Jump to content


  • Content Count

  • Joined

  • Last visited

  • Days Won


ritchie58 last won the day on February 14

ritchie58 had the most liked content!

Community Reputation

368 Excellent

About ritchie58

  • Rank
    Staff Member

Profile Information

  • Gender
  • Location
    : Earth
  • Interests
    End-User Computer Security

Recent Profile Visitors

923 profile views
  1. The problem with most rootkits is that they generally use some sort of advanced encryption method which usually makes 'em hard to detect let alone access & read. So it wouldn't surprise me if HexaPro was unable to submit any SHA256 or MD5 checksum(s) hash tag(s). Besides Immunet it never hurts to have an additional on-demand rootkit scanner at your disposal! Speaking of such... Malwarebytes has a new beta "CMD based on-demand rootkit scanner" available that looks rather promising. They're also looking for beta testers with (preferably) virtual test rigs for anyone that's into that sort of thing. As with any beta software please read the legal Disclaimer documentation carefully before use. Not 100% sure if it's compatible with Server 2008 R2 however. https://www.malwarebytes.com/antirootkit/
  2. With the directories being affected it's very similar behavior to what a rootkit keylogger might exhibit.
  3. Yup, got the installer to download with no problems & got 'er successfully installed! Piriform already issued a new build. What I got with the installer was version 5.55.7108. Mmm, usually a software vendor doesn't release a new build that quick unless it's some sort of priority bug fix. Makes me wonder if Immunet was but just one in a list of AV products that had problems with that installer. Cheers, Ritchie...
  4. Hello again Aris. Sorry to hear you're having another issue so soon! In Settings, do you have "Monitor Network Settings" enabled? This setting does monitor your network connections for zero-day vulnerabilities and any possibly malicious hosts. It's up to the user of course but personally I leave this setting disabled as I already had a third-party app that does the same thing before this feature was added.
  5. I'm still using Win 7, sorry about the misunderstanding. I forgot that with Win 10 All Programs have been renamed to "All Apps" but the procedure is the same unless you've done a lot of personalization to your Taskbar. Using imgur links for images is acceptable on this forum but I'm "not referring to Immunet's Program Files" directory however. Click on the Start button then all apps, find Immunet's folder icon and click on it, select the Support Diagnostic Tool icon from the list & click on that. If there is no Start button (some builds of 10 have no start button, it has to be added manually) or you still can’t find the Immunet icon in the All Apps listings use the search box on the Taskbar, type immunet. If there is also no Taskbar search box simply press the Windows key on your keyboard and start typing.
  6. Thanks for looking into this Rob! Actually forum member Aris deserves the credit for reporting this first. Could you let us know when it's fixed since it's been a while since I updated CCleaner and would like to install this new build myself.
  7. I agree with you, you do have a killer system and Immunet should not be slowing things down to a snail's pace like that! I'm sure you've already done scans to rule out malware causing this so my next suggestion would be to submit a Support Diagnostic Tool report for analysis. First open the All Programs directory -> find the Immunet folder & click on it -> click on Support Diagnostic Tool -> this will create a zip file to your desktop. Then could you send that zip file as an attachment using the Forum's Personal Messenger feature to the Administrator Wookiee. Include a brief description of the issue & also mention that you started this topic in the Immunet Support (Issues & Defects) section. Wookiee works directly with the development team so he would be better suited to further help you because I'm at a loss as what's going on with your rig! Here's a link to Wookiee's profile page. Just click on the Message button but don't forget to log in first. https://support.immunet.com/profile/46674-wookiee/ Best wishes, Ritchie...
  8. Immunet is quarantining CCleaner's newest 5.54 installer package with this PUA.Win.Trojan.Generic::95.sbx.tg quarantine response (see image). I tried to restore the installer but that doesn't work. At first I couldn't even download it but I managed to get the installer downloaded using the restore feature but as soon as you click on the installer to start the installation you get yet another quarantine and the installer package disappears. Tried again to download the installer after restoring the installer package, got it downloaded that way only to get another quarantine while trying to install & the package disappears even though I restored those files last time to no avail. No matter the the amount of restoration you CAN NOT get this to install not to mention the hassle just to get the installer to download. The installer package was downloaded from the official Piriform site here. https://www.ccleaner.com/ccleaner/download
  9. It would have been better if you posted this in the False Positives section but you're right Aris & thanks for bringing this to our attention. I'm going to report this in the False Positives section since it doesn't matter if you restore the files to the installer package, Immunet will still prevent you from installing CCleaner with yet another quarantine response. No amount of restoring files seems to work! That sucks!
  10. I thought maybe it might be temp files related to the games you play being scanned but if it's more random than that we can probably rule that out as the "primary" cause. However, there have been times when we have advised users to create a Exclusion rule for a game's entire Program Files folder. That's something you can try to see if that helps at all. Not sure how to create an Exclusion? Let me know and I can give you detailed instructions. Do you have any programs that constantly or frequently write to disk? One example would be a system backup/OS mirroring software package. That can also cause the behavior you're seeing as Immunet scans the backup files as they're being created & moved the the backup directory.
  11. Thanks for the concise, detailed report. I wish more forum members were as conscientious! You mentioned your rig is used primarily for gaming. Does this spike in CPU cycles generally happen while you're actively participating in a game? Or is it more of a overall random occurrence in your opinion?
  12. Hi Tim, is there a particular browser that you're using associated with this htm file quarantine response? If so, which browser was it? Ordinarily htm & html data files are related to a open browser. If you were on a web site you find sensitive when this transpired you can continue this conversation on our Contact Staff section of the forum where only Admin's & Staff can view your correspondence. You do have that option available at your disposal. Best wishes, Ritchie...
  13. Got your PM regarding the issue too. Sent a reply.
  14. I agree, there is some info in the FAQ section that is quite out-dated & needs to be deleted regarding older builds.
  15. If that's the case then I have more questions than answers. Why did NoScript not advise me of the presence of tagmanager before the https change? That's strange. Either way, that non-essential script (in my opinion) will remain blocked on this computer.
  • Create New...