HitmanPro.ALERT Support and Discussion Thread

Discussion in 'other anti-malware software' started by erikloman, May 25, 2012.

  1. feerf56

    feerf56 Registered Member

    Joined:
    Feb 24, 2015
    Posts:
    253
    Snap10.jpg Windows 7 64bit + HitmanPro.Alert 3.0.35 build 178 Release Candidate with
    dBpoweramp Reference 15.2 at installation (https://www.dbpoweramp.com/)
     
  2. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    14,789
    Location:
    The Netherlands
    Yes, I think with a different approach they could have already gone live with HMPA. I have to say that it's a bit scary to see how many problems are still reported, but the question is if it's really caused by HMPA itself, or are they simply compatibility problems? And there are also a lot of people who add apps to the exploit protection list for no good reason, that's why I came up with the idea to just scrap this feature.
     
  3. erikloman

    erikloman Developer

    Joined:
    Jun 4, 2009
    Posts:
    3,152
    Location:
    Hengelo, The Netherlands
  4. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    14,789
    Location:
    The Netherlands
    I would be surprised because he claims it was at installation.
     
  5. maniac2003

    maniac2003 Registered Member

    Joined:
    Apr 12, 2007
    Posts:
    115
    Location:
    Netherlands
    I'm not as he is running the dBPowerAmp installer.
     
  6. PallMall

    PallMall Guest

    I purchased a 1 year subscription to HimanPro when I found out that the license included HitmanPro.Alert. Not that I underestimate HitmanPro but since I never have incidents (scans are 99% of the time empty thanks to a good system wide protection + Brain1 application). I used it until then in its free version only (scans/not cure). I'm very happy both applications are bundled in 1 license but, frankly, should HitmanPro.Alert still be in RC stage at the end of my subscription (March 2016) I'm not convinced at this time that I'd renew it.
    HitmanPro.Alert is a high-level, highly skilled application. I do have the feeling when observing the very nature of commented issues, of a hiatus between the application's professionalism and the disparity it is lead to by a courageous determination of the developer to follow every request. This attitude is elegant, sympathetic, but seldom found in the development area of a professional software, commercially engaged.

    "And there are also a lot of people who add apps to the exploit protection list for no good reason" I've noticed that as well. Let us not be paranoid nor even maniac in that adding, adding, layer after layer one protection to another would improve de facto the system's security, and let us not disturb an application's natural logic and architecture by making it accept items (other applications) to its exploit protection in a rather exotic reasoning and then layout pages of incidents in way sometimes confirmed by the attached comment that HitManPro.Alert would suffer an issue... when the only issue is adding in a thoughtless manner one app after another to the exploit protection. HMP.Alert is system-wide and gathers automatically the user's files that it considers as belonging to a specifically critical area of the system : no need to force-feed HitManPro.Alert.
     
    Last edited by a moderator: Apr 5, 2015
  7. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    14,789
    Location:
    The Netherlands
    I misread, I thought it was about dBPowerAmp, but Erik was talking about "far.exe".
     
  8. Ashanta

    Ashanta Registered Member

    Joined:
    Aug 21, 2007
    Posts:
    702
    Location:
    Europe
    @erikloman : Are you plan to add all others chrome based browsers (like Comodo Dragon, SRWare Iron, Superbird, Aviator,...) on the Safe Browsing module ?
     
  9. BBss

    BBss Registered Member

    Joined:
    Jan 10, 2011
    Posts:
    23
    I can only agree, i probably won't buy an license for HitmanPro just to unlock features in HitmanPro Alert.. As much as i like HitmanPro Alert, i am afraid that the license is just a little too expensive for me to renew every year.
    I could imagine prices like this for HMP Alert only: 1 year 1 PC = 10€, 1 year 3 PCs = 20€ and i would be all in :)

    There could still be bundles with HitmanPro, but you should give the people the option to buy HitmanPro Alert also seperately, i am sure that more people will buy it like that,
     
  10. feerf56

    feerf56 Registered Member

    Joined:
    Feb 24, 2015
    Posts:
    253
    Yes, Far Manager added mitigation. Default option was. Installations was with Far Manager.
     
    Last edited: Apr 6, 2015
  11. feerf56

    feerf56 Registered Member

    Joined:
    Feb 24, 2015
    Posts:
    253
    Snap12.jpg DU Meter no added mitigation. no protected. I click close, but HitmanPro.Alert not close DU Meter.
     
  12. erikloman

    erikloman Developer

    Joined:
    Jun 4, 2009
    Posts:
    3,152
    Location:
    Hengelo, The Netherlands
    Alert reads the browsers from the registry. As long as the browser installs itself properly in Windows, Alert will pick it up automatically. If you use portable versions you can simply add the browser via the blue tile. Just open the portable browser. Then in Alert click on the blue tile. Choose Running Applications. Click on your browser. Choose "Browser" template from the menu. Done.
     
  13. Stupendous Man

    Stupendous Man Registered Member

    Joined:
    Aug 1, 2010
    Posts:
    2,325
    Location:
    the Netherlands
    If you feel 1 year 3 PCs = 20€ is acceptable,
    you might consider the 3 years 3 PCs €59.90 offer, which comes at €19.97 per year per 3 PCs.
     
  14. L10090

    L10090 Registered Member

    Joined:
    Feb 13, 2015
    Posts:
    302
    Location:
    Netherlands
    Is it possible to define:

    "The major functional requirements/prerequisites an application must/should meet to make it a valid candidate to be manually added to hp.alert exploit mitigation".
     
  15. erikloman

    erikloman Developer

    Joined:
    Jun 4, 2009
    Posts:
    3,152
    Location:
    Hengelo, The Netherlands
    If an application is internet facing (browser, mail, chat) or it can open content (documents, images, audio) that came from the internet, it is a valid candidate for mitigation.
    If an application writes scripts or unsigned executables to disk, disable Application Lockdown on it.
     
  16. erikloman

    erikloman Developer

    Joined:
    Jun 4, 2009
    Posts:
    3,152
    Location:
    Hengelo, The Netherlands
    It looks like you have added DU Meter to mitigation. Please check your configuration.
     
  17. L10090

    L10090 Registered Member

    Joined:
    Feb 13, 2015
    Posts:
    302
    Location:
    Netherlands
    Thank you for this quick response.
     
  18. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590
    Actually the Application has a powerful unintended use. I have application lock down, on my archive extraction program. That way if an executable is hidden and I don't catch it it can't run. With all this crypto ransom stuff coming in zip file, it's an extra layer.
     
  19. AlertBetaTester

    AlertBetaTester Registered Member

    Joined:
    Dec 14, 2014
    Posts:
    9
    I am running a paid 3-yr subscription and enjoy running the 2.5 version of HitmanPro.Alert on our production machines while using the HitmanPro.Alert 3 RC 178 on other non-production machines including Windows 7/8.1 and Windows 10 Technical Preview Build 10049. I do understand and appreciate the advanced features of HitmanPro.Alert 3 and the patience and attention being given to thoughtful consideration of comments/concerns provided by this forum. No problems to report. Excellent work, very much appreciated.
     
    Last edited: Apr 6, 2015
  20. Antarctica

    Antarctica Registered Member

    Joined:
    Feb 25, 2003
    Posts:
    2,011
    Location:
    Canada
    Hi,
    Just installed the 30 days demo of HitmanPro.Alert this morning and during the scan, I got this Alert:

    C:\Windows\System32\DPPPlugin.dll
    Size . . . . . . . : 466,944 bytes
    Age . . . . . . . : 202.5 days (2014-09-15 21:58:20)
    Entropy . . . . . : 7.8
    SHA-256 . . . . . : D624574BA609592935798DE50621610DB04F5AF57B5AB8ABB19551BE7EE0E679
    Fuzzy . . . . . . : 24.0

    Is it something I should delete?
    Thanks for help
     
  21. PallMall

    PallMall Guest

    "No problems to report." is a most valuable comment when stated by a user running HMP.Alert on "[other] non-production machines including Windows 7/8.1 and Windows 10 Technical Preview Build 10049". No need to say more... :)
     
  22. PallMall

    PallMall Guest

    I still do not understand why an application should be manually added to the HMP.Alert exploit mitigation. HMP.Alert is system-wide, it does not handle the only applications in its explit mitigation list, even if it automatically adds several of the user's application in dedicated categories. Therefor why add what is already taken care of on a system-wide protection? I can understand why when it comes to a browser which would not have been recognized by HMP.Alert but, otherwise, I conceive this approach of feeding HMP.Alert with more applications as an aberration. I'd appreciate to have erikloman's (the developer) opinion on this way of proceeding.
     
  23. Mayahana

    Mayahana Banned

    Joined:
    Sep 13, 2014
    Posts:
    2,220
    Indeed. Speaking of Crypto.. I have about a dozen crypto removals so far today already, along with my IT network stuff to do.

    It's a serious problem, but usually one that comes in compressed email attachments.
     
  24. erikloman

    erikloman Developer

    Joined:
    Jun 4, 2009
    Posts:
    3,152
    Location:
    Hengelo, The Netherlands
    Alert only employs exploit mitigations (blue tile) on specific applications. Alert automatically detects installed applications so the user does not have to do anything. A user can also add their own applications, though this is for advanced computer users/IT professionals. Average users should not add applications to exploit mitigations as some applications do not like to be mitigated (eg. Spotify).

    In addition Alert also has several system-wide mitigations like CryptoGuard, Process Protection and Vaccination. These are all on the orange tile.
     
  25. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590

    I am getting several types of these emails. Some are very clever, but if you look at them with brain engaged, and mouse finger disengaged, they are fairly obvious.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.