- Apr 13, 2013
- 3,150
A quick look at how Cryptowall 4.0 rolls, followed by BitDefender AntiCryptowall meeting it and some friends.
Cryptowall 4.0 and BitDefender AntiCryptoWall
- Thread starter cruelsister
- Start date
It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
- Jul 22, 2014
- 2,525
About ransomware protection on BIS, you can specify a set of folders to be monitored and a set of software that can access it and make changes, Bitdefender monitors those directories and blocks any software attempts to make changes.
- Jul 22, 2014
- 2,525
- Dec 24, 2011
- 480
Another great video, thanks!
I just watched your Comodo Firewall 8 2 0 4508 Setup and Test Part 2.
How would this setup fare against ransom or cryptos?
Even if they are sandboxed (but alive and running), if your desktop is locked, how do you reset the sandbox?
I am considering CF with these setting for some costumers.
Sorry if i hijacked the thread a bit here
Cheers
/W
I just watched your Comodo Firewall 8 2 0 4508 Setup and Test Part 2.
How would this setup fare against ransom or cryptos?
Even if they are sandboxed (but alive and running), if your desktop is locked, how do you reset the sandbox?
I am considering CF with these setting for some costumers.
Sorry if i hijacked the thread a bit here
Cheers
/W
- Apr 13, 2013
- 3,150
Thanks for the kind words, guys!
1). Guru- I'll never test K for reasons I can't discuss.
2). Woodrow- It is indeed about time for another CF video- probably by the weekend.
1). Guru- I'll never test K for reasons I can't discuss.
2). Woodrow- It is indeed about time for another CF video- probably by the weekend.
I would also like to see how Emsi would do against some ransomware. Especially version 11.
I can' t See the Video in germany because its music. It is not allowed :-(
So please can anybody tell me how BitDefender manage this test?
Thanks in advice!
So please can anybody tell me how BitDefender manage this test?
Thanks in advice!
- Apr 13, 2013
- 3,150
GEMA is a pain, isn't it? When I was posted in Germany I often had to proxy over to Luxembourg. But if you have Firefox, try this : YouTube Unblocker
Should still work in Germany.
Should still work in Germany.
Dr. Web Security Space Version 11 in paranoid mode.
Version 11 is even better. Also, is very good at cleaning.
Example of version 10 against ransomware.
Version 11 is even better. Also, is very good at cleaning.
Example of version 10 against ransomware.
- Jul 22, 2014
- 2,525
Emsisoft v. 11.0.0.5911 was just released!
....
"The built-in behavior blocker of Emsisoft Anti-Malware and Emsisoft Internet Security is now even better at interrupting ransomware attacks."
"Additionally we have optimized the detection of hidden installations of malware and also improved the detection of malware that registers itself automatically every time you start your PC."
"
New: Detection of zombies (aka abused script parsers and host processes)"
...
Cruelsister,
can you please test the new Emsi against the cryptos as against the worms you used against HMP and MB?
It would be super interesting to see how good this new version performs!
thank you!
....
"The built-in behavior blocker of Emsisoft Anti-Malware and Emsisoft Internet Security is now even better at interrupting ransomware attacks."
"Additionally we have optimized the detection of hidden installations of malware and also improved the detection of malware that registers itself automatically every time you start your PC."
"
New: Detection of zombies (aka abused script parsers and host processes)"
...
Cruelsister,
can you please test the new Emsi against the cryptos as against the worms you used against HMP and MB?
It would be super interesting to see how good this new version performs!
thank you!
Last edited:
@cruelsister Should I turn immunisation on and what exactly does it do, it says it stops files from executing in %startup% isn't that the file that everything that starts with Windows is in?
- Apr 13, 2013
- 3,150
AMR- Yes, if you use the product you should turn the Immunization function on. The important thing that it will block will be malware that puts itself in AppData and tries to run from there.
As to the %Startup% reference- this really means stuff in the Users\your name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup directory. Actually not much ever gets places in there; you can check what is included on your computer by just going to Start-All Programs-Startup. This will show you what is on your system that will be blocked if you immunize.
Remember well that quite a few Encryptors will just start from other areas and will sidestep this protection (like CryptoFortress). One other REALLY important thing is that if you are storing documents anywhere else other than C:\Users\your name\Documents they WILL NOT be protected. many people with SSD drives will move things like mp3, photos, etc to another drive and are surprised when they get zapped.
M
As to the %Startup% reference- this really means stuff in the Users\your name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup directory. Actually not much ever gets places in there; you can check what is included on your computer by just going to Start-All Programs-Startup. This will show you what is on your system that will be blocked if you immunize.
Remember well that quite a few Encryptors will just start from other areas and will sidestep this protection (like CryptoFortress). One other REALLY important thing is that if you are storing documents anywhere else other than C:\Users\your name\Documents they WILL NOT be protected. many people with SSD drives will move things like mp3, photos, etc to another drive and are surprised when they get zapped.
M
Similar threads
