I see but an user reported it had extended his existing subscription. Also, in the email received after the purchase it says "Activate or Extend a License".... that's why i entered the new key without hesitation .
Windows 7 Ultimate SP1 HitmanPro.Alert 3.7.1 build 723 RC Mitigation CredGuard Platform 6.1.7601/x64 v723 06_2a PID 4900 Application C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\avpui.exe Description Kaspersky Anti-Virus 18 SAM access denied. Range = LBA 585016 :512 Read = LBA 585272 :128 Code Injection 02661000-02662000 4KB C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\avp.exe [2288] Process Trace 1 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\avpui.exe [4900] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\avpui.exe" -hidden 2 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\avp.exe [2288] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\avp.exe" -r Thumbprint 571f999b28e1b80d8596f1244d3da8b237d073622920088ca4500bba6937b1dd
Please post production version related queries in the production board. For the moment there is no BETA version. Thanks. And for posting full alerts please use the 'Spoiler' function on the + button makes way cleaner reading of forum posts. For the coders [SPOILER=" Technical details of Alert here... "][/SPOILER]
Hi Valdez, Build 723 is our current stable so it's left RC status. We ship the stable release with the SAM protection disabled. Unless you are under the assumption that you are under attack and someone is stealing your credentials please disable this option. On the Credential Theft Protection there is a tickbox for that.
HitmanPro.Alert 3.7.3 build 728 BETA Changelog (compared to build 723) Added PrivGuard: mitigate MS16-032 (CVE-2016-0099) Application lockdown for Microsoft office Equation Editor (CVE-2017-11882) Improved CodeCave, HeapSpray, CryptoGuard, HollowProcess Mitigations Fixed BadUSB Alert during boot while BadUSB was disabled IAF FP in Nero Media player Windows System Image Backup failing with locked EFI/ESP Antimalware won't (stay) enable(d) Download http://test.hitmanpro.com/hmpalert3b728.exe This build includes Microsoft co-signed drivers and runs on Secure Boot as well. Please let us know how this build runs on your machine. Thanks
Just installed it and had a seamless reboot. One possibly unusual finding was that Network Lockdown was disabled. I keep everything in HMP.A enabled, so I thought I would mention it.
guys any suggestions for most stable "new" settings in risk reduction? I have heard of SAM mentioned to been disabled but I have "no" such option. Here is what I have set. Credential Theft Protection - disabed Process Protection All enabled except APC I m still on build 717 I know not the latest, but for long time and no noticeable instability
Build 723 is latest public release. Because I have EAM and AG, I have HMPA anti-malware module disabled. I have Safe Browsing and Exploit Mitigation enabled. In Risk Reduction I only have Cryptoguard, Process Protection and Network Lockdown enabled. All others are disabled.
Network Lockdown still enabled and Vaccination still Active here. I am using beta 728, but I encourage you to update to at least stable 723 which has been great. Default is CTP enabled but SAM disabled (SAM enabled can interfere with imaging, and other, programs). All Process Protection enabled here except LPM, because it has caused issues with Sandboxie. APC is enabled here, and causes no issues on my system.
Upgraded from 723 to 728 Beta ten minutes ago. Everything OK. Same protections enabled as 723 automatically.
Disk cloning is super slow since installing this beta. Might be coincidence (and probably is), but HMP.A is the only change to my system since the speed was still OK.
Please update at least to 723 as a lot of stuff has been fixed in between. Credential Theft Protection I would set to enabled just leave SAM protection off. ACP I'd also switch back on if in 723 or higher.
Can you please revert to 723 and see if it reproduces? and if so can you please post your the details on you disk cloning process, eg. software used, usb disk/networkshare etc.
Upgraded to 3.7.3 728 beta from 3.7.1 723. Vaccination protection is set to "passive" while it was "active" before. Everything else seems fine.
For the one's running in to 'reset setting' on vaccination can you please check the Windows eventlog, Application for HitmanPro.Alert entries EventID 112 and see if it recorded the settings switch from active -> passive -> active? For network lockdown this won't sow as it does not log to eventlog which is still on our fix list.
It took several hours (instead of less than 1 hour); I don’t have time to do that again now, but will check what happens next time (in 1 or 2 weeks). I was doing an Intelligent Sector Copy with Macrium Reflect 6 over eSATA.
Ronny, The only entry I could find is this one showing where I changed it back to Active. Code: Log Name: Application Source: HitmanPro.Alert Date: 23/12/2017 10:47:06 AM Event ID: 112 Task Category: Broker Level: Information Keywords: Classic User: N/A Computer: Dave-PC Description: Setting 'Vaccination' changed to 'Active'. Event Xml: <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="HitmanPro.Alert" /> <EventID Qualifiers="0">112</EventID> <Level>4</Level> <Task>2</Task> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2017-12-22T23:47:06.985983700Z" /> <EventRecordID>16963</EventRecordID> <Channel>Application</Channel> <Computer>Dave-PC</Computer> <Security /> </System> <EventData> <Data>Vaccination</Data> <Data>Active</Data> </EventData> </Event>
I have no SAM setting just CTP, is this introduced in the newer build? and yes I will be updating very soon before my next reboot. Thanks.