Jump to content

All Activity

This stream auto-updates     

  1. Last week
  2. Since the first of this month, I haven't been able to scan any files using Immunet: "Your scan has failed to complete. An error has occurred." Should I uninstall and reinstall? --Brian
  3. Earlier
  4. i am only using that login from windows
  5. I received the virus alert when playing my games from Steam.
  6. I am running on a fresh win11 home installment on a 512 gb ssd. With Nvidia 1660 Super and intel i7 10th gen. Too many specs but ok. why is the website glicthec?
  7. Why are we not seeing responses from Immunet about this?! Or even from Google?! All 5 of my PCs at home have done this. What is it with chrome that immunet/clam is not liking? Yet, a simple Uninstall of immunet and reinstall of Chrome and immunet...and immunet doesn't redetect the same problem?!! Makes no sense.
  8. On a related note, on my machine, Immunet quarantined "elevation_service.exe" from the Chrome directory, and also from a temp directory.
  9. I got on my desktop (Win 10) yesterday and found that Chrome was not working... Looked at immunet and saw there were some 'quarantined' and some 'quarantine failed' files. Looked in my C drive and it appears that these are Chrome files... the file path is listed below for one that failed... Most of the failed files are "Chrome.exe" files and there are a ton. I am doing a full system scan now (going on 24+ hours now)... My son, who is in IT, said to go through and delete the quarantined files but to look up the file path first to see what is up. Is this a virus/trojan horse thing??? I don't really see any answers here in the forum (I just joined so might have missed something)... Any help would be appreciated. Thanks!
  10. Now, I don't know if it's false positive or not but a quick google search shows sykipot is serious malware. My other question: Why is it working in other machines with same setup (chrome 102 and immunet 7.5.xxx and not in those domain joined machines? I can't determine on my own if it's false positive or not and what's the solution? Thanks in advance.
  11. I've some domain joined machines (test environment) and I noticed a couple days ago the chrome versions were updated for all vms through central endpoint management software (manage engine desktop central) but 1 VM in particular (Windows 2012 r2 - Active directory PDC) *Fully Patched* did not update chrome to 102 and threw an error upon updating manually. An error occurred while checking for updates: The installer encountered error 124. (error code 7: 0x80040902: 124 - system level). Learn mode version 101.0.4951.67 (official build) (64-bit) I checked DNS and it was able to get to internet fine and nothing was being blocked. I couldn't fix it in any way. I, then, downloaded chrome offline installer/update file from internet manually and tried installing the update. threw the same error 124 but in a different type of dialogue box. and then immunet showed this notification and it said it had qurantined the setup.exe (even though the file i was installing was still showing up in file explorer...may be that update.exe software package had setup.exe in it. IDK). I downloded the update file from google.com so nothing can go wrong there. Anyways. Afterwards, chrome stopped working and I could not install updated chrome in any way possible. Offline installer would say there's an error. Online installer/update.exe would throw this notification in Immunet. Clam.win.dropper.sykipot-990505-0 102.0.5005.63_chrome_installer.exe Now, I looked at other VMs and those VMs started throwing same Immunet error ... blocked chrome and I could not reinstall no matter what. So, here's what I've done hoping to recover/fix this issue. 1. Considering it's an malware and spread through all domain joined pcs. including that manage engine vm. I revered all vms to previous state i.e., 12 days ago, but as soon as those machines started talking to internet and got update. it started doing same thing. 2. One of the vms was 2016 and it was offline i.e., not connected to internet that worked fine coz probably Immunet was not updated to latest version (I think) and as soon as I brought that vm online (connected to internet) this whole thing happened again and I couldn't use/update chrome. 3. I thought it could be due to windows 2016 r2 so I installed a new 2016 vm and installed chrome and immunet it worked fine. connected to internet everything good. I also have a couple of machines that have same setting (domain not joined) Immunet version 7.5.0.20795 but they never showed this error . updated chrome and everything works like a charm. These two things 4. Also, one of the things I noticed that the vms worked fine as long as they stayed offline i.e., disconnected from internet. as soon as it's connected to internet this whole thing collapses and I can't use chrome anymore with 102 version. I'm literally pulling my hair out coz all the vms are unusable. I cannot figure out where exactly is the issue. I know if I bring down Immunet everything will work fine and the way it's supposed to . but am I really infected or is it false positive ? if I'm infected ? then how can my 12 days old images be infected? I'm also having 1 month old backups of vms so i'm hoping to revert to those backups in case nothing works but if that also throws same error IDK how can I get around this. I'm attaching a screenshot where vm was restored to 12 days old state and chrome is 101 version and can't update due to that error. If I uninstall chrome and install 102 version it will not let me install 102 version. TIA ASIM
  12. Hi, is there a way to standardize configuration across multiple endpoints? it appears there isnt much saved in the registry. i did see in the config folder there is a AMPIP001.dat but its not plaintext. can this be copied to multiple machines? if not can you tell me where the settings are. I basically want the notification, scheduled scans, etc to be copied to multiple machines
  13. I have encountered the same problem. I had 8 customers yesterday call me about this and two more this morning. Chrome is being targeted by Immunet. My customer click on a Google link to a favorite, and get a message the path is no longer available. I ran Immunet and removed all the viruses it said I had, then when I tried to reinstall Google Chrome, it said it was infected and quarantined it. We I figured I would uninstall Immunet and then I could surely install Google chrome, but it still will not install google chrome. So the question is, is it really Immunet that is blocking it, or is it truly a virus in the install file?
  14. This event was registered yesterday opening Chrome in two pc. I scanned both with ESET, Malwarebytes, and other two antivirus without any result. Now I have blocked Chrome and I don't know how to solve the problem and if there is a problem. Many thanks Marco
  15. Now up to 4 PC's in my home, Chrome updates to Version 102.0.5005.63 (Official Build) (64-bit) Immunet kills the chrome.exe. only recourse is uninstall immunet reinstall chrome.
  16. Same case on different computers, I had to uninstall immunet, I have had 5 computers with the same problem
  17. I've been trying to make that case. Me thinks it will be easier after Chrome gets removed
  18. I have 2 PC's both have immunet both killed chrome, one of the PC's I only use with my trusted sites, banking, no surfing. really surprised if it is compromised, it would have to be compromised at the source - Google in the latest update released yesterday. Immunet (cisco) lets get this figured out. ASAP
  19. If you're in an organisation, you shouldn't be using Immunet as it's not licenced or supported for such use cases. You should be using Cisco's commercial endpoint protection. I'm a bit concerned that Cisco put out Immunet full of bugs and then have virtually zero presence on this forum. If you need free antivirus protection, it would be better to switch to Windows Defender or something else, until Cisco decide to either put Immunet out of its misery or actually produce a half-decent AV and provide even half-arsed support for it. The current state of Immunet is worse than having no protection at all as it is full of bugs, unsupported and as a result, gives users a false sense of security.
  20. I could make a joke here that Chrome is basically spyware, and as such it's a good thing it was detected! But let's be serious and try to fix your issue... It's interesting that the first poster reports a detection via Immunet's cloud engines, and the second post looks like this is a false-positive with the ClamAV scanning engine. It's almost-certainly already been reported, therefore it won't be too long before the developers patch the faulty signature. You may find that within a few days, you can reinstall Chrome with no issues. In the meantime, you may be able to avoid this problem by disabling the ClamAV engine from within Immunet's settings, and seeing if this cures the false positive. The cloud engines would still be protecting you, and they might already be fixed. ClamAV is a traditional engine, which is not updated as quickly and is prone to false-positives. Alternatively, if you view your quarantined files, try restoring all the chrome.exe files. When you restore a file from quarantine, Immunet adds this to the exclusions list. By doing this, you may find you can run (or reinstall) Chrome again. Another option would be to switch browser to Firefox or Vivaldi, or to uninstall Immunet and rely on Windows Defender or another reputable antivirus.
  21. Same on multiple workstations, multiple organizations.
  22. As of ~4am this morning Immunet v7.5.0.20795 quarantined all of my Windows 10 Enterprise 21H2 OS Build 19044.1706 PC's "chrome.exe". I had to uninstall Immunet to get Chrome reinstalled. Detection Name: Clam.Win.Dropper.Sykipot-995050[5-6]-0
  23. I got the same. I had chrome on my laptop and immunet 'sucessfully quarantined' something which I don;t think needed to be quarantined. I can now not open chrome on my laptop and when I tried to re-download chrome I received that error. I'm not sure what to do now and really need chrome
  24. False positive?!? today immunet quarantined chrome.exe file and after chrome uninstall can’t install chrome. Because immunet quarantines chrome.exe file. It’s false positive?
  25. Hello LarryK If Immunet has let this slip past, or it was already there but Immunet can't remove this, you might have some luck with MalwareBytes. You can safely run both MalwareBytes cleanup tools (AdwCleaner and MalwareBytes Antimalware). They both target different things. One or two runs with these should sort your system. You could also search the F-Secure web site for their online scanner. It only takes a couple of minutes and removes resident malware and malware that runs on startup. You could also search the Comodo website for their "Cleaning Essentials" tool. This takes a little longer and might give you the occasional false-positive. Then try Emsisoft Emergency Kit. If there's anything at all left over, this will almost-certainly kill it. It's a pretty fast scanner, only a tiny bit slower than the F-Secure online scanner, but very, very thorough. Finally, do an offline scan with Windows Defender, then a full scan with Windows Defender. Once all these tools report nothing found in any scans, your system is probably clean. From forum posts and my own experience, Immunet seems to be full of bugs, not very effective, and now seems to be largely unsupported. You may wish to switch your primary AV protection away from Immunet until Cisco decide whether to put Immunet out of its misery (kill it), or actually devote some resources to maintaining it properly. In its current state, it gives users a false sense of security, which is worse than having no security at all. Viable alternatives would include (but are not limited to): Sophos Home, Windows Defender, Malwarebytes Premium, and F-Secure Antivirus. For a second opinion ("on demand" scan only, not on-access), you could also use ClamWin.
  1. Load more activity
×
×
  • Create New...