Monitor and block suspicious processes behaviors to prevent infections by malware, ransomware, and other threats. This tool analyzes parent processes and prevents, for example, MS Word from running cmd.exe or powershell.exe, it prevents ransomware from deleting shadow copies of files via vssadmin.exe, it blocks processes with double file extensions (i.e invoice.pdf.exe), it blocks USB-spreading malware, and much more. It is lightweight, zero-configuration and runs in the background protecting your system.
Need to harden Windows settings? Try SysHardener »
For Windows XP, Vista, 7, 8, 10 (32\64-bit)
This smart security application focuses on preventing a malware infection by applying smart and intelligent rules that block bad processes behaviors. This tool can block threats not detected by your installed security solution. Add to your system an additional layer of defense to prevent infections by malware and ransomware!
You don't have to configure anything, just install it and forget about it. We have already added more than 60 smart policies to improve your system security with this security application.
Analyze parent processes and child processes blocking exploit payloads.
Prevent WINWORD.EXE or EXCEL.EXE from executing malicious processes.
Monitor Adobe PDF Reader, MS Office, OpenOffice, Web Browsers, etc.
Prevent execution of processes started via autorun.inf from USB devices.
Block processes with command-line strings commonly related to malware.
Block system processes (vssadmin.exe, etc) from deleting shadow copies of files.
Block specific command-lines related to download of remote files.
Block execution of processes with .COM or .PIF obsolete file extensions.
Block wscript.exe, mshta.exe, etc if they match our rules of bad behaviors.
Prevent important and critical system modifications from Bcedit.exe
Block the execution of schtasks.exe (commonly used by malware).
Prevent Bitsadmin.exe from downloading (/download) remote files.
Block execution of encoded or malformed commands via PowerShell.
Block suspicious behaviors related to Svchost.exe and Explorer.exe.
Prevent calling of Application.Excel RegisterXLL() via command-line.
Prevent Regsvr32.exe or Mshta.exe from loading remote scripts.
The software application uses only a few MBs of memory, you will not even notice it.
This software is completely free to use for anyone, at home and at work.
With this video we show you OSArmor in action, it blocks
a .DOC (Microsoft Word) exploit payload.
|Last Updated||December 22, 2017|
|Operating System||For Windows XP, Vista, 7, 8, 10 (32\64-bit)|
|File Size||6 MB|