HitmanPro.ALERT Support and Discussion Thread

I am new here and installed HMPA here, but noticed only Firefox would work after I opened a new browser window to test the protection, nor Chrome or Opera would load pages and stuff, I had to unininstall it in order to make it work again

Is there any bug on it or something wrong in installation?

 

Are you running Alert 3 CTP4?

What other security products are you using? For example, Malwarebytes Anti-Exploit 1.04 and EMET 5 are currently incompatible with Alert 3.

 

I am running MBAE 1.04 here...

 

That is your conflict. Uninstall MBAE in order to run Alert 3.
Or you can run MBAE 1.05 which apparently solves the issue.

 

From an ascetic point of view CPT4 "Your applications" does not size correctly, things get cut offhttps://imgur.com/3IsdRXQ
https://imgur.com/3IsdRXQ

 

What if you do not have a mouse wheel to scroll like on a laptop? When I used CPT3 on my laptop I had no way to access half the features on HMPA. I tried, but was unsuccessful. I can't test HMPA on my desktop because it causes major problems with my VPN so i'm still waiting on that scroll bar so I can test HMPA on my laptop instead. Please add the scroll bar soon!

 

Scrollbar will be in the RC release. Meanwhile, most laptops scroll when using two finger movement. Maybe that works on yours too.

 

Yeah, I know. I tried that, and it did not work. I did disable some function on my mouse pad. It's possible that function also control the scroll feature for the mouse pad. I could enable it, and see if that works. The reason I disabled it was the feature made the mouse pad very difficult to use. It was always trying to enable the drag and drop feature on the pad when ever I was just trying to scroll. At other times it would bring an icon of a little hand on the screen that made a box. This would all happen when I was just trying to scroll. It was so annoying that I just disabled it.

 

I have been having itunes crash on me relatively frequently/randomly since CPT4. What do you need to troubleshoot?

 

Can you provide a dump file?

What version of Windows and iTunes are you using?

 

Windows 7 64x Home Premium

Log Name: Application
Source: Application Error
Date: 11/8/2014 12:33:47 PM
Event ID: 1000
Task Category: (100)
Level: Error
Keywords: Classic
User: N/A
Computer: ++++++
Description:
Faulting application name: iTunes.exe, version: 11.3.1.2, time stamp: 0x53dc1f90
Faulting module name: hmpalert.dll, version: 3.0.15.92, time stamp: 0x54315e16
Exception code: 0x80000001
Fault offset: 0x00004355
Faulting process id: 0x498
Faulting application start time: 0x01cffb7a1879a18b
Faulting application path: C:\Program Files (x86)\iTunes\iTunes.exe
Faulting module path: C:\Windows\SysWOW64\hmpalert.dll
Report Id: 64b4f306-676d-11e4-a5d2-24fd52fdbe66
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Application Error" />
<EventID Qualifiers="0">1000</EventID>
<Level>2</Level>
<Task>100</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2014-11-08T17:33:47.000000000Z" />
<EventRecordID>16283</EventRecordID>
<Channel>Application</Channel>
<Computer>++++++</Computer>
<Security />
</System>
<EventData>
<Data>iTunes.exe</Data>
<Data>11.3.1.2</Data>
<Data>53dc1f90</Data>
<Data>hmpalert.dll</Data>
<Data>3.0.15.92</Data>
<Data>54315e16</Data>
<Data>80000001</Data>
<Data>00004355</Data>
<Data>498</Data>
<Data>01cffb7a1879a18b</Data>
<Data>C:\Program Files (x86)\iTunes\iTunes.exe</Data>
<Data>C:\Windows\SysWOW64\hmpalert.dll</Data>
<Data>64b4f306-676d-11e4-a5d2-24fd52fdbe66</Data>
</EventData>
</Event>
Is this what you need? Or is there more somewhere? Apple is not very useful in telling you where it stores stuff.

 

Thank you for this information! The Fault offset indicates where in Alert this is going wrong.

As a workaround, disable the Dynamic Heap Spray mitigation for iTunes.

Expect a fix in the RC release.

 

Its been a while since the CTP4 release.

I want to update you all that we are working hard on getting the RC build ready. We are just a few guys and can therefore not find all issues with other software. We need you!
Some have already reported issues (thank you for that) and a few have recently received new private beta build to help us iron out known issues reported in previous CTP builds.

As a teaser for the RC release, I can report that the RC release will have improvements all over the board. And also a few new features, including a brand new in-house developed exploit mitigation technique (more on this with the RC release). Also the Exploit Tester got an update so that you test exploits with other applications.

The RC release is still a week away. But if you find issues with the CTP4 release, please keep sending the reports!

 

That did the trick thanks!

 

No reply, so BSOD not HmP.Alert-related I guess...

 

Cant wait.

 

Erik is it possible that CTP4 interferes with Panda Free Antivirus url filtering?
The testurl doesn't work with CTP4 (I get the message filter bypassed) but it does work when going back to HitmanPro.Alert 2.6.5 Build 77.
The test url is --www.cloudantivirus.com/testurlfilter/--

 

HMP CTP4 > Safe browsing > Your web browsers (3) I only have 2 web browsers installed and both reported correctly in HMP Alert. Why the 3?

 

Which browsers do you use? I was using Opera for a while and when it updated it left the previous version on the machine. I discovered it because I was seeing multiple Opera icons in HMP Alert.

 

@Peter2150 and @Victek

Plugin-container.exe is listed under Exploit mitigations > Applications > Browsers in HMP Alert CTP4.
Plugin-container.exe is not listed under Safe browsing > Your web browsers which makes sense.

Probably just a coding error which indicates I have 3 browsers, but only actually 2 installed. (IE & PM)

 

Hi So I was installing the HTC Syn Manager and I got this alert "
Mitigation Anti-VM
PID 9736
Application C:\Windows\SysWOW64\msiexec.exe
Description Windows® installer 5
The installation finished then i noticed my sandboxee was running its
delete program that is runs when it closes.
Not sure if it was something malicious trying to autorun in the sandbox that caused this or a software conflict with the HTC Sync Manager

 

Now that EMET 5.1 has arrived will the upcoming RC release of alert be compatible?