8.0.4.3 Addendum – FolderWatch/HoneyPot Definitions WARNING:  These settings are designed and should be used for advanced users only or as directed by Foolish IT support staff.  Misuse of these setting can severely impact the performance and ability of both FolderWatch and the HoneyPot Detection Protection features in CryptoPrevent.  Use these options at your own risk and in most cases here less is more and being specific is safer! WARNING:  These settings are designed and should...

8.0.3.4 Addendum – Proxy Settings Enable Proxy Settings Enables proxy settings defined for update/download operations Proxy Server Address (domain or IP only) Port Username Password Socks 5 Proxy enable/disable Use the same proxy settings for email Enable or disable using the same proxy settings defined for updates for sending emails as well Enable Proxy Settings Enables proxy settings defined for email operations Proxy Server Address (domain or IP only) Port Username Password Socks 5 Proxy enable/disable

Command Line Parameters (Premium Only Feature): /undo Remove protections but leave whitelists /undoall Remove protections and all whitelists /l=# Set a specific plan level set of protections Note: l is a lowercase L #=0 for None Protection Plan =1 for Minimal Protection Plan =2 for Default Protection Plan =3 for Maximum Protection Plan =5 for Extreme Protection Plan =a for Custom Plan (This won’t actually apply any new settings it will just reapply current settings)...

Applying Protections (Plan or customized selected) Once you have confirmed all your desired settings at this point, click the Apply Protection Plan Depending on the policy and number of protections selected, it may take several minutes to apply protections. You may also be prompted to whitelist all executables located in locations that will be blocked. Please ensure that your systems is malware free prior to installing CryptoPrevent and particularly prior to answering yes to the...

About tab: This tab displays information about CryptoPrevent including its history, evolution, and honorable mentions.

Updates tab: Enable a daily update schedule runs at the hour of your choosing or at a randomly picked time. A button is provided for manually checking for updates. (made available if enable daily update schedule checkbox fails) Additional hash definitions will be downloaded from our servers if the Extended Hash Definitions option is checked. As of this writing, over 50000 base definitions are applied and that number increases to over 70000 with that option...

History tab: The History tab logs information about CryptoPrevent activity either since: the Previous Startup for as far back as the Windows event logs happen to record. Events will be created whenever either a software restriction policy is enforced or when either our program filter module or FolderWatch protection detects malicious software or activity. The contents of each event may be useful for troubleshooting purposes and for getting the path information necessary to create a...

Email Settings tab: This tab is used to enable email notifications of alerts. Alerts will be emailed using the provided credentials and options. (Settings entered here are only available to the local system, this information is not transmitted or used by Foolish IT in any way) Settings are predefined for Google’s Gmail service or you may specify your own SMTP settings. Please note that Google will block external SMTP access unless you enable the “use...

Submit New Hash tab: If you identify a file you know to be malicious, you may use this tab to select that file, compute its hashes, and potentially upload it to Foolish IT for further analysis and potential inclusion in future base definitions. After browsing for a file, its hashes will be computed and compared against the internal lists. You will alerted in red text if the hash is not already present in our definitions...

User Hash Definitions tab: Similar to the whitelist and blacklist software restriction policies, our hash definitions also utilize lists to either allow or block a specific hash definitions, respectively. Hashes are only used with the Filter Module and FolderWatch protections The blacklist will only contain custom hashes and does not expose the hashes distributed with CryptoPrevent. As with the blacklist policies, you may add your own to enhance the base level of protections offered.  (Premium...