Jump to content


Popular Content

Showing content with the highest reputation since 09/25/2020 in Posts

  1. 3 points
    A couple of times this month I received a recorded phone call allegedly from an Amazon employee stating that they have detected possibly fraudulent activity with my account. I was then prompted to press 1 for more info. "I immediately knew this was a 'scam call' for the simple reason that I don't have an Amazon account!" After that I decided to do some investigation into this. "Amazon is aware of this scam and is advising it's customers if you do receive one of these scam calls don't fall for it, just hang up & 'definitely don't press any numbers' when prompted!" You can always check your Amazon on-line account yourself if you have any concerns and then contact Amazon customer service directly if you have questions. These Amazon scammers have also been using hacked email accounts. If you receive an email with similar content just delete it without clicking on any links or attachments included. You're also encouraged to report these calls or email to the Better Business Bureau, https://www.bbb.org/ and the Federal Trade Commission. https://reportfraud.ftc.gov/ Not a bad idea to also report this activity to your state's Attorneys General office. Regards, Ritchie...
  2. 2 points
    I have found Immunet to play nicely with Sophos home free in the past. It worked with no exclusions added to either; however to be on the safe side, I excluded Sophos's "program files" and "programdata" folders in Immunet, and Immunet's (Program Files\Immunet, Program Files\Cisco\Immunet, Programdata\Immunet, Programdata\Cisco\Immunet) in Sophos. I also tried Immunet with Kaspersky home free and I seem to remember it worked OK but did require each being added to the other's exclusions list to be stable. On my Windows box, I currently use it in tandem with both F-Secure AV and Malwarebytes Premium with no issues (because Malwarebytes itself is also a "companion AV"). To ensure this will work with no problems, I enter each program and add the other two solutions' "Program Files" and "Programdata" folders as exclusions. You'd think it would drag it down but it works fine on a circa-2011 machine with 4GB RAM and a mechanical hard disk drive. That said, I don't use Windows much nowadays as am almost completely a full-time Linux user. The solution is probably overkill, especially for my limited usage, but it's a Windows box, it's the low-hanging fruit that all opportunistic crackers and social-engineering scammers go for. It's the weak point from which all my documents could get trashed or accounts compromised. I figure even it it's overkill, a year's protection from the two paid-for solutions still costs less than a single tank of fuel for your car.
  3. 2 points
    Oh, and by the way, I forgot to mention Ritchie, it goes without saying that all the work you do on these forums is really appreciated. It must be pretty hard as it's probably quite a frustrating and thankless task, but the fact you haven't given up is an absolute godsend to the remaining loyal users! I try my best to help too, but you seem to have super-powers and have usually already solved someone's issue before I've even read their post!
  4. 2 points
    Hmm, restore from quarantine seems fine now. I suspect this might just be related to system load. If the system is under stress when an attempt is made to restore from quarantine, it probably takes slightly too long for the GUI to communicate properly with the Immunet service, so the GUI assumes that the service isn't running, and/or the operation has failed. Intermittent error are the worst to diagnose and fix!
  5. 2 points
    Hello all We are happy to announce a new release of Immunet: Version 7.3.2! This latest version of Immunet provides the same great protection against malware and viruses as before, but also includes some new features, enhancements and bug fixes as below. Changes in 7.3.2 New: Exploit Prevention engine with Script Control support Bugfixes/Enhancements Improvements to endpoint threat activity detection engine Increased the number of process exclusions honoured by the Connector to 500. Improved stability of local UI notifications. Addressed an issue where System Process Protection exclusions would not work for processes that start before the Connector. Changed Connector driver altitudes to officially registered altitudes. Removed Connector-related events and logs from a computer when the Connector is uninstalled Addressed issues with file exclusions. General performance and stability improvements for Exploit Prevention engine Fix for the vulnerability described in CVE-2019-0708. Fixed Exploit Prevention engine compatibility issues with the following applications: APTA Connect MS PowerPoint 2016/2013 FSLogix Internet Explorer and different plugins CIG ACG MS Office Appv applications Visual Studio debugger Vizient and Open Text IRM Black Knight You can get the new installer from here https://download.immunet.com/binaries/immunet/bin/ImmunetSetup.exe Expected upgrade behaviour for Immunet users: * Upgrades from Connector versions < 7.0.0 to 7.0.0+ require a reboot to complete * Upgrades from Connector versions 7.0.0+ to any higher version do not require a reboot to complete If you are running an older version of Immunet, you should be able to upgrade via the 'Update Now' button in the UI. If you don't see the update in your UI we recommend uninstalling Immunet and reinstalling the version downloaded from http://www.immunet.com/index
  6. 2 points
    I thought of yet another Idea that some users might appreciate. Add a dedicated CMD Command-line scanner to Immunet. That would be something useful for power users & IT technicians. Cheers, Ritchie...
  7. 2 points
    I support that 99,999% Jasen Dear Immunet_UX, please read the forum! please support your forum moderator! please tell the support that you are welcome to reply to e-mails! The Form is fillet out with my informations but please ask to ritchie because ritchie knows all important things and is our hero. I don't have high hopes, because Windows 7 ...
  8. 2 points
    What a "great idea" for Immunet users to voice their likes & dislikes Barbara! I completed the survey although, if chosen, I wouldn't be able to participate in the video conference since my computer has no web cam. "I would 'strongly urge any & all Immunet users' to complete this survey!" It really does only take a few minutes & that will give the devs much more insight into what Immunet users want in a new build. Best wishes, Ritchie...
  9. 1 point
    When you run across a pop-up on your favorite website, it's admittedly annoying. Still, you can easily click that little X in the corner within seconds, and go about your browsing. But when pop-ups randomly show up on your computer and you're not surfing the web, it's understandable that you'd be alarmed. What's going on here? And what, exactly does this mean for the health of your computer? Computer security experts break it down. What is a pop-up, again? Sure, odds are high you've at least seen a pop-up before, but you might be a little fuzzy on what they actually are. At a basic level, pop-ups are online ads that show up when you visit a website. "A pop-up is a graphic display, typically a small window, that appears unexpectedly on your computer," Mikko Laaksonen, chief executive officer of Responsible Cyber, tells Yahoo Life. "The pop-up in itself is not malicious, but is an ad." Plenty of websites use pop-ups to try to sell you on something or offer you a promo code before you leave, and that's pretty harmless. But sometimes pop-ups can be a sign that something is off with your computer. "Browser pop-ups may also indicate the presence of unwanted code running on your device," Joseph Steinberg, cybersecurity and emerging technologies advisor, tells Yahoo Life. "Likewise, pop-ups appearing on your computer outside the constraints of a web browser are often the result of a malware infection." (Malware, in case you're not familiar with the term, is software that's created to damage your computer or network.) Even if the pop-ups don't seem to be doing anything to harm your computer, Steinberg points out that "unwanted adware is malware." Basically, if pop-ups are showing up on your computer, it's annoying at best and malicious at worst. Either way, you don't want to write it off. How to stop pop-ups solution #1. Laaksonen says that anti-malware software is a "must!" Steinberg agrees, saying, "If you are already running security software, run a complete system scan for malware." And if you're not currently using security software on your computer, Steinberg recommends you get it ASAP. How to stop pop-ups solution #2: Check your web browser Steinberg recommends checking your browser (i.e. Chrome, Safari, Firefox, Internet Explorer) to make sure it doesn't have any proxies configured to intercept and relay web traffic or any unwanted plugins. "If that advice sounds like techno-jargon to you, consider uninstalling and reinstalling your web browser," Steinberg suggests. Basically, you may need to get rid of your current browser and install it again to fully get rid of the issue. How to stop pop-ups solution #3: Don't click on pop-ups Clicking on the pop-up can make the problem even worse. "Do not purchase anything offered to you via the pop-up. Do not engage with the pop-up," Steinberg says. Laaksonen says that's especially true if the pop-up is promising you something, such as money or a random prize. "It would help if you do not click on unknown links, and if you do not open attachments that claim a prize or anything that you were not expecting," he says. How to stop pop-ups in the future To stop pop-ups down the road, Steinberg recommends practicing good cyber hygiene — that is, making smart decisions online and using software to keep your computer free from malware. A few ways to do that, per Steinberg: Back up your computer and do it often. That way, if something goes wrong, you won't panic about lost data. Encrypt sensitive data. Encryption is built into many versions of software packages, or you can use a free encryption tool. Use anti-virus, anti-malware software. You don't need to spend a ton on it, but you want a package that is anti-virus, anti-spam and anti-malware. Once you have it, run a scan often. What to do if you get scammed online: 'As a minimum, change your passwords' By Korrin Miller - Yahoo Life! Contributor
  10. 1 point
    Cool, you got an image uploaded! Ok, WAX files are most commonly used by Windows Media Player & a few other media players. https://file.org/extension/wax Any reason you can think of that some of these files are being seen a possibly malicious?
  11. 1 point
    Your query looks a lot like you are running Immunet in some sort of organisation or corporate environment. Immunet is targeted at home users, so you may find you can only accomplish what you need with the corporate "version", Cisco AMP, instead. Additionally, support is not provided to Immunet users in corporate environments. If you have already tried adding the relevant scripts and program components to Immunet's exception lists, and it still doesn't work, and you're not a home user, just buy AMP. To the best of my knowledge you can't add specific ports as exceptions in Immunet and it's not intended for having config changes pushed remotely (e.g. via Powershell) because those are the sorts of things home users don't usually need to do.
  12. 1 point
    I see, well thank's again Ritchie (you got such a good name that I feel like mentioning it everytime). Also I'm using Win8.1, I'm going to check what's better for me from the AVS you advised me with and do comparisons. Best regards,
  13. 1 point
    It depends what build of (I'm assuming you use) Win 10 you have weather you can use Defender or not. Newer builds of Win 10 will automatically disable Defender if you install another AV solution. Microsoft even admits that Defender is only meant for users that don't have or don't want to use a good third-party AV anyways. I've never used Defender myself as it's not a robust AV compared to some free AV products even! This has been proven once again by 'recent' AV Comparatives testing. Most of the major player's AV products are compatible with Immunet. Such as AVG, Avira, AVAST, Norton, McAfee, Trend Micro, Kaspersky & others. If you look at the Immunet's Exclusion list a number of AV's are already excluded by default. Personally I have Immunet paired with Panda Dome Pro. It is a great idea if you use Immunet as a companion AV to create an exclusion/exception/allow rule for 'Immunet's entire Program Files folder' for the other AV. If the other AV you choose is not listed with Immunet's Exclusion list then also create a custom Exclusion rule for the other AV's entire Program Files folder as well. This really can go a long way at avoiding possible future conflicts or problems between both AV's. They should recognize each other as safe programs. Also, if you do use Immunet as a companion AV to another product it is recommended that you disable the ClamAV module & updates for it and just use the cloud engines instead. This will (sometimes significantly) decrease system resources being used by Immunet. Best wishes, Ritchie... P.S. - I'm not completely unfamiliar with Comodo. Back in the day I used just the Firewall & Defense+ modules minus the AV module enabled for some older builds of Windows. I quit using Comodo back then because it was increasingly becoming a resource hog (bloatware).
  14. 1 point
    Microsoft has issued a security patch for a security flaw for all Windows platforms. Microsoft has decided to include even Win 7 users for this security update. The flaw is called 'PrintNightmare' also identified as CVE-2021-34527 which affects all versions of Windows. The flaw is associated with the Print Spooler Service. The Print Spooler service manages access to a printer connected to your system. Hackers can use this vulnerability to view or delete data, download arbitrary code or even create new user accounts using Administrator privileges. Depending on your Windows Platform the Windows Update package that will be installed are KB5004945 through KB5004959. Microsoft is advising all users to update your PC ASAP to get this security patch. If you have Windows Updates set to automatic you will get the security update. If you update Windows manually run the Windows Updater as soon as you get the chance. If you don't use a printer anyways you can go into Services and disable the Print Spooler Service which won't affect any other process. Since I don't use a printer I already had that Service disabled thankfully! However, I would still recommend you get this update installed. Just in case you decide to connect a printer to your system at a later date. Best wishes, Ritchie...
  15. 1 point
    I love that you have kept that machine running so long, and that you still have a use for it! I still use a 32-bit Intel Atom netbook when I need an ultra-portable computer, but that's running Debian GNU/Linux now since XP support ended. You may be pleased to know that ClamWin has come back from the dead and the latest version of the ClamAV engine has been ported to it. I believe ClamWin still supports all Windows versions back to 98. There are only two downsides I can see: (You would also have this problem with Immunet) - The standard ClamAV databases main.cvd, daily.cvd and bytecode.cvd currently occupy ~430MB (at the time of writing) just on disk. In other words, loading them into RAM on your XP machine would consume almost all of its RAM, even before we consider the scanning engine, GUI components and Windows itself. In everyday usage I tend to experience ClamAV occupying around 1GB RAM when doing a scan of a directory, whether that's measured using Linux's "top" command or Windows' "task manager" utility. Therefore you may find that scans on your old XP machine simply don't run, or it pages to disk so much that it slows to a crawl. ClamWin doesn't do "on-access" scanning unlike most other AVs (including Immunet). You have to manually scan things yourself on-demand. Regarding the second downside, years ago I used to just do a daily full scan of all hard disks with ClamWin and a periodic (e.g. hourly) scan of the running processes in memory (ClamWin's "memory scan" option, similar to Immunet's "flash scan"). For an internet-connected machine in the modern day, this wouldn't be enough, but for your offline XP machine I'm sure it'd suffice, even if inconvenient. Regarding the first downside - if you can find some old SDRAM on online auction sites, old computers your friends have in the attic, or even your local computer repair shop*, just max out the RAM on your board. If you get it to 1 or 2 GB you'll probably find it'll run adequately. *A few years ago, an independent repair shop near me still had a few AMD 486-DX4 CPUs and 4MB sticks of RAM in stock. Your PIII's RAM is a lot more modern (probably PC100 SDRAM). You might find your PIII can cope with 4 sticks of 256MB (or possibly even 512MB) each of this stuff, giving you enough of a total to fire-up ClamWin. Good luck!
  16. 1 point
    Many generic Windows installers can be called from the "run" dialogue (SUPER + R) or from the command prompt with the "/silent" option. It's generally undocumented and support is not universal, but it sometimes works. So, if the Immunet installer is called "setup.exe" and resides in the root of drive D:, you'd hit SUPER+R, and type "D:\setup.exe /silent" in the box, then hit enter/OK. Other commandline options that may get you what you want: /silentinstall or /verysilent or /y I've not tried any of the above but I've seen and used them for various other installers. I'm fairly certain Chocolatey makes use of this trick for most installers, so you may want to see if you can find Immunet's NuGet install script on Chocolatey's web site to see how it calls Immunet's installer. To deploy this on another machine, you'd have a .bat file calling the installer with the correct commandline option, and run that instead of running the installer directly. This does of course sound a bit like you might be managing some sort of commercial deployment, so if this is the case then AMP will suit your needs better and is of course licenced and supported for such scenarios. Sometimes it's worse to use the wrong tool for the job than to just not do the job at all. If something's worth doing, it's worth doing right. If you're doing this for an organisation, just get AMP.
  17. 1 point
    Other users have reported the same detection as well recently. This is a False Positive. I would suggest you submit a False Positive report to the Immunet Support team & since it's a ClamAV detection also report it to the folks at ClamAV too. Here's the links for both to do so. https://www.immunet.com/false_positive https://www.clamav.net/reports/fp
  18. 1 point
    Hi folks, Sorry for the delay in responding. I took some needed time off. That is indeed a False Positive by the ClamAV module. I would suggest you report this at Immunet's FP reporting site. https://www.immunet.com/false_positive Also, since it is a ClamAV detection you can report this directly to the ClamAV support team as well. https://www.clamav.net/reports/fp Cheers, Ritchie...
  19. 1 point
    Hello adc, Immunet itself doesn't have any pro-active email client scanning properties per say. However the ClamAV source code that Immunet uses does. If you're looking for just a dedicated email client scanner that would be the way to go. https://www.clamav.net/downloads Keep in mind that the ClamAV source code uses 'Command Line scripts' instead of a traditional User Interface.
  20. 1 point
    If you are running Immunet in parallel with another AV like Norton, you can safely disable the ClamAV module in Immunet. ClamAV is very CPU-intensive, and you may find that this is the component that's causing the CPU-spike. I personally leave ClamAV enabled, because I often add custom signatures to it - but it does really hammer that CPU. You should also make sure you've gone into Immunet's settings and excluded Symantec/Norton's directories under %programfiles%, %programfiles(x86)% and %programdata% as relevant/necessary. You may also want to add Immunet's folders to Norton's exclusions (these are %programfiles%\Cisco\Immunet, %programfiles%\Immunet, %programdata%\Cisco\Immunet, %programdata%\Immunet if you are running 64-bit). I'd be willing to bet a lot of your trouble is Norton and Immunet scanning each other whenever they do anything. As WilliamKing321 states, updates and things also cause this behaviour. I know when my W10 is running an update because Immunet in particular starts consuming massive resources scanning it all. And seeing as I'm a fairly infrequent Windows user, this is very noticeable every time I have the misfortune of needing to boot that operating-system.
  21. 1 point
    Haha thank you Ritchie! I'd of course "like" your posts, but until you mentioned it I didn't even know how you gave other people "likes" on here! Will give it a go on your post. I don't always keep Immunet installed, but I do pop on here occasionally to check on its progress and to help other users as I really want it to succeed. It's lightweight and minimalistic, doesn't require an account in order to use, and optionally uses the ClamAV engine, which I find indispensable as it means I can add custom signatures. TL;DR I really like Immunet when it works, and I don't want to stop using it!
  22. 1 point
    Ok, my bad! Sorry about the lapse in memory! The topic is pinned so that means only admins, devs or myself have the proper permission to post there. I'll add another thread there myself regarding your recent findings! Maybe not tonight but I'll get 'er done! As you pointed out it does seem to me too that Cisco has made the Immunet project an extremely low priority with (no doubt) minimal funding. You can't actually call it abandonware though since new builds are rolled-out from time to time, so it's still getting 'some' development. As far as responding to users support issues there have been 'no technical input' from any admins or devs since early April of last year when the admin RobT abandoned ship. It's just been little ol' me for over 10 months doing what I can to fill in as a support person. So in that regard I'm just as frustrated as you are zom. Believe me I've contemplated just leaving the project on more than one occasion. Being the forum's moderator for a number of years I can tell that Immunet's user base has already significantly diminished just by the amount of traffic the forum gets now. Especially before the Plus (paid) version of Immunet was completely scrapped in favor of developing an enterprise version of Immunet called FireAMP Connector (now called AMP for Endpoints) this forum was actually quite busy & interactive between users, admins, devs & mods. Besides myself there actually was more than one moderator for this site in the past! Oh, the good ol' days! If you too decide to leave the project I would like to say that, by your posts, I've always found you an intelligent & articulate fellow. If no one else, I've appreciated your input on the forum bro! You've got 14 'likes' which makes your community reputation good. Who do you think gave you most of those? I'll give you three guesses & the first two don't count, lol! Best wishes, Ritchie...
  23. 1 point
    ritchie58 Thanks for the research. Yes I was aware of these settings and tried to add the files you mentioned, but ZA refused to allow me to. Thinking that there must be a special way to do it in ZA was the reason for my post. I've decided that I'd had enough of ZA. (I'd had other issues in the past), I just uninstalled it completely and installed a new and different Firewall program. So far everything is working well with Immunet. Thanks again for your expert help. SG
  24. 1 point
    The quarantines failed because the files were just temporary files that no longer exist but "these detections are not False Positives!" "JS.Downloader should not be trusted!" Besides Immunet other AV vendors have flagged this app as malicious in nature as well. It may contain a trojan virus that uses a JavaScript exploit to infiltrate your Operating System and then possibly download other forms of malware to your system such as additional viruses, data eating worms, backdoor exploits, keyloggers, etc... I would uninstall this app ASAP if I were you! Then run a Full Scan with Immunet of your entire computer using Safe Mode.
  25. 1 point
    Ok, I sent out emails to a couple of Admins regarding this and a few other issues that go unresolved. Let's see what happens.
  26. 1 point
    Hi, happy new year first of all. I´ve recently installed the latest Version on a machine behind a proxy server. I can´t update virus definitions. During new installation Proxy Settings were skipped; no proxy detected. Is there a way to manyually configure the proxy settings? Thanks
  27. 1 point
  28. 1 point
    Hi Steven, I could see where some folks might want to still use an old rig with XP installed for the software that wouldn't be compatible with newer platforms. But like you mentioned anyone foolish enough to do ANY on-line activity with XP is, literally, taking a huge gamble even if you have an AV installed or not! Of course Immunet quit supporting XP years ago. This includes newer & older builds of Immunet including your version 5. Because of this Immunet will not even be able to reliably connect to the Immunet servers for cloud look-ups during scans or pull down new ClamAV malware definitions. The servers won't recognize the in-coming requests as legitimate. I'm sorry to say you had to find this fact out the hard way Steven. You should have asked first on the forum 'before' spending all that time experimenting! Here are some AV solutions that might still work with XP & still have some decent efficacy according to a recent AV comparatives test. BitDefender Internet Security 2014, Kaspersky Lab Internet Security 2014, and Panda Security Cloud Antivirus Free 3.0. If you can find an older installer of Malwarebytes Anti-Exploit that supports XP that would be a great added layer of security for users. I helped closed alpha & public beta test Anti-Exploit for years when it was a Zero Vulnerability Labs product and then for Malwarebytes after they bought the company. For my efforts I got a free lifetime license for Anti-Exploit Premium (the paid version)! Is that cool or what! A-E is now part of MB's AV but you can still get new public beta builds to test. Regards, Ritchie...
  29. 1 point
    ok this is what I did, Ran full scan with Immunet (I only have immunet but I made ClamAV was on). I don't have defender because my understanding is that you have to delete Immunet to install defender to run it (not sure the exactly way to do that correctly, so will hold off on doing that for now and will wait for response from you all). Run full scan on Immunet flag 74. 72 were like the first one the 2 like the 2nd one. I restore one of the files like the 1st one and drop it into www.virustotal.com. and only ClamAV detected it out of 60 other engines (please see pic) . What do you folks think do we have a false positive??? Also some of the Adobe files were listed from months ago. I am pretty sure I ran Immunet full scan more often then that. I am pretty sure I rant Immunet full scan last week if not the week before. any help will be appreciated. The other questions is in immunet if a file is quarantine it disappears form the file-path tree so for me I can not drop the file in virustotal.com unless I restore the file. Is there a way I can drop the file in virustotal when it is in quaranitine from immunet??? ps I use firefox and I have window 10. thanks
  30. 1 point
    Hi Tankace! First run a full system scan. With ClamAv on. I would also scan with Defender. What AVs do you have or is Immunet you main? Is Defender flagging anything? Those files do look suspicious, but could be false positives. Since these are copy and paste I can't dive in to the files much. Try uploading the files to Virustotal, https://www.virustotal.com. It's a drag and drop site and it's easy to get a good idea if its bad or not. After you do that we should know more if its a true threat or a false positive. What's your OS i.e Win7 or 10. Pro of home version Are you using Internet explorer? The reason I ask is the first file path with INetcache/IE looks like a toolbar has installed itself to IE. Why it seems to install when your start your system is most likely is set to startup automatically when you turn on your computer. You can disable this in a few ways, but the easiest is go to task manager ->startup tab -> find the program and select it and at the bottom right hit disable. With that said if it's malware it may hide itself for being seen. Sorry if this seems like a quick response It's a very busy day for me, but I will help where I can:) Let me know what virusTotal says so I can help with what needs to be done next.
  31. 1 point
    Here's something else you could try. Immunet developers have rolled-out a new 7.3.12 build that has some bug fixes & improvements. You should get the update pushed to you through the UI or you can directly download the newest boot-strapper installer here. https://download.immunet.com/binaries/immunet/bin/ImmunetSetup.exe It wouldn't hurt to do an uninstall & reinstall actually considering the circumstances. It's up to you. If you do decide to do a uninstall & reinstall with the new build I would recommend you keep your previous Settings & Exclusions by clicking on the "YES" option when the uninstaller prompt asks if you plan to re-install Immunet. That way you won't have to re-configure your Settings and add your Exclusions over again as Immunet will save your history.dat files.
  32. 1 point
    The Immunet team would like to wish everybody a Merry Christmas & Happy New Year!
  33. 1 point
    Original article by Katherian - cybersecurity expert & Emsisoft blog contributor Who would have thought that holiday 2019 would be the “last” of the traditional holidays we’ve enjoyed for so long (at least for some time)? This year, there are no carolers, no shopping in packed malls, no ice skating in public rinks, and very little of all the other holiday fanfare we’re used to. Instead, many of us are home—in front of the computer for several hours per day—studying or working remotely. There’s also shopping, gaming, and watching, all done online as well. (Quick shoutout to the front liners and essential workers! Thank you!) Suffice it to say, holiday season 2020 is unlike any we’ve had in recent memory. And cybercriminals are having the profit of their lives. As the holidays approach, we start to let our guard down. Many people are on vacation and trying to relax. Cybercriminals, on the other hand, are hard at work. They’re busy breaking and hacking networks, planting malware, or sending out phishing emails. The attacks never end. And as if the holidays (and pandemic) were not burning enough holes in our pockets, a cyber attack can happen at any time, too. We’re pretty sure the last thing you need right now is paying hackers thousands of dollars of ransom to decrypt your personal and work files. So to help you avoid more headaches, here are four easy things you can do to stay safe online during this holiday season (and beyond): 1. Create a separate guest wifi If you have a few friends and family coming over, you absolutely need to create separate guest wifi. Particularly if you work from home since your business files could be accessible in your home network. Having separate wifi helps keep your home network separate and secure from your guests. That way, you feel comfortable giving out the password and not worrying about having to remember to change it after your guests leave. Yes, we still recommend you create guest wifi even if you trust your friends and family with your life. The folks at LifeWire wrote a great post on how to create guest wifi. 2. New year, new password Update your passwords, or better yet, get yourself a password manager. It will save you a lot of time and potentially a lot of headaches down the line. Hackers are busy breaking through accounts using publicly leaked passwords. Don’t make it too easy for them. Depending on how many online accounts you have, this could take a few minutes to an hour or two of your time. So think of this as an investment—you’re actually saving yourself hundreds, if not thousands, of dollars from avoiding a cyber-attack. Not to mention setting yourself up for security success. We have a winning guide on password management here. 3. Shop securely Found a unique gift from an eCommerce store? Doing more last-minute shopping (even if it’s just gift cards)? Before you checkout and provide your card info, make sure you’re on a secure site. First, try to only go to online stores you know and trust. Second, check the site’s URL and make sure there’s “https://” at the beginning, and the URL is what you expect it to be. For example, if you’re on Paypal, make sure the URL says “paypal.com” not a misspelled variant like “paypaal.com,” or any other unrecognized URL. Third, consider using a disposable or virtual credit card, especially for one-off purchases. Doing this helps further secure your information. To learn more about how to get one, go to Wallet Hub‘s guide to virtual cards. 4. Keep your security apps running Your antivirus, VPN, etc., are some of your most vital defense against hackers. Keep them running. Cybercriminals are going all out and will try to catch you everywhere on the web. Whether by downloading an app or file, clicking on an email, or visiting an innocent-looking website, you can fall prey to malware within seconds.
  34. 1 point
    Wow! I can't think of anything else for you to try qwerty123, I'm at a loss. Sorry I couldn't help ya bro! I would normally recommend that you submit another FP report to the devs but the FP reporting URL seems to be non-functional at this time which comes as no surprise to me given the current circumstances. With no technical support on this site anymore and other on-going issues (such as the FP URL not working & the continuing EX0 server error messages with this site to name a few) I know I'm starting to get quite perplexed as to why Immunet was/is being so neglected for so many months now. I know there's a pandemic going on but other AV company's don't seem to have problems providing expert technical support for it's users in spite of that fact. Must be that this software is a "extremely low" priory with Cisco right now. If things don't improve soon I don't think I will want to remain involved with this project. That's how frustrated I'm becoming! "I don't want to attempt to support, which I'm increasingly starting to believe is, just glorified abandonware for much longer!" Everyone has only so much patience before it's expended. Seeing software that once had such great potential (and still does actually) that I've been personally involved with for well over 10 years go by the wayside really sucks! Ritchie...
  35. 1 point
    Well, isn't that strange! Sorry zom but I would recommend that matt use Revo Uninstaller instead since I've never heard of or used BCUninstaller. I've personally used Revo Uninstaller with very good results in the past with uninstalling troublesome programs. Revo can in fact find orphaned registry keys, left over folders and files too if you use the Advanced scan setting. The free version will work great with 32bit systems but I would recommend you choose the "fully functional free trial" of the Pro version if you have a 64bit system as it better supports those platforms. https://www.revouninstaller.com/revo-uninstaller-free-download/ If you've never used Revo Uninstaller before there are some great tutorial videos (even by the developers themselves) on YouTube you can view prior to using the software. Just to be on the safe side it's not a bad idea to create a manual "System Restore Point" first in case you accidentally delete something you shouldn't have (like a OS system file or folder). I would recommend you enter "Safe Mode without Networking" before uninstalling with Revo Uninstaller. Some earlier versions of Win 10, Microsoft (in it's infinite wisdom) made accessing Safe Mode a more dawn out affair so let me know if you run into any difficulty there. Also, please read the thread I added to the other Issues/Defects topic you posted regarding what to do next with the reinstall. Cheers, Ritchie...
  36. 1 point
    Here is something I would recommend you try. First uninstall the old build first. When asked by the uninstaller if you plan to reinstall Immunet again choose the "NO" option and proceed with the remainder of the uninstall. Then download this bootstrapper installer package & run it. https://download.immunet.com/binaries/immunet/bin/ImmunetSetup.exe This will install the newest build of Immunet. You will have to reconfigure your settings to way you had them & add any custom exclusions & automatic scan(s) you may have been using again. Please note: Some users have reported issues with updating the ClamAV module after installation with build 7.3.2 unfortunately. I hope this info helps. Regards, Ritchie...
  37. 1 point
    Dr. Franken...: What a filthy job. Igor: Could be worse. Dr. Franken...: How? Igor: Could be raining.
  38. 1 point
    Hi qwerty123, Have you tried to add a custom Exclusion rule for the autohotkey app(s) with Immunet? If not, give that a try and see if that fixes the issue. Just make sure you exclude the correct file path(s) for the app(s).
  39. 1 point
    Don't forget to delete the files lastupd and update.log (a lastupd file can make trouble). During tests, I always rename the cvd files to see if fresh cvd's are being downloaded. FrankenImmunet, sounds good. FrankenImmunet with IgorCloud.
  40. 1 point
    It seems like there might be another issue in build 7.3.2, although I think it's an exacerbation of a long-standing one. I was running a full scan as a test in 7.3.2 and a few items (all false-positives so far) have been quarantined. Attempting to restore from quarantine results in "Restore from quarantine failed. Check agent is online". The agent is definitely online because I can still run more scans and quarantine (well, permanently lose) even more items. The unfortunate thing is, once a restoration attempt has failed once, Immunet won't let you even try to restore the item from quarantine again. This means that any files that have been quarantined and not restored are lost forever (subject to having adequate backups). This was always an intermittent (but rare issue) in Immunet, but in this latest build, it has happened on all but 1 of the detections in my initial test scan. This is why the "ask me" option in the settings should ask the question *before* quarantining, not after like it currently does.
  41. 1 point
    Would be nice to have false positive reporter in the Immunet program possibly in quarantine maybe in new UI update?
  42. 1 point
    Wow, that's strange! I've just reinstalled Immunet (I had uninstalled it, selecting "no", so that all data and settings would be deleted). The first thing it did was update the ClamAV databases successfully! I hope this was just a temporary glitch. Fingers crossed it's now fixed...
  43. 1 point
    i am done with immunet. why bother when simplest update is headache looking like updates from amp to immunet botched guess they using amp over there in cisco this free is free headache i have gone way of virtual box hopefully this gets fixed or pay to use i really havent had a need for antivirus past months my 2 cents stay safe u al
  44. 1 point
    I'm sorry, but I find the survey very disturbing. I cannot get the Immunet 7 service to stay running and development wants to ask how I feel about the importance of "history" and if I like the idea of moving history to the Windows Event Viewer. Are they serious? The location of "history" is the biggest thing they are worried about? How about they fix what they have before they rip away or add new features? How about leaning on your support forum for actual customer feedback? BTW, Windows Event Viewer interface is old and outdated. Why Microsoft has not changed the MMC interface is beyond me. I have to resort to LDAP queries and other scripts to properly search/filter event viewer at work and now Immunet wants to know if I'm ok with that on my home computer? No thank you. I would rather see some Cisco AMP for Endpoint features making their way into Immunet. I would like to know what my family members were doing on a computer when an incident occurs. AMP makes this very nice. This is a step forward. Windows Event Viewer is a step backwards. If Cisco is not willing to resolve the issues with Immunet and properly support the consumer base, then pull the plug and let it die. I really hope Immunet development continues and improves. Jasen
  45. 1 point
    Another idea if I may. Increase the different language strings for the UI to include most major global languages. This would help increase the user base no doubt.
  46. 1 point
    Glad to hear that you're looking into the 4k screen issue Barbara. "I think that would be 'really cool' if this issue can be put to rest once & for all if at all possible!" Although users are still encountering update issues with the current 7.3.0 build which I find continually disconcerting. For that reason, I am "SO" looking forward to the new build being rolled-out but I would also like for you guys to take the necessary time for "comprehensive alpha testing" to make sure there are no serious bugs to the new build before a public release. Something that was sorely lacking with the current build I believe & I would hate to see a repeat of that scenario. Yikes! Best wishes, Ritchie...
  47. 1 point
    I think this is an awesome thing!! I have filled out the survey and left my feedback. I really like that the platform is getting more support from cisco! As you said ritchie I would also encourage all users to fill out the survey, this will give us a chance to give feedback to the devs on how to improve the AV. The more of us that fill it out the better it will be. I can't wait to see how the survey helps and how it will help improve Immunet as a whole:) Stay safe everyone
  48. 1 point
    Hello all, We are happy to announce a new release of Immunet: Version 7.2.8! This latest version of Immunet provides the same great protection against malware and viruses as before but also includes some new features, enchantments and bug fixes as below. Changes in 7.2.8 New & Enhancements: Added support for the Windows 10 November 2019 Update (version 1909) Added support for Windows 10 20H1 (Version 2004) (RTM Preview build: 19041) Improved visibility and enhanced protection against script-based attacks System Process Protection Improvements Improved Malicious Activity Protection engine to no longer detect on Google Chrome Stability Improvements in the Exploit Prevention engine Installer improvements to handle NoReboot upgrades and uninstall Stability Improvements in the Immunet SelfProtect driver Bug Fixes: Resolved Windows Connector service freeze issue on startup, under certain circumstances Improved the Windows connector process of gathering BIOS serial number, when needed, to properly detect hardware changes for registration with AMP Cloud Fixed a crash that could be encountered on shutdown Addressed issue where Windows Connector would fail to upgrade when installed alongside BitDefender AV Made stability improvements in the Connector installer Fixed an issue where ClamAV was taking a long time in scanning PDF files resulting into longer high CPU usage Updated ClamAV to 0.102.1, including changes related to the vulnerability described in CVE-2019-15961 Fixed an Exploit Prevention engine issue that could cause Google Chrome v78 and later to crash or display a renderer code integrity error This version also addresses the following vulnerabilities: CVE-2019-1010305 CVE-2019-12625 CVE-2019-12900 You can get the new installer from here https://download.immunet.com/binaries/immunet/bin/ImmunetSetup.exe Expected upgrade behaviour for Immunet users: * Upgrades from Connector versions < 7.0.0 to 7.0.0+ require a reboot to complete * Upgrades from Connector versions 7.0.0+ to any higher version do not require a reboot to complete Looking forward to your participation and help in cases of upgrade reboot failures issues, if encountered any. We would appreciate it if you can reach out to us via support forum with Support logs as soon as you see upgrade failing or upgrade asking for a reboot on upgrade. If you are running an older version of Immunet, you should be able to upgrade via the 'Update Now' button in the UI. If you don't see the update in your UI we recommend uninstalling Immunet and reinstalling the version downloaded from http://www.immunet.com/index
  49. 1 point
    If immunet does not detect your proxy, you have to declare it with winhttp or import it from the internet explorer : C:\Windows\system32>netshnetsh>winhttpnetsh winhttp>netsh winhttp>set proxy proxy_server "<local>" (ex : set proxy or import form internet explorer netsh winhttp>import proxy source=ie I hope this helps you
  50. 1 point
    A lot of users have a third part firewall running which is a great idea but sometime some problems between the firewall and Immunet happens. Most software based firewalls will automatically ask if you want to allow Immunet passing through but a few dont. The few software based firewalls and most hardware based firewalls who dont allow Immunet to run probably need to be configured to allow Immunet to communicate with the cloud. To allow connection to the internet you need to allow or open a few ports that are being used by Immunet. The port number used for cloud communication are: 80 - TCP (HTTP) 443 - TCP (HTTPS) 32137 - TCP. 53 - UDP is needed for DNS lookup. So keep those ports open for Immunet in software and hardware based firewalls. (Hardware based firewalls are often built-in in routers and modems).
  • Create New...