HitmanPro.ALERT Support and Discussion Thread

Discussion in 'other anti-malware software' started by erikloman, May 25, 2012.

  1. Solarlynx

    Solarlynx Registered Member

    Joined:
    Jun 25, 2011
    Posts:
    2,015
    Win-7 Prof x64 + CIS + EMET + Zemana AL:

    Dragon, Uran, IE, FF go smooth. :thumb: :thumb:
     
  2. Stupendous Man

    Stupendous Man Registered Member

    Joined:
    Aug 1, 2010
    Posts:
    3,000
    Location:
    the Netherlands
    And not only 2.6.x users, but 2.5.6.64 users as well, so I noticed.
    Which is fine, but rather unexpected, as I thought 2.5.x would be updated when the stable version is issued, not with the release candidate.
    Anyhow, it's fine, but unexpected.
     
  3. erikloman

    erikloman Developer

    Joined:
    Jun 4, 2009
    Posts:
    3,152
    Location:
    Hengelo, The Netherlands
    HitmanPro.Alert 2.6.3 build 74

    This is the stable release.

    Changelog (compared to build 73)
    • IMPROVED: Minor improvement to CryptoGuard filter driver

    This build was released a few days ago. All 2.5 and 2.6 users are automatically updated.

    A new crypto ransomware variant has popped up, called CryptoDefense.
    More info on CryptoDefense can be read here: http://www.bleepingcomputer.com/for...e-newest-cryptolocker-variant-details-inside/

    Alert 2.6.3.x provides protection against this new crypto ransomware variant for both workstations and servers (file shares).
     
    Last edited: Mar 20, 2014
  4. Stupendous Man

    Stupendous Man Registered Member

    Joined:
    Aug 1, 2010
    Posts:
    3,000
    Location:
    the Netherlands
    Ah, I see, 2.6.3.73 was the release candidate, 2.6.3.74 is the stable release.
    Thank you very much.

    Nice, thank you very much!
     
  5. 800ster

    800ster Registered Member

    Joined:
    Dec 1, 2006
    Posts:
    210
    Is there any current known compatibility problem with WSA? I have tried the last few releases of 2.5/2.6 and don't see any flyout with either Firefox or Chrome. If I disable WSA or change the WSA identity protection setting (Alert is already whitelisted OK) from 'protect' to 'allow' for the browsers then the flyout works fine.
     
  6. shadek

    shadek Registered Member

    Joined:
    Feb 26, 2008
    Posts:
    2,538
    Location:
    Sweden
    I think you need to contact Webroot as that sounds like an issue on their side.
     
  7. Stupendous Man

    Stupendous Man Registered Member

    Joined:
    Aug 1, 2010
    Posts:
    3,000
    Location:
    the Netherlands
    By the way,
    you meant to say HitmanPro.Alert, of course.
     
  8. erikloman

    erikloman Developer

    Joined:
    Jun 4, 2009
    Posts:
    3,152
    Location:
    Hengelo, The Netherlands
    Yes, changed it ;)
     
  9. Victek

    Victek Registered Member

    Joined:
    Nov 30, 2007
    Posts:
    6,230
    Location:
    USA
    Thanks for posting this. I've been trying to figure out for a while why I wasn't getting the "flyout" with Firefox and Opera. Might be worth discussing in the Prevx forum.
     
  10. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,362
    Location:
    Among the gum trees
    Erik,

    Any plans to improve compatibility with Norton?
     
  11. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,362
    Location:
    Among the gum trees
    So I thought I'd try again.

    Failed to install, error 0

    System would not shut down and a forced shutdown was required.

    Norton 360v21.2

    Windows 7 x64 SP1

    HMPA 2.5 used to work fine but since 2.6 it will not work on my systems.
     
  12. erikloman

    erikloman Developer

    Joined:
    Jun 4, 2009
    Posts:
    3,152
    Location:
    Hengelo, The Netherlands
    I've run Norton and it works flawless. The error 0 is weird though. Maybe I can have a remote look to see whats going on? Please PM me if you are up to it.
     
  13. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,362
    Location:
    Among the gum trees
    I have sent you a PM.
     
  14. deugniet

    deugniet Registered Member

    Joined:
    Nov 25, 2013
    Posts:
    1,264
    Same installerror (0) with W7 64 bits and latest NIS, laptop wont shut down. After forces restart hmpalert works as it should be (two W7 64 bits laptops have this problem).

    With Vista 32 bits and latest NIS no problems.
     
    Last edited: Mar 21, 2014
  15. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,362
    Location:
    Among the gum trees
    Erik,
    Thanks for youre time. My system would not shut down. I have sent you a PM.
     
  16. erikloman

    erikloman Developer

    Joined:
    Jun 4, 2009
    Posts:
    3,152
    Location:
    Hengelo, The Netherlands
    I just had a look at Krusty13's machine. Install went fine (no error), but on reboot his system hung as well.

    I have a VM session with Norton 360 21.1.0.18 (trial) and that shuts down just fine with Alert (tried several times).

    I am a bit in the dark on how to proceed in solving this issue. Maybe, other software combined with Norton causes the issue with Alert? Or perhaps a Norton setting? Something set to Aggressive?
     
  17. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,362
    Location:
    Among the gum trees
    The only setting I have changed to "Aggressive" is Boot Time Protection. Other wise my settings are pretty much in their default state.

    Thanks!
     
  18. deugniet

    deugniet Registered Member

    Joined:
    Nov 25, 2013
    Posts:
    1,264
    Last edited: Mar 21, 2014
  19. Adric

    Adric Registered Member

    Joined:
    Feb 1, 2006
    Posts:
    1,781
    HitmanPro.Alert 2.6.3 build 74

    First version that runs on Win8 32-bit. Thanks for fixing this. :thumb:

    Al
     
  20. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,362
    Location:
    Among the gum trees
  21. deugniet

    deugniet Registered Member

    Joined:
    Nov 25, 2013
    Posts:
    1,264
    Haha nice one Krusty. No new update yet here via Liveupdate.

    "2. When will I receive the patch?

    As is our standard practice, we are deploying the patch in a phased manner. We have released the patch to randomly selected customers, and will then monitor our telemetry, as well as this forum, for any problems or issues. Once we have confirmed the effectiveness of the patch, we will make it available to all customers. We will post an update on the Norton Community Forums when we make the patch available to all customers.

    3. How can I manually install these patches?

    Unfortunately, this patch is only available via LiveUpdate, and is being released in a phased manner. It is not available for manual download & install at this time."
     
  22. erikloman

    erikloman Developer

    Joined:
    Jun 4, 2009
    Posts:
    3,152
    Location:
    Hengelo, The Netherlands
    @deugniet, Krusty: can you run fltmc.exe filters from an administrative command line? I'm beginning to think that issue might be related to filter driver.
     
  23. deugniet

    deugniet Registered Member

    Joined:
    Nov 25, 2013
    Posts:
    1,264
    You need this Erik?

    http://s17.postimg.org/4qtoqkqtb/fltmc.jpg
     
  24. deugniet

    deugniet Registered Member

    Joined:
    Nov 25, 2013
    Posts:
    1,264
    Maybe this causes the NIS-HmP.Alertproblem?

    I use a legal version of NIS btw... And this doesn't occur with the W7 64 bits-version of Hitmanpro.

    Code:
    HitmanPro 3.7.9.213
    www.hitmanpro.com
    
       Computer name . . . . : xxxx
       Windows . . . . . . . : 6.0.2.6002.X86/4
       User name . . . . . . : xxxx
       UAC . . . . . . . . . : Enabled
       License . . . . . . . : Free
    
       Scan date . . . . . . : 2014-03-22 15:47:46
       Scan mode . . . . . . : Normal
       Scan duration . . . . : 2m 37s
       Disk access mode  . . : Direct disk access (SRB)
       Cloud . . . . . . . . : Internet
       Reboot  . . . . . . . : No
    
       Threats . . . . . . . : 0
       Traces  . . . . . . . : 1
    
       Objects scanned . . . : 2.007.824
       Files scanned . . . . : 12.237
       Remnants scanned  . . : 206.675 files / 1.788.912 keys
    
    Suspicious files ____________________________________________________________
    
       C:\Windows\system32\drivers\NIS\1502000.026\symelam.sys
          Size . . . . . . . : 21.520 bytes
          Age  . . . . . . . : 3.9 days (2014-03-18 19:04:16)
          Entropy  . . . . . : 6.5
          SHA-256  . . . . . : 365C945ECB485455E113A4CD6B429311C29AC2D94393CEB78940C401F93D54F8
          Product  . . . . . : SymELAM
          Publisher  . . . . : Symantec Corporation
          Description  . . . : Symantec ELAM
          Version  . . . . . : 1.0.0.111
          Copyright  . . . . : Copyright (c) 2012 Symantec Corporation
          RSA Key Size . . . : 2048
          Authenticode . . . : Invalid
          Fuzzy  . . . . . . : 22.0
             Program is altered or corrupted since it was code signed by its author. This is typical for malware and pirated software.
             Time indicates that the file appeared recently on this computer.
             The file is a device driver. Device drivers run as trusted (highly privileged) code.
     
  25. erikloman

    erikloman Developer

    Joined:
    Jun 4, 2009
    Posts:
    3,152
    Location:
    Hengelo, The Netherlands
    Yep that is it. Are you now running Alert properly (I see it in the output) or did you install it just for the screenshot?
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.