HitmanPro.ALERT Support and Discussion Thread

Discussion in 'other anti-malware software' started by erikloman, May 25, 2012.

  1. JohnDil

    JohnDil Registered Member

    Joined:
    Apr 2, 2016
    Posts:
    10

    Thanks i will do that and yes it's alert 3 build.

    @Victek, windows doesn't find any updates.

    I just found that putting a usb stick in my pc also causes a BSOD
     
  2. Stupendous Man

    Stupendous Man Registered Member

    Joined:
    Aug 1, 2010
    Posts:
    2,841
    Location:
    the Netherlands
    I think test meant to ask which HMP.A build you use, in detail. I suppose that is HMP.A 3.5.3 build 562, is that correct?
    If so, could you update to HMP.A 3.5.5 build 570 pre-release, and see if that helps?
     
  3. JohnDil

    JohnDil Registered Member

    Joined:
    Apr 2, 2016
    Posts:
    10

    Ah i see, yes i tried build 570 but that didn't solve the problems(i tried both 562 and 570). After uninstalling HMP.A my problems got solved.
     
  4. Headcool

    Headcool Registered Member

    Joined:
    Dec 8, 2015
    Posts:
    8
    I have a similar problem like you as I also use a storage pool. The difference is that my system doesn't restart after the BSOD while shutting down. But the BSODs during shutdown are not my biggest problem. Everytime I plug/unplug a USB device or power on/off an already plugged USB device there is a high chance of getting a BSOD.
    I have sent erikloman some minidumps last thursday. From what I see the problem should be rather easy to resolve since the bug seems to be easily reproduceable.

    Since JohnDil also has the same problem (from what I can see from his BSOD dump), we are already 3 users facing the same problem, therefore I see good chances seeing a fix quite soon.
     
  5. guest

    guest Guest

    You can find issues here about BSOD's after removing an usb-stick, but after putting in, that's new.
    Does it happen every time after putting in an usb-stick?
     
  6. JohnDil

    JohnDil Registered Member

    Joined:
    Apr 2, 2016
    Posts:
    10
    Yes i tried it a couple times. I do need to tell you that my usb stick is protected by bitlocker. That could also play a role here.
     
  7. askmark

    askmark Registered Member

    Joined:
    Jul 7, 2016
    Posts:
    392
    Location:
    united kingdom
    Understood. I was only reporting it for your benefit, not mine.
     
  8. guest

    guest Guest

    What about "unprotected" usb-sticks? Or do you get a BSOD only with bitlocker-protected usb-sticks.
     
  9. mrhex1

    mrhex1 Registered Member

    Joined:
    Jul 2, 2016
    Posts:
    19
    Location:
    Timbuktu
    I would say that the Loman brothers are definitely doing their job. To be frank I am NOT a malware researcher. I have purposefully tried out CryptoGuard though. I installed Windows 10 Pro without running any updates on Oracle VirtualBox. I would change the setting to make sure that I have two cores(I read somewhere that some ransomware does checks like exiting after detecting single core) on the processor. I have also turned off the Active/Passive Vaccination feature in HMPA too.

    I have gone bonkers with Virtual Box to install Cerber & Petya intentionally. I turned off Windows Defender permanently through Group Policy editor so that I could get the ransomware to run. In every case that I have run the ransomware was terminated from memory or its effects nullified. While I have done this less than a dozen times I am satisfied with my three computer license of Hitman Pro Alerts from SurfRight.

    I run Kaspersky AV, Malwarebytes Anti-Malware, & Hitman Pro Alerts together with no ill effects. As an IT person I don't like to say that there is no such thing as an unhackable computer. If someone wants to put in the time, effort, & expense of getting past Kaspersky, Malware bytes, & Hitman Pro Alerts then you can have the computer.
     
  10. Stupendous Man

    Stupendous Man Registered Member

    Joined:
    Aug 1, 2010
    Posts:
    2,841
    Location:
    the Netherlands
    @erikloman
    @markloman

    In G Data's 2017 version, which will shortly be available (end October, half November, according to G Data), an Anti-Ransomware module will be integrated.
    See:
    G DATA Generation 2017 lässt Erpressertrojanern keine Chance
    Ransomware heeft geen kans met G DATA Generatie 2017
    The article is not available in English, yet.

    Has SurfRight tested HMP.A for compatibility with the new G Data 2017 with Anti-Ransomware module?

    Here's a Rokop Security forum thread regarding the G Data 2017 beta:
    G DATA Betatest für die Version 25.3.0.1
    The first post mentions how to get the beta, the 26.09.2016 post offers a download link.
    As the release is end October, half November, the latest beta may probably be the release version.
    N.B.
    In the 06.10.2016 post in the Rokop Security forum thread, G DATA@rokop mentions:
    (translated from German to English)
     
    Last edited: Nov 8, 2016
  11. test

    test Registered Member

    Joined:
    Feb 15, 2010
    Posts:
    499
    Location:
    italy
    based on what principle SurfRight must check compatibility with a product (that is still in development) and not vice versa? (as moreover Alert 3 is in a stable phase?)

    The answer is simple:
    SurfRight must [listen, answer, provide,...] because it is a small company and therefore there is a direct link with the developer (for the record a big plus for this kind of software), software vendor XYZ instead [where XYZ is a large company] does not even take into account as the customer is the same as zero
     
    Last edited: Nov 8, 2016
  12. Stupendous Man

    Stupendous Man Registered Member

    Joined:
    Aug 1, 2010
    Posts:
    2,841
    Location:
    the Netherlands
    Firstly, the article in German mentions "G DATA Antivirus 2017, Internet Security 2017 und Total Security 2017 sind Ende Oktober 2016 im Handel verfügbar."
    The article in Dutch mentions "De nieuwe producten zijn vanaf half november beschikbaar."
    So, the release is at hand, end October, half November, and the latest beta is probably the release version.

    Secondly, major antivirus companies don't look for compatibility with HMP.A.
    SurfRight's intent has always been to be compatible with most if not all major antivirus products.

    Thirdly, hey, I am not forcing Erik and Mark to make HMP.A compatible with the upcoming G Data version, I am only asking whether SurfRight tested HMP.A for compatibility with the new G Data 2017 with Anti-Ransomware module.
     
  13. test

    test Registered Member

    Joined:
    Feb 15, 2010
    Posts:
    499
    Location:
    italy
    So the old homepage is officially dead :'(...

    Personally my vote is particularly negative :thumbd:...
     
  14. enphor

    enphor Registered Member

    Joined:
    Oct 31, 2016
    Posts:
    10
    Location:
    North Carolina
    Hate to say it but I'm glad I'm not the only one here with storage pool related issues. Misery loves company!

    Interesting you get a BSOD at shutdown. My PC shuts down properly but then promptly restarts. I do not get a BSOD notification nor any minidumps. Perhaps my pc does indeed crash, but its too late in the shutdown process for Windows to grab the dump or prompt the notification. Hopefully the dumps you provide and (crossing fingers) subsequent fix would also do well for me. I'll wait and see.
     
  15. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,453
    Location:
    .
    Appreciate your time and interest. Respect to SurfRight, Sophos and Wilders. I was simply wondering if anyone while browsing as normal, while engaged in normal everyday activity experienced a true Attack Intercepted. (not a false-positive, not a test, not a conflict). Just curious. Granted, Wilders members are more-in-the-know re security.
     
  16. test

    test Registered Member

    Joined:
    Feb 15, 2010
    Posts:
    499
    Location:
    italy
    Hi Erik, what's wrong with the latest 570 PreRelease?

    Perhaps is not entirely solved the issue when removing USB flash drive?
     
  17. Yeah I'm still getting BSOD's on my Windows workstation box. I have a external hard drive I use and when I unplug it the OS crashes and BSOD.
     
  18. deugniet

    deugniet Registered Member

    Joined:
    Nov 25, 2013
    Posts:
    1,242
    High ram and cpu-usage build 570 beta. Sent the hmpalert.dmp via wetransfer.

    1.JPG

    Win10 1607 build 14393.447 x64/Norton Security v22.8.0.50
     
  19. guest

    guest Guest

    @deugniet HMPA always try to inject dlls to every other processes, try add Norton's processes to HMPA exclusions.
     
    Last edited by a moderator: Nov 10, 2016
  20. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,209
    Location:
    Among the gum trees
    Actually, I haven't seen that for quite a while now. I have excluded hmpalert.exe in Norton.
     

    Attached Files:

  21. deugniet

    deugniet Registered Member

    Joined:
    Nov 25, 2013
    Posts:
    1,242
    Me too. I'll exclude hmp.a.exe in Norton.
     
  22. test

    test Registered Member

    Joined:
    Feb 15, 2010
    Posts:
    499
    Location:
    italy
    OS? (i'm trying to figure out why 570 was not officially released again into the 'stable' branch)
     
    Last edited: Nov 10, 2016
  23. SanyaIV

    SanyaIV Registered Member

    Joined:
    Oct 17, 2013
    Posts:
    278
    I noticed recently that HMPA had written around 35GB to disk, I had during the same session downloaded things with another application (We'll call it application X) of equal download size. My question, how does this work in practice? Process Hacker claimed that both HMPA and the application X had written roughly 35GB each, so does it mean that effectively it has written twice as much to the disk than needed? (written, not saved)

    Application X is set up to download the things in question to my E: drive which is a mechanical harddrive, what I'm actually wondering is if the 35GB that HMPA wrote was written to the same E: drive or if it was written to my system drive C: which is an SSD? Or does HMPA not actually write to the disk but Process Hacker thinks it does for some reason?
     
  24. hawki

    hawki Registered Member

    Joined:
    Dec 17, 2008
    Posts:
    6,065
    Location:
    DC Metro Area
    How To Hack Into a Computer

    https://www.youtube.com/watch?v=Y-CsIqTFEyY
     
  25. dopo

    dopo Registered Member

    Joined:
    Nov 10, 2016
    Posts:
    5
    Location:
    BXL
    Same problem here with HitmanPro 3.7.14 build 280 (64-bit) on Windows 10 Pro:
    Via the notification icon I prepare Windows 10 to remove my USB2.0 stick, Windows said OK you can, but before I physically can remove the stick, the BSOD comes up.
    How can I avoid this? Otherwise it works fine.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.