Understood, but Mark indicated Monday that a general release (excluding users running the newer 8xx technology previews) would be "later in the week", then Tuesday it appeared. Just wondering if somebody jumped the gun is all...
HitmanPro.Alert 3.8.0 Build 853 Community Technology Preview 3 Changelog (compared to build 849) Added JIT Guard which prevents the use of Win32 API calls from just-in-time (JIT) memory in web browsers. This new mitigation is currently enabled on Firefox-based web browsers and thwarts attacks on vulnerabilities like CVE-2019-9810. Added license expiration reminder. Users that renew their license will receive a discount of 15% on a new license when buying one via the new reminder message. Improved the new CryptoGuard 5 anti-ransomware engine. Fixed issue that prevented users from upgrading Windows 7 straight to Windows 10. Fixed issue that prevented users from installing Windows 7 updates. Several other minor improvements. Screenshot Figure 1: JIT Guard Download https://dl.surfright.nl/hmpalert3b853.exe Notes Do NOT install this on a machine of which you only have access over Remote Desktop as it will lock you out from admin access, you need hands on keyboard to generate the 2fa token. Do NOT return from this 8xx CTP to version 7xx stable without first removing c:\programdata\hitmanpro.alert\excalibur.db Supports Windows XP up to Windows 10 19H2. Footprint 4.8 MB All code compiled with Visual Studio 2019 16.3. We're currently upgrading users running CTP1 and CTP2 to this CTP3.
No problems upgrading build 853 CTP3 (from CTP2). Win10 1903 build 18362.418 x64/Norton Security v22.19.8.65
I also upgraded from CTP2 tp CTP3. All is running fine. Did test imaging again, and it is fine. This program is just getting better and better
Agree. But is Sophos a trustworthy company, now something else? https://enterprisetalk.com/news/cybersecurity-firm-sophos-to-be-acquired-for-3-9bn/
Auto update and manual update failed, as usual (TEMP/TMP on RAM disk). Will try an uninstall & clean install later today.
No problems upgrading Versie 3.8.0 build 853 CTP3 Windows 10 pro Versie 1903 build 18362.418 (Emsisoft Anti-Malweare)
Dh5hneja7rg51qURT96tb&)Qxdnwsupvr6Xnmtl1o1mdNhf7biazsonmnf4fmjL Upgraded from CTP2 to CTP3 and got Keystroke Encryption problem. Keystroke Encryption disabled: Windows XP here. Thanks Keystroke Encryption enabled: Otddh42h)P0aiicb R8ef0z9KX
Auto updated from CTP2 to 3. No issues evident after reboot, and no entries found in the HMP.A Event Log.
After installing the latest Kaspersky Security Cloud Free I was getting CredGuard alerts while KSCF was installing and on a system restart. Eventually I uninstalled Alert CTP3 as I was just trying to let KSCF settle in. Unfortunately, I do not have the alert. I have since installed the latest Release version of Alert and all seems well. Code: Log Name: Application Source: HitmanPro.Alert Date: 29/10/2019 4:44:45 PM Event ID: 911 Task Category: Mitigation Level: Error Keywords: Classic User: N/A Computer: Dave-PC Description: Mitigation CredGuard Timestamp 2019-10-29T05:44:45 Platform 10.0.18362/x64 v853 06_25 PID 8764 Feature 003D0830000001A6 Application C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe Created 2019-10-29T05:43:25 Description Kaspersky Anti-Virus 20.0.14 \REGISTRY\MACHINE\SAM\SAM\Domains\Account Dropped Files 1 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\cat_engineAB3BDF70-3CEC-D14C-ACE9-6946D7FD8F6D Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 2 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\persistent_q.db-journal Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 3 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\persistent_q.db Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 4 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\persistent_q.db-shm Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 5 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\persistent_q.db-wal Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 6 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\0C\segments.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 7 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\0C\00000001_events.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 8 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\0C\00000001_objdt.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 9 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\0C\00000001_objbt.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 10 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\0C\00000001_objid.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 11 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\25\segments.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 12 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\25\00000001_events.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 13 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\25\00000001_objdt.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 14 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\25\00000001_objbt.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 15 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\25\00000001_objid.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 16 C:\ProgramData\Kaspersky Lab\44B023B4-E9E6-924A-ACC8-C5B5E3CA7F78 Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 17 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\cat_engine990B873F-656E-5649-9C2F-0F997A3E0C4C Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 18 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\report.rpt Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 19 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\hdhm_temp_drives_6DCC1C99-CF54-314D-A961-CFBE8618C0B0 Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 20 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\last_settings.xml Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 21 C:\Users\Public\Desktop\Kaspersky Passwords.lnk Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] Read by \Device\HarddiskVolume2\Windows\explorer.exe [6264] \Device\HarddiskVolume2\Windows\System32\SearchProtocolHost.exe [2104] 22 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\stor_saas.bin Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 23 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\settings_saas.kvdb-wal Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 24 C:\ProgramData\Kaspersky Lab\AVP20.0\Encryption\containers.db-journal Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 25 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\profiles.xml.tmp1678 Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 26 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\stor_AVP.bin Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 27 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\Database\reports.db-shm Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 28 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\Database\reports.db-wal Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 29 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\iswift.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 30 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\avengine.dll.e6d2df80e11dcc9e57c2877fd8de1f67_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 31 C:\ProgramData\Kaspersky Lab\AVP20.0\3225235d3e6716b5d381203161018a53321d71a5e251a1605d34263a3e6716b1 Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 32 C:\ProgramData\Kaspersky Lab\AVP20.0\Temp\ioc72CA0C45-749F-3345-9552-EFB2893EBA8B.p7x Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] Read by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 33 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\wlengine.dll.5074250125131bd6a0842583c51cbd6d_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 34 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\intctrl.kdl.0f848ac05e68f41c7afe1f8dd82923b1_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 35 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\kavbase.kdl.8ea4e38801593012747546ce4b2680ac_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 36 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\cat_engine243B18F4-3C97-9D42-ADC7-6B8729EEAB6C Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 37 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\kavbase_00000000 Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 38 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\vlns.kdl.342d2c338e39149c9ef52d87c5cf3862_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 39 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\kavbase.2547694865ef1225.kmc Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 40 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\si_monitor.dll.d37220ecb715f59a66c797dafb8b265a_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 41 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\klavemu.kdl.5c2d58c8a66f54916402b2d633dcacc0_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 42 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\crls\tmp\D1669591-E741-F54B-89F5-69F9BC951432 Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 43 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\kjim.kdl.2f7127e1d8b9f263caf9f3e51000f340_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] Thumbprints 368a1bad9d915f938d0b558b13bad211bf6c227c2d202e95f10b55dc77c94562 Event Xml: <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="HitmanPro.Alert" /> <EventID Qualifiers="0">911</EventID> <Level>2</Level> <Task>9</Task> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2019-10-29T05:44:45.944665000Z" /> <EventRecordID>20192</EventRecordID> <Channel>Application</Channel> <Computer>Dave-PC</Computer> <Security /> </System> <EventData> <Data>C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe</Data> <Data>CredGuard</Data> <Data>Mitigation CredGuard Timestamp 2019-10-29T05:44:45 Platform 10.0.18362/x64 v853 06_25 PID 8764 Feature 003D0830000001A6 Application C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe Created 2019-10-29T05:43:25 Description Kaspersky Anti-Virus 20.0.14 \REGISTRY\MACHINE\SAM\SAM\Domains\Account Dropped Files 1 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\cat_engineAB3BDF70-3CEC-D14C-ACE9-6946D7FD8F6D Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 2 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\persistent_q.db-journal Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 3 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\persistent_q.db Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 4 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\persistent_q.db-shm Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 5 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\persistent_q.db-wal Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 6 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\0C\segments.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 7 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\0C\00000001_events.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 8 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\0C\00000001_objdt.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 9 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\0C\00000001_objbt.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 10 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\0C\00000001_objid.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 11 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\25\segments.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 12 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\25\00000001_events.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 13 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\25\00000001_objdt.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 14 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\25\00000001_objbt.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 15 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\25\00000001_objid.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 16 C:\ProgramData\Kaspersky Lab\44B023B4-E9E6-924A-ACC8-C5B5E3CA7F78 Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 17 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\cat_engine990B873F-656E-5649-9C2F-0F997A3E0C4C Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 18 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\report.rpt Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 19 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\hdhm_temp_drives_6DCC1C99-CF54-314D-A961-CFBE8618C0B0 Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 20 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\last_settings.xml Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 21 C:\Users\Public\Desktop\Kaspersky Passwords.lnk Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] Read by \Device\HarddiskVolume2\Windows\explorer.exe [6264] \Device\HarddiskVolume2\Windows\System32\SearchProtocolHost.exe [2104] 22 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\stor_saas.bin Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 23 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\settings_saas.kvdb-wal Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 24 C:\ProgramData\Kaspersky Lab\AVP20.0\Encryption\containers.db-journal Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 25 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\profiles.xml.tmp1678 Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 26 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\stor_AVP.bin Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 27 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\Database\reports.db-shm Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 28 C:\ProgramData\Kaspersky Lab\AVP20.0\Report\Database\reports.db-wal Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 29 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\iswift.dat Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 30 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\avengine.dll.e6d2df80e11dcc9e57c2877fd8de1f67_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 31 C:\ProgramData\Kaspersky Lab\AVP20.0\3225235d3e6716b5d381203161018a53321d71a5e251a1605d34263a3e6716b1 Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 32 C:\ProgramData\Kaspersky Lab\AVP20.0\Temp\ioc72CA0C45-749F-3345-9552-EFB2893EBA8B.p7x Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] Read by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 33 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\wlengine.dll.5074250125131bd6a0842583c51cbd6d_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 34 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\intctrl.kdl.0f848ac05e68f41c7afe1f8dd82923b1_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 35 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\kavbase.kdl.8ea4e38801593012747546ce4b2680ac_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 36 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\cat_engine243B18F4-3C97-9D42-ADC7-6B8729EEAB6C Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 37 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\kavbase_00000000 Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 38 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\vlns.kdl.342d2c338e39149c9ef52d87c5cf3862_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 39 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\kavbase.2547694865ef1225.kmc Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 40 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\si_monitor.dll.d37220ecb715f59a66c797dafb8b265a_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 41 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\klavemu.kdl.5c2d58c8a66f54916402b2d633dcacc0_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 42 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\crls\tmp\D1669591-E741-F54B-89F5-69F9BC951432 Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] 43 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\kjim.kdl.2f7127e1d8b9f263caf9f3e51000f340_0.tmp Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [8764] Thumbprints 368a1bad9d915f938d0b558b13bad211bf6c227c2d202e95f10b55dc77c94562 </Data> </EventData> </Event> Cheers.
What will the future hold for HMP.A now that trend micro has been sold? It is time to start looking for alternatives?
I found that before installing KSCF I could temporarily disable Credential Theft Protection in Alert until after KSCF is installed and updated I don't need to uninstall CTP3.
Sigh... After leaving this machine idle for a while I suddenly got another Alert notification. Spoiler: CredGuard Alert Log Name: Application Source: HitmanPro.Alert Date: 4/11/2019 3:50:37 PM Event ID: 911 Task Category: Mitigation Level: Error Keywords: Classic User: N/A Computer: Dave-PC Description: Mitigation CredGuard Timestamp 2019-11-04T04:50:37 Platform 10.0.18362/x64 v853 06_25 PID 3792 Feature 003D0830000001A6 Application C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe Created 2019-11-04T02:30:26 Description Kaspersky Anti-Virus 20.0.14 \REGISTRY\MACHINE\SAM\SAM\Domains\Account Dropped Files 1 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\stor_AVP.bin Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [3792] 2 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\PATCH\1\deleted Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [3792] 3 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\certdb_v2.56b303bf417e3d94c2e3.idx Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [3792] 4 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\kavbase.255241b0127ecc24.kmc Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [3792] Thumbprints 368a1bad9d915f938d0b558b13bad211bf6c227c2d202e95f10b55dc77c94562 Event Xml: <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="HitmanPro.Alert" /> <EventID Qualifiers="0">911</EventID> <Level>2</Level> <Task>9</Task> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2019-11-04T04:50:37.238279400Z" /> <EventRecordID>21123</EventRecordID> <Channel>Application</Channel> <Computer>Dave-PC</Computer> <Security /> </System> <EventData> <Data>C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe</Data> <Data>CredGuard</Data> <Data>Mitigation CredGuard Timestamp 2019-11-04T04:50:37 Platform 10.0.18362/x64 v853 06_25 PID 3792 Feature 003D0830000001A6 Application C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe Created 2019-11-04T02:30:26 Description Kaspersky Anti-Virus 20.0.14 \REGISTRY\MACHINE\SAM\SAM\Domains\Account Dropped Files 1 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\stor_AVP.bin Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [3792] 2 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\PATCH\1\deleted Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [3792] 3 C:\ProgramData\Kaspersky Lab\AVP20.0\Data\certdb_v2.56b303bf417e3d94c2e3.idx Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [3792] 4 C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\Cache\kavbase.255241b0127ecc24.kmc Dropped by \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [3792] Thumbprints 368a1bad9d915f938d0b558b13bad211bf6c227c2d202e95f10b55dc77c94562 </Data> </EventData> </Event>
my concern was performance, so reverting to v4 fixed the performance? As long as they keep this optional so can switch like you did its good.