Jump to content
ryn0tech

Feature Request

Recommended Posts

Would be nice to have a feature where if an unknown executable is detected trying to run, that Immunet would halt the process and prompt you to allow once, allow permanently or block, default to block if you do not respond to the prompt after a couple minutes. Would be a good a good optional, additional layer or protection on top of the ETHOS and SPERO engines. I can see where this could become an issue with batch files, scripts, and and the like, possibly, but, that is what exclusions are for. I think this feature would be great, especially for ransomware protection.

  • Like 4

Share this post


Link to post
Share on other sites

What you're referring to would be a type of H.I.P.S. or auto-sandboxing feature. That would be a nice additional layer of security protocol but the fact is that Immunet does have a form of heuristic capabilities with ETHOS & SPERO enabled. Meaning that Immunet can detect and respond to as yet unseen or unrecognized malicious code.

 

Cheers, Ritchie...

Share this post


Link to post
Share on other sites

Hello, Immunet does not have active USB scanning. An interesting addition to the software for a future build perhaps.

You can plug in the device and once Windows Explorer recognizes the drive just right-click on on that drive and select Scan Now with Immunet's Context Menu Scan. This would be the best method to use before you transfer any files to your computer. Just scan the whole device if you think the data is suspicious or may have been compromised in some manner!

If you have Scan Archive Files & Scan Packed Files enabled in Scan Settings this will automatically scan any compressed files downloaded from the USB device to your computer.
 

The transfer of malware from one computer to the next using an infected USB device is definitely not unheard of. Fortunately this method of malware propagation is relativity rare. 
 

Best wishes, Ritchie...

Share this post


Link to post
Share on other sites

hello

 

it will be good to have the possibility to add a folder in the quarantaine and submit it for analys , and the possibility to rescan this folder in the quarantaine 

 

thx a lot 

Share this post


Link to post
Share on other sites

.

I'd LOVE to see ( from ANY program ):

 

1 - resizable windows ( we all have BIG screens now )

 

2 - text report logs of each activity, dated and timed to they are unique and don't overwrite each other

 

3 - all lists searchable, sortable, selectable ( groups to be restored or deleted together in one action ), outputable to unique text report files

 

4 - quarantine simply adding .vir or .mal to the end of the original filename.ext or registry.reg dump in question

 

5 - options to restore, ignore once, ignore always, review and UNDO single actions, multiple actions, and entire scans ( restore EVERYTHING in quarantine )

 

6 - NO dependence on external programs or external settings ( like security and script settings in Windows Internet Settings )

 

Thanks for considering these, even as user selectable options.

__________

 

Using v6 2017-09

.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×