Jump to content

Leaderboard


Popular Content

Showing content with the highest reputation since 06/28/2010 in Posts

  1. 3 points
    Hello all, We are happy to announce a new release of Immunet: Version 7.0.0! This latest version of Immunet provides the same great protection against malware and viruses as before, but also includes Credo and AMSI. Credo is a ML engine that allows endpoint connector to extract feature print of a PE file and send to the cloud to see whether the file is malware or not. ScriptID engine allows AMP connector to analyze scripts prior to execution. It is based on the Windows Antimalware Scan Interface (AMSI). In 7.0.0 version of connector only PowerShell scripts are analyzed. You can get the new installer here. https://download.immunet.com/binaries/immunet/bin/ImmunetSetup.exe If you are running an older version of Immunet, you should be able to upgrade via the 'Update Now' button in the UI. If you don't see the update in your UI we recommend uninstalling Immunet and reinstalling the version downloaded from http://www.immunet.com/index Changes in 7.0.0 Improvements and updates: New Credo engine New ScriptID engine for AMSI Query improvements in Immunet Protect driver Improvement in preforming Immunet registration Improvements in Connectivity test tool Curl version update ImmunetSCMS service now handle crash reporting Driver updates to support No Reboot upgrades New certificate for the ELAM driver Improvements on the Malicious Activity Protection (MAP) to reduce false positive Fixes: Stability Improvements in the Immunet Protect driver Stability Improvements in the SPP Stability Improvement on Immunet Protect shutdown Stability Improvements in the Exploit prevention
  2. 3 points
    Hello all, We are happy to announce a new release of Immunet: Version 6.3.0! This latest version of Immunet provides the same great protection against malware and viruses as before, but also includes Improved detection coverage Windows 10 RedStone 6 support Update ClamAV to version 0.101.2 Improved status in Windows Security Center Bug fix to exploit prevention engine Immunet installer now handles all legal windows characters that can be in a Windows file path for default install Fixes to mitigate high CPU/Memory issue some users are seeing on Windows 10 during Windows updates. As always, you can get the new installer at https://www.immunet.com. We strongly recommend existing Immunet user to upgrade to v6.3.0 and start taking advantage of new improvements. If you are running an older version of Immunet, you should be able to upgrade via the 'Update Now' button in the UI. If you don't see the update in your UI we recommend uninstalling Immunet and reinstalling the version downloaded from https://www.immunet.com If you do encounter problems with the new version of Immunet Protect, please let us know via forums at http://support.immunet.com Thank you for your continued support! The Immunet Protect Team
  3. 2 points
    Hi 4tygrit i've the same update problem with the main.cvd file in a other post. To update immunet i've download ClamAV Portable (doant forget to get Updates in ClamAV). Stop the Immunet Service Delete in "C:\Program Files\Immunet\clamav\0.1......" the file main.cvd and daily.cvd copy the main.cld and daily.cvd files from "...\PortableApps\ClamWinPortable\Data\db" to "C:\Program Files\Immunet\clamav\0.1......" Start the Immunet Service again
  4. 2 points
    I'd like to report that the 7.2.8 upgrade through the UI took place with no problems. No reboot necessary! Great job on that guys! I did have to create a new allow rule with my firewall for sfc.exe but that's not uncommon behavior when a new build is installed. Some impressive changes have been made! A personal thanks to nirmeshptl for including a detailed change log with this announcement! Something I've been suggesting in the past when a new build is publicly rolled out. Best wishes, Ritchie...
  5. 2 points
    Interesting video you uploaded Valnat! Thanks for sharing. As the video demonstrates Immunet has some suburb efficacy! Much better than Microsoft's Defender AV! As you mentioned Immunet can be used as a stand-alone AV solution but it is recommended you use the ClamAV module if used in that manner. If Immunet is used as a companion AV to another compatible "paid product" it's best if the ClamAV module and updates for it remain disabled. This will reduce the amount of system resources being used. Also, don't forget to create exclusion rules for the Program Files folders for both AV's. This can go a long way in avoiding possible conflicts between the two AV's. Regards, Ritchie... P.S. I moved this topic to the General forum section since that's a better place for it.
  6. 2 points
    Hello Damokles and thank you for your interest in Immunet, Not sure what you mean by making a complete list. Immunet originally was strictly just a cloud based AV when it was first introduced. The draw back to that was Immunet had to have a constant internet connection for cloud based lookups during normal operation & during a scan. Also there was no off-line scanning capabilities. After the introduction of the open-sourced signature based ClamAV into the program that not only added an additional layer of off-line protection but also added the ability to run scans even if no internet connection is present as it works as a traditional downloaded malware definition signature based AV. You can use just the scalable multi-threaded ClamAV scripting code http://www.clamav.net/ as an automatic or on-demand AV scanner & a email gateway scanner for instance. ClamAV does not have a UI in the traditional sense since everything is handled through Command Line scripts. Of course Immunet provides a traditional UI to users without the need for advanced technical skills to configure or use since ClamAV's scripts are integrated into Immunet's program code via the ClamAV module. Immunet can be used as a "stand-alone" AV solution. If used in this manner it is recommended that the ClamAV module & updates for it be enabled. If Immunet is used as a companion AV to a compatible paid product it is recommended that the ClamAV module remain disabled. This improves the amount of system resources being used. Immunet will work with Defender. Using them both should provide good malware protection for the average user. In fact Immunet has, by default, an exclusion for Defender for improved compatibility. If using Immunet with Defender I would consider "not disabling" the ClamAV module for the reasons described below. Adding an exclusion/exception rule to Defender for Immunet's Program Files folder is also very highly recommended. That way they recognize each other as safe programs and goes a long way in avoiding possible future conflicts. If I "had to choose" one or the other I would definitely go with Immunet over Defender. Microsoft even admits that Defender is meant for users that don't have or don't want to use a different AV solution. Although some improvements have been made with newer builds Defender still is not a stellar anti-malware program as it provides basic protection. The Plus version of Immunet is no longer available. Immunet Protect Free is just like the name implies, it's totally free for individual/home or private network use and for "non-profit" charitable or educational organizations! Immunet is not licensed for any "for profit" business, service, organization or product. If it's found that Immunet is being used in such a manner no support will be offered. This information is included in the End User License Agreement (EULA) when first installing Immunet. We recommend that any for-profit entities use Immunet's paid Enterprise version called AMP for Endpoints. https://www.cisco.com/c/en/us/products/collateral/security/fireamp-endpoints/datasheet-c78-733181.html I hope this answers your questions. Regards, Ritchie...
  7. 2 points
    Hello all, We are happy to announce a new release of Immunet: Version 7.0.2! This latest version of Immunet provides the same great protection against malware and viruses as before, but also includes NoReboot upgrade beta. The Immunet Windows Connector often requires a reboot to complete the upgrade. This can be problematic for end users who have to time reboots, if they are in middle of critical updates or working on some important project, in order to upgrade the Connector, raising barriers to upgrading more regularly. This feature is to remove the requirement for reboots when upgrading the Windows Connector for good. Expected upgrade behaviour for Immunet users: * Upgrades from Connector versions < 7.0.0 to 7.0.0+ require a reboot to complete * Upgrades from Connector versions 7.0.0+ to any higher version do not require a reboot to complete Looking forward for your participation and help in cases of upgrade reboot failures issues, if encountered any. We would appreciate if you can reach out to us via support forum with Support logs as soon as you see upgrade failing or upgrade asking for reboot on upgrade. You can get the new installer here. https://download.immunet.com/binaries/immunet/bin/ImmunetSetup.exe If you are running an older version of Immunet, you should be able to upgrade via the 'Update Now' button in the UI. If you don't see the update in your UI we recommend uninstalling Immunet and reinstalling the version downloaded from http://www.immunet.com/index Changes in 7.0.2 Improvements and updates: No Reboot upgrades No Reboot uninstalls New kernel logs for Connector upgrades and uninstalls Installer improvements to handle NoReboot upgrades and uninstall Fixes: Stability Improvements in the Immunet SelfProtect driver Fixed reference leak in asynchronous kernel exclusions Stability Improvements on Immunet Protect driver
  8. 2 points
    Hi all, The newest 6.3.0.10988 build of Immunet has a new running process called cscm. Microsoft made some improvements as to how antivirus solutions can better protect their software from unauthorized intrusion. It's a fact that some malware has the capacity to disable the installed AV, usually through unauthorized code-injection methods. This added security protocol will make it much harder for malware to disable Immunet. For anyone that wants to read this Windows Dev Center article (thanks Wookiee) regarding this added security protocol click on this link. https://docs.microsoft.com/en-us/windows/desktop/services/protecting-anti-malware-services- Regards, Ritchie...
  9. 2 points
    Yup, this is the right place for your questions. Sorry, Immunet doesn't offer spam or phishing protection, Interestingly , older versions of Immunet could scan local Outlook.pst email databases for malicious email attachments, but we shelved this feature for a couple reasons: 1) the average user moved to cloud email services (gmail, Hotmail, outlook.com / etc), most of which provide absolutely minimal span and phishing protection, making local emal scanning redundant 2) Microsoft changed their outlook.pst format and libraries a couple times resulting in Immunet failing to quarantine just the attachment from within the outlook.pst database file; and instead quarantined the entire email database.
  10. 2 points
    Ritchie, As soon and you mentioned AMP I fully remembered that I selected YES on both of those systems. I uninstalled Immunet and selected NO, rebooted and all is good now!! I agree that I will stay with AMP, but this is a GREAT free product for home users. Grant
  11. 2 points
    I've sent it to Clam so guess we'll see what they say. Thanks for your help!
  12. 2 points
    I would venture to guess that the ClamAV module is scanning files at the same time as they're being created by Visual Studio. Try creating a custom Immunet Exclusion rule for Visual Studio's entire Program Files folder in Settings. Then turn ClamAV back on, restart your computer and see if the same behavior persists. You can also directly contact the ClamAV developers to inform them of this issue if you wish. https://www.clamav.net/contact Best wishes, Ritchie...
  13. 2 points
    Try a restart of your PC and also press several times the update button!
  14. 2 points
    I am running Windows 7 Pro on an older desk top and during the last few days have been getting a Virus detected and quarantined message on virtually every application that I use. I have been using some of these sights for 10 plus years and never had this issue previously. It persists even when I switch from Firefox to Chrome. I just ran a full scan of the entire computer and get reports of no virus found and have verified that the latest update is installed (as of 2/2/19). When I go to manually initialize Immunet, I see a note that the computer has never been scanned and is not secure even when I have just run a full scan. A typical warning is that f_0001f3 has been detected as Clam.Txt.Trojan.Generic-6840302-0. Quarantine was successful. I even got a message that Firefox Installer was a Trojan. This is very annoying and I would like some suggestions to resolve this issue. Nelson
  15. 2 points
    confirmed, is defiantly a Clam false positive. Thanks to everyone who reported this. we're reprod it internally and are working on a fix. In the mean time, if you turn off the clam AV engine in Immunet's settings that'll prevent the constant FP notifications and still keep your computer protected with the immunet cloud engine. We'll notify the thread to turn clam back on as soon as the fp is fixed.
  16. 2 points
    Why not brother.. You can download Avast offline installer from here and Know how to uninstall avast step by step here.. The step by step guide also has a link to the avast removal tool
  17. 2 points
    Hello everyone, I see a lot of future in this software, its interface is destined to "the end", compared to other interfaces today ... But instead of just talking, I made a new design for Immunet AntiVirus .. .I only did the basic part, in case I get you back, I can go back to work on the interface and finish for a new look to the software. Here are the images: I look forward to the feedback from the developers, and also from the community. Att: Lucas Lks
  18. 1 point
    Here the solution i found last hour. Immunet need to update to new version of clamav, clamav stop updating database files with old ClamAv version.
  19. 1 point
    Hello all, We are happy to announce a new release of Immunet: Version 7.2.8! This latest version of Immunet provides the same great protection against malware and viruses as before but also includes some new features, enchantments and bug fixes as below. Changes in 7.2.8 New & Enhancements: Added support for the Windows 10 November 2019 Update (version 1909) Added support for Windows 10 20H1 (Version 2004) (RTM Preview build: 19041) Improved visibility and enhanced protection against script-based attacks System Process Protection Improvements Improved Malicious Activity Protection engine to no longer detect on Google Chrome Stability Improvements in the Exploit Prevention engine Installer improvements to handle NoReboot upgrades and uninstall Stability Improvements in the Immunet SelfProtect driver Bug Fixes: Resolved Windows Connector service freeze issue on startup, under certain circumstances Improved the Windows connector process of gathering BIOS serial number, when needed, to properly detect hardware changes for registration with AMP Cloud Fixed a crash that could be encountered on shutdown Addressed issue where Windows Connector would fail to upgrade when installed alongside BitDefender AV Made stability improvements in the Connector installer Fixed an issue where ClamAV was taking a long time in scanning PDF files resulting into longer high CPU usage Updated ClamAV to 0.102.1, including changes related to the vulnerability described in CVE-2019-15961 Fixed an Exploit Prevention engine issue that could cause Google Chrome v78 and later to crash or display a renderer code integrity error This version also addresses the following vulnerabilities: CVE-2019-1010305 CVE-2019-12625 CVE-2019-12900 You can get the new installer from here https://download.immunet.com/binaries/immunet/bin/ImmunetSetup.exe Expected upgrade behaviour for Immunet users: * Upgrades from Connector versions < 7.0.0 to 7.0.0+ require a reboot to complete * Upgrades from Connector versions 7.0.0+ to any higher version do not require a reboot to complete Looking forward to your participation and help in cases of upgrade reboot failures issues, if encountered any. We would appreciate it if you can reach out to us via support forum with Support logs as soon as you see upgrade failing or upgrade asking for a reboot on upgrade. If you are running an older version of Immunet, you should be able to upgrade via the 'Update Now' button in the UI. If you don't see the update in your UI we recommend uninstalling Immunet and reinstalling the version downloaded from http://www.immunet.com/index
  20. 1 point
    I'm sorry to say that the Orbital code can't be disabled or deleted once it's installed. It's now an integral part of how Immunet's protection works for you. Not everyone gets the Orbital code actually. I never got the code installed on my PC. A person gets the Orbital code if Immunet detects one or more security weaknesses with your Operating System. That fills the gap for those possible vulnerabilities so to speak. Interesting idea to let the user decide if he/she wants to use it though. You could start a new topic in the "Ideas" section of the forum regarding the subject. That's not a bad idea! Regards, Ritchie...
  21. 1 point
    I see, thanks Ritchie. Take care
  22. 1 point
    op, Can you tell us what version of immunet & operating system your seeing this on and share a link to where you got your copy of privazar that's fp'ing? I tried privzar v3.0.96.1 Released : 06 April 2020 (both the Pe and installer versions) on win 10_X86&X64 and I can't reproduce your FP. Cheers, RobT
  23. 1 point
    Has anyone else been getting a certificate error/warning when attempting to visit these forums? I've checked my computer's clock and tried visiting with GNU Icecat (Firefox ESR), regular Firefox, and Vivaldi (based on Chromium). Warning message every time. I haven't tried regular Google Chrome but suspect users of that browser won't have any issue connecting, because last time I paid any attention to anything G, Chrome still wasn't checking the validity of HTTPS certificates (this might seem convenient because all websites "just work", but in reality is a very bad thing for your security). This situation might have changed, but as I have not used anything G for a very long time, I cannot check. If it helps webmasters with any diagnostics, I use "HTTPS everywhere" from EFF.
  24. 1 point
    Thanks for calling it out Zom, our forum cert is defiantly expired. A new one is on the way but I don't have an ETA fr it yet. Cheers, RobT
  25. 1 point
    That's kinda what I want. And I agree 100%
  26. 1 point
    Sorry to hear you had a bad experience with Immunet. Did you create an exclusion rule for Malwarebytes entire Program Files folder with Immunet & create a exclusion rule for Immunet with MB? That can go a long way in avoiding possible conflicts when running Immunet as a companion AV to another product. Like you mentioned, it could also be that your older computer just doesn't have the system resources needed. Especially if it's older SDRAM or DDR memory modules 3 gigs of RAM really isn't that much memory these days as software increasingly becomes more complex requiring more RAM & CPU cycles. I seen this happen to a friend of mine a number of years back. He was using an older rig with Win XP installed. After upgrading to a newer version of Immunet at that time he discovered that his old computer would just shut down after boot-up because "all available SDRAM memory was being used up!" I had to help him uninstall Immunet by using Safe Mode. Immunet no longer supports Windows XP since version 5 was first rolled out. I'm sure you're also aware that Microsoft no longer supports Windows 7 with security updates, bug fixes and system upgrades. That means as time goes by your computer will become more vulnerable to malware, viruses and hackers. Maybe it is time to consider getting a newer rig briab. Regards, Ritchie...
  27. 1 point
    Hey guys, "I too wish something can be done to end these 503 error messages that users are still encountering once & for all!" I can see why someone might get a little frustrated as this issue seemingly continues to go unresolved unfortunately. It makes me wonder if Immunet's update server is being overloaded with requests at times causing this error. Does Immunet need a faster/improved update server that can handle more traffic? CAVU, Rob or myself will send you a PM regarding your old log in credentials if they can be retrieved.
  28. 1 point
    Thanks for the additional feedback qwerty123! I'm not unfamiliar with building a rig from scratch. Letting me know that the D:\ drive is a HDD & not a SSD was very helpful! That would have been my next question. I think I have a good extrapolation what may be causing this behavior as I was able to reproduce it after some experimentation. I have a couple of HDD drives connected via SATA to the MoBo besides the C:\ drive on my current rig. I also use the Windows energy saver settings. If, after boot-up, a drive is not accessed within the specified time Windows will automatically turn off that drive to save power & needless wear & tear. Some MoBos have similar hardware based BIOS settings too. If you attempt to conduct a Context Menu Scan with Immunet and that particular HD disk is not already spinning at normal speed then it is possible that Immunet cannot access that drive before the disk has a chance to spin up to speed. If the drive is already spinning at normal speed then a CM scan will take place regardless of the drive letter has been my observation. P.S. - With your 10th post you are our newest official forum "member" and no longer a newbie! Congrats on that bro! Regards, Ritchie...
  29. 1 point
    RanSim is a tool that simulates the behavior of ransomware. The purpose of RanSim is to check if a workstation is well-protected with endpoint security software which would be able to detect and prevent real ransomware attacks. It also allows you to see if this software is incorrectly blocking files by running "false positive" scenarios. You can optionally select specific files you'd like to test to see how they would be affected by the ransomware simulations. ............................................maybe similar to cisco/talos amp,network protection
  30. 1 point
    I'm seeing it again, this 503 error, and it hails back to GeekDaddy's August 27 post in that other thread where I posted up, too. In this class of software, one in which purports to provide protection against the dangers of the open internet, any error which persists, intermittently or not, for four months is unacceptable. Think about the error: a cloud based app fails to connect to it. 'Nuff said. While I can't accuse indifference and apathy on the part of the developers, it seems the problem won't be resolved. I suspect Immunet is way, way down on the corporation priority list. Having tried several Immunet versions for a period approaching a decade on test systems (over time, two Win7 and now Win10) and rejecting it for good reasons over and over, I had high hopes for this latest version. Again, it won't be migrating to my day-to-day systems. "Better luck next time" seems to be Immunet's strategy. Best regards.
  31. 1 point
    The Department of Homeland Security issued a rare public warning urging on-line shoppers to use a great deal of vigilance this holiday season! Black Friday's on-line sales was at a record high of about 4.1 billion dollars spent, I'm sure the bad guys have taken notice of this, and Cyber Monday is right around the corner too. Cyber crime always increases during the holiday season but there has been an "alarmingly noticeable increase" of reported incidents compared to last year. Here are some things you can do to protect yourself from becoming a victim of cyber crime. First of all it's not a bad idea to update your Antivirus software & run a malware scan of your Operating System drive before doing any holiday shopping. Then make sure your AV is kept up to date while doing your on-line shopping. If you have access to a Virtual Private Network (VPN) definitely use it whenever you do any on-line banking or shopping regardless of the time of year. When holiday shopping on-line make sure you don't end up on a bogus site that resembles the real thing. Fake websites are on the rise this year. Apple, Amazon, and Target are currently the most impersonated. Other big names in the same situation are Tiffany, Sony, Samsung, and Microsoft. Always look for the secure "HTTPS" URL header with the shopping site's Domain name. Almost all legitimate on-line retailers use these secure encryption protocols that protects your personal data that's being sent from your browser. Also look for Domain names for popular brands that have spelling errors or mistakes, even if using the HTTPS protocols or not (HTTP) these are not genuine. Consider using a major credit card for payment such as Visa or MasterCard, etc... instead of a bank debit card. If using a debit card your savings or checking account could be drained and, unless the criminals are actually caught, there's nothing much can be done about that. Most major credit card company's offer some form of reimbursement if it's discovered that you were a victim of scamming. Plus the big card company's have methods to detect & react to possible fraudulent use of your card number. Still check your card's account often for any unauthorized purchases and contact the card issuer right away if you suspect something is amiss. Another option would be to use PayPal or a similar secure web based payment service if the retailer accepts these types of payment methods. Email is also being used for phishing attempts, malware using attachments as an attack vector or to re-direct you to a malicious drive-by download site. Avoid opening any links or attachments that come from any unsolicited entity. Especially if it comes from a company or charity you never heard of or never done business with. Be very wary of so-called free giveaways, discounts or gift cards delivered to your in-box this holiday season. When in doubt, just delete them. Social media sites are also being targeted with possible malicious/phishing links offering such holiday themed giveaways, gift cards or discounts. So be wary of any links you click on while visiting social media sites as well. A little common sense can go a long way to keep you safe too. "If you see a bargain that seems too good to be true it probably is!" Best wishes, Ritchie...
  32. 1 point
    +1 for Richie's answer.
  33. 1 point
    Thank you, let me make one more example.
  34. 1 point
    Will be nice can protect the program with password so cannot be edited or deactivated by other PC users.
  35. 1 point
    only from what I just read on https://blog.virustotal.com/2019/10/virustotal-bitdefender-theta.html tldr; Theta is bitDefenders automated malware analysis engine. all AVav companies, including Immunet, have a few. Some are better than others, but newer ones are always prone to FP's.
  36. 1 point
    Great FP Analysis BellGamin, I came to all the same points you did. I'm m submitting this to our internal virus analysis team for further review , only because it's a perfect trojan, and it's a smaller /lesser known/used app (that being said I do remember using a taskbar tweaker back in the windows XP days. Now I use classic start menu, though I do note taskbar tweaker has more features than classic start menu, and all it's features work - another point in favor of it being a FP That being said, there has been a growing trend of hacking source code access to older indy projects, injecting malware into them. And I want to make sure that isn't the case here as I vaguely remember using taskbar tweaker back in the windows XP days. Now I use Classic start menu, And it doe swht I ned but I also note taskbar tweaker has more features;
  37. 1 point
    I am a new User and have no idea if this is helpful but just in case... I could not download the installer. It kept telling me there was an internet problem. So I saw this thread and tried the links posted above. Couldn't reach the https://sourcefire-apps.s3.amazonaws.com link. So after some investigating, I found out it was a Mozilla/Firefox problem. I changed my default browser in Windows to IE and boom, it worked. Hope this helps someone.
  38. 1 point
    Successfully reproduced with Chrome on Win7x64 & Win10x64 today - Thanks again Deathinition, you rock! Hopefully we'll have the FP fixed by Monday. On another note, that's for introducing me to listenonrepeat . Am learning to play a guitar and it' s going to be really handy.
  39. 1 point
    You may be interested to know that Windows Defender is detecting some immunet temp files as Trojan: JS/Foretype.A!ml This started happening 2 days ago, and has happened daily to me since. Their "more info" link, if useful: https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?name=Trojan%3aJS%2fForetype.A!ml&threatid=2147724342&enterprise=0 Edit: Uh, pasting images to your forum is terrible, they lose a ton of quality in the process, practically unreadable. Here: https://imgur.com/15VhZ3Y
  40. 1 point
    Immunet doesn't have any know issues running in virtualized environments and has been thoroughly tested in vmware workstation, vmware server and virtual box. and once even in Microsoft's cloud. Complaints we've gotten about running in visualized environments usually stem from unrealistic expectations of performance on non-dedicated hardware (i.e. cloud hardware thats randomly shared with strangers (e.g. the free trial and budget tier's of google, amazon and Microsoft clouds). There is just too high a chance someone like me is sharing hardware time and already pushing the machine to it' s limits (see paragraph below:) To set some hardware expectations, I test Immunet on a local desktop running dual xenon e506 2.13Ghz CPU's +12 gb ram (ouch), and 2 independent scsi 1TB drives ( one dedicated to my os & apps, the other dedicated to vmware images) and it easily simultaneously powers my win10 working desktop (chrome, waterfox, and IE browsers, email, visual studio, and an Android Virtual device) plus 3 copies of immunet running on vmware workstation images for win7x32, win7x64, & xpx32. It can also power an additional win 10x64, but at this point the images start to chug ( I think disk bandwidth is the bottleneck). I can easily run this same level of compute (dektop + 4 images) + an additional win10_x64 image on a single more modern Intel i-core 7 + 64gb of ram and 2 sata disks (one flash drive for the OS & apps an a 1tb 7200 rpm disk for the images). Getting back to your original problem, yochenhsieh you nailed it figuring out clamAV, I've seen similar stats with my benchmarking too. The clam av engine loads it's full virus definitions signature set into memory: which takes from 100 to 600mb. add to that the clam scanning engine and virus definitions updater and clam alone can in a worst case scenario use in the the 700mb of memory range. Currently we have extra experimental blue keep preventative signatures out for a worm we're expecting that are inflating the usual virus definitions set size. You can try updating the clam av definitions set via the update button in the gui and running a full scan overnight. That might get you a smaller more concise set of definitions that'll take less memory and get you over the initial performance hump of building the local cache up.
  41. 1 point
    Cool, thanks for taking the time to report this to the ClamAV team! Much appreciated Macbeth!
  42. 1 point
    Hi Bitsomper, I'm sure you've read the previous threads to this topic so the devs are definitely aware of the situation. Unfortunately the newest 6.3.0.10988 build did not address this known issue. Thanks for adding this thread! Maybe the devs will see this issue is still causing problems for users and "eventually" do something about it. Immunet really needs to incorporate a way to upscale the UI for 4k screens! That is a obviously needed upgrade, that seems to be continually overlooked, that should be implemented with some new code in some future build. The sooner the better in my opinion.
  43. 1 point
    First of all for those that do not know what a VPN is here is a brief explanation of what it does. A VPN, or Virtual Private Network, allows you to create a secure connection using encryption protocols to another network over the Internet. VPNs can be used to access region-restricted websites, shield your browsing activity from hackers on public Wi-Fi, and much more. These days VPNs are "really" popular, but not for the reasons they were originally created. They originally were just a way to connect business networks together using encryption protocols over the internet or allow you to securely access a business network from home. VPNs essentially forward all your network traffic to an encrypted network, which is where the benefits, like accessing local network resources remotely and bypassing Internet censorship, come from. Why would I need a VPN service? Thanks to the Trump administration Congress passed legislation in Dec. of 2017 that allows your Internet Service Provider (ISP) to share or sell your browser history to third-party entities. Also, a VPN makes on-line shopping, banking or any site where sensitive data is required to be submitted much more secure since all internet activity is encrypted within the VPN service. I know that including a VPN service would be a costly endeavor since new code would have to be written and infrastructure changes would have to be enacted. For this reason I propose that a new Plus (paid) version be created to include an encrypted, entirely secure VPN service. Just an idea. Cheers, Ritchie...
  44. 1 point
    Hello Parai & welcome to the Immunet forum, any support issue dealing with possible bugs is taken "very seriously" & are usually dealt with in a timely manner is what I recollect from my experience of using Immunet over the years. Feel free to start a new topic in the Support (Issues & Defects) section of the forum if you encounter what you may think is a new bug. In fact, we encourage that input from users just to make the product that much better. Immunet uses a bootstrapper installer that requires an internet connection during the install process so you will get the newest 6.2.4 version, which I would "definitely" recommend you use. You can download the newest installer by clicking on this link here. https://download.immunet.com/binaries/immunet/bin/ImmunetSetup.exe Please note: Immunet no longer supports Windows XP or Vista so I hope you're not using one of these older Operating Systems. Cheers, Ritchie...
  45. 1 point
    First of all that is an "out-dated build" of Immunet (seen it, this vid is old). The current version is 6.2.4.10819. This video has absolutely no current validity since it doesn't relate to the newest build. Secondly, there have also been some recent infrastructure changes that will help in defeating the spread of such malware more aggressively within the Immunet cloud community.
  46. 1 point
    The problem with most rootkits is that they generally use some sort of advanced encryption method which usually makes 'em hard to detect let alone access & read. So it wouldn't surprise me if HexaPro was unable to submit any SHA256 or MD5 checksum(s) hash tag(s). Besides Immunet it never hurts to have an additional on-demand rootkit scanner at your disposal! Speaking of such... Malwarebytes has a new beta "CMD based on-demand rootkit scanner" available that looks rather promising. They're also looking for beta testers with (preferably) virtual test rigs for anyone that's into that sort of thing. As with any beta software please read the legal Disclaimer documentation carefully before use. Not 100% sure if it's compatible with Server 2008 R2 however. https://www.malwarebytes.com/antirootkit/
  47. 1 point
    Thank you very much for reporting this Jon. I've successfully reproduced it, and at this point my only advice is to steer clear of win 10 1809. as far as I can MS pulled it after release due to driver incompatibilities and potentially deleting user data when upgrading from previous versions. I was able to obtain a 1809 iso through MSDN and it ended up bootlooping during install of both home& pro win 10 versions (installing to vmware workstation). I had to use a workaround just to complete the OS install: https://luyentap.blogspot.com/2017/10/windows-installation-cannot-proceed.html. After that I was able to install Immunet and repro your bug.
  48. 1 point
    Hello again. 64 bit protection in 6.2.4?? Thanks!
  49. 1 point
    Good morning, This morning all the Windows Based Machines (Windows 10 and Windows Server 2012 and Windows 2008 R2) in our office running Immunet Anti Virus have this message: AppXDeploymentExtensions.onecore.dll has been detected as W32.45D0D4390-100.SBX.TG Quarantine failed. Any suggestions as I am not finding anything on the web about this other than AppXDeploymentExtensions.onecore.dll is a Windows Dymanic link library???? Any help appreciated! Thanks
  50. 1 point
×
×
  • Create New...