Jump to content

How Reduce Immune Sensitivity For Decrease False Detection?

adrin

By adrin,
in Immunet Support (Issues/Defects)

Recommended Posts

ritchie58 Community Regular

ritchie58

Posted
Posted

What Settings are you using? Do you have the ClamAV module enabled?  What's the exact names and current builds of the software programs (you could provide links from where you downloaded the software from or the names of the software publishers themselves) that Immunet is conflicting with and what was the names of the detections and the file paths? In the last post you created in this section about getting many FP's you could have provided that data then. It's difficult to determine what the problem is if we do not have this information.

 

One way to lessen the chance of a false positive is to turn off "Monitor Program Install" and "Blocking Mode" in Settings. This will, however, leave your PC slightly more vulnerable to infection since files that are being downloaded and/or installed will not be immediately scanned. Rather, it will be scanned at a later time and convicted to Quarantine or you'll get a pop-up warning if it's deemed malware or suspicious (depending on the behavior settings you're using). "I would highly recommend that you always leave the ETHOS and SPERO cloud detection engines enabled at all times!"
 

Regards, Ritchie...

Link to comment
Share on other sites
adrin Newbie

adrin

Posted
  • Author
Posted

What Settings are you using? Do you have the ClamAV module enabled?  What's the exact names and current builds of the software programs (you could provide links from where you downloaded the software from or the names of the software publishers themselves) that Immunet is conflicting with and what was the names of the detections and the file paths? In the last post you created in this section about getting many FP's you could have provided that data then. It's difficult to determine what the problem is if we do not have this information.

 

One way to lessen the chance of a false positive is to turn off "Monitor Program Install" and "Blocking Mode" in Settings. This will, however, leave your PC slightly more vulnerable to infection since files that are being downloaded and/or installed will not be immediately scanned. Rather, it will be scanned at a later time and convicted to Quarantine or you'll get a pop-up warning if it's deemed malware or suspicious (depending on the behavior settings you're using). "I would highly recommend that you always leave the ETHOS and SPERO cloud detection engines enabled at all times!"

 

Regards, Ritchie...

i enable clam av and detect many false.

i send file too jetti virus scan site and only clam detect these files as virus in 20 av product.

i know clam has many false detection but when i am ofline i need clam engine.

i cant turn it off.

Link to comment
Share on other sites
ritchie58 Community Regular

ritchie58

Posted
Posted

Hi adrin, you are right. The ClamAV module does allow for "off-line" scanning.

 

When ClamAV was first added to Immunet there was a problem with numerous FP's but that issue has been all but eradicated. That's why I find your issue a little puzzling. That's not to say that false positives still don't happen, of course they do. All AV's currently in existence still encounter this situation from time to time.
 

Could you please at least tell us where you downloaded this software from? An exact URL would be great! We can take it from there.
 

Cheers, Ritchie...

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to topic listing
×
×
  • Create New...