Jump to content


  • Content Count

  • Joined

  • Last visited

  • Days Won


ritchie58 last won the day on May 25

ritchie58 had the most liked content!

Community Reputation

378 Excellent

About ritchie58

  • Rank
    Staff Member

Profile Information

  • Gender
  • Location
    : Earth
  • Interests
    End-User Computer Security

Recent Profile Visitors

1,077 profile views
  1. Hi all, The newest build of Immunet has a new running process called cscm. Microsoft made some improvements as to how antivirus solutions can better protect their software from unauthorized intrusion. It's a fact that some malware has the capacity to disable the installed AV, usually through unauthorized code-injection methods. This added security protocol will make it much harder for malware to disable Immunet. For anyone that wants to read this Windows Dev Center article (thanks Wookiee) regarding this added security protocol click on this link. https://docs.microsoft.com/en-us/windows/desktop/services/protecting-anti-malware-services- Regards, Ritchie...
  2. Hi chatz, the devs must still be working on the issue. There have been recent reports of a couple of history data bugs that needs addressing and it does take time to roll-out a new bug fix build. Keep in mind, these history data bugs will in no way affect the malware protection provided by Immunet if anyone's worried about that. I'm sure Wookiee will add another thread to this topic if there's anything relevant to report.
  3. Hi Anders, The Microsoft Store recognizes Python as a legitimate application so I would concur that is definitely a False Positive. I don't think that exe. has been deleted, just quarantined. Have you looked in Quarantine and attempted to use the Restore feature for the executable? Just click on the underlined word Quarantine below the History tab on the UI. Find the exe. in the right side Details dialog box & click on it, then select the Restore option. Once restored that will automatically put the file in the Exclusion list and will no longer be scanned. If you continue to have issues another option would be to create an Exclusion rule with Immunet for Python's entire Program Files folder. Why python.exe got quarantined in the first place is something the devs will have to look at. We do have a False Positive reporting site so if you can find out the SHA256 hash of the exe. please submit that data here. http://www.immunet.com/false_positive Let us know if you continue to encounter problems with this app & Immunet. Regards, Ritchie...
  4. Hello Lito and thank you for your interest in Immunet! Immunet is totally free for home/personal use and for any "non-profit" charitable or educational organization. Immunet is not licensed for and should not be used for any "for-profit" business, service or organization. No support will be offered if it's discovered that Immunet is being used in such a manner. This info is included with the End User License Agreement (EULA) when first installing Immunet. Immunet is compatible with Windows security software. It is recommended that you create an allow/exception rule for Immunet's entire Program Files folder with Windows Security & create an Exclusion rule for Win Security's entire Program Files folder with Immunet. This helps avoid possible future conflicts between the two programs. With Windows Firewall both in-coming/out-going data allow rules should be created for Immunet's processes which are sfc.exe, iptray.exe & freshclam.exe (if using the ClamAV module). Immunet currently supports these Windows platforms. Windows 7, 8, 8.1, 10, Server 2008 R2, Server 2012 & Server 2016. I hope that answered your questions adequately. If you have any additional questions feel free to add another thread to this topic. Cheers, Ritchie...
  5. I did run some additional scans other than the scheduled scan and I couldn't seem to duplicate this behavior. The additional scans showed up with the Scan History and no other scan data inexplicably disappeared.
  6. With your newest threads and some research I performed I have doubts it's Ransomstopper that's causing a conflict with Immunet. I too use a daily scheduled flash scan and out of curiosity I checked my history files. There's listings for the last five days of scheduled scans with my UI. I'll run some additional scans to see if I can possibly replicate this behavior on my computer. I do use a different OS (Win 7 X64) so that might not prove anything if this is an issue solely with Win 10 but I'll give it a shot & let ya know.
  7. Is it the newest version of FF that's doing this and what is the detection name being given? To find out the detection name simply click on the underlined word Quarantine located just below the History tab on the UI. This information should be in the right hand side Details dialog box. If you could provide a screen grab of the Details dialog box that would even be better.
  8. Thanks Wookiee for looking into this for chatz. If this ransomware app does block/interfere with Immunet's processes that could cause the behavior you're actually seeing chatz. Let us know if disabling this security app has positive effects. Maybe, if that's the case, you just need to create allow/exclusion/exception rules for Immunet's processes with this app. What exactly is this anti-ransomware app called anyways (where you downloaded it from might be helpful just to assure legitimacy too)? That way we can do some compatibility research with this software perhaps.
  9. ritchie58


    I think what Kirav is talking about is the Metro theme configuration you can use with Win 8 & 8.1. To make the UI look similar to this I would conjecture. I have to agree with Kirav, it really has been a while since the UI got updated to "something" newer/different looking. Folks keep pointing that fact out!
  10. Thanks again for your continued input chatz. Sometimes an SDT report can't be included if it exceeds the data limit on attachments for PM's. I would like to see this limitation adjusted higher for users on the forum to avoid just this circumstance. The admins have control over site adjustments so there's nothing much I can do there but recommend a higher setting. Great alternative you thought of though! Just hope this additional data will prove to be helpful in finding a fix for you! Best wishes, Ritchie...
  11. That is really weird chatz! It seems that your history log files are either being continually corrupted or the interface becomes incapable of reading the files correctly. Could you send Wookiee a Support Diagnostic Tool report via private message? Simply open All Apps and find Immunet's icon and click on that, then find the Support Diagnostic Tool icon and click on that, that will create a zip file to your Desktop. Send that as an attachment to Wookiee. Here's a link to Wookiee's profile page. Just click on the Message icon that looks like a mail envelope & send that data to him. https://support.immunet.com/profile/46674-wookiee/ Thanks for helping out with this issue. Your input is greatly appreciated! Regards, Ritchie...
  12. Hi chatz, Did you initiate the flash scan manually or was it a automatic scheduled scan that you have set up?
  13. Thanks for your input to support cyrille. This is a known bug that the developers are aware of. I too would like to see this bug get resolved because sometimes iptray.exe can actually crash if a user scrolls down the list too rapidly.
  14. What makes you think we're offended? Personal criticism of Immunet is perfectly acceptable on this forum, to a point of course. If you had posted anything we find truly offensive (like using adult expletives for example) we would no longer be having this conversation because you already would have been permanently banned from this site & your posts deleted, no questions asked. As you wrongly assume most users DO NOT worry about the log files for the reasons I already explained. I have seen that behavior too. If you try to scroll through the history files too quickly without letting the additional data to load properly first that can cause iptray.exe to crash. The devs are aware of this situation.
  15. Yeah, some folks prefer to use just the ClamAV source code in place of the entire Immunet package of detection engines, I understand that. ClamaV's source code is still available! Here is the official ClamAV download page. https://www.clamav.net/downloads
  • Create New...