Home / Support
What's New in CPTRAX
CPTRAX for Windows Updates 2023
| Date | Description |
|---|---|
| 2023.10.04 |
[UPDATE] Digitially Signed DLL by Microsoft so LSA enabled DC's don't reject the loading of the DLL.
|
| 2023.09.11 |
[NEW] New feature to send pattern alerts for only users defined in 'Sent Email Alerts when performed by..' in the Alert section.
|
| 2023.05.12 |
[FIX] Update to cptsqlxf.exe to handle extra-long SIDs, which were causing a backlog of files in the q folder waiting to be injected into SQL.
|
| 2023.04.06 |
[FIX] Update to cpt_x64b.dll to correct an issue with 2012 and 2022 Server OS tracking of AD changes.
|
| 2023.02.27 |
[FIX] Corrected an issue where the settings in the GPO profile did not save.
|
2022
| Date | Description |
|---|---|
| 2022.09.22 |
[NEW] New CPTRAX Console to push files to 2022 servers. New CPTRAX.EXE to work with Windows 2022.
|
| 2022.04.06 |
[FIX] Corrected a potential issue as result of an incomplete packet transfer from the NIC driver.
|
| 2022.02.22 |
[NEW] Scheduled reports will now use 'Microsoft Print to PDF' Driver {requires Windows Server 2016 or later} by default if Adobe Driver is not present at the Server.
|
2021
| Date | Description |
|---|---|
| 2021.12.14 |
[FIX] Showing Time was off by one hour for logon (local/wts) events. The data was correct, now showing correctly.
|
| 2021.09.22 |
[UPDATE] Added duplicate suppression in alerting and tracking.
|
| 2021.06.29 |
[NEW] Added property sheets to profile definitions for better usability.
[FIX] Updated a profile definition that was not refeshing the screen properly. |
| 2021.02.26 |
[NEW] Quickly Detect and Automatically Stop Threats to your servers. CPTRAX for Windows can now automatically and immediately call one or more customer written PowerShell scripts based on a pre-defined Pattern Alert and take appropriate action to stop the threat and prevent further damage. For example: if Ransomware behavior is dedected via a Pattern Alert, you can now call a PowerShell script to block the IP of the machine causing the damage. Learn More
|
2020
| Date | Description |
|---|---|
| 2020.12.08 |
[UPDATE](CPTRAM MSIs) Update to flag dll's for removal after OS reboot and to prompt for reboot of the machine.
[UPDATE](CPTRAM) Added messages to indicate missing DLL files - helps when anti-virus programs inadvertently remove DLLs. |
| 2020.10.21 |
[NEW](CPTRAM) Now tracks files copied to Windows Portable Devices such as phones. Also can block files copied to Windows Portable Devices.
|
| 2020.10.06 |
[UPDATE] Update to Quick Reports to include local and wts logoff events.
|
| 2020.10.01 |
[UPDATE] Update to the local CPTRAM agents to include tracking of when phones are plugged in or un-plugged from computers.
|
| 2020.08.24 |
[UPDATE] (DSRCOL.EXE). Updated exe to aid in the starting/stopping of the local agent.
[UPDATE] (CPTRAXW.EXE). Updated exe to aid in showing WF agents that have reported back to the server. [FIX] (CPTRAM) Fix for the agent not stopping correctly. |
| 2020.07.15 |
[NEW] (Server File Auditing). Can now exclude Local Users from Blocking / Tracking.
[FIX] Fix for issue with long FQDN of server in the CPTRAX Console. |
| 2020.03.09 |
[NEW] (Workstation File Auditing). Can now exclude workstations from USB blocking.
[NEW] (Workstation File Auditing). Can now whitelist known USB devices from being alerted on upon plug-in, eject and at startup. |
| 2020.02.24 |
[NEW] (Workstation File Auditing). Block when Files are Created on Removable Device.
[NEW] (Workstation File Auditing). Block when Files are Copied to Removable Device. [NEW] (Workstation File Auditing). Track when Files are Created on a Public Share. [NEW] (Workstation File Auditing). Track when Files are Modified on a Public Share. [NEW] (Workstation File Auditing). Email alert based on amount of data copied. |
| 2020.02.12 |
[NEW] CPTRAMSA (Workstation File Auditing Stand-Alone). New agent that does not require the workstation to be a member of Active Directory.
[NEW] CPTRAX now provides a list of the Workstations where the CPTRAM/CPTRAMSA agent is active. |
| 2020.01.14 | [UPDATE] CPTRAM (Workstation File Auditing) will now allow for tracking uploads of folders to websites. Update also allows tracking uploads to websites directly from UNC paths. |
2019
| Date | Description |
|---|---|
| 2019.12.06 | [UPDATE] CPTRAM (Workstation File Auditing) will now attempt to use the alternate IP address presented in the URL attribute (that would normally be the distinguishedName of the server hosting the CPT SA. [CN=CPTRAXW,VCSWEB\192.10.10.30$] will now be converted to 192.10.10.30. |
| 2019.11.18 | [UPDATE] CPTRAM (Workstation File Auditing): manual switch added to cptram process. Issue "cptram -verify" to get licensing/domain status of the CPTRAM agent. |
| 2019.10.16 |
[UPDATE] Corrected a problem were an IPv4 address was being represented in an alternate format that was not being properly rendered.
CHAP.EXE is now excluded from cptram. |
| 2019.08.06 | [UPDATE] Update to resolve an issue when tracking Active Directory Delete Object on a Windows Server 2016 Domain Controller where CPTRAX would report the Domain Controller's hostname as the user performing the change. |
| 2019.07.19 | [UPDATE] Update to resolve an issue with tracking Active Directory Delete Object actions and Group Membership changes on Windows Server 2008 R2 after a recent Windows Update changed the way LSASS.EXE works. |
| 2019.05.24 | [UPDATE] Update to allow CPTRAX to create SQL database and tables in an environment without a Domain. |
| 2019.05.08 |
[UPDATE] Added column to server view to view last lines of the cptsqlxf.log file.
[FIX] Fix for profile pattern alert minute settings. [FIX] Fix for an uninitialized pointer in one routine. |
| 2019.03.06 | [FIX] Update to fix memory issue. |
| 2019.02.21 | [UPDATE] Update to load on Windows Server 2019. |
| 2019.02.20 |
[FIX] Fix for insert failures for workstation lock/unlock.
[UPDATE] “Microsoft Failover Cluster Virtual Adapter” which makes up its IP Address, so they have released an update designed to ignore activity from this network adapter as no user activity should ever happen through that adapter. |
| 2019.01.07 |
[FIX] Update to fix problem in errant ` in logonzone of LL record.
[UPDATE] Update to improve memory block re-use. |
2018
| Date | Description |
|---|---|
| 2018.12.10 | [UPDATE] This update was a signficant improvement to memory management resulting in a more efficient CPTRAX server agent. |
| 2018.12.06 | [FIX] Update to resolve reversed IP addresses in SYSLOG transfers. |
| 2018.11.16 | [FIX] Corrected an issue with tracking AD DELETE OBJECT events on Windows Server 2008R2. |
| 2018.10.12 |
[UPDATE] Update to common settings update/install process.
[UPDATE] Added the option to see update/installation details during bulk update/installation. [FIX] Corrected an issue where renaming a profile caused a graphical glitch that made it look like the profiles fields were blank. [FIX] Corrected an application crash during GPO Tracking. [FIX] Corrected an SQL INSERT Error. |
| 2018.10.05 |
[FIX] Corrected an application crash that was occuring on server 2016
[FIX] Corrected an SQL INSERT Error. |
| 2018.08.29 |
[NEW] Added ability to whitelist process names in the CPTRAM/CPTRAX module for Unexpected Opens.
|
| 2018.08.28 |
[NEW] Added button to 'Manage Log Files' window that allows for transferring existing .CPT files to SQL.
[NEW] Added option to set the SYSLOG Transfer Port in the individual server configuration settings. [NEW] Added option to disable the creation of .CPT files when transferring log data to SQL. [NEW] Added option to configure custom e-mail alert templates in common settings. [NEW] Added option to import custom e-mail alert templates in common settings. [NEW] Added default custom e-amil alert templates when installing the CPTRAX Server Agent through the wizard. |
| 2018.08.07 |
[FIX] Fix for Active Directory Quick Report rules.
|
| 2018.08.06 |
[NEW] Bulk Management for Server Settings - Now you can push all common settings to all existing servers known to the console.
|
| 2018.07.24 |
[UPDATE] Web Reporter - Added 'FileNameOnly' as a default column across all prebuilt File System reports.
[NEW] Web Reporter - Added 10 new reports to the Web Reporter focused on the CPTRAX Workstation File System Module (CPTRAM). |
| 2018.06.18 |
[UPDATE] Enhanced the wild card exclusions for User Names in the Server Authentication profiles.
|
| 2018.05.22 |
[UPDATE] Updated console. Now writes sortable html that sorts on dates column. Corrected an issue when a QR is generated and no matching log files are found it would get stuck. Updated when saving to csv or sortable html it was opening the file for concatenating now just always creates the file.
|
| 2018.05.15 |
[UPDATE] Updated console to fix scrolling issues in profiles and reports section where you would not be able to scroll a long list.
|
| 2018.05.05 |
[NEW] Announcing the new CPTRAX Workstation File Auditing Module! It will perform the following activity:
Note: this module requires the CPTRAX Server File Auditing Module. |
| 2018.05.04 |
[NEW] With the new Workstation agent, the CPTRAX Server File Auditing Module will now track the following activity:
|
| 2018.03.14 |
[NEW] The new SQL Web Reporter allows for fast reporting and filtering of your CPTRAX data recorded in your Microsoft SQL Server database. Learn More! SQL Web Reporter
|
| 2018.03.02 |
[UPDATE] Updated *.SYS files to make improvements to File System tracking.
[FIX] Update the display for the SQL Configuration and the Email Configuration on the Agents tab. |
| 2018.02.16 |
[NEW] Completely redesigned Administration Console. Learn More! Administration Console
[FIX] Updated the format for PDF emailed reports. |
2017
| Date | Description |
|---|---|
| 2017.12.12 |
[UPDATE] Update to show 'winerror.h' code when the SYS cannot be contacted.
[FIX] Update to GPO change to correct an error on 'insert sql record'. |
| 2017.12.01 |
[UPDATE] Update to CPTSQLXF.EXE to correct an issue where CPTSQLXF.EXE might not auto-restart when the connection to SQL database fails.
|
| 2017.11.27 |
[UPDATE] Updated CPTRAXW.EXE tracks changes more efficiently leading to less resources utilized on the server. Updated CPTSQLXF.EXE allows for more efficient transfer of tracked changes to SQL Server. |
| 2017.11.01 |
[UPDATE] Update to help process q files quicker and eliminate backlog in buisier environments.
|
| 2017.08.22 |
[UPDATE] Update to aid in AD tracking in showing system Hostname vs users sAMAccountName.
|
| 2017.07.24 |
[NEW] Added to the customized email alerts what permissions were changed and for whom, for File System Profiles. Added to the customized email alerts the value of the attribute being added/deleted (i.e Member of a group).
[UPDATE] Updated the Summary Report to show both top logon failures by user name and PC. |
| 2017.07.19 |
[NEW] New Feature: Summary Report that shows details for all four modules in one report.
[UPDATE] Refined the format of customized email alerts from CPTRAX. |
| 2017.07.05 |
[UPDATE] Using Save as EXE from the Designer, now shows the requirement of including chartdir51.dll with the EXE.
|
| 2017.06.16 |
[UPDATE] Removed a debug message.
|
| 2017.04.11 |
[NEW] Support added for Windows Server 2016.
[NEW] Support added for SYSLOG. |
| 2017.02.23 |
[UPDATE]
Improved the speed of processing log files.
|
2016
| Date | Description |
|---|---|
| 2016.12.30 |
[UPDATE]
Performance enhancements with memory allocation.
|
| 2016.11.7 |
[UPDATE]
Update to include sortable HTML reports. Manually and automated. Updates to the consoles and reporting exe.
|
| 2016.10.17 |
[NEW]
Added a new feature that includes customized profile alerts, ability to alert on CPTRAX log file size, filter alerts based on profile by specific user(s).
Updated/adjusted cptrax_console.exe to allow the console to be viewable on a smaller resolution laptop (shortened and widened console). |
| 2016.09.13 |
[NEW]
Added a new feature that allows for certain user attributes to be included in an alert when a user is disabled.
Added the option to filter e-mail alerts by a value in the registry of the CPTRAX Host. |
| 2016.08.16 |
[NEW]
Workstation Collector Update: New features include the addition of reporting of Lock and Unlock, track when someone attempts to logon and enters wrong password, failed password change (local). |
| 2016.07.27 |
[UPDATE]
Updates to resolve an issue where GPO edits and AD changes were not all coming through since an update to Windows.
|
| 2016.07.25 |
[UPDATE]
Update to resolve an issue where CPTRAX would cause a BSOD because of a conflict with a BROADCOM Network Driver.
|
| 2016.07.22 |
[UPDATE]
Updates to resolve an issue where GPO edits and AD changes were not all coming through since an update to Windows.
|
| 2016.06.10 |
[UPDATE]
Updated to allow CPTRAX to properly indicate progress when processing large log files up to 128TB. Also includes a warning when a report will result in a large number of results and may need to be output to file instead of interactive GUI. [UPDATE] Update to resolve LDAP error that occurred when configuring the new Workstation LL Feature. [UPDATE] Update to improve memory handling in an attempt to prevent a CPTRAX Console crash. |
| 2016.05.10 |
[UPDATE]
Update to fix "Last Tile Refresh" time on server tile, being behind in console on server tile(s). |
| 2016.04.27 |
[NEW]
New module that allows the tracking and reporting of local workstation Login/Logout. Note: this module requires the Server Authentication module. |
| 2016.04.12 |
[NEW]
Updated so when picking a column to sort on in Out-To-File, you can now pick the sort order for CSV. |
| 2016.04.01 |
[NEW]
Updated so when picking a column to sort on in Out-To-File, you can now pick the sort order. [FIX] Updated to resolve an issue where folder renames were being displayed as folder creates. This update was also created to resolve an issue where configuring a profile to track delete requests would result in the profile tracking file creates/folder creates. [FIX] Corrected an issue related to sorting CSV reports during the report process. It was sorting alphabetically even though it was sorting on the date column. Now it properly sorts based on the date/time. |
| 2016.02.26 | [UPDATE] Possible antivirus false-positive flag resolved. |
| 2016.02.16 | [FIX] Reporting server prompt at runtime no longer prompts twice before running. |
2015
| Date | Description |
|---|---|
| 2015.12.16 | [FIX] Add RDS User Session tracking so that user activity when they are connected through RDS/TSE sessions is accurately tracked and reported. |
| 2015.12.09 | [FIX] Removed the tracking of "Pass Through Authentications" from CPTRAX. Now CPTRAX will only track actual authentications at each Domain Controller the CPTRAX Server Agent is running on. |
| 2015.12.01 | [FIX] Increased the stack space to resolve an issue with custom reports not working if they were linked to more than 8 profiles. |
| 2015.11.22 | [FIX] Update to address report times being off for UTC +10. |
| 2015.10.29 | [FIX] Fixed the issue related to Daylight Savings Time causing some reports to show 1 hour off. |
| 2015.10.28 | [FIX] Corrected a high CPU utilization that occured on one customers 2008 servers. |
| 2015.09.23 |
[NEW]
Auto archiving of Log files. Added several critical email alerts such as: CPTRAX AGENT INVALID NDIS BINDING on server NAME CPTRAX AGENT STOPPED: MDMP CREATED on server NAME CPTRAX AGENT TXY attempting to transmit to 0.0.0.0 : Unable to transmit log files on server NAME CPTRAXW is not licensed on server NAME CPTRAXW Token Exceeded Errors |
| 2015.06.08 |
[NEW]
File System Activity Profile: Pattern/Threshold Alerting Logon / Logoff Activity Profile: Pattern/Threshold Alerting Failed Logon Activity Profile: Pattern/Threshold Alerting Active Directory Activity Profile: Pattern/Threshold Alerting Group Policy Activity Profile: Pattern/Threshold Alerting You can now be alerted only when a pattern of activity occurs. This pattern can be by User Name(or other object),IP Address or Object affected plus by the number of events or number of events during a specified interval. |
| 2015.03.20 |
[NEW]
Added the option to schedule an email to be sent with charts for the following: Active Directory Charts --- Active Directory Enable|Disable Account Active Directory Group Member Events Active Directory Create|Delete Group Object Events Active Directory Create|Delete User Object Events Active Directory Create|Delete Computer Object Events Active Directory Events per DC Active Directory Events by Attribute Active Directory Events by Object Class All Active Directory Events Server Authentication Charts --- Logons per Account Logon Failures per DC Bad Passwords by Account Bad Passwords from IP Remote IP Address (Terminal Server) Logon Failure Types All Server Authentication Events File Activity Charts --- File Events per Remote IP Address (Terminal Server) File Events per IP Address File Events per Workstation File Events per File File Events per User File Events per Share File Events per Server All File Activity Events |
| 2015.01.27 | [NEW] Added new options for Out-To-File. There is now an HTML option. You can now choose which ListView column to sort on. You can now choose to attach the file to email or to embed the report in the email body. |
