CryptoMonitor

Discussion in 'other anti-malware software' started by digmor crusher, Apr 3, 2015.

  1. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    424
    Location:
    Canada
  2. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    8,026
    Location:
    The Netherlands
    It looks interesting, too bad about the ugly GUI. The so called "count protection" was offered by Neoava Guard as well, back in the days. I'm not sure what to think about "Entrapment Protection". I wonder how it compares to HMPA's CryptoGuard.
     
  3. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    17,041
    HI DC

    For me I consider it totally unnecessary. I just one of the sucker emails with a zip attached. I checked and was crypto stuff. Emsisoft EIS was first to shut it down. Disabling EIS HMP.Alert shutting it down. Disabling that Appguard protected the stuff.

    Pete
     
  4. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,127
    Location:
    USA
    AG in medium or locked down mode?
     
  5. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    17,041
    You can check in the AG thread on the medium. I run it in Lockdown and it does the job.
     
  6. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,127
    Location:
    USA
    Okay thanks Peter, I just wanted to see what mode you were running in.
     
  7. Moose World

    Moose World Registered Member

    Joined:
    Dec 19, 2013
    Posts:
    446
    Location:
    U.S. Citizen
    Salutations,

    Just try and it slow the PC! Additionally, had a conflict with Emsisoft and Sandboxie.
    Uninstall for the time being. Will try it again tomorrow!
     
  8. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    424
    Location:
    Canada
    Peter, I run AG and EAM too so I am protected as well. Just wanted to throw this out here for discussion, always entertaining and educational having the experts on here discussing software such as this. We may not need this protection but others might.
     
  9. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    17,041
    I wouldn't recommend it unless someone tests it. I've tested EIS/EAM Appguard and HMPA.
     
  10. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    424
    Location:
    Canada
    Developer is by one of the members of Bleeping Computer, a decryption expert. He's been helping people there to deal with Crytowall, Cryptoguard, etc. , given time to develop I'm sure it will a effective tool.
     
    Last edited: Apr 4, 2015
  11. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    424
    Location:
    Canada
    Developer says that he has Emsisoft and Sandboxie on his development machine with no problems.

    Also says that a classic UI will soon be available that will bring down CPU usage.
     
  12. Moose World

    Moose World Registered Member

    Joined:
    Dec 19, 2013
    Posts:
    446
    Location:
    U.S. Citizen
    Salutations,

    Here is what on my PC"s, EAM,Sandboxie,MBAE,Hitman Pro Alert, Pro,Kerish Doctor,Shadow Dedender, and K-meleon,IE.
    I was thinking that it may be the Browser that is having the problem.

    After lunch I will reinstall and see what happen.

    Moose's World
     
    Last edited: Apr 4, 2015
  13. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    17,041
    Yeah, but add either HMP.Alert or MBAE, and the need for his program goes away.
     
  14. ropchain

    ropchain Registered Member

    Joined:
    Mar 26, 2015
    Posts:
    331
    If you want an all-in-one solution --> HMP.Alert
    Otherwise MBAE + Zemana AntiLogger, etc.
     
  15. Moose World

    Moose World Registered Member

    Joined:
    Dec 19, 2013
    Posts:
    446
    Location:
    U.S. Citizen
    Salutations,

    Tried with FlashPeak Slimjet and K-meleon Browsers. The problem is with sandboxie!
    If you enable sandboxie, there is a real slow down with the above browsers. Big time!
    So if the develop of the software and/or sandboxie fixes this problem. I will try again
    down the road. But for now, I am going to uninstall!

    Moose's World
     
  16. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    17,041
    Not surprised it doesn't work with SBIE. He will have to contact SBIE and then figure out what to put in SBIE to make them compatible. HMPA has that MBAE is ??
     
  17. Moose World

    Moose World Registered Member

    Joined:
    Dec 19, 2013
    Posts:
    446
    Location:
    U.S. Citizen
  18. Yuki2718

    Yuki2718 Registered Member

    Joined:
    Aug 15, 2014
    Posts:
    1,257
    IMO most important protection against ransomware is backup, backup, backup. I have redundant backups of all my data and system, they are in external drive, USB thumb drive, and cloud. Most of them are locally encrypted by legitimate encryption programs like Veracrypt. I usually don't have documents or pictures on my system anyware, so even if ransome infected me, they might see nothing to encrypt. If they keep undetected and survived until I mount one of drives to backup and I decrypted it, then they can encrypt those contents―still not much of problems, now as I see the ransomware, I will simply rollback my system before infection, and tho I lost part of latest backup data, still I have previous version of data intact and other latest data are still safe.

    I disabled cryptgurad in HMPA, this function or CryptMonitor will be good for novices or those who can't loose latest documents, but for me they're no use. Current flood of ransomeware infection and information about it indicates how many ppl don't have redundant backups, just like PUP dominant shows how many ppl are careless about software installation.
     
  19. Moose World

    Moose World Registered Member

    Joined:
    Dec 19, 2013
    Posts:
    446
    Location:
    U.S. Citizen
  20. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    424
    Location:
    Canada
    Someone did in BC forum.
     
  21. Moose World

    Moose World Registered Member

    Joined:
    Dec 19, 2013
    Posts:
    446
    Location:
    U.S. Citizen
    Salutations,

    Any replys from post #19 back or thoughts?

    Moose's World
     
  22. Victek

    Victek Registered Member

    Joined:
    Nov 30, 2007
    Posts:
    5,121
    Location:
    USA
    My thought is that solutions for something as dangerous as crypto-ransomware should be tested carefully before trusting them. I would not rely on a new, untested product, especially a free version which has disabled advanced features.
     
  23. erikloman

    erikloman Developer

    Joined:
    Jun 4, 2009
    Posts:
    3,027
    Location:
    Hengelo, The Netherlands
    HitmanPro.Alert 3 was reviewed against various crypto-ransomware families here:
    https://www.mrg-effitas.com/wp-cont...ffitas_Real_world_exploit_prevention_test.pdf
     
  24. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,068
    Location:
    Netherlands
  25. Victek

    Victek Registered Member

    Joined:
    Nov 30, 2007
    Posts:
    5,121
    Location:
    USA
    True but not a strictly accurate comparison with Cryptomonitor. In the free version of HMPA v3 Cryptoguard is simply off, not crippled.