1. what is basical difference between the cryptoprevent and cryptomonitor?
by EasySync is an anti-ransomware solution that was developed to protect a computer or server against all types of crypto-malware encrypting ransomware. CryptoMonitor relies on behavioral detection and several protection methods which allows it to detect encrypting ransomware before it has a chance to encrypt your data. CryptoMonitor will not only block existing ransomware variants but it will also block zero-day
and future ransomware. This technology allows the program to detect and protect against new cyrpto-malware as they emerge. However, some ransomware variants (such as CTB-Locker) will inject into legitimate processes and protection against that is only available in the Pro version. CryptoMonitor bypasses UAC on startup and will immediately start protecting your computer when first installed.CryptoMonitor Protection methods
1. Entrapment Protection
which sends encrypted pattern signals back and forth between CryptoMonitor and themselves constantly. When a ransomware falls into one of these traps, the pattern is broken and CryptoMonitor immediately takes action...the computer is locked down, no file modifications are allowed and CryptoMonitor will send an alert (email) about the infection.
2. Count Protection
, a feature only available in the Pro version, provides a second layer of protection against crypto-malware. Count Protection will constantly scan running processes and use heuristics to categorize them into absolute trusted, unknown, and suspicious. When the process modifies over a certain number of personal files, under a certain time, then a flag is raised and CryptoMonitor will send an alert (email and text message) so you can take action. Since this method could lead to false positives, it includes the ability to whitelist executables that may exhibit such behavior.
Other FeaturesSecure Vault
is a protected directory created by CryptoMonitor. Nothing caalled access this directory except for CryptoMonitor, and any other processes that you allow to have access to it. Secure Vault can be used to safely store photos documents, videos, music and backups.
The Pro version includes Process Injection Check
and LockDown Mode
. Process Injection checks for injected code, and if injected code is found, it is then treated as a hostile process. LockDown Mode occurs when CryptoMonitor cannot kill or remove an infection right away. When LockMode is enabled, it blocks the offending processes privileges to everything, making it easy for removal manually or by aa Anti-Virus. Since only the bad process is locked down, you can run any application to help remove the infection when CryptoMonitor cannot.
CryptoMonitor licenses come with a 7 day free trial when purchased. After finishing on the purchase page, you will receive your license(s) by mail. If you cancel your subscription before that, you will never be charged. For more detailed information on how CryptoMonitor works, please refer to...
is a security tool that writes 200+ group policy object rules into the registry in order to prevent executables in specific locations from running. CryptoPrevent can be used to lock down any Windows OS to prevent infection
by crypto ransomware which encrypts personal files and then offers decryption for a paid ransom. CryptoPrevent artificially implants hundreds of group policy object rules into the registry
in order to block executables (*.exe, *.com *.scr and *.pif) and fake file extension executables in certain locations (i.e. %AppData%, %LocalAppData%, Recycle Bin) from running. Due to the way that CryptoPrevent works, it protects against a wide variety of malware and ransomware. There are several levels of protection but most users only need to use the default setting - "Set it and forget it" protection
. CryptoPrevent Premium
offers automatic updates to the program and definitions, email alerts, and custom policy rules.
CryptoPrevent has a filter module (in the installer version) which allows you to apply (enable) or disable suspicious program filtering for .cpl, .scr and .pif files which are executable files. This option is found by opening CryptoPrevent and selecting Advanced > show Advanced Options at the top. The portable version does NOT include the Filter Module...you must get the installer version to use that feature.