Thanks for posting Bass. Looks like it's worth testing out. Has anyone thrown an actual Ransomware virus at this program yet I wonder?
I'll have to setup on one of my W10 test machines and try throwing something like
NEMUCOD or CRYPTOLOCKER at it and see how it responds. I do have the Nemucod virus executable, but not any of the nasty strains of Cryptolocker. There are numerous strains, about 4 or 5 posted on various sites including Emsisoft, that are not decryptable and if you get one of these puppies there is no antidote; at least at the present time. Hopefully, I don't run across any Clients with these strains of the Cryptolocker, but if I do and I can capture one in the wild, and quarantine it I can run it against the Ransomfree program and see how good their detection is. I'd also be worried about it getting loose on my LAN or getting into my Router. There are mentions of Cryptolocker variants which operate this way as well. Hackers today know all too well that most folks run a LAN or a wireless LAN, and if they get into 1 computer on the LAN, even if a program such as this Ransomfree is protecting that computer, if you don't have it or a similar anti-ransomware program on
ALL other computers, even if Ransomfree blocked the virus from encrypting that PC, it might get loose on one of the other unprotected PCs or of course the router.
I think several of us here would like to find a program that we can deploy on Customer machines (as well as our personal machines), that could stand up to this highly-virulent strain of recent Ransomware. On machines that I repair or install for Clients, I've been using RUBotted from TrendMicro.com which does a pretty good job. None of the 200+ computers I have touched belonging to my Clients running this little background program have gotten hit by the Ransomware nasties. That's because this program detects and blocks Ransomware by blocking out Rootkits and Bootkits, which many of the Ransomware viruses like to use as their infection vector. Problem is, that several of my Clients like to uninstall this program because when they are attempting to do self-maintenance or even use a safe cleanup program such as CCleaner, have been caught by me uninstalling them when I work on their PCs subsequently.
Even my top Clients don't seem to think it's a big deal to remove certain programs they don't think are being used or needed; they don't recognize the name (RUBotted) or the company name, TrendMicro, and they think it's ok to remove it. Even after explaining that this could be the 1 program that could save them from one of these super nasty Ransomware viruses, I have Clients who still continue to remove it after being told not too 2 or even 3 times by me.
This will probably be the same issue with deploying this new program, Ransomfree. If the Customer hasn't heard of it, they may try and remove it. I always tell my Clients the same thing:
"...if you don't know what it is, DON'T REMOVE IT WITHOUT CALLING ME FIRST!!" Best,
<<<BIGBEARJEDI>>>
