG 360 comparative here: https://www.mrg-effitas.com/wp-content/uploads/2018/05/MRG-Effitas-2018Q1-360-Assessment.pdf, ZAM tied for last place in ransomware protection.
As far as Webroot goes, MRG certified it here: https://www.mrg-effitas.com/wp-content/uploads/2017/02/Webroot_AMTSO_report.pdf. However, that certification expired 12/21/2017.
Never before had seen a security solution slam-tear and then scoop up ransomware as Ransom0ff does. It takes a lot to impress this ole hat, but what was witnessed with the naked eye on a raw system time & time again was nothing short of amazing. A lot of thought-turned effort went into that program and produces results. I admit I even had my doubts at first and run it in Shadow Mode. Not good enough-had to turn the junk loose without virtual support and watch the scramble and then eat the results.
The results as it turns out blew my mind, and blew away the ransomware. That rapid recovery system built-in Ransom0ff is eyecatching as well. Great stuff. Well, to make a long story short, it only got better
I'm having a real problem trying to install Ransomoff on this system. I did have a very early version installed at one time but now when I run the installer for the current version I get this message
[*] Starting RansomOff uninstall...
[*] Uninstalling RansomOff...
[!] There were errors removing all RansomOff components.
[!] Please make sure RansomOff is no longer running and re-run this uninstaller."
Any suggestions please?
I would like to report a few issues I encountered while I tried the software.
1. The setting "Only allow admin group user to close" doesn't work as expected since my account have admin rights but when the setting is selected and when I try to close the program it says "You do not have the appropriate permissions to shutdown RansomOff". I guess this shouldn't happen? I unchecked the box for now and I was able to close the application (for testing purpose). However when I started the service manually using the net start HDRansomOffSvc command it took a lot of time for the program to connect to the service but it loaded successfully. I was a little inpatient the first time and I closed the program with the Exit button
and it crashed with the following error
but I gave it enough time when I ran it again and it loaded successfully.
2. The master password setting need a little tweaking. The box where you should enter the password hides below other program windows and you are unable to enter the password. I had to kill the application and remove the master password for now.
I am pleased with the performance of the program and congrats for the result here => https://www.youtube.com/watch?v=1eHqkG86ayU
However it will be good if someone can test it against RedEye, Kraken, PyLocky and the latest variants of Dharma (*.combo etc).
Keep up the good work!
Btw: Another channel where anti-ransomware tools are tested is the one below:
The installer sees an existing reference to the old version in the registry either because the earlier unininstaller didn't remove it for some reason or it would still be there if you just deleted the files. But it's an easy fix.
Open an elevated RegEdit process and browse to HKEY_LOCAL_MACHINE\SOFTWARE\Heilig Defense, LLC\Installer\ and then just delete the 'RansomOffClient' key. Once you delete that, the installer should work fine.
Nope, didn't work. I'm now getting the message in the screenshot. I've hacked out all references to Heilig Defense and Heilig Defense LLC.
Separate names with a comma.