ON SECURITY By Susan Bradley Most antivirus programs flag ASR GUI as infected. Those results are false positives. In my most recent AskWoody MS-DEFCON
[See the full post at: The ASR GUI tool is safe]
Susan Bradley Patch Lady/Prudent patcher
![]() |
Patch reliability is unclear, but widespread attacks make patching prudent. Go ahead and patch, but watch out for potential problems. |
SIGN IN | Not a member? | REGISTER | PLUS MEMBERSHIP |
Home » Forums » Newsletter and Homepage topics » The ASR GUI tool is safe
ON SECURITY By Susan Bradley Most antivirus programs flag ASR GUI as infected. Those results are false positives. In my most recent AskWoody MS-DEFCON
[See the full post at: The ASR GUI tool is safe]
Susan Bradley Patch Lady/Prudent patcher
Is there some confusion in this article between PS2Exe and psexec? The ASR GUI tool is written as a Powershell script, and can be run as such. It does not use psexec, but it does contain “psexec” in text. There is also an executable for ASR GUI, which I am pretty sure was created from the Powershell script using PS2Exe.
Could you elaborate a bit. First I always find Github terribly opaque and the entry for ASR GUI is no different: I didn’t see where there was an obvious way just to download the program and its documentation. Also, can you explain what we should do about ASR?  Which “S”s should we do something about and how.  You mention using gpedit but don’t say how. Sorry to be so clueless about this matter.
At the given link to github, there are two files. One is an executable file, one is a .ps1 Powershell script. Download and run either. There is no documentation for the program itself (it doesn’t really need it.) For the things it allows you to set or unset, you’ll have to look up the meaning of those settings. In Susan’s initial post on this topic, she explained which one to use for this problem: Block Office from creating child processes.
As for gpedit, run gpedit.msc. You can do this from a command line, or from the start menu’s Run… option.
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Welcome to our unique respite from the madness.
It's easy to post questions about Windows 11, Windows 10, Win8.1, Win7, Surface, Office, or browse through our Forums. Post anonymously or register for greater privileges. Keep it civil, please: Decorous Lounge rules strictly enforced. Questions? Contact Customer Support.
Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.
Mastodon profile for DefConPatch
Mastodon profile for AskWoody
Home • About • FAQ • Posts & Privacy • Forums • My Account
Register • Free Newsletter • Plus Membership • Gift Certificates • MS-DEFCON Alerts
Copyright ©2004-2023 by AskWoody Tech LLC. All Rights Reserved.