Changelog - Windows Agent

4.3.48.7445 - 6th November 2024

  • [FIX] Deadlock in USS Service due to conflict with third party security service
  • [NEW] Added a digital signature to UpdateNotifier.exe
  • [NEW] Added Copyright notice

4.3.46.7305 - 17th June 2024

  • [FIX] Issue downloading anti-malware database updates

4.3.45.7149 - 15th April 2024

  • [NEW] Fall back to SNI detection if TLS interception is not available

4.3.44.7125 - 8th February 2024

  • [NEW] Bring-your-own-Certificate for TLS Inspection
  • [NEW] Improvement to MIME Type scanning
  • [FIX] Installation log debug notices

4.3.41.6981 - 26th October 2023

  • [FIX] Tray app sometimes incorrectly shows AV license as expired when it is functional

4.3.40.6855 - 10th October 2023

  • [FIX] Increased proxy connection timeout to alleviate slow network issues

4.3.38.6709 - 19th April 2023

  • [FIX] Latency reported on some devices
  • [FIX] Random disconnect error messages including ERR_NETWORK_ACCESS_DENIED
  • [FIX] Compatibility issue with Sophos

4.3.36.6570 - 21st December 2022

  • [UPDATE] Endpoint DNS address required changes.
  • [UPDATE] Copyright Notice

4.3.35.6536 - 2nd December 2022

  • [FIX] Conflict with Checkpoint VPN client causing connectivity issues.

4.3.34.6388 - 27th Sept 2022

  • [NEW] Bitdefender Anti-Malware Engine Update (Ver 3.0.1.289)
  • [FIX] Connection problems with mixed IPv4 and IPv6 interfaces.
  • [FIX] A number of driver and network stability improvements.
  • [FIX] Crash reported when unable to reach cloud servers.

v4.3.32.6236 - Release Candidate

  • [NEW] Agent Status troubleshooting tool
  • [NEW] Bypass destination IP/CIDR for SSL Interception bypass type
  • [NEW] Bypass based on HTTP header
  • [NEW] ManualUpdater tool included in installation folder
  • [FIX] TLS 1.3 is shown in the Security overview when connecting to any site instead of the correct TLS version
  • [FIX] Username is still captured if 'Log username' option is disabled
  • [FIX] Reports of certain URL's hanging / requiring refresh
  • [FIX] MIME Type scanning hangs due to empty chunked encoding response
  • [FIX] Edge case crash during antivirus plugin initialisation
  • [FIX] Wrong username format in the status request if service is using debug config
  • [FIX] Issue with Network Detection when accessing certain web sites
  • [FIX] Update Copyright year to 2022 for services

v4.3.20.5596 - 16th June 2021

  • [FIX] Decoding error when MIME scanner is active and content is greater than 10Mb in size
  • [FIX] Fall back to single port redirection if ESET is present
  • [FIX] Tray App RPC issue manifests in terminal services (e.g Citrix) environments
  • [FIX] Various performance fixes

v4.3.15.5491 - 17th May 2021

  • [NEW] Option to display a pop-up message when a file is blocked due to MIME scanning
  • [NEW] Improve hiding of proxy tray. Allow the ability to start the tray manually if its been hidden
  • [NEW] Support for capturing UPN or FQDN user instead of SAM
  • [FIX] Speed issue with new conditional accept handling introduced in 4.3.12. Requires you to revert the test_connect_before_accept registry change if it was previously applied as a workaround.
  • [FIX] Office.com / OWA login issue
  • [FIX] MIME type module will check the file extension as a last resort, if no other method is available to determine the file type
  • [FIX] Fixed a typo in the folder “resonse_storage”
  • [FIX] Copyright year updated to 2021

v4.3.12.5338 - 8th February 2021

  • [FIX] Support for rar4 unpacking
  • [FIX] Certain IPv6 connections fail to retry
  • [FIX] Improved compatibility with Sophos Web Intelligence
  • [FIX] Some streaming video sites stall after 30 seconds

v4.3.8.5273 - 16th September 2020

  • [FIX] Logging of response scanning hits

v4.3.8.5262 - 2nd September 2020

  • [NEW] Anti-malware scanning of downloaded files
  • [NEW] Support for DeviceGuard
  • [NEW] Icon for “partial” Network Detection if multiple network interfaces are in use
  • [FIX] Tray application will disable itself in the presence of incompatible Kaspersky or ESET versions as a safety measure
  • [FIX] Long delay when clicking “Continue” on a Warn page when using Firefox browser
  • [FIX] Status is sent immediately after a Reconfigure action, including ‘running’ and ‘stopped’ states
  • [FIX] Network detection does not trigger if DNS resolution fails for the specified hostname
  • [FIX] Improvements to process watchdog
  • [FIX] Updated copyright notice

v4.2.17.4689 - 19th February 2020

  • [FIX] Improve logic of IP/MAC detection if several network adaptors are present
  • [FIX] Tray icon is red after reinstalling agent via command line
  • [NEW] Added a /forceinstall flag to force installation even if MSI environment thinks the product is already installed
  • [FIX] Now possible to specify a configuration profile using ManualUpdater tool
  • [FIX] Google Sheets connection issue when MIME Type filter in use
  • [NEW] Status will report last ICAP address in use

v4.2.13.4578 - 2nd October 2019

  • [NEW] Added automatic collection of process dumps for troubleshooting
  • [FIX] Agent enters a deadlock after upgrading to 4.2.11 when performing response scanning
  • [FIX] Edge case error with chunked encoding

v4.2.11.4502 - 29th August 2019

  • [FIX] Agent status is sent correctly on start/stop/uninstall action

v4.2.10.4481 - 14th August 2019

  • [FIX] Network Detection network adaptors are not detected after restart

v4.2.9.4451 - 31st July 2019

  • [FIX] Tray icon becomes unresponsive after using a menu option

v4.2.8.4392 - 12th July 2019

  • [NEW] Support for MIME type scanning
  • [NEW] Network Detection can now scan network adaptors for IP to trigger Disabled status
  • [NEW] Network Detection now supports IP in the Hostname field
  • [NEW] Updated installer images & logo
  • [NEW] Agent can be started without entering a password after successful manual shut down
  • [FIX] Client timezone is not correctly reported to the ICAP service

4.2.4.4208 - 28th May 2019

  • [FIX] High CPU usage in some Windows environments
  • [FIX] Network Detection icons updated - see Tray Icon Status Codes
  • [FIX] Update option is enabled even if configuration disables "Check for Updates"

v4.2.3.4055 - 21st March 2019

  • [FIX] Auto-update is not attempted again if the first attempt fails
  • [FIX] Installation in root C: drive if configuration profile cannot be downloaded
  • [FIX] Installation wizard freezes if network is disabled for several seconds during installation

v4.2.1.3945 - 12th February 2019

  • [NEW] Improved ICAP server selection algorithm
  • [NEW] Support for TLS 1.3 certificates
  • [NEW] USS_AGENT_PROFILE_ID parameter now supported from the command line/transform file
  • [FIX] Agent service can be stopped under Windows 10 from the system tray
  • [FIX] QR code loads correctly for WhatsApp web application
  • [FIX] Grammarly extension for Chrome works correctly with the agent enabled

v4.1.7.3377 - 31st August 2018

  • [NEW] Ability to specify custom domain on reconfigure dialog
  • [NEW] Select config profile during first install
  • [NEW] Migrates agent configuration from the V1 API to V2 for existing installations
  • [FIX] Fixes DNS suffix issue with Network Detection
  • [FIX] Updated MSA message
  • [FIX] Added verification for empty fields in Reconfigure window

v4.1.5.3303 - 20th July 2018

  • [FIX] Resolves an issue generating certificates on Windows 7 and Server 2008r2

v4.1.5.3265 - 29th June 2018

  • [NEW] Remove the legacy “Injection” mode from the agent service
  • [FIX] The tray icon now turns orange and displays a tooltip if Network Detection is active.
  • [FIX] Correctly logs username in a multi-domain environment
  • [FIX] Admin user password is limited to 20 characters on agent side
  • [FIX] Detects the presence of npcap which can cause problems with driver interception. Warning displayed.

v4.0.1.3291 - 20th July 2018

  • [FIX] Resolves an issue generating certificates on Windows 7 and Server 2008r2

v4.0.1.3018 - 11th March 2018

  • [NEW] Added third option of Stop Service - 'Stop until service is started manually'
  • [NEW] Added status of stopped service in Configuration Info
  • [FIX] Update failed on Win7x86 system without KB3033929
  • [FIX] Further improvements to Hot Spot mode / Fail Open
  • [FIX] Blank URL appears in Web Analyse report due to embedded URL in query string

v4.0.1.2961 - 6th February 2018

  • [NEW] OSCP Stapling support
  • [NEW] Stop Service has options to stop for 15 minutes or until next reboot
  • [NEW] Network Detection support (requires USS portal v2 account)
  • [NEW] Option to block QUIC protocol requests (requires USS portal v2 account)
  • [NEW] Detects presence of system user proxy
  • [FIX] Update Config no longer requires a password
  • [FIX] Bug where embedded URL's are not parsed correctly and show blank http:// entries in reports
  • [FIX] Fail Open issue with Captive/HotSpot portal
  • [FIX] SHA-1 certificate no longer mimicked as trusted
  • [FIX] Issue with ATL code symbols e.g £ in password

v4.0.1.2697 - 15th November 2017

  • [FIX] Uninstall button is inactive in Apps & Features on Windows 10
  • [FIX] Agent sometimes takes a while to fail open
  • [FIX] EDGE 38 crashes with Injection mode
  • [FIX] Certificate is not mimicked if a HTTPS connection is made to a non-standard port

v4.0.0.2669 - 18th August 2017

  • [FIX] Bypass patterns were not taking effect with agent in Local Proxy mode
  • [FIX] Improved certificate checking logic
  • [FIX] Compatibility issue with HotSpot Shield when using Local Proxy mode
  • [FIX] Added support for IPv6 in Bypass logic

v4.0.0.2603 - 27th July 2017

  • [FIX] No longer incorrectly reports compatibility with KES 10.3.1+
  • [FIX] HTTPS site without a subject cannot be opened
  • [FIX] SSL strict mode Cipher Suite detection
  • [FIX] SSL Signatures displayed incorrectly within Protocol Details
  • [FIX] Eliptic curves displayed incorrectly within Protocol Details

v4.0.0.2598 - 24th July 2017

  • [FIX] Minor fix for auto-upgrade if registry cleaner (e.g. CCcleaner) was used with a 3.x install

v4.0.0.2595 - 13th July 2017

  • [NEW] Driver interception mode for increased performance
  • [NEW] Strict SSL/TLS mode to block insecure ciphers
  • [NEW] Windows 10 Creators edition support

v3.1.2.2322 - 11th February 2017

  • [FIX] Tray icon flashes red/green on certain web sites
  • [FIX] Tray icon turns orange if the registry keys have been tampered with

v3.1.2.2215 - 28th December 2016

  • [NEW] Do not log IP/MAC option
  • [FIX] Edge 25 browser does not work after stopping USS Agent service
  • [FIX] Conflict between the USS agent and SMS Agent Host
  • [FIX] Web pages are opened slowly on Edge 25
  • [FIX] CertGetCertificateChain returned status CERT_TRUST_IS_PARTIAL_CHAIN – experienced with non-English locale
  • [FIX] Percent encoded values and UTF-8 support in X-Client-Id header – fixes issues matching tags/usernames with special characters in them
  • [FIX] USS Agent doesn't mimic google.com certificate in Chrome (v. 52.0.2743.82)
  • [FIX] New html template/message for 407 response – e.g. if account ID no longer exists for installed agent
  • [FIX] 'Start service' is disabled if USS Agent service was stopped by ManualUpdater.exe

v3.1.2.2172 - 18th November 2016

  • [NEW] Signed driver for Windows 10 compatible with SecureBoot / UEFI BIOS
  • [NEW] Warning if DeviceGuard is enabled on Win10 Enterprise / Server 2016
  • [NEW] Microsoft Edge support on 32-bit Windows
  • [FIX] Assertion Failed! error message
  • [FIX] Tray app sets focus to the password field when selecting options

v3.1.2.2042 - 27th September 2016

  • [NEW] PFS cipher support
  • [FIX] Agent correctly hooks into Edge (non-Anniversary edition)
  • [FIX] Icon moves from docked position after upgrade
  • [FIX] Browser is not re-opened after uninstall and selecting automatically restart
  • [FIX] GUI elements on configuration dialog are overlapped on large resolution screens
  • [FIX] Restart Manager warnings removed from Event Log
  • [FIX] Compatibility with AVG anti-virus

v3.1.2.1880 - 8th August 2016

  • [FIX] Some https sites will not open e.g. siteopia.com
  • [FIX] Support for IPv6 sockets
  • [FIX] Kaspersky AV compatibility issue
  • v3.1.2.1815 - 31st July 2016

  • [NEW] Added a Configuration dialog to show currently loaded profile
  • [NEW] Added extended debug option
  • [NEW] Added EULA acceptance page
  • [NEW] Browser restart required on upgrade
  • [NEW] Installer allows you to enter a custom API domain
  • [FIX] Issue injecting agent into Chrome
  • [FIX] Agent correctly selects default install path on 64-bit Windows
  • [FIX] Implemented Bypass Destination for HTTPS bypass rule
  • [FIX] Icon missing from Programs & Features list
  • [FIX] Microsoft Office licensing server blocked if USS Agent installed
  • [FIX] Improved fail over detection

v3.1.2.1695 - 31st May 2016

  • [NEW] Agent can collect local username if AD domain is not available
  • [NEW] Agent can collect hostname as username

v3.1.2.1625 - 13th May 2016

  • [FIX] Delay opening first page on web sites in Windows 7 OS
  • [FIX] Rollback does not work in case of update failure

v3.1.2.1592 - 22nd April 2016

  • [NEW] Added 'Update Config' option to force a new profile update
  • [FIX] Resolved a compatibility issue with Oracle VirtualBox
  • [FIX] Log files now auto-rotate
  • [FIX] Made the auto-update more robust including MSI verification, duplicate process checking and fault tolerance against invalid profiles

v3.1.2.1519 - 13th April 2016

  • [FIX] Improves to the auto-update rollback procedure


How did we do?