AppGuard 4.x 32/64 Bit - Releases

Please post recurring messages you want to ignore.

 

Did you add or did you try to add anything to Ignore Messages on the Alerts tab ?

The reason I ask is that this one is already in the default Ignore Messages - so it should not appear in the Activity Report:

03/21/17 14:00:01 Prevented process <schtasks.exe> from launching from <\Device\HarddiskVolume1\windows\system32>.

The Ignore Messages is flaky at the moment. If you tick "For all users" it might cause an Ignore Messages and alerts breakage. Once that breakage happens, alerts for schtasks and wmic will appear - which by default are suppressed. The only way to fix it is to re-install AppGuard.

 

Pete

I think you just write click on the message and select ignore message. that is how I have been doing it but could be wrong.

 

Would you please move to PM ?... it will be better troubleshooting first before jumping straight to the nuclear option.

 

Yes. That is the way to do it. Just don't tick the setting option "For all users."

 

I always set Ignore Messages to "For All Users", but i haven't seen any breakage yet

 

Enabling that setting might or might not cause a breakage. It's willy-nilly. In v. 4.4.6.1 I could always manage to cause a breakage. And I know there has been nothing done to the Ignore Messages module internally for 5.2.9.1. So it could happen on 5.2.9.1 tool.

 

Ok. I rarely add something to Ignored Messages. I have added less than 10 Ignored Messages after installation, maybe i was only lucky to be not affected from this.

 

At this time, as far as I am aware, BRN is not doing giveaways. Besides, the giveaway header states that they are giving away version 5, but what they are actually giving away is 4.4.6.1 AppGuard Pro - as explained towards the bottom. 4.4.6.1 is End-of-Life !!

"For this giveaway Blue Ridge Networks Product Management has provided us 5 licenses for AppGuard Professional ver4.4.6.1 which as explained above is a "lifetime license". The winners can avail of upgrades to version 5.2 via a special link that will be provided by Blue Ridge Networks Product Management. The information will be made available to the winners."

However, they could be using old 4.4.6.1 license keys that were never issued\activated.

Also, it is possible that I was not informed of this giveaway by BRN operations.

I am checking, but at this moment in time - until I obtain official BRN operations confirmation - I can't say anything about the legitimacy of the giveaway.

 

I don't know if it is legit or something else. Waiting for confirmation. I edited my initial post about the giveaway. Please re-read it.

 

Some days ago i terminated the service of AG to find out what will happen , and then i got a complete lockdown of the system, no new processes couldn't be spawned.
Is this some kind of self-protection of AG?

 

you didn't did it today? because someone mentioned it in another popular thread

AG Enterprise's self-protection is functioning the way you described, for the home user version, i didn't tried; so i believe it is the same based from your description.

 

Did you have to do a hard boot to get back control of your system?

 

AppGuardSetup-4-4-6-1.exe: Stopped AG service via task manager. Locked PC down. Could still right click on a few tray programs and access but all desktop stuff was locked.

 

Peter you have to try ending the service more then once, maybe two or three times.

 

that is the same issue as I understand it on the Voodoo thread. Shut down Voodoo service via task manager. Right?
and it could be you are on a different OS?

 

ah ok. win 10 here and funny I can get AG to lockdown but not Voodoo. Seems just the opposite for you.

 

Kill AppGuardAgent.exe (the service), and AppGuard's proprietary protection locks the system down - requiring a hard shutdown.

That's the only detail I will confirm.