automatic open web Browser! how to disable?

brooksndun

New Member
Messages
884
Hey Guys,

So I never really thought about this but I was uninstalling programs from add/remove programs and I noticed that after I uninstall a program it completely violates my computer and authority by Automatically opening up my firefox browser and going to some page of whatever the software I was uninstalling..

Isn't that a complete and utter disgusting move to open "my" web browser and divert it to some webpage??

How can they do this? (many programs do this when you uninstall them..)

I want My browser only to open when I want it to open.. not when some company thinks I should be directed to a page they decided.. unreal.

How can you disable automatic opening of my web browser from anything but when I click the browser button to launch it??


If by simply uninstalling a program can totally open my browser and go to a predetermined page, what the heck else can they open without me clicking to open anything??
 

My Computer

System One

  • OS
    windows 8.1
    Computer type
    Laptop
    System Manufacturer/Model
    Lenovo g750
    CPU
    i5
    Motherboard
    Some Chinese Crap..
    Memory
    8
    Graphics Card(s)
    Nvidia 755
    Antivirus
    Windows Defender
I think the only way you could do it is to use an install monitor that records registry and file changes. Then when you remove the software you use the monitor instead of the product's uninstaller. The trouble with these utilities is if several programs were installed in the meantime, their settings, such as file associations, may be messed up by the monitor putting the registry back to its previous state during removal.

The alternative; before running the uninstaller, disconnect from the net.

Edit: see the bottom of this page for a prevention method:
windows 7 - Can I prevent a program from opening my browser and sending me to a web page when I uninstall it? - Super User

Edit2: I am not a big fan of AV firewalls and other blockers as they tend to interfere with the operation of the machine and cause their own sets of problems. I found the link above where one happy camper seemed to solve the problem you have with one. It is not a recommendation since every time I try any of those types of blockers I run into problems and end up removing them. Your mileage may vary as they say. :)
 
Last edited:

My Computer

System One

  • OS
    Windows 8.0 x64
    Computer type
    Laptop
    System Manufacturer/Model
    Toshiba Satelite C55D-A Laptop
    CPU
    AMD EI 1200
    Memory
    4 gb DDR3
    Graphics Card(s)
    Raedon 340 MB dedicated Ram
    Monitor(s) Displays
    Built in
    Screen Resolution
    1366 x 768
    Hard Drives
    640 GB (spinner) Sata II
    Keyboard
    Built in
    Mouse
    Touch pad
well thanks Miles.. atleast its something to start..

but that is insane that just by uninstalling a program your web browser can be started and directed to go to whatever website..

good for all the malware and crap out there.. just wonderful..

I guess I should write to Firefox and ask them to put an option to only open when I click the firefox logo or a thing to prompt only to open..

**edit - Ah yes, great.. comodo.. I had been just trying that and uninstalled that cause it was so ridiculous.. the thing was it was definitely an unreal amount of protection.. but the way they decided to word the way you have to setup everything just ruined it.. it was so difficult even to just setup Comodo to ask me everytime anything wanted to do anything.. I wanted it to pop up and block everything and ask me whatever wants to connect.. but all I ended up doing is stopping my whole computer from doing anything and then there were so many horrible ways they "worded" the options to setup things..

anyway, the point is, Comodo was amazing at security but just nobody will every get it just right because of the way they worded how to setup everything.. the rule sets and the way they worded it..

all they had to do was put things like "prompt\ask or ,yes,no"
 

My Computer

System One

  • OS
    windows 8.1
    Computer type
    Laptop
    System Manufacturer/Model
    Lenovo g750
    CPU
    i5
    Motherboard
    Some Chinese Crap..
    Memory
    8
    Graphics Card(s)
    Nvidia 755
    Antivirus
    Windows Defender
It is tough to stop installers/uninstaller from launching browsers since they run as System. I had a Policy set to stop IE from being run at all. Seemed to work fine for weeks. Then an installer calls IE directly instead of using the default browser. Installer outranks local policy. So IE ran. I had to uninstall it to make sure it didn't happen again.

You could set up an autokill to kill all browsers and launch it just before installing or uninstalling stuff. Then close it when done. There are plenty of free autokillers around for download.
 

My Computer

System One

  • OS
    Windows 8.0 x64
    Computer type
    Laptop
    System Manufacturer/Model
    Toshiba Satelite C55D-A Laptop
    CPU
    AMD EI 1200
    Memory
    4 gb DDR3
    Graphics Card(s)
    Raedon 340 MB dedicated Ram
    Monitor(s) Displays
    Built in
    Screen Resolution
    1366 x 768
    Hard Drives
    640 GB (spinner) Sata II
    Keyboard
    Built in
    Mouse
    Touch pad
You could always check what the parent process that would be calling Firefox is. If it's explorer.exe then it means Firefox was likely started by clicking the shortcut.

If it isn't explorer.exe you could just ignore the request and not start Firefox. Or prompt.


would be an easy script to write. I've used a very similar method with Chromium when I wrote an auto updater.

If you like I could cook up a script that will do this for you, but the prompt could possibly get annoying after awhile.
 

My Computer

System One

  • OS
    Kernel 4.x
    Computer type
    PC/Desktop
    CPU
    i5 3570K
    Motherboard
    P8Z77-V LK
    Memory
    G.skill Ripjaw Z 2133MHz 9-11-10-28
    Graphics Card(s)
    GTX770 4GB Dual BIOS
    Sound Card
    Audigy 4 Pro
    Monitor(s) Displays
    32" SAMSUNG HDTV
    Screen Resolution
    1920x1080 progressive
    Hard Drives
    10TB total
    3 RAID arrays
    3 single disks
    PSU
    Corsair HX750
    Case
    Corsair R400
    Cooling
    Corsair H100
    Keyboard
    Logitech G510
    Mouse
    Logitech G5
    Internet Speed
    ~900mbps (~115MB/s) down, ~10mbps(~1.5MB/s) up
    Browser
    Firefox & Chromium
    Antivirus
    Common Sense
autokill sounds like a good idea.. and just turn it off when I know i'm using the internet by MY own authority! ha..

that script also sounds like it would do the job, I would be curious to check it out.. if it's not too much trouble.. why not. I'll try it..

it would just be a prompt asking me everytime I click to open firefox?
 

My Computer

System One

  • OS
    windows 8.1
    Computer type
    Laptop
    System Manufacturer/Model
    Lenovo g750
    CPU
    i5
    Motherboard
    Some Chinese Crap..
    Memory
    8
    Graphics Card(s)
    Nvidia 755
    Antivirus
    Windows Defender
Ok i'll work on it when I get home tonight.

The script ideally would do the following:

Check who is running Firefox when Firefox is requested to open.
if it determines that it is not the user clicking the shortcut, or clicking a link then it will prompt the user with a Yes or No, while also displaying what website is trying to be opened and/or what commands Firefox is being asked to execute.
 

My Computer

System One

  • OS
    Kernel 4.x
    Computer type
    PC/Desktop
    CPU
    i5 3570K
    Motherboard
    P8Z77-V LK
    Memory
    G.skill Ripjaw Z 2133MHz 9-11-10-28
    Graphics Card(s)
    GTX770 4GB Dual BIOS
    Sound Card
    Audigy 4 Pro
    Monitor(s) Displays
    32" SAMSUNG HDTV
    Screen Resolution
    1920x1080 progressive
    Hard Drives
    10TB total
    3 RAID arrays
    3 single disks
    PSU
    Corsair HX750
    Case
    Corsair R400
    Cooling
    Corsair H100
    Keyboard
    Logitech G510
    Mouse
    Logitech G5
    Internet Speed
    ~900mbps (~115MB/s) down, ~10mbps(~1.5MB/s) up
    Browser
    Firefox & Chromium
    Antivirus
    Common Sense
Hydranix, that is hilarious..

but seriously if you want why not just make it easy and have my computer "prompt" me anytime Firefox wants to open period..

Even if I click it, i don't mind a prompt asking me if I really want firefox to open..
 

My Computer

System One

  • OS
    windows 8.1
    Computer type
    Laptop
    System Manufacturer/Model
    Lenovo g750
    CPU
    i5
    Motherboard
    Some Chinese Crap..
    Memory
    8
    Graphics Card(s)
    Nvidia 755
    Antivirus
    Windows Defender
The whole reason of opening the web browser, is to collect metrics to find out why people are no longer decide to use the software, by uninstalling it. The minute my browser opens, I just click to close. Nothing lost out of my life. The uninstaller is hard coded to make a background request to open the web browser.

People have been trying for years to figure out a work around on the Metrics collection behavior.
 

My Computer

System One

  • OS
    Linux Mint 17.2
    Computer type
    Laptop
    System Manufacturer/Model
    Toshiba Satellite C850D-st3nx1
    CPU
    AMD E1-1200 APU with Radeon (tm) HD Graphics 1.40 GHZ
    Memory
    12GB
    Graphics Card(s)
    AMD Radeon™ HD 7310 Graphics
    Sound Card
    Realtek HD
    Monitor(s) Displays
    LCD
    Screen Resolution
    1366 x 768
    Hard Drives
    Crucial M500 240GB SSD
    Mouse
    Logitech M525
    Internet Speed
    45/6 - ATT U-Verse
    Browser
    Google Chrome
    Antivirus
    None needed. It is Linux.
    Other Info
    Arris NVG589 Gateway; Router - Cisco RV320; Switch - Netgear GS108 8-Port Switch & Trendnet TEG-S50g 5-Port Switch; Access Points - Engenius ECB350, Trendnet TEW-638APB; NAS - Lenovo ix2-4; Printer - Brother HL-2280DW; Air Print Server - Lantronix XPrintServer

    A/V UPS - Tripp-Lite Smart 1500LCD 1500 Va/900 W.
A simple HIPS would do, just set a permission to open browser from explorer only.
 

My Computer

System One

  • OS
    Win 8.1.1 Pro x64
    Computer type
    Laptop
    System Manufacturer/Model
    Lenovo E525
    CPU
    AMD A4-3300M @ 2,0GHz
    Memory
    6GB DDR3 1333MHz
    Graphics Card(s)
    AMD Radeon HD 6480G 512MB shared
    Sound Card
    Creative Sound Blaster X-Fi Surround 5.1
    Screen Resolution
    1366x768
    Hard Drives
    WD 465GB
    Cooling
    Fusion Tweaker
    Keyboard
    Logitech K360
    Mouse
    Logitech M705
    Internet Speed
    50/50 MBps
    Browser
    Yandex
    Antivirus
    No AV & No Firewall
    Other Info
    Headphones: Sennheiser RS170
A HIPS would likely work fine.

If you would like to try the script, here's a link to it.

Download Script

I wrote the script in AutoIt which causes some false positives in third party anti-virus, so make sure you exclude the file if you use one.

Source is included in case anybody wants to peek at it. I'll admit it's kind of sloppy.
 

My Computer

System One

  • OS
    Kernel 4.x
    Computer type
    PC/Desktop
    CPU
    i5 3570K
    Motherboard
    P8Z77-V LK
    Memory
    G.skill Ripjaw Z 2133MHz 9-11-10-28
    Graphics Card(s)
    GTX770 4GB Dual BIOS
    Sound Card
    Audigy 4 Pro
    Monitor(s) Displays
    32" SAMSUNG HDTV
    Screen Resolution
    1920x1080 progressive
    Hard Drives
    10TB total
    3 RAID arrays
    3 single disks
    PSU
    Corsair HX750
    Case
    Corsair R400
    Cooling
    Corsair H100
    Keyboard
    Logitech G510
    Mouse
    Logitech G5
    Internet Speed
    ~900mbps (~115MB/s) down, ~10mbps(~1.5MB/s) up
    Browser
    Firefox & Chromium
    Antivirus
    Common Sense
ok hey why not, I'm always down to try any programs... thats kinda my dream.. ha. anyway it doesn't matter if anything goes wrong, even the absolute worst virus cause I have a total backup of my system (macrium) and I just only use certain "backups" for certain things.. like trying totally crazy programs and whatnot, and if i need to use my more "secure" macrium backup, then I just format and plop that version down using macrium.. its pretty easy and keeps me from dealing with sandboxes.. etc.. of course i have to wait for the time it takes to put each windows install back on my ssd.. but hey whatever.. 10-20 minutes..
 

My Computer

System One

  • OS
    windows 8.1
    Computer type
    Laptop
    System Manufacturer/Model
    Lenovo g750
    CPU
    i5
    Motherboard
    Some Chinese Crap..
    Memory
    8
    Graphics Card(s)
    Nvidia 755
    Antivirus
    Windows Defender
also while i'm trying your script, what other HIPS are there besides the gosh dang annoying Comodo one??
 

My Computer

System One

  • OS
    windows 8.1
    Computer type
    Laptop
    System Manufacturer/Model
    Lenovo g750
    CPU
    i5
    Motherboard
    Some Chinese Crap..
    Memory
    8
    Graphics Card(s)
    Nvidia 755
    Antivirus
    Windows Defender
and the funny yet good news is that you only had 4 detections! and as long as eset and emisoft are ok i'm ok,..

ha

virusfunny.JPG
 

My Computer

System One

  • OS
    windows 8.1
    Computer type
    Laptop
    System Manufacturer/Model
    Lenovo g750
    CPU
    i5
    Motherboard
    Some Chinese Crap..
    Memory
    8
    Graphics Card(s)
    Nvidia 755
    Antivirus
    Windows Defender
Hah, I had only three detection before I fixed an error in the command line passing part of the script :)

If the script runs into any trouble or bugs I'll be happy to try fixing them. Also, I don't use UAC on the machine I wrote and tested it on, so if it causes constant UAC popups (which I tried pretty hard to avoid) then it might not work out the way I was hoping.

You should never have to run the executable part of the script as administrator, and shouldn't with the way it calls Firefox. Running the script as admin will open Firefox as admin, and that's a bad idea.

As far as HIPS go, I've never used one, so I can't recommend one. Googling HIPS led me to a few choices, but they were either bundled with bloated antivirus software suites, or were expensive enterprise solutions. I'd be very interested if anybody knows of a standalone or lightweight HIPS that's under current development and is secure.
 
Last edited:

My Computer

System One

  • OS
    Kernel 4.x
    Computer type
    PC/Desktop
    CPU
    i5 3570K
    Motherboard
    P8Z77-V LK
    Memory
    G.skill Ripjaw Z 2133MHz 9-11-10-28
    Graphics Card(s)
    GTX770 4GB Dual BIOS
    Sound Card
    Audigy 4 Pro
    Monitor(s) Displays
    32" SAMSUNG HDTV
    Screen Resolution
    1920x1080 progressive
    Hard Drives
    10TB total
    3 RAID arrays
    3 single disks
    PSU
    Corsair HX750
    Case
    Corsair R400
    Cooling
    Corsair H100
    Keyboard
    Logitech G510
    Mouse
    Logitech G5
    Internet Speed
    ~900mbps (~115MB/s) down, ~10mbps(~1.5MB/s) up
    Browser
    Firefox & Chromium
    Antivirus
    Common Sense
Source is included in case anybody wants to peek at it. I'll admit it's kind of sloppy.

I have been using AutoIt3 for a few years. Would you be kind enough to post the source here? I had no joy with Mega.
You could just post it between code tags. I am curious how you approached the problem. If I steal anything I'll cite the source. :)
 

My Computer

System One

  • OS
    Windows 8.0 x64
    Computer type
    Laptop
    System Manufacturer/Model
    Toshiba Satelite C55D-A Laptop
    CPU
    AMD EI 1200
    Memory
    4 gb DDR3
    Graphics Card(s)
    Raedon 340 MB dedicated Ram
    Monitor(s) Displays
    Built in
    Screen Resolution
    1366 x 768
    Hard Drives
    640 GB (spinner) Sata II
    Keyboard
    Built in
    Mouse
    Touch pad
Sure, here it is.

Took me just under an hour to write-debug-finish it.

Code:
#NoTrayIcon
#Region ;**** Directives created by AutoIt3Wrapper_GUI ****
#AutoIt3Wrapper_Icon=T:\FirefoxPrompt.ico
#AutoIt3Wrapper_Outfile=T:\FirefoxPrompt.exe
#AutoIt3Wrapper_UseX64=n
#EndRegion ;**** Directives created by AutoIt3Wrapper_GUI ****
; ===============================================================
; This script was designed for brooksndun at eightforums.com
;
; It's messy and probably could be written better, however it
;   appears to work correctly without any major issues.
;
; This script attempts to circumvent programs opening firefox
;   without permission.
;
; This is deisgned to only work with Firefox, and
;   will not prevent other browsers from being
;   launched.
;
; This script is to be used at your own risk.
;   Nobody can be held responsible for the use
;   or misuse of this script, or any outcome
;   from the use or misuse of this script.
;
; ===============================================================
#include <Process.au3>
#include <file.au3>
Main()
Func Main()
 Local $Firefox = @ScriptDir&"\firefox.exe"
 Local $FirefoxBin = @ScriptDir&"\firefox-bin.exe"
 Local $NewCmdLine = $CmdLineRaw
 ; Ensures script is compiled. It will not function correctly unless compiled.
 If Not @Compiled Then
  MsgBox(0,"","Error: Script is not compiled."[EMAIL="&@CRLF&@CRLF&"This"]&@CRLF&@CRLF&"This[/EMAIL] script uses WindowsAPI calls which will not work properly unless the scrip is compiled into an exe")
  Exit
 EndIf
 ; Check if firefox.exe is our directory
 If Not FileExists($Firefox) Then
  MsgBox(0,"","Error: Cannot fine firefox.exe"[EMAIL="&@CRLF&@CRLF&"Please"]&@CRLF&@CRLF&"Please[/EMAIL] place in the same directory as firefox.exe")
  Exit
 EndIf

 ; Main logic of the script
 If Not CheckIfHijackInstalled() Then
  CreateImageHijackFile()
  Exit
 Else
  FirefoxBinSetup($Firefox, $FirefoxBin)
  Local $Parent = "Process No Longer Exists"
  Local $ParentPID = ScriptGetParentProcess()
  If ProcessExists($ParentPID) Then
   $Parent = _ProcessGetName($ParentPID)
  EndIf
  If $CmdLine[0] > 0 Then
   If $CmdLine[1] = "firefox.exe" OR $CmdLine[1] = $Firefox Then
    $NewCmdLine = StringReplace($NewCmdLine, $CmdLine[1], "")
    $NewCmdLine = StringReplace($NewCmdLine, '""', '')
   EndIf
  EndIf
  If $Parent = "explorer.exe" Then
   LaunchFirefox($FirefoxBin, $NewCmdLine)
   Exit
  EndIf
  Local $Action = MsgBox(308,"Firefox launch", "Allow Firefox to launch?"[EMAIL="&@CRLF&"Calling"]&@CRLF&"Calling[/EMAIL] Process: "[EMAIL="&$Parent&@CRLF&@CRLF&"Commandline"]&$Parent&@CRLF&@CRLF&"Commandline[/EMAIL]: "&$NewCmdLine)
   Switch $Action
    Case 6 ;yes
     LaunchFirefox($FirefoxBin, $NewCmdLine)
     Exit
    Case Else ;no or anything else
     Exit
   EndSwitch
 EndIf
EndFunc
Func LaunchFirefox($FirefoxBin, $NewCmdLine)
 Run($FirefoxBin&' '&$NewCmdLine)
EndFunc
; Check if we're still properly installed, if not warn user and offer to install or properly uninstall
Func CheckIfHijackInstalled() ; Bool
 Local $Ret = True
 Local $Debugger = RegRead("HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\firefox.exe", "Debugger")
 If Not FileExists(StringReplace($Debugger,'"','')) Or StringReplace($Debugger,'"','') <> @ScriptFullPath Then
  $Ret = False
 EndIf
 Return $Ret
EndFunc
; Creates .reg file to properly install image hijack for script
Func CreateImageHijackFile()
 CreateUninstaller()
 Local $File_RegSetup = @DesktopDir&"\Firefox Prompt Registry Install.reg"
 If FileExists($File_RegSetup) Then FileDelete($File_RegSetup)
 If @error Then
  MsgBox(0,"",'There was an error creating the registry file, please ensure "' & $File_RegSetup & '" does not [EMAIL="exist.'&@CRLF&@CRLF&'If"]exist.'&@CRLF&@CRLF&'If[/EMAIL] the file does exist, delete it and try again')
  Exit
 EndIf
 FileWriteLine($File_RegSetup,"Windows Registry Editor Version 5.00")
 If @error Then
  MsgBox(0,"",'Permission [EMAIL="error.'&@CRLF&@CRLF&'Insufficient"]error.'&@CRLF&@CRLF&'Insufficient[/EMAIL] permissions to create file: "' & $File_RegSetup & '"')
  Exit
 EndIf
 Local $RegScriptPath = StringReplace(@ScriptFullPath,'\','\\')
 IniWrite($File_RegSetup, "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\firefox.exe", '"Debugger"', '"'&$RegScriptPath&'"')
 If @error Then
  MsgBox(0,"",'Permission [EMAIL="error.'&@CRLF&@CRLF&'Insufficient"]error.'&@CRLF&@CRLF&'Insufficient[/EMAIL] permissions to create file: "' & $File_RegSetup & '"')
  Exit
 EndIf
 MsgBox(0,"","The registry file has been created on your desktop."[EMAIL="&@CRLF&@CRLF&"Please"]&@CRLF&@CRLF&"Please[/EMAIL] merge the registry file into the system registry to complete the setup."[EMAIL="&@CRLF&@CRLF&"Then"]&@CRLF&@CRLF&"Then[/EMAIL] firefox.exe should be properly set to prompt when executed")
EndFunc
; Copies firefox.exe to firefox-bin.exe so that the image hijack works correcly (breaks taskbar grouping)
Func FirefoxBinSetup($Firefox, $FirefoxBin)
 If ProcessExists("firefox-bin.exe") Then Return
 If FileExists($FirefoxBin) Then
 Local $FirefoxSize = FileGetSize($Firefox)
 Local $FirefoxBinSize = FileGetSize($FirefoxBin)
  If $FirefoxBinSize = $FirefoxSize Then
   Return
  EndIf
 EndIf
 FileCopy($Firefox,$FirefoxBin)
EndFunc
; Create uninstaller batch file
Func CreateUninstaller()
 Local $UninstallFile = @ScriptDir&"\UninstallFirefoxPrompt (Run as admin).bat"
 If FileExists($UninstallFile) Then Return
 FileWriteLine($UninstallFile, [EMAIL="'@ECHO"]'@ECHO[/EMAIL] OFF')
 FileWriteLine($UninstallFile, 'REG DELETE "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\firefox.exe" /f')
 FileWriteLine($UninstallFile, 'PAUSE')
EndFunc
; Finds the parent process of this script
;   Thanks to SmOke_N of the AutoIt community forums.
Func ScriptGetParentProcess() ; Int (PID)
; * Requires the script be compiled into an exe
; * Requires the compiled script use 32 bit AutoIt
    Local Const $TH32CS_SNAPPROCESS = 0x00000002
    Local $a_tool_help = DllCall("Kernel32.dll", "long", "CreateToolhelp32Snapshot", "int", $TH32CS_SNAPPROCESS, "int", 0)
    If IsArray($a_tool_help) = 0 Or $a_tool_help[0] = -1 Then Return SetError(1, 0, @AutoItPID)
    Local $tagPROCESSENTRY32 = _
        DllStructCreate _
            ( _
                "dword dwsize;" & _
                "dword cntUsage;" & _
                "dword th32ProcessID;" & _
                "uint th32DefaultHeapID;" & _
                "dword th32ModuleID;" & _
                "dword cntThreads;" & _
                "dword th32ParentProcessID;" & _
                "long pcPriClassBase;" & _
                "dword dwFlags;" & _
                "char szExeFile[260]" _
            )
    DllStructSetData($tagPROCESSENTRY32, 1, DllStructGetSize($tagPROCESSENTRY32))
    Local $p_PROCESSENTRY32 = DllStructGetPtr($tagPROCESSENTRY32)
    Local $a_pfirst = DllCall("Kernel32.dll", "int", "Process32First", "long", $a_tool_help[0], "ptr", $p_PROCESSENTRY32)
    If IsArray($a_pfirst) = 0 Then Return SetError(2, 0, @AutoItPID)
    Local $a_pnext, $i_return = 0
    If DllStructGetData($tagPROCESSENTRY32, "th32ProcessID") = @AutoItPID Then
        $i_return = DllStructGetData($tagPROCESSENTRY32, "th32ParentProcessID")
        DllCall("Kernel32.dll", "int", "CloseHandle", "long", $a_tool_help[0])
        If $i_return Then Return $i_return
        Return @AutoItPID
    EndIf
    While 1
        $a_pnext = DLLCall("Kernel32.dll", "int", "Process32Next", "long", $a_tool_help[0], "ptr", $p_PROCESSENTRY32)
        If IsArray($a_pnext) And $a_pnext[0] = 0 Then ExitLoop
        If DllStructGetData($tagPROCESSENTRY32, "th32ProcessID") = @AutoItPID Then
            $i_return = DllStructGetData($tagPROCESSENTRY32, "th32ParentProcessID")
            If $i_return Then ExitLoop
            $i_return = @AutoItPID
            ExitLoop
        EndIf
    WEnd
    If $i_return = "" Then $i_return = @AutoItPID
    DllCall("Kernel32.dll", "int", "CloseHandle", "long", $a_tool_help[0])
    Return $i_return
EndFunc
 

My Computer

System One

  • OS
    Kernel 4.x
    Computer type
    PC/Desktop
    CPU
    i5 3570K
    Motherboard
    P8Z77-V LK
    Memory
    G.skill Ripjaw Z 2133MHz 9-11-10-28
    Graphics Card(s)
    GTX770 4GB Dual BIOS
    Sound Card
    Audigy 4 Pro
    Monitor(s) Displays
    32" SAMSUNG HDTV
    Screen Resolution
    1920x1080 progressive
    Hard Drives
    10TB total
    3 RAID arrays
    3 single disks
    PSU
    Corsair HX750
    Case
    Corsair R400
    Cooling
    Corsair H100
    Keyboard
    Logitech G510
    Mouse
    Logitech G5
    Internet Speed
    ~900mbps (~115MB/s) down, ~10mbps(~1.5MB/s) up
    Browser
    Firefox & Chromium
    Antivirus
    Common Sense

My Computer

System One

  • OS
    Windows 8.0 x64
    Computer type
    Laptop
    System Manufacturer/Model
    Toshiba Satelite C55D-A Laptop
    CPU
    AMD EI 1200
    Memory
    4 gb DDR3
    Graphics Card(s)
    Raedon 340 MB dedicated Ram
    Monitor(s) Displays
    Built in
    Screen Resolution
    1366 x 768
    Hard Drives
    640 GB (spinner) Sata II
    Keyboard
    Built in
    Mouse
    Touch pad

My Computer

System One

  • OS
    Win 8.1.1 Pro x64
    Computer type
    Laptop
    System Manufacturer/Model
    Lenovo E525
    CPU
    AMD A4-3300M @ 2,0GHz
    Memory
    6GB DDR3 1333MHz
    Graphics Card(s)
    AMD Radeon HD 6480G 512MB shared
    Sound Card
    Creative Sound Blaster X-Fi Surround 5.1
    Screen Resolution
    1366x768
    Hard Drives
    WD 465GB
    Cooling
    Fusion Tweaker
    Keyboard
    Logitech K360
    Mouse
    Logitech M705
    Internet Speed
    50/50 MBps
    Browser
    Yandex
    Antivirus
    No AV & No Firewall
    Other Info
    Headphones: Sennheiser RS170
Thanks for the links TairikuOkami, I'm looking through the different programs now. Can't say I think any looks very appealing. If Malware Defender was up to date and not discontinued (no x86_64 support) I think I would already be installing it :)

Do you use any or could you recommend any that would prevent browsers from being opened automatically among other things?

Also, I've contacted the 3 companies (Cyren & F-Prot are the same engine), in regards to the false positives. I hope they whitelist the script, but I'm not getting my hopes up.
 

My Computer

System One

  • OS
    Kernel 4.x
    Computer type
    PC/Desktop
    CPU
    i5 3570K
    Motherboard
    P8Z77-V LK
    Memory
    G.skill Ripjaw Z 2133MHz 9-11-10-28
    Graphics Card(s)
    GTX770 4GB Dual BIOS
    Sound Card
    Audigy 4 Pro
    Monitor(s) Displays
    32" SAMSUNG HDTV
    Screen Resolution
    1920x1080 progressive
    Hard Drives
    10TB total
    3 RAID arrays
    3 single disks
    PSU
    Corsair HX750
    Case
    Corsair R400
    Cooling
    Corsair H100
    Keyboard
    Logitech G510
    Mouse
    Logitech G5
    Internet Speed
    ~900mbps (~115MB/s) down, ~10mbps(~1.5MB/s) up
    Browser
    Firefox & Chromium
    Antivirus
    Common Sense
Back
Top