Enabling Windows shadow copies

SES Evolution‘s anti-ransomware protection mode keeps track of when files are modified and encrypted and blocks the process behind these operations if they are deemed malicious. Some files may nonetheless be encrypted before the process is effectively blocked.

If you enable anti-ransomware protection, you are strongly advised to enable the daily creation of shadow copies via SES Evolution. This feature, based on the Windows VSS service, will allow you to quickly restore the few lost files.

Activating shadow copies cannot replace regular backups. You must have a dedicated parallel backup solution.

For more information on anti-ransomware protection and the process of restoring encrypted files, refer to: