New Antiexecutable: NoVirusThanks EXE Radar Pro

Today's gone, the warning. You were right, new build new warning. Stupid Chrome.

 

Just check it out yourself. If you block software_reporter_tool.exe, you will see another process with some random name running which tries to access Program Files in order to see what software you are running. This alone is a privacy violation, can't believe that people are falling for this Google Chrome crap. They even serve up ads based on your browsing history.

 

You're right, what the hell? A chrome.exe spawns another process called: "055033cb-6a68-406b-89cd-7ed6b27ff73f.exe" from "C:\Users\USERNAME\AppData\Local\Temp\ChromeCleaner_0_7652_13244". At least if you click "Find and remove harmful software" to force it to start software_reporter_tool.exe. I couldn't wait for it to start automatically.

I also find that if I uncheck the mark at "Report details to Google" it will be checked again the next time you start chrome. (Not sandboxed or anything)

 

Maybe related to the new feature detecting which sec softs you are using.

Who cares, listing my apps will never hurt me or empty my bank account...security outweight privacy.

I don't care Google collect some datas about me, I never had any negative effects from it, however Chrome made my browsing safer.

Anyway, if you are a privacy-concerned person or paranoid that want to hide everything, don't use internet and go put your money under your mattress, banks are the ultimate spies, and they can hurt you by working hand in hands with the authorities/taxes administration ...not saying they make a very accurate profile of you. Google is a child compared to them.

 

If you scroll a bit further you will see how to: "Block the Software Reporter Tool"

-https://www.ghacks.net/2018/01/20/how-to-block-the-chrome-software-reporter-tool-software_reporter_tool-exe/

Maybe trying to block the reporting tool using an anti-executable is a bit like trying to play Dr. Frankenstein making genetic changes to his monster. Chrome's built-in defenses are probably fighting back, so to speak. ghack's method of blocking using only Windows permissions is probably the reliable method of blocking it. BTW, it doesn't seem to be that much of a privacy concern at all, based on what I've read about it.

Well said With so much focus and distraction on privacy concerns, it might be steering one's attention away on how secure and resistant to attacks Chrome's browser model is, especially if security-related flags are enabled.

 

Indeed, no one can deny that, even in blackhats conventions, they admit breaking chrome is feasible but would take too much time and resources to be worthy.
I prefer sacrifice a little privacy/convenience to gain huge security.

If someone breaks into your system, your privacy is gone...

 

Safer, even in comparison to a heavily configured Firefox in a sandbox?

 

Don't compare barebone apps left at default with customized apps backup via a 3rd party tool...

You won't compare the protection of a basic car with the one from a armored car made to protect the pope or a president...

Barebone, Chrome is the safest browser.
FF security was always a joke but since they followed Chrome by implementing built-in sandboxing, things may get better for FF.

 

I never understood why people who are security-enthusiasts (or pros) are comparing programs in stock condition... It doesn't make sense to me to limit a configurable program to the compatibility with mainstream in comparisons made by-and-for enthusiasts/pros. But ok, you're right, I guess.

 

You compare similar things, tweaked with tweaked and stock with stock. This is simple logic.

You don't compare a bicycle with a formula 1 on a speed test...

In our case, you can compare Chrome tweaked with FF tweaked. If you add a 3rd party tool into the mix, both must use the said tool for the comparison to be valid.

 

What does this mean? I don't understand this expression. Thanks.

 

Default settings

 

Yes, sorry Mr.X, sometimes I don't come up with the best description. Not my native language.

I've never seen comparisons of the tweaked.
And I threw sandbox in there because I thought Firefox doesn't have a native one. Oops

 

No problem. Thank you both. English is not my native language either.

 

@novirusthanks I'm still having a delay when I open portable apps. No problem for installed software.

 

Can you elaborate further?

 

I've a folder full of portable applications located under C:\Users\X\Software\Portable\

I created a rule to exclude this folder, but every application launched from there has a delay. (ex: CCleaner is delayed for more than 2sec)

But software that is actually installed (program files, ex: Firefox) everything is working fine, no delay.

 

Does the delay still exist without ERP?
(portable apps usually opens slower than the installed version)

 

The delay occurs only with ERP installed. But what's weird is that even when ERP is disabled the delay is still there. I've to uninstall it to solve the problem.

 

This sounds weird af. So when NVT ERP is set to Protection Disabled from Protection Mode, you still get a delay? But as soon as you uninstall you don't get delay? Make sure to reboot after reinstalling NVT ERP

 

I also have the feeling that "Protection Disabled" is more of an "Allow mode" now. When protection is disabled and I open an application I still see little peaks in IO activity and CPU usage. So it is doing something (not sure if that something has to do anything with protection though)...

 

Yes I still get the delay. It disappears when I kill the process "ERPSvc.exe".

To uninstall I use a third party app to remove the leftovers, next I reboot and then I look for empty folders using " Everything".

 

This looks and has all the marks of a clash with some other program within that system. Sometimes that does happens but is been fairly rare looking thru other posts and experiences of issues.

 

Yeah, @K3yRoX needs to troubleshoot it more. Make a clean install of windows 10 in a vm or w/e, do you still have the issue? If not, keep adding your regular software. Then keep changing it until it resembles your current config. Eventually you'll find the issue. Unless you don't. But you have yet to get to that point

 

I've just tried in a VM and the problem remains.

I downloaded CCleaner portable https://www.ccleaner.com/ccleaner/builds

Without ERP CCleaner64.exe took less than a second to start. With ERP in alert mode it took 3-4 sec.