Immunet Protect- Free cloud based AV

Sounds like this has ondemand scanner. I use Norman Malware Cleaner. But if IP is working and plus it free (forever?) would be great to add to the protection spectrum.

 

Ran this software against Norman Malware Cleaner, Rising Antivirus and the results was no infection. But in the area of Cloud Protection is ACTIVE at the bottom it reads: ThreatFire is also running. But how is this as the only program that is running is Rising Antivirus. On another system which I have this on it said Avira Vir is running but again only Rising Antivirus is running so it has issue detecting which Antivirus is running then?

 

Nothing but trouble with this beta.. I would advise you wait for when it comes out of beta. I've experienced blue screen and freezes.

 

@alhuger:

Has there been any further development news regarding Immunet Protect?

galileo

 

At this point its safe to say that Immunet is pretty useless. See http://www.youtube.com/watch?v=TX5QVvpeXfI&feature=player_profilepage#

Quote "it looks like Immunet pretty much didn't stop anything".

 

Well, you need a pretty advanced Anti Virus to deal with zero day threats (superb heuristics, behavior blocker or other HIPS protection).

Regards Kees

 

yeah, and I was testing the 64-bit beta and had some issues, but never got any response at all. Not great support to date anyway.

 

All,

The video is certainly not what I'd hope for but it's not shocking either. We will miss threats, as will other products. That we are in beta certainly exacerbates the issues, our protection technologies will not be feature complete until December. However even it's current format the product stops plenty of threats.

The first 60 days in-field our limited user base stopped north of 60,000 infections. Having said that, we're not perfect. Please keep in mind that we always suggest our beta product be run in side-by-side mode with another AV product.

I wrote about some of our findings here:

http://blog.immunet.com/

Best,
al

 

I assuming that in the 60,000, there were many duplicates. Considering that (by your own admission) http://www.immunet.com/protect, that many new pieces of malware are created every 10 days, thats not a big number... but we are in Beta

Also noticed from the Blogs, most of the people that seem to be installing your product are the people that install free anti-viruses and not because they looking for a quality alternative. Take what you will from that.

But I guess most importantly, I am trying to cut through the crap and really understand what is your cloud-based plan to detect zero day threats since there is really no cloud info on these other than the fact that "there is no cloud-based info".

Also, how does Immunet's approach differ from Symantec's Quorum.

 

I'm hesitant to reply to people who look like they are looking for an argument, so we'll see how this goes.

>I assuming that in the 60,000, there were many duplicates. Considering >that (by your own admission) http://www.immunet.com/protect, that >many new pieces of malware are created every 10 days, thats not a big >number... but we are in Beta

Of course. All of these threats were family based and largely variant. That does not change the fact that each threat stopped would have accounted for an actual infection had it been missed. That they were a variation on a known theme would have been cold comfort to the person who got infected.

>Also noticed from the Blogs, most of the people that seem to be installing >your product are the people that install free anti-viruses and not because >they looking for a quality alternative. Take what you will from that.

I guess that means something only if you assume that Free AV products are not competitive with commercial ones in terms of detections. Most credible competitive reviews would differ with you on that opinion. As would I. Generally, AVG, Avast and other free choices (free unless you opt to pay) tend to score as well as (pure) commercial offerings and where they don't the difference is miniscule, at best. Perhaps 1 - 2 percentage points. Other Free options like Avira consistently out perform everyone in detection rates.
>But I guess most importantly, I am trying to cut through the crap and >really understand what is your cloud-based plan to detect zero day threats >since there is really no cloud info on these other than the fact that "there is >no cloud-based info".

I think what you're asking here is, what's our detection methodology in the cloud? In general terms we try to avoid doing deep inspection of any given PE file and do conviction based off of context (what we have seen the file do elsewhere), heursitic detects and one to one hash conviction. Our primary difference here is that we can tune our detection methods in step with the field rather than shipping new detections an we also can make conviction decisions based off real time data. This will evolve further with time of course.

>Also, how does Immunet's approach differ from Symantec's Quorum.

Well, entirely, is the short answer. I worked to no small degree on Quorom at Symantec so I cannot speak to it even in terms of direct comparison unless it's with already publicly available data. Otherwise I risk violating contractual non-disclosure agreements. Suffice to say, the two are not strung together the same with the exception of the fact that they are cloud based.

Best,
al

 

Are you saying that users of free AVs are unconcerned with quality protection? Or are you saying that free AVs (such as AVG, Avast, Avira, etc) offer uniformly inferior protection?

In any event, the quoted comment seems condescending in the extreme. I hope I have misunderstood the comment. If so, I will be delighted to be shown where I went wrong.

 

I am saying that most users of free AVs are unconcerned with quality protection. This comment obviously doesn't apply to visitors to this forum because this is a self-selecting group. The rest of the folks that use free AV want some kind of protection, anything is better than nothing and yes, they dont want to pay a dime. And no, I am not faulting them for that, I am just stating the obvious. Everyone has their own reason for choosing a free AV, the most common being "I dont want to pay".

It was fairly obvious from those graphs that the #1 market share product in the world, NIS/NAV didn't even account for 1% of the users running Immunet. I know I found that strange.

Uniformly no. But most of them are inferior to the Top paid products. There are ofcourse exception. And yes there are a lot of tests from Andreas Marx, Clementi and others that prove this is the case.

 

I do not think it's odd. It's a beta and while we do have a good variety of people on the beta they still tend to be early adopters. Early adopters are more likely to be running free AV.

Inferior should be taken pretty lightly. The differences here (where applicable at all) are absurdly myopic at least with detection of known sample sets. Retrospective testing is still in it's infancy and everyone, free and paid alike, have a long way to go before they score anything closely resembling numbers people would really be comfortable marketing.

al

 

Id like to see more experiences with this app, promising?

 

No offense but are you an employee of Symantec because that's pretty much the line they've been tirelessly trotting out recently in denigrating free security products?

 

Hey Al - When is the next beta build? What improvements will be implemented? thanks

 

Looks like Immunet is been busy ghostwriting.. what a deceptive company.

http://www.dslreports.com/forum/r23305665-Anyone-else-using-Immunet-Protect

 

Well, I checked the link, but don't think that thread holds any water. Ghost writing because the poster and Immunet guy live in the same city? 2009 census indicates a population of 1,079,310.

Before anyone checks, I live in HOUSTON, TX. No ghost writing from here!

 

the idea of this tool is quite good,,,,,, "it's designed to harness the data from security products that are already in place. "
it is light too, only scan new files, hope detection can improve and more setting to be added in future.

 

This comment is based on a single presumptive post which offers little more than opinionated FUD. NOT supported by any facts -- just a nasty innuendo. Character assassination at its worst!

 

Looks like a new build is available, but no idea what the changes are. Don't see anything different with the GUI, so maybe behind the scenes stuff.

 

Why does immunet client in process manager say "gred antivirus" and some chinese characters?


Please clarify as I have not seen any mention of this.

cheers
Hawk

 

Hi Hawk,

It's there because we made a mistake. We have two versions of Immunet Protect, one is in Kanji (Japanese) and the other in English. During our build process we mixed up some of the resource files which denote language type for the build.

The information of this release of the beta is:

http://blog.immunet.com/

We have 3 or maybe 4 more releases to go until we are out of beta for our English version.

al

 

@alhuger: Immunet overwrites infected files with 0 bit length files. Is it supposed to behave this way?

 

Kaixi,

Are you seeing this in the Quarantine directory of the native directory the threat was found in?

al