HitmanPro.ALERT Support and Discussion Thread

+1 (event id 211: Application is up-to-date. Next check in 8 hours.)

 

No that is not a correct assumption. I know from experience that HMP.A still can silently cause issues. The only safe way is to uninstall it (or possibly stop the service).

 

We have made quite a few enhancements in 574 in terms of Java applications requiring a lot of memory. Should be fixed now.

 

Silent Audit still detects an exploit, but does not terminate the application. This to allow the exploit to fully deploy (resulting in an infected machine). This is useful for exploit researchers, hence the name Audit.

You just need to restart the browser. No need to reboot.

 

No manual update issues here on Win 10 Pro x64 v1511.

 

Smooth upgrade from build 573; no issues after rebooting

 

W7-x64; No issues installing build 574 over build 573, after the reboot all applications are running fine!

 

It was also an issue with Rapport, putting HMP.A into Silent Audit still prevented Rapport from working so HMP.A was definitely still doing "something". Only uninstalling HMP.A worked for both issues.

Having experienced this twice with two separate products maybe you can understand why people keep suggesting a true DISABLE function to quickly test compatibility without having to uninstall HMP.A?

Cheers.

 

Found something @deugniet

 

Nice find Erik, you good-for-nothing

 

Yes, you are right. This is what I did. I de-installed WinAntiRansom and this helped a lot, many issues I encountered the last days disappeared. And finally I disabled Keystroke Encryption in HMP.A. So far so good. I spend more time with learning how to use HPM.A. I also encountered, the problem with Chrome/Chromium browsers as some previous posters in this Thread. Incompatibility of Sandboxie with Chrome/Chromium Browser(s) and HPM.A. However Firefox works fine.

I was wondering regarding the LastPass Windows Desktop Application as it is not associated as a Plugin to a Browser, how can this be added to HPM.A. Or to be more clear, which template should be used when added to HPM.A ? Is there some good advice ?

 

Good explanation of exploit mitigation techniques, also a nice comparison with Intercept X (which we know shares most of its code space with HMPA) and other exploit mitigation software: https://www.sophos.com/medialibrary/Gated Assets/white papers/Sophos-Comprehensive-Exploit-Prevention-wpna.aspx

 

Excellent!

 

@Gapliin :
Good find.
THX

 

Thanks

Just updated mine to build 574

 

No problems to report here after upgrading to and running the new build since early yesterday.

 

As usual no problems after updating. It's running fine.

Interesting

 

Just had a weird experience where the keystroke encryption ended up in the master password entry box for Sticky Password.

When the password was rejected, I figured I must have typo-ed it, but when I demasked the password box figuring I could correct the mistype, it was a jumble of junk (yes, I was sober this time).

I deleted the entry and began again, and the proper characters found their way into the master password box. Must have been an intermittent glitch. Or a full moon (nope, checked that).

 

Upgrade to 574 is very smooth for me for me as well ... So glad to have found this terrific product, devs and group!

Edit, add: I may be my imagination - or not - but this build feels very smooth. My system is running great, Chrome & extensions are fine. Thanks Eric & Mark!

And thanks @Gapliin for sharing the whitepaper.

 

I would like to add my congratulations to the team for their latest digital engineering wizardry. Upgraded to 574 two days ago and everything is running well. Thank you.

 

couple of issues to report, note I am still on build 567

OS win 8.1 x64

I been diagnosing why uplay is broken on my PC, pulling my hair out, hours of searching the internet, until I found one hit blaming hitman pro from here on wilders.

https://www.wilderssecurity.com/thr...iscussion-thread.324841/page-476#post-2624716

I added all the ubisoft launcher binaries to the exclusion list and bam it loads.

Note it was silently failing, hitmanpro alert did not bring up any messages.

So there is two problems here.

1 - it is making stuff silently fail, this is very bad.
2 - the policy of hooking to everything on the system is causing all sorts of issues, that you guys are trying to firefight but its a game of whack a mole.

The second issue I discovered when adding the exclusions.

Every time I added a exclusion I was asked if I wanted to remove another exclusion. I selected no, but something is whacky in the process. I will update to the latest version later today.

 

Having issues with the latest build 574. Keyboard will not work inside Chrome with Keystroke Encryption enabled. I can disable Keystoke Encryption inside HMPA and the keyboard will work inside Chrome. This problem started with build 574, didn't have any issues with previous builds.

 

CVE-2016-9079 Tor Browser 0-day vs HitmanPro.Alert:
https://www.youtube.com/watch?v=asz1u9aJ2l8

Description:
The video shows an in-the-wild zero-day attack on the Tor Browser, which is based on Mozilla Firefox. The abused vulnerability involves a use-after-free bug and the payload is dropped in-memory, meaning no malicious files are dropped to the disk for antivirus (AV) or machine learning (ML) solutions to investigate - the entire attack run in memory.
Without using signatures or requiring updates, HitmanPro.Alert protects against these types of attacks.

Just I like imagined, HMPA shines again.