is a security tool that writes 200+ group policy object rules into the registry in order to prevent executables in specific locations from running. CryptoPrevent can be used to lock down any Windows OS to prevent infection
by crypto ransomware which encrypts personal files and then offers decryption for a paid ransom. CryptoPrevent artificially implants hundreds of group policy object rules into the registry
in order to block executables (*.exe, *.com *.scr and *.pif) and fake file extension executables in certain locations (i.e. %AppData%, %LocalAppData%, Recycle Bin) from running. Due to the way that CryptoPrevent works, it protects against a wide variety of malware and ransomware. CryptoPrevent Premium
offers automatic updates to the program and definitions, email alerts, and custom policy rules.
CryptoPrevent has a filter module (in the installer version) which allows you to apply (enable) or disable suspicious program filtering for .cpl, .scr and .pif files which are executable files. This option is found by opening CryptoPrevent and selecting Advanced > show Advanced Options at the top. The portable version does NOT include the Filter Module...you must get the installer version to use that feature.HitmanPro.Alert
is a free security tool that checks browser integrity and alerts users when malware has intruded the browser. HitmanPro.Alert runs as a service and warns if the browser has been compromised and is unsafe to use for online banking or shopping. The alert will not block the malware
itself from installing since the program is not designed to be an anti-virus or anti-malware tool. If suspicious behavior is detected, HitmanPro.Alert's CryptoGuard will block it
...including the encryption of files. CryptoGuard is actually the name of the kernel driver compoment installed by HitmanPro.Alert that mitigates a crypto-ransomware attack...it is a filter driver which monitors the file system and looks for suspicious file operations at the file system level. When suspicious behavior is detected, the process's ability to rename, write or delete files is blocked and an Alert is presented to warn the user. So even while ransomware is active, CryptoGuard protects all documents and files
on the computer and will block crypto attacks
against them. To remove the malware infection, you have to download and run HitManPro or another anti-malware scanner.
There is an entire topic devoted to HitmanPro.Alert with CryptoGuard
, the Authorized SurfRight Rep. posts updates and answers questions. There is also a HitmanPro.Alert Support and Discussion topic here