Videos Changelog Newsletter Enterprise Status

Changelog History

Here you can find what we have changed and updated on OSArmor software.
We constantly improve our product with bugs fixes, features and rules to block suspicious processes.
Subscribe to newsletter to receive news on your email.

+ Added more signers to Trusted Vendors list
+ Added new internal rules to block suspicious behaviors
+ Fixed all reported false positives
+ Minor improvements
+ Added more signers to Trusted Vendors list
+ Added new internal rules to block suspicious behaviors
+ Fixed all reported false positives
+ Minor improvements
+ Added more signers to Trusted Vendors list
+ Added new internal rules to block suspicious behaviors
+ Alert window is auto-closed when button Exclude is clicked
+ Fixed removal of a registry value related to licensing
+ Fixed DPI-scaling issue on Configurator
+ Fixed all reported false positives
+ Minor improvements
+ Improved handling of licensing errors
+ The service is not terminated in case of licensing errors
+ Improved analysis of digitally signed processes
+ Improved detection of revoked certificates (network check)
+ Added tab "Trusted Vendors" in Configurator
+ Added button to scan system for vendors (signers)
+ Added button to open TrustedVendors.db file
+ Added button to reset Trusted Vendors to default list
+ Added Block signers not present in Trusted Vendors
+ Added Block processes signed with a revoked certificate
+ Added Block processes signed with an invalid certificate
+ Added Block processes signed with an expired certificate
+ Import a custom .ini settings file via setup.exe /IMPORTSETTINGS=
+ Added new internal rules to block suspicious behaviors
+ Improved installer and uninstaller scripts
+ Fixed all reported false positives
+ Minor improvements
+ Added new internal rules to block suspicious behaviors
+ Fixed all reported false positives
+ Minor improvements
+ Improved management of protections rules in OSArmor Configurator
+ Added option to export/import protections rules, settings, all
+ Use exported .ini files with "Automatically update OSArmor settings from a URL"
+ Improved method to auto-update OSArmor settings from a URL
+ Added option to reset protections rules, settings, all
+ Added option to select protections profile (right-click on Configurator->Protections tab)
+ Added option to easily search protections rules
+ Added option to check/uncheck all protections rules
+ Added option to select protections rules group via a drop-down box
+ Previously exported settings (OSArmor.rules) will not work on this version
+ Updated NVT License Manager with latest version
+ Do not recreate Desktop icon after product has been upgraded
+ Fixed session ID issue involving Remote Desktop Protocol (RDP)
+ Added Block any process executed from web browsers
+ Added Block execution of popular web browsers
+ Added Block processes located on C:\Windows\Microsoft.NET\Framework\*
+ Added Block execution of Resource File To COFF (cvtres.exe)
+ Merged many protections rules into single category-specific rules
+ Protections rules on Configurator have been reduced (merged) from 300 to 185
+ Improved automatic product update procedure
+ By default the setup creates a Desktop icon for all users on new installations
+ The desktop icon is not re-created in case it has been previously removed
+ Added /NODESKTOPICON parameter to use with setup.exe command-line
+ Various improvements in the installer script
+ Added new internal rules to block suspicious behaviors
+ Fixed all reported false positives
+ Minor improvements
+ NVT License Manager is not installed if OS is Windows XP
+ Updated method used to save the custom password
+ Custom password must now be at least 6 characters in length
+ Added option to select update frequency "every X minutes" on Enterprise features
+ Added support for HTTP redirects (max 3 redirects) on Enterprise features
+ Added support for ftp:// URLs on Enterprise features
+ Fixed Block execution of Windows Event Viewer
+ Fixed Block execution of .msc scripts outside System folder
+ Fixed all reported false positives
+ Minor improvements
+ Added variable %MSIFILE% in CustomBlock and Exclusion rules
+ Added variable %MSISIGNER% in CustomBlock and Exclusion rules
+ Improved the pre-filled text of exclusion rule when button "Exclude" is clicked
+ Added Block regsvr32.exe from loading DLLs in user space
+ Added Block rundll32.exe from loading DLLs in user space
+ Added Block rundll32.exe from loading DLLs on SMB share
+ Added Block rundll32.exe from loading COM Server payload
+ Added Block execution of unsigned MSI installers
+ Fixed some false positives
+ Improved method to detect when Desktop has fully loaded
+ Added option to password-protect power options with Admin Credentials
+ Added option to update Exclusions.db from a remote URL
+ Added option to update CustomBlock.db from a remote URL
+ Added option to update OSArmor settings from a remote URL
+ Added option to automatically check and download new product updates
+ Added option to change connection settings using a proxy server
+ Added option to HTTP POST process-blocked events to a remote URL
+ Improved the pre-filled text of exclusion rule when button "Exclude" is clicked
+ Automated the product activation via setup.exe command-line parameter /LICENSEKEY=
+ Added many new internal rules to block suspicious behaviors
+ Added option to send blocked process events to Event Viewer
+ Fixed Block execution of unsigned processes on Temp folder
+ Fixed get of user Temp folder in specific situations
+ Fixed saving of UTF-8 unicode data in the .log file
+ Added new usable variables in CustomBlock and Exclusion rules
+ Added variable %RULENAME% in CustomBlock to name your custom rule
+ Added possibility to detect unsigned processes in CustomBlock and Exclusion rules
+ Updated FAQs (Helpt.txt) with new questions and answers
+ Updated program main icon and code to change system tray icons (pixel-perfect)
+ Updated default WAV sound used for alerting of process-blocked events
+ Added option "Don't show this notification again" on "process blocked" window
+ Manage list of processes present in the "Ignored notifications" list
+ Improved retrieval of Signer on Windows XP in particular situations
+ Improved Block rundll32.exe from using RegisterOCX
+ Improved block of Microsoft Edge
+ Improved anti-exploit module for Microsoft Edge (Chromium-based)
+ New options to block Windows Store, Cortana, System Settings, System Security UI, etc.
+ Added Prevent changing of windir via command-line
+ Added Prevent rundll32.exe from using -localserver
+ Added Prevent SettingSyncHost.exe from using -LoadAndRunDiagScript
+ Added Prevent RunDll32.exe from loading ctor.dll, LaunchSetup
+ Added Block execution of curl.exe
+ Added Prevent dctask64.exe injectDll/invokeexe/executecmd64
+ Added Block execution of sxstrace.exe
+ Added Block execution of winrs.exe
+ Added Block execution of ExtExport.exe (Internet Explorer)
+ Added Block execution of instnm.exe
+ Added Block processes executed from conhost.exe
+ Added Prevent cmd.exe from using "/c start" or "/r start"
+ Added Block processes executed from VirtualBoxVM.exe
+ Added Block processes executed from vmware-vmx.exe
+ Added Block execution of addinprocess/32.exe
+ Added Block execution of addinutil.exe
+ Added Protect Microsoft PDF Reader
+ Added Block execution of MicrosoftPdfReader.exe
+ Changed End User License Agreement (EULA)
+ Improved compatibility with Windows 10 2004
+ Fixed some false positives
+ Minor improvements
+ Disallow the UI from being respawned when the PC is rebooting or shutting down
+ Support %PROCESSMD5HASH% in CustomBlock.db and Exclusions.db
+ Improved Block processes with known fake extensions (i.e .pdf.exe)
+ Enabled by default: Prevent msiexec.exe from loading MSI files masked as PNG files
+ Improved Block suspicious Explorer.exe process behaviors
+ Improved internal rules to block suspicious process activities
+ Improved parsing of command-line string
+ Updated the Help File (Help.txt) with Q22
+ Fixed some false positives
+ Minor improvements

Try OSArmor for 30 Days

Don't forget that you can try OSArmor application for 30-days
(no credit card is required). Just download and install the software on your computer,
you can use it and test it for 1 entire month.

Download Now