The official F-Secure Virus Lab opinion is that F-Secure DeepGuard will stop any possible "cryptor" malware from infecting the system automatically, without very stupid human user error, provided the F-Secure DeepGuard module is running in its default "Advanced mode".
However, DeepGuard Advanced mode uses the mini-DLL injection method, which could cause incompatibility in rare cases (DRM, games, CAD or other expensive software with agressive protection against unauthorized duplication, etc.) Because of that, corporate users who encounter an incompatibility or merely afraid of any incompatibility problems arising, may be tempted to reduce Deepguard to "base mode" or even turning it off entirely and consequently, reducing anti-cryptor protection to near zero. Please don't do that, but contact F-Secure support services to have your problem sorted out!
Anyhow, there is a200kB F-Secure PDF file which describes the recommended protection settings for maximum anti-cryptor strenghts ( MD5: 9d448bcc28bcc7899a2965338afe1c38 ). You may ask for that one at support.
Furthermore, the second best protection against ransomware is to eradicate any remaining Windows XP computers. Those are always the first to get infected and will even encrypt a server share, if connected. (In Eastern Europe many WinXP computers remain in daily use and there are a lot of cryptor incidents.)
Of course, the absolutely best protection against ransomware is to make frequent and reliable backups and store them off-line!
Best Regards: Tamas Feher, Hungary.
This topic has been closed due to inactivity. If you would like to discuss this topic further, please start a new post.
You can reference this topic in your post by adding this link:
Visit the Community
Check our Forums or How-to & FAQs for advice or answers
View User Guides
Refer to our getting started guides and product manuals
Talk to our Support and get answers to your questions