Jump to content


  • Content Count

  • Joined

  • Last visited

  • Days Won


Everything posted by ritchie58

  1. Hi Wookiee, that's something good & useful to know! I knew the command prompts for version 5 to stop & re-start Immunet without re-booting (which were net stop immunetprotect & net start immunetprotect) but those prompts had changed with version 6 and I was never informed what the new prompts were, until now anyway! Also, if a user wishes to use these command prompts to completely disable Immunet one needs to kill iptray.exe first by right-clicking on the Immunet tray icon and selecting Hide Tray Icon, then use the stop command. Then when the start command prompt is used to launch sfc.exe one simply needs to do is click on the Immunet Desktop or All Programs icon to launch iptray.exe again. There have been times when being able to completely disable Immunet was important. Like when it comes time to upgrade my other AV to a new version being pushed through the UI. Immunet would always interfere with this upgrade process for Panda AV (now called Panda Dome) when the RarSFX upgrade files would get flagged & quarantined if Immunet was still running.
  2. Hi guys, I mistakenly thought you were having some other issue with the UI stats Cipollino. With this new build you do get pop-up messages when Immunet prevents (possibly suspicious/malicious) access to Windows processes by third-party apps. I have an app too (that's completely legitimate) where I get numerous pop-up messages. I also use Gaming Mode so I won't keep having to deal with these notifications. Actually Gaming Mode is automatically reset to disabled when you boot-up. This is a built in security feature in case a user forgot that Gaming Mode is still enabled but that makes it necessary to enable Gaming Mode after every boot-up. I've already put forth the idea, for a future build, that users can make their own custom exception rule(s) for the process protection feature and/or to disable it entirely at the user's discretion in case it becomes too problematic.
  3. Yeah, I'm seeing the same thing too Cipollino. The cloud stat bug has seemed to have reared it's ugly head once again! Thanks for reporting this. It seems you also encountered some other issue with the UI that I'm not seeing at present. Are you getting this error with the Last Scanned, Last Updated data or both?
  4. I like your post Rekha! That's what this forum is all about, fellow Immunet users helping one another out and users that encounter issues using the Support options on this forum to help improve the product. Hitesh, if you continue to run into issues uninstalling Avast! might I also suggest the possible option (if needed) of using a good third-party uninstaller like Revo Uninstaller. I've used this software in the past with great success when encountering a troublesome program that refuses to uninstall correctly using conventional means. The free version works great for 32bit systems but I would suggest you use the fully functional free trial of Revo Uninstaller Pro if you have a 64bit system as it better supports this platform. https://www.revouninstaller.com/revo_uninstaller_free_download.html If you've never used Revo Uninstaller before there are number of great tutorial videos on YouTube that you can view. Cheers, Ritchie...
  5. Here's a link to a Knowledge-Base article that outlines the steps to take to add exceptions to Microsoft Security Essentials. The info is a bit dated but it still should give you a good idea how this is done if you're not sure. https://answers.microsoft.com/en-us/protect/forum/mse-protect_scanning/how-to-exclude-a-filefolder-from-microsoft/26f2810a-47fd-40d8-b35e-3740f00fce85 Also, here is info on how to create exceptions with 2012 R2 Windows Firewall. Server 2008 / 2012 Click Start and select Control Panel. Click Windows Firewall. Click the Exceptions tab. Click Add Program. Select the program you wish to exclude. Click OK. Create an exception rule for Immunet's entire Program Files folder for MSE and process exception rules with your firewall (sfc.exe, iptray.exe & freshclam.exe if using ClamAV´╗┐) . Cheers, Ritchie...
  6. One other thing Scott. If the CPU usage is still too high after excluding the Program Files folder you could try and disable "Monitor Program Start" & "Blocking Mode" in Settings if these are currently enabled. You'll loose a little bit of protection by disabling these settings but that could also help. Regards, Ritchie...
  7. Hi Scott, I was going to mention that O.S. backup/mirroring protocols can sometimes be the culprit. Excluding the final backup location was a good idea but you could implement an additional exclusion to see if that has any positive effect. Try excluding the "entire Program Files folder" of the backup software program in question. Worth a try I think. Best wishes, Ritchie...
  8. Are you using any third-party software applications that constantly or very frequently writes to disk Scott? That can sometimes increase Immunet's CPU cycles as it scans the files for any malicious content as they're being created and added to your drive.
  9. It's also not a bad idea to check if another software package is interfering with/blocking Immunet's processes or internet connections, such as your firewall of choice not properly configured to allow both UDP, TCP in-coming & out-going data for all of Immunet's processes (sfc.exe, iptray.exe & freshclam.exe if using ClamAV). If you're using a H.I.P.S. or some other sort of behavior blocking software, another anti-virus package or other security application(s) make sure none of these are conflicting with Immunet also.
  10. Hi chaves, 6 gigs of RAM should be sufficient for running the apps you mentioned. A great way to monitor your system's performance and see what apps are using the most threads and CPU usage would be to use Task Manager's Resource Monitor. To access the Resource Monitor first open Task Manager (press Alt, Crtl, Delete), click on the Performance tab and then click on the Resource Monitor button located at the bottom. Once the Resource Monitor window is launched you have the option to click on the Overview, CPU, Memory, Disk or Network tabs to view the corresponding data. If you're interested in monitoring your RAM usage definitely click on the Memory tab to check things out.
  11. Hello chavez243ca, hardware and/or Operating System Virtual Memory is used when your Random Access Memory (RAM modules) no longer have sufficient room for more data to be temporarily stored. This is usually caused by not having enough RAM memory for both your Operating System & the third-party software apps you use including Immunet. A RAM module that's reached it's end of service life & is about to completely fail is not out of the question too. One solution would be to upgrade your RAM modules to a higher gigabyte rating. For instance my Win 7 x64 system requires "at the very least" 2 gigs of DDR2 RAM to function adequately. Adequate is not good enough for me, for that reason I have 8 gigs of DDR2 RAM installed (unfortunately my older mobo doesn't support DDR3). Plus I use a RAM optimization software package called CleanMem that increases the efficiency of the RAM modules by automatically deleting no longer needed page file data thus reducing RAM usage. The more available RAM you have the faster/better your OS will function. I don't think this is the case here but unfortunately another thing to consider is if your computer had already been taken over by malware before installing Immunet. Some forms of Botnet malware will eat up all or most of your RAM and dramatically increase CPU usage while sending out DoS attacks, spam or malicious content to others. What is your Operating System & exactly how much & what type of RAM (SDRAM, DDR, DDR2, DDR3) do you currently have installed on your motherboard?
  12. I agree with you Jolga77 & thanks for your compliment regarding Immunet! As more people purchase newer laptops, tablets, GPU's and 4k compatible desktop computer monitors it seems like a no-brainer to me that Immunet should compensate/adapt to this changing visual graphics processing environment. The good news is the devs "are very aware of & are working on this issue!" Cheers, Ritchie...
  13. I tried four different test strings all of which were immediately detected & successfully quarantined and all the data was displayed in the Quarantine window but no notification with the UI. So this leads me to believe that kaba116 may have thought he had a quarantine response when none actually took place or it's a completely isolated anomalous incident if my first assumption is true.
  14. I understand what you're saying Wookiee. Under normal circumstances you do get a malware detection name & correct file path with the Quarantine window but according to kaba116's thread there was no pertinent quarantine data to view, no detection name or associated file path was displayed, even though a quarantine response took place. That's if I'm comprehending his thread correctly. Is that correct kaba116? A file was quarantined but no data was created to view in the Quarantine window? If that's the case I wish I could confirm that myself but since upgrading to 6.2 I haven't had any files quarantined thus far. Wait, I've got an idea. One way to find out is to download a EICAR dummy malware test string or two and see what happens. Out of curiosity I think I'll give that a try.
  15. That is rather disconcerting if a quarantine response happened then no data is displayed in the Quarantine File History window. What if it was a genuine False Positive and the user wanted to restore that file, yikes! With the issue I'm having with CleanMem, that we've previously discussed, the Blocked Process History window remains void of data too. There should be a plethora of entries for that! In fact the only data being currently displayed is the daily flash scan I have scheduled in the Scan History window so I certainly also hope this bug gets resolved adequately.
  16. Hi claudiot, please click on this link to a thread I just posted to a similar Support topic that will show you how to avoid these false positives by creating a custom exception rule with Win 10 Defender. http://support.immunet.com/topic/3706-trojandownloader-jsnemucod/
  17. Hi JohnJ, if you create a custom exception rule for "Immunet's entire Program Files folder" with Defender that should stop the false positives from occurring. By default Defender is already excluded with Immunet. If you're not sure how & you have Windows 10 here is a link that gives you detailed instructions on how to create an exception rule with Defender. https://www.windowscentral.com/how-exclude-files-and-folders-windows-defender-antivirus-scans
  18. Thanks for the reply Wookiee. I was told that it is normal behavior for CleanMem to seek out & clean unneeded "Windows System" & third-party software page file data by the developer. That this "is not" some sort of malicious intent or spying on the user and I believe him. I've been using CleanMem for a number of years with no problems. That's not to say I don't believe you, the app seems to still be functioning but I am certain it would work even more efficiently if it had access to those blocked Windows processes that it was designed to check. I still think that it might be a good idea if it was left to the user to decide if he/she wants to use the System Process Protection feature. Another idea would be for users to apply their own custom exclusion rule-sets to the process protection. That might be an even better option! That way the process protection needn't be completely disabled then. I do use Comodo Firewall that has a very similar in function H.I.P.S. feature that's included with the firewall software package. So for now I'll have to continue using Gaming Mode every time I boot up I guess. Cheers, Ritchie...
  19. Hi Wookiee, hey I'm having an issue with Immunet's System Process Protection and a "legitimate" RAM memory optimization app called CleanMem by PCWinTech. http://www.pcwintech.com/ I keep getting annoying pop-ups every few minutes when CleanMem tries to access several system processes which is normal for this software when it looks for & cleans unneeded/no longer used system page file data from the memory modules thus reducing RAM usage which results in a faster, smoother running machine (see images). I added an exclusion for CleanMem.exe but that didn't work. If the pop-ups start getting too annoying I can use Gaming Mode but that's less than ideal since I won't be notified of anything or just kill CleanMem, an app I still want to use. Any ideas? This is off topic but perhaps some consideration should be taken with the next build to include, in Settings, an option to enable or disable this process protection engine for users that do not wish to use it if it's going to be problematic for them. Here is the SHA256 for CleanMem. Here is the MD5 Checksum: 9afdbf9451488cdb339c47ea68ebf3f9
  20. There is a definite bug with the newest build having issues creating and/or accessing the .db history files. I'm seeing basically the same thing too.
  21. That is a little odd that the Desktop icon was not created during the install. You can manually create a shortcut to your Desktop by accessing the Program Files directory, find the Immunet folder and click on it then locate the proper Immunet icon and right-click on that and select Create Shortcut moving that to your Desktop.
  22. Hi novirus, that's something I've had to do in the past to upgrade through the U.I. on a few "rare" occasions when things didn't quite go as planed. If a new build is not installing correctly through the U.I. I have uninstalled the old build first making sure to not save my previous settings. The uninstaller will ask you if you plan on re-installing Immunet again select the "NO" option and proceed with the uninstall. This will give you a clean uninstall but you will have to re-configure your previous settings and add any custom exclusions you may have been using again. Then run the newest installer package logged into your Administrator account as Wookiee suggested. Also, make sure you have an constant, uninterrupted internet connection during installation as Immunet uses a bootstrapper installer. That "should work" to get the newest build installed on your machine novirus. Best wishes, Ritchie...
  23. Certainly glad to see this minor bug get squashed Wookiee (pun intended, lol)! Way to go guys!
  24. Wookiee is correct. As long as you have an internet connection, the ClamAV module and updates for it enabled in Settings Immunet will pull down new defs automatically to the module without any user input. This usually occurs just a few minutes after Immunet has successfully launched after start-up. Of course you can still update manually. That's something I like to do immediately after Immunet has launched just to make sure I have the newest defs installed before I do anything else with my computer.
  25. Here's another app you may want to use Larry, Malwarebytes Anti-Exploit. Although Anti-Exploit has been incorporated into the Premium (paid) version of MB you can still use the newest 1.12 separate version. Best of all it's compatible with XP & it's free! The free version of A-E will help protect your browser of choice (one of the most common attack vectors) plus many commonly used applications such as file readers and media players. There's also a Premium (paid) version where you can add your own shields to protect just about any other app you can think of! It's not an AV in the traditional sense but will work along-side it providing additional exploit protection. As with Panda it is also stingy on system resources. Personally I think the Panda & Anti-Exploit combo would give you some really great coverage! BTW, I helped alpha/beta test A-E for several years and I still use it myself to this day. In fact I would "highly recommend" to anyone still running an XP machine to install this software! http://downloads.malwarebytes.org/file/mbae Cheers, Ritchie...
  • Create New...