supraspecies Posted May 21, 2013 Share Posted May 21, 2013 I want to completely deny process creation. Not ProcessWait and ProcessClose, but completely deny process creation even before it happens. Is there any way to make it possible? I don't care what would be involved - be it Windows registry or else. Antiviruses intercept processes somehow, so it has to be possible. Link to comment Share on other sites More sharing options...
PhoenixXL Posted May 21, 2013 Share Posted May 21, 2013 Check uses registry My code: PredictText: Predict Text of an Edit Control Like Scite. Remote Gmail: Execute your Scripts through Gmail. StringRegExp:Share and learn RegExp.Run As System: A command line wrapper around PSEXEC.exe to execute your apps scripts as System (LSA). Database: An easier approach for _SQ_LITE beginners. MathsEx: A UDF for Fractions and LCM, GCF/HCF. FloatingText: An UDF for make your text floating. Clipboard Extendor: A clipboard monitoring tool. Custom ScrollBar: Scroll Bar made with GDI+, user can use bitmaps instead. RestrictEdit_SRE: Restrict text in an Edit Control through a Regular Expression. Link to comment Share on other sites More sharing options...
Moderators JLogan3o13 Posted May 21, 2013 Moderators Share Posted May 21, 2013 What process are you looking to exclude? There may be a different path depending on whether it is System or User, and what the process is. "Profanity is the last vestige of the feeble mind. For the man who cannot express himself forcibly through intellect must do so through shock and awe" - Spencer W. Kimball How to get your question answered on this forum! Link to comment Share on other sites More sharing options...
BrewManNH Posted May 21, 2013 Share Posted May 21, 2013 I'm not saying this is your intention, but do we really want to discuss this type of thing here? This has SO many malicious uses that I'd think it would be something best left for other locations than here. If I posted any code, assume that code was written using the latest release version unless stated otherwise. Also, if it doesn't work on XP I can't help with that because I don't have access to XP, and I'm not going to.Give a programmer the correct code and he can do his work for a day. Teach a programmer to debug and he can do his work for a lifetime - by Chirag GudeHow to ask questions the smart way! I hereby grant any person the right to use any code I post, that I am the original author of, on the autoitscript.com forums, unless I've specifically stated otherwise in the code or the thread post. If you do use my code all I ask, as a courtesy, is to make note of where you got it from. Back up and restore Windows user files _Array.au3 - Modified array functions that include support for 2D arrays. - ColorChooser - An add-on for SciTE that pops up a color dialog so you can select and paste a color code into a script. - Customizable Splashscreen GUI w/Progress Bar - Create a custom "splash screen" GUI with a progress bar and custom label. - _FileGetProperty - Retrieve the properties of a file - SciTE Toolbar - A toolbar demo for use with the SciTE editor - GUIRegisterMsg demo - Demo script to show how to use the Windows messages to interact with controls and your GUI. - Latin Square password generator Link to comment Share on other sites More sharing options...
Moderators Melba23 Posted May 21, 2013 Moderators Share Posted May 21, 2013 Hi, Blocking a process from starting - and reversing the block - can be done by simple registry manipulation. Any halfway decent HIPS should warn you that an app is trying to alter the registry, so the user should be able to prevent any unwanted "blocking". As long as any proposed solution stays at this level, I am happy for the thread to continue. M23 Any of my own code posted anywhere on the forum is available for use by others without any restriction of any kind Open spoiler to see my UDFs: Spoiler ArrayMultiColSort ---- Sort arrays on multiple columnsChooseFileFolder ---- Single and multiple selections from specified path treeview listingDate_Time_Convert -- Easily convert date/time formats, including the language usedExtMsgBox --------- A highly customisable replacement for MsgBoxGUIExtender -------- Extend and retract multiple sections within a GUIGUIFrame ---------- Subdivide GUIs into many adjustable framesGUIListViewEx ------- Insert, delete, move, drag, sort, edit and colour ListView itemsGUITreeViewEx ------ Check/clear parent and child checkboxes in a TreeViewMarquee ----------- Scrolling tickertape GUIsNoFocusLines ------- Remove the dotted focus lines from buttons, sliders, radios and checkboxesNotify ------------- Small notifications on the edge of the displayScrollbars ----------Automatically sized scrollbars with a single commandStringSize ---------- Automatically size controls to fit textToast -------------- Small GUIs which pop out of the notification area Link to comment Share on other sites More sharing options...
supraspecies Posted May 27, 2013 Author Share Posted May 27, 2013 I'm not saying this is your intention, but do we really want to discuss this type of thing here? This has SO many malicious uses that I'd think it would be something best left for other locations than here. You are right, this isn't my intention. All I do, I do for myself. And I suppose we don't have a choice but to discuss such things here. Otherwise how would we learn? Yes, some things can be used for malicious purposes, but so are most things. We can't just restrict any type of knowledge because it can be used for malicious purposes. Anything can be. Thanks everyone for suggestions, I'll do what I need through the registry. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now