Good antiviruses at blocking ransomware

TheMalwareMaster

TheMalwareMaster

Level 21
Thread author
Verified
Honorary Member
Top Poster
Well-known
Jan 4, 2016
1,022
Ransomware is one of the most important threats these days, and I'd like to ask if you know some antiviruses with a built-in specifical component to protect from ransomware. By now, I found only 360 TS on the Free side (it detects when a process is attempting to inject code in an other, or when your files are being modified. You only need to click block to stop the ransomware). On the paid side I found bitdefender and I think also kaspersky has a file protection module. Do you have any other antivirus to add?
 
  • Like
Reactions: tonibalas, done and Der.Reisende
D

Deleted Member 333v73x

TheMalwareMaster said:
Does avast have a specifical component for blocking ransomware? (comodo obviously use his sandbox)
Click to expand...
Avast has all kinds of ransomware in its signatures, instead of having a separate component it does what it does best - blocks malware before it even has started to download and if you do go onto a website that is injecting code Avast will 'Abort Connection' to that website. P.S: Avast has an updater which on default keeps Java, browsers, Skype and flash players up-to date. When I used Avast, because of their web blocking component File Shield never came in handy apart from on USBs. I did test it against ransomware/exploits and blocked EVERY website. I disabled Web Shield and their extension and when it started to get into processes it was blocked immediately.
 
  • Like
Reactions: done and Der.Reisende
TheMalwareMaster

TheMalwareMaster

Level 21
Thread author
Verified
Honorary Member
Top Poster
Well-known
Jan 4, 2016
1,022
Quihoo HIPS is able to detect when a process is injecting code in an other, and you can block it (ransomware behaviour). It can also detect when files are being hijacked (you can block also this). In setting, you can see "protect my files from being hijacked" is enabled by default. If you open the help page, quihoo explains about ransomware
 
  • Like
Reactions: silversurfer, done, Der.Reisende and 1 other person
D

Deleted Member 333v73x

Mihir :) said:
What component?
Click to expand...
Qihoo 360 Total Security has advanced heuristics and registry/file protection.

It stops itself from being disabled/edited:
Qihoo Self Protection.PNG

It protects documents in case the ransomware executes before it is blocked:
Qihoo anti ran.PNG
 
  • Like
Reactions: silversurfer, Der.Reisende and shukla44
H

hjlbx

At this point in time, they're all fairly good at blocking ransomware - either via signature or other mitigation technique.

@TheMalwareMaster - I assume you are searching for security softs that alert - or automatically block - file\folder modification.

If that is the case, then there is:
  • HitmanPro.Alert (paid)
  • AppGuard (paid) - Lock Down mode blocks everything; use it and you have no absolute need of AV - just occasional companion AV scan... :D
  • COMODO (free) - must add folders or files to HIPS > Protected Objects > Protected Files and/or Protected Data Folders
  • Webroot (paid) - it's rollback feature does work against some ransomware (not sure if all)
  • Emsisoft (paid) - it's behavior blocker now includes anti-exploit\anti-ransomware protections
I would think most of the other paid products include anti-cryptoware as well; I just don't have the specifics for each and every one.
 
  • Like
Reactions: silversurfer, Ink, Der.Reisende and 3 others
TheMalwareMaster

TheMalwareMaster

Level 21
Thread author
Verified
Honorary Member
Top Poster
Well-known
Jan 4, 2016
1,022
hjlbx said:
At this point in time, they're all fairly good at blocking ransomware - either via signature or other mitigation technique.

@TheMalwareMaster - I assume you are searching for security softs that alert - or automatically block - file\folder modification.

If that is the case, then there is:
  • HitmanPro.Alert (paid)
  • AppGuard (paid) - Lock Down mode blocks everything; use it and you have no need of AV... :D
  • COMODO (free) - must add folders or files to HIPS > Protected Objects > Protected Files and/or Protected Data Folders
  • Webroot (paid) - it's rollback feature does work against some ransomware (not sure if all)
  • Emsisoft (paid) - it's behavior blocker now includes anti-exploit\anti-ransomware protections
I would think most of the other paid products include anti-cryptoware as well; I just don't have the specifics for each and every one.
Click to expand...
Thank you :) yes, I was looking for software that stops ransomware not only with definitions
 
  • Like
Reactions: Der.Reisende and shukla44
You must log in or register to reply here.

Similar threads

Gandalf_The_Grey
    • Like
    • +Reputation
Malware News The Week in Ransomware - May 17th 2024 - Mailbombing is back
Replies
0
Views
1,501
Security News
Gandalf_The_Grey
Gandalf_The_Grey
vtqhtr413
    • +Reputation
    • Like
Security News ShrinkLocker: Turning BitLocker into ransomware
Replies
1
Views
1,517
Security News
Vasudev
V
Brownie2019
    • Like
On Sale! SuperAntiSpyware Professional X Edition $ 19,99
Replies
7
Views
862
Discounts and Deals
I Walk MY Way
I Walk MY Way

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top