App Control: Agent Crashing or Disconnecting due BeyondTrust is Attempting to Inject privman32.dll file
book
Article ID: 288851
calendar_today
Updated On:
Products
Carbon Black App Control (formerly Cb Protection)
Issue/Introduction
Event log has EventID: 7023, The Cb Protection Agent service terminated with the following error: %%-1073741819
dascli status - returns 'Cannot connect to user agent'
Environment
App Control Agent (formerly CB Protection): All Supported Versions
BeyondTrust Software
Cause
BeyondTrust is attempting to inject privman32.dll into the Parity Agent, and Tamper Protection stops the modification, but the action still causes the agent to crash and restart itself.