HitmanPro.ALERT Support and Discussion Thread

Surfright a Sophos company:

Spoiler: screenshot

 

I just switched to using HMPA so I hope Sophos continues to support it, it's great. But I like using it in a combo with ESET so that worries me.

Does anyone know if you can disable Keystroke Encryption for specific programs? I use AutoHotkey which gets jumbled by HMPA. I know you can disable all mitigations for specific software but I wanted an anti-exploit package to protect legacy software.

Hi by the way!

 

Guessed only two out of three right, is it age? am I losing it?

 

Hi JayKatai,
So far, I have seen only information that says Sophos will continue to support HMP and HMPA, and nothing that would suggest that the intention would be to make HMPA Sophos compatible only. Most HMPA users have there personal preferences for security software of all kind of companies. Sophos would be crazy to limit compatibility. I see no reason to worry about using HMPA in a combo with ESET.

The Keystroke Encryption function can be enabled or disabled, without that affecting anti-exploit and other protections, but there is no option to disable Keystroke Encryption for specific programs only.

 

Unfortunately there is no way, I am aware of.

I'm also looking to exclude our company wide used telephone manager ESTOS ProCall
I had to disable keystroke encryption, to make it work.

But keystroke encryption is not that important to me, because if a keylogger already passed your defense, you may have other serious issues.

 

@erikloman @markloman

I recall there being some post saying that it wasn't recommended to use HitmanPro.Alert on MPC-HC. Is that still the case right now?

I'm asking cause the codec pack I have uses MPC-HC(64bits). And when I used it to watch a video, HMP.Alert automatically added MPC-HC(64bits) to the exploit mitigations.

Should I disable(or remove) mitigations to MPC-HC(64bits)? Or is it okay to leave it like that?

 

W7-x64, hpma b344:
I have to disable 'Nullpage mitigation' to make MPC-HC-x64 display/run a video.

 

Here HMP.A also automatically added MPC-HC (32 and 64 bits) and both run fine with all migitations enabled.(HMP.A build 340)

 

Has anyone been able to confirm the licencing changes for the new year? There was a previous thread on here suggesting that HMP and HMPA would be separate licences in the new year? If this is the case any idea on prices? I am currently trialling HMPA with Sophos home and really love the combo, secure and light, but whether I buy or not depends on the new licencing set up if indeed there is one. I am rather hoping they keep the status quo and stay as they are, its a good a popular deal, why change it?

 

See Erik's remarks in the HitmanPro.Alert thread, November 27:

I have no idea on next year prices.
If you like, you can buy your license or licenses this year, 2015, that will remain working on both products.

 

This will be interesting to see, my general impression is that HMPA is indeed causing too many conflicts with other security tools. So I wonder if HMPA can be tweaked a bit to avoid this in the future. Of course a lot of posts in this thread are also because of people that are adding way too many apps to the protection list, without any good reason.

 

Quick question regarding license subscription: I bought a license for HMP.A earlier today. What I bought is called "license subscription". What exactly does "subscription" mean here? Will my license be renewed automaically when it expires (I hope not!) or will I have to renew my license manually when it is no longer valid? Thanks for your help, guys and gals.

 

Correct, combining security tools can always cause problems. But like said before, anti-exploit works in quite a low level, so sooner or later it might start to conflict. I'm also not sure why I'm one of the few ones that is having problems with the HMPA + SBIE combo, certain bugs are quite hard to troubleshoot.

But I believe it could also be avoided by tweaks like injecting code only into protected apps + crucial OS processes, instead of injecting system-wide. I'm still not convinced that system wide injection is needed to provide all the protection options in HMPA, I say this based on what I've seen with other tools.

 

How/where did you buy your license?
My previous orders give a product code/ product key, but do not mention a "license subscription".

Your license would not be renewed automatically, but you would need to renew your license manually when it is no longer valid.
That's to say, those were the conditions up till recently. So far, I have no indication that this has changed in any way.

 

I bought it from Cleverbridge via the Surfright website. The confirmation email I received told me I had bought the following product:

HitmanPro for 1 PC - 3 Year Subscription

Version 3.7 - Second opinion behavioral based Anti-Malware

Now I'm wondering what "subscription" means in this particular case - automatic renewal or not?

I hope you are right because I really hate automatic renewals. I already sent an email to Surfright Support but I haven't received a reply from them yet.

 

Ah, now I see, for my previous order the word "subscription" was not in the body of the confirmation e-mail, but it was in the subject line and it was in the attached PDF file.
So, not "license subscription", but indeed "subscription".
However, that does not mean automatic renewal.
As I said, your license is not renewed automatically, but you need to renew your license manually when it is no longer valid.

I can imagine they're quite busy these days.
Probably give them a few more days.

 

Yes, now that they are a "Sophos company", they are probably busier than ever before. I sent my email to them only today, and I didn't expect them to send me a reply within an hour. Maybe I will hear from them some time next week.

 

At this time, it is still one and the same license for HMP and HMPA.
At this time, there is no different HMP or HMPA license.
The license says it's a license for HitmanPro, but it also mentions "This license works on HitmanPro.Alert and HitmanPro".

 

I eagerly hope, that questions and answers about HitmanPro and HMP.A calm down soon,
so that we can discuss technical aspects.

Maybe a moderator can open a new thread, about Surfright and Sophos perspectives and licencing, and move related posts.