Discussion in 'other anti-malware software' started by erikloman, May 25, 2012.
users are reporting malfunctions
ok, major?? (BSoD, crash,...?)
You can always go back a few posts to find bugs.
Maybe i'm reading another story...
However my English does not allow me to comment further so i respect your point of view.
*in favore di chi dovesse conoscere l'italiano*
Come dicevo, quello che vedo è una situazione che gira e rigira vede i soliti utenti lamentarsi legittimamente ma mi chiedo quanto possa incidere la configurazione di sicurezza adottata che, spesso è volentieri, è "overlapping" generando con buona probabilità interferenze di vario tipo come, per l'appunto, quelle solitamente lamentate.
Ah,that explains the chance that you run into more issues than most of us.
ive so far noticed the secure desktop bug mainly with using keepass as already mentioned , i dont use UAC prompts over here so i wouldnt know about that , but youve already tested that and it seems to be working for you , again secure desktop needs fixing for keepass , since hmpa breaks it as of currently and according to a member has been broken since hmpa 3 released a while back , im suprised this is being ignored as long as it has been by the devs
and about keystroke encryption improvement? , well first off the algorithm itself that hmpa uses for it is quite a bit weaker in how it encrypts the keystrokes that needs working on , heres a link that has a member describe it
I read that thread; there is only one comment claiming that "Zemana has a more powerful encryption method than HMPA" and I don't feel that was adequately explained. Can you say why HMPA encryption is "weaker"? Is there a "proof of concept" attack demonstrating that encrypted keystrokes can be captured/decrypted?
To me this whole issue is a big so what. Since the encryption only protects from the keyboard to the browser, one should ask how something gets on your system to be able to record the keystrokes. If that can happen you have bigger worries.
After updating HMP.A to build 196, my PC has been running slow like molasses. Firefox 38 takes 5 minutes to open, IE8 takes 3 minutes to open and another 5 minutes to finish loading the home page. Other programs and tools (Windows Explorer, MS Word, Control Panel) also take inordinately long times to open.
In addition, I'm not getting the orange encryption flyout in the lower right when typing something in the browser. And the blue or green flyouts in the upper right telling me that Program X is protected as I open it, are not showing either.
No programs are getting the outline around their window. Ironically, only HMP.A itself gets the outline. And even that program is taking forever to open the interface. I opened it to try disabling some of the protections, but when it finally opens this is what I see:
Nothing is shown under "Safe browsing" or "Exploit mitigation." Notice, too, the sudden lack of history or license information.
I've run several malware scans with HMP.A and other programs, and nothing suggests the presence of malware.
Will uninstall HMP.A and manually reinstall 196. If things still work as badly, I'm going back to an earlier build.
System: Vista Home Premium x64 SP2, N360, Windows Defender, Spybot Search & Destroy 22.214.171.124.
UPDATE: Before uninstalling, I rebooted in order to run a Norton Power Eraser rootkit scan (just in case). After Vista rebooted, a little dialog box popped up in the middle of my screen to report that, "HitmanPro.Alert stopped working and was closed. A problem caused the application to stop working correctly. Windows will notify you if a solution is available."
However, the HMP.A. icon did show up in the notification area, and when I opened the HMP.A interface everything that was missing in the screenshot above showed up again normally. Browsers and programs are opening fine, with their blue or green flyouts.
But whereas Word is getting the blue outline, the browsers are not getting the HMP.A outline, and no program seems to be getting the orange encryption thingie when I start typing.
Should I roll back to an earlier build?
Yes, if you have a keylogger on your system you've got a bigger problem. The effectiveness of keystroke encryption is an interesting topic though, and very complex. For instance there's this discussion which includes an interview with a KeyScrambler rep:
well yeah of course you should always make sure to never get a keylogger onto your system in the first place , but still, keystroke encryption has its uses , as everything in security its only a little but important part of the entire picture
well as of yet no one has , but that comment has had me worried to be frank with you , thats all , i myself havent checked hmpas alogrithm source code to see how it exactly compares to zemanas algorithm source code , was just kinda worried that hmpa would have a weaker algorithm than zemana , and thus if that claim held any truth , that the hmpa devs would check it out , thats all
I get it now, thank you
Is there a direct download of build 196? Try as I might, I'm not getting the auto-update to 196. Just says No update and then the check for update option grays out and stays grayed out.
New hole, a zero-day vulnerability, has already been found. Adobe plans to issue another patch next week.
http://krebsonsecurity.com/2015/07/...ign=Feed: KrebsOnSecurity (Krebs on Security)
I've never had problems either. Reading this thread gives the feeling of a nightmare, many users show the over-protected syndrome and add applications which have no reason to run if HitmanPro.Alert is active, making their system unstable and this thread an everlasting merry-go-round.
HitmanPro.Alert 126.96.36.199 runs fine here and will run fine on all healthy and non bloated systems. I believe there is a severe mentality problem related to slight paranoia, sorry to say so.
If I read it correctly, the person on malwaretips says Zemana's encryption is more powerful because the logged keystrokes only show "yyy" instead of random characters. But the way encryption works is that it looks like random characters. Perhaps Zemana is doing something else.
Zemana uses an algorithm by returning always the same value.
HitmanPro.Alert uses an algorithm by returns a randomly chosen value which has nothing to do with the pressed key -> hence: random.
Both offer the same protection as both do not offer encryption as we are just giving some bogus key to sniffers.
Hope this helps.
Any thoughts on this issue?
The behavior described in the "update" is still occurring.
Build 196 still gives ROP alerts on Youtube with Firefox(v39) and WSA's Identity Shield(now version 188.8.131.52). Win7sp1 64bit and has hardware supported i3 proc.
Note that there is now a 3rd zero-day vulnerability from HackingTeam, CVE-2015-5123.
No problems with Flash 184.108.40.206 and build 196 (W7 64 bits).
Separate names with a comma.