HitmanPro.ALERT Support and Discussion Thread

Discussion in 'other anti-malware software' started by erikloman, May 25, 2012.

Page 530 of 679
  1. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,241
    Location:
    Among the gum trees
    I had already uninstalled 587 and reinstalled 576 but I just looked and the "Reverted" folder was empty. I've reinstalled 587 and reproduced and now I have two "Reverted" folders but both are empty.
     
    Krusty, Mar 28, 2017
    #13226
  2. Stupendous Man

    Stupendous Man Registered Member

    Joined:
    Aug 1, 2010
    Posts:
    2,861
    Location:
    the Netherlands
    No issues so far on my Windows 7 x64 system (see signature).

    N.B.
    I haven't tested for the CryptoGuard and LibreOffice x86 on Win x64 issue that I reported January 24 and February 3, as February 27 Erik replied "We are working on a new major version of CryptoGuard which should solve the LibreOffice issue", and today Erik wrote "We are working on a major new build." So that is for later, I suppose.
     
    Stupendous Man, Mar 28, 2017
    #13227
  3. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,241
    Location:
    Among the gum trees
    I just had a CryptoGuard block while updating Firefox. Please see PM.

    Too buggy for me, I'm going back to 586.
     
    Krusty, Mar 28, 2017
    #13228
  4. test

    test Registered Member

    Joined:
    Feb 15, 2010
    Posts:
    499
    Location:
    italy
    hi erik, what about 10 CU?
     
    test, Mar 28, 2017
    #13229
  5. deugniet

    deugniet Registered Member

    Joined:
    Nov 25, 2013
    Posts:
    1,244
    No problems for me with build 587 RC and updating Firefox to version 52.0.2 (x64).

    Win10 1607 build 14393.969 x64/Norton Security v22.9.1.12
     
    deugniet, Mar 28, 2017
    #13230
  6. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    4,873
    Location:
    Outer space
    Since Sophos acquired Surfright, it is only possible to a buy 1 year 1 PC license. Will multiple year and multiple PC licenses be available later?
     
    BoerenkoolMetWorst, Mar 28, 2017
    #13231
  7. Stupendous Man

    Stupendous Man Registered Member

    Joined:
    Aug 1, 2010
    Posts:
    2,861
    Location:
    the Netherlands
    If you click Buy Now, you get a window in which to the left of the Checkout button there is a strip that you can click to view all license options, among which the multiple year and multiple PC license options.
     
    Stupendous Man, Mar 28, 2017
    #13232
  8. HempOil

    HempOil Registered Member

    Joined:
    Jun 15, 2015
    Posts:
    225
    Location:
    Canada
    After upgrading to HitmanPro.Alert 3.6.4 Build 587 RC, I received the following FP upon launching MS Edge. After launching it a second time, the FP was not invoked.

    Intruder

    PID 9616
    Application C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
    Description Microsoft Edge 11

    Detour Report
    # Address Owner Disassembly
    -- ------------------ ------------------------ ------------------------
    URLDownloadToFileW
    1 0x00007FF9CF6B2230 urlmon.dll JMP 0x7ff9ab860c18
    2 0x00007FF9AB860C18 (unknown)

    EncryptMessage *
    1 0x00007FF9DBD35880 SspiCli.dll JMP 0x7ff9dc300688
    2 0x00007FF9DC300688 (anonymous)

    FilterConnectCommunicationPort
    1 0x00007FF9DBFE20A0 fltlib.dll JMP 0x7ff9dc300180
    2 0x00007FF9DC300180 (anonymous)

    FilterSendMessage
    1 0x00007FF9DBFE22D0 fltlib.dll JMP 0x7ff9dc3001b8
    2 0x00007FF9DC3001B8 (anonymous)

    NtUserPrintWindow
    1 0x00007FF9DC4B8ED0 win32u.dll JMP 0x7ff9def90458
    2 0x00007FF9DEF90458 (anonymous)

    NtUserSendInput
    1 0x00007FF9DC4B20B0 win32u.dll JMP 0x7ff9def90180
    2 0x00007FF9DEF90180 (anonymous)

    __dcrt_initial_narrow_environment
    1 0x00007FF9DCFD7408 ucrtbase.dll JMP 0x7ff9df24e4ab
    2 0x00007FF9DF24E4AB (unknown)

    EndTask
    1 0x00007FF9DF003370 USER32.dll JMP 0x7ff9dc3001f0
    2 0x00007FF9DC3001F0 (anonymous)

    GetClipboardData
    1 0x00007FF9DEFD00D0 USER32.dll JMP 0x7ff9def90110
    2 0x00007FF9DEF90110 (anonymous)

    GetMessageA
    1 0x00007FF9DEFBE8B0 USER32.dll JMP 0x7ff9ab860d0e
    2 0x00007FF9AB860D0E (unknown)

    GetMessageW
    1 0x00007FF9DEFC4840 USER32.dll JMP 0x7ff9ab860cce
    2 0x00007FF9AB860CCE (unknown)

    IsDialogMessage
    1 0x00007FF9DF0061F0 USER32.dll JMP 0x7ff9dc300538
    2 0x00007FF9DC300538 (anonymous)

    IsDialogMessageW
    1 0x00007FF9DEFB41F0 USER32.dll JMP 0x7ff9dc300570
    2 0x00007FF9DC300570 (anonymous)

    keybd_event
    1 0x00007FF9DF037700 USER32.dll JMP 0x7ff9def901b8
    2 0x00007FF9DEF901B8 (anonymous)

    mouse_event
    1 0x00007FF9DEFCB030 USER32.dll JMP 0x7ff9def901f0
    2 0x00007FF9DEF901F0 (anonymous)

    PeekMessageA
    1 0x00007FF9DEFBE300 USER32.dll JMP 0x7ff9ab860c8e
    2 0x00007FF9AB860C8E (unknown)

    PeekMessageW
    1 0x00007FF9DEFBE430 USER32.dll JMP 0x7ff9ab860c4e
    2 0x00007FF9AB860C4E (unknown)

    SetClipboardData
    1 0x00007FF9DEFD2140 USER32.dll JMP 0x7ff9def900d8
    2 0x00007FF9DEF900D8 (anonymous)

    SetThreadDesktop
    1 0x00007FF9DEFCB080 USER32.dll JMP 0x7ff9def90148
    2 0x00007FF9DEF90148 (anonymous)

    SetWindowsHookExA
    1 0x00007FF9DEFA2730 USER32.dll JMP 0x7ff9dc3005a8
    2 0x00007FF9DC3005A8 (anonymous)

    SetWindowsHookExW
    1 0x00007FF9DEFC7490 USER32.dll JMP 0x7ff9dc3005e0
    2 0x00007FF9DC3005E0 (anonymous)

    SetWinEventHook
    1 0x00007FF9DEFC7D70 USER32.dll JMP 0x7ff9dc300618
    2 0x00007FF9DC300618 (anonymous)

    TranslateMessage
    1 0x00007FF9DEFB5330 USER32.dll JMP 0x7ff9dc300500
    2 0x00007FF9DC300500 (anonymous)

    BitBlt
    1 0x00007FF9DFE02E80 GDI32.dll JMP 0x7ff9def902d0
    2 0x00007FF9DEF902D0 (anonymous)

    CreateDCA
    1 0x00007FF9DFE038A0 GDI32.dll JMP 0x7ff9def90260
    2 0x00007FF9DEF90260 (anonymous)

    CreateDCW
    1 0x00007FF9DFE04190 GDI32.dll JMP 0x7ff9def90298
    2 0x00007FF9DEF90298 (anonymous)

    DeleteDC
    1 0x00007FF9DFE02080 GDI32.dll JMP 0x7ff9def90490
    2 0x00007FF9DEF90490 (anonymous)

    GdiAlphaBlend
    1 0x00007FF9DFE05450 GDI32.dll JMP 0x7ff9def903e8
    2 0x00007FF9DEF903E8 (anonymous)

    GdiTransparentBlt
    1 0x00007FF9DFE054E0 GDI32.dll JMP 0x7ff9def903b0
    2 0x00007FF9DEF903B0 (anonymous)

    GetPixel
    1 0x00007FF9DFE04660 GDI32.dll JMP 0x7ff9def90420
    2 0x00007FF9DEF90420 (anonymous)

    MaskBlt
    1 0x00007FF9DFE0BE50 GDI32.dll JMP 0x7ff9def90340
    2 0x00007FF9DEF90340 (anonymous)

    PlgBlt
    1 0x00007FF9DFE056C0 GDI32.dll JMP 0x7ff9def90378
    2 0x00007FF9DEF90378 (anonymous)

    StretchBlt
    1 0x00007FF9DFE03010 GDI32.dll JMP 0x7ff9def90308
    2 0x00007FF9DEF90308 (anonymous)


    Thumbprint
    298bd45cce7b2653b7ca1aae5d0e10dd32849b774f63f398d14e9059b87f453d
     
    HempOil, Mar 28, 2017
    #13233
  9. erikloman

    erikloman Developer

    Joined:
    Jun 4, 2009
    Posts:
    3,152
    Location:
    Hengelo, The Netherlands
    EncryptMessage *
    1 0x00007FF9DBD35880 SspiCli.dll JMP 0x7ff9dc300688
    2 0x00007FF9DC300688 (anonymous)

    Seems odd. Is detoured to the heap.
     
    erikloman, Mar 28, 2017
    #13234
  10. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    4,873
    Location:
    Outer space
    Thanks! I was using NoScript, but didn't allow all stuff, as the site seemed to be working properly, but apparently it was blocking the displaying of the other options.
     
    BoerenkoolMetWorst, Mar 28, 2017
    #13235
  11. guest

    guest Guest

    Yes, this happened to me too some time ago :oops:
     
    guest, Mar 28, 2017
    #13236
  12. _CyberGhosT_

    _CyberGhosT_ Registered Member

    Joined:
    Mar 2, 2015
    Posts:
    457
    Location:
    MalwareTips "Your Security Advisor"
    Very good, 3.6.4 -587 running very smooth.
    using less resources for me too. Very nice !
    HMPA_SS.png
    Before the update it was not quite double that, but close. :thumb:
     
    _CyberGhosT_, Mar 28, 2017
    #13237
  13. _CyberGhosT_

    _CyberGhosT_ Registered Member

    Joined:
    Mar 2, 2015
    Posts:
    457
    Location:
    MalwareTips "Your Security Advisor"
    Updated to FF 52.0.2 without a peep from HMP.A as well.
    FF_Update.png
     
    _CyberGhosT_, Mar 28, 2017
    #13238
  14. Telos

    Telos Registered Member

    Joined:
    Jul 26, 2016
    Posts:
    171
    Location:
    Frezhnacz
    upload_2017-3-28_21-47-51.png
     
    Telos, Mar 28, 2017
    #13239
  15. guest

    guest Guest

    #13280
    1/61     on VT - (Qihoo)
    But it is a False Positive
     
    guest, Mar 28, 2017
    #13240
  16. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,294
    Location:
    USA
    No problems so far here, Windows 7 Pro SP1 x64.
     
    G1111, Mar 29, 2017
    #13241
  17. newyorkjet

    newyorkjet Registered Member

    Joined:
    Jan 17, 2013
    Posts:
    63
    Location:
    UK
    Build 587 RC - several hours work, two reboots, no problems.

    Win 10 64 F-secure appguard
     
    newyorkjet, Mar 29, 2017
    #13242
  18. _CyberGhosT_

    _CyberGhosT_ Registered Member

    Joined:
    Mar 2, 2015
    Posts:
    457
    Location:
    MalwareTips "Your Security Advisor"
    One reason I dont rely on faulty AV's let alone one from China. ;)
     
    _CyberGhosT_, Mar 29, 2017
    #13243
  19. daman1

    daman1 Registered Member

    Joined:
    Mar 27, 2009
    Posts:
    1,286
    Location:
    USA, MICHIGAN
    587 as of now good to go.
     
    daman1, Mar 29, 2017
    #13244
  20. Victek

    Victek Registered Member

    Joined:
    Nov 30, 2007
    Posts:
    6,220
    Location:
    USA

    Smooth update from 586 to 587 and no more IAT/IAF alerts on Office 2010 applications :thumb:
     
    Victek, Mar 29, 2017
    #13245
  21. Andra

    Andra Registered Member

    Joined:
    Jul 17, 2015
    Posts:
    13
    Last edited: Mar 29, 2017
    Andra, Mar 29, 2017
    #13246
  22. L10090

    L10090 Registered Member

    Joined:
    Feb 13, 2015
    Posts:
    302
    Location:
    Netherlands
    W7-x64: Installed build 587 RC over 586. No issues so far running build 587 RC.
     
    L10090, Mar 30, 2017
    #13247
  23. NiteRanger

    NiteRanger Registered Member

    Joined:
    Nov 15, 2016
    Posts:
    651
    Location:
    Far East
    Hi

    Will HMPA's anti-exploit protection clash with VS paid version of anti-exploit protection if both enabled? Do I need to disable one?

    Thanks
     
    NiteRanger, Mar 30, 2017
    #13248
  24. NiteRanger

    NiteRanger Registered Member

    Joined:
    Nov 15, 2016
    Posts:
    651
    Location:
    Far East
    Thanks
     
    NiteRanger, Mar 30, 2017
    #13249
  25. deugniet

    deugniet Registered Member

    Joined:
    Nov 25, 2013
    Posts:
    1,244
    No problems here so far with Norton Security and build 587 RC.
     
    deugniet, Mar 30, 2017
    #13250
Page 530 of 679
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...