• The ASR GUI tool is safe

    Home » Forums » Newsletter and Homepage topics » The ASR GUI tool is safe

    Tags:

    Author
    Topic
    Susan Bradley
    Manager
    June 13, 2022 at 2:44 am #2453015
    Options

    ON SECURITY By Susan Bradley Most antivirus programs flag ASR GUI as infected. Those results are false positives. In my most recent AskWoody MS-DEFCON
    [See the full post at: The ASR GUI tool is safe]

    Susan Bradley Patch Lady

    Reply | Quote
    Viewing 4 reply threads
    Author
    Replies
    • Graham
      AskWoody Plus
      June 13, 2022 at 5:33 am #2453032
      Options

      Is there some confusion in this article between PS2Exe and psexec? The ASR GUI tool is written as a Powershell script, and can be run as such. It does not use psexec, but it does contain “psexec” in text. There is also an executable for ASR GUI, which I am pretty sure was created from the Powershell script using PS2Exe.

      1 user thanked author for this post.
      b
      Reply | Quote
    • berniec
      AskWoody Plus
      June 14, 2022 at 5:43 am #2453244
      Options

      Could you elaborate a bit.  First I always find Github terribly opaque and the entry for ASR GUI is no different: I didn’t see where there was an obvious way just to download the program and its documentation.  Also, can you explain what we should do about ASR?   Which “S”s should we do something about  and how.   You mention using gpedit but don’t say how.  Sorry to be so clueless about this matter.

      Reply | Quote
      • Graham
        AskWoody Plus
        June 15, 2022 at 9:51 am #2453673
        Options

        At the given link to github, there are two files. One is an executable file, one is a .ps1 Powershell script. Download and run either.  There is no documentation for the program itself (it doesn’t really need it.) For the things it allows you to set or unset, you’ll have to look up the meaning of those settings. In Susan’s initial post on this topic, she explained which one to use for this problem: Block Office from creating child processes.

        As for gpedit, run gpedit.msc. You can do this from a command line, or from the start menu’s Run… option.

        Reply | Quote
    • Colorado_Hiker
      AskWoody Plus
      June 14, 2022 at 7:44 am #2453261
      Options

      I’ve tried using ASR_Rules_PoSh_GUI to “Set all Office applications from creating child processes and I’m getting the following error.  Tried Googling it but didn’t find anything.  Anyone have an idea?  TIA,

      Error 1
      Error 2

      Reply | Quote
    • Graham
      AskWoody Plus
      June 17, 2022 at 10:52 am #2454156
      Options

      That’s likely a Windows Defender error.

      Reply | Quote
    • AJ2000
      AskWoody Plus
      March 7, 2023 at 4:11 pm #2541845
      Options

      Sorry I realize this is an old thread but does this ASR GUI tool work on Windows 11?

      Thanks.

      Reply | Quote
    Viewing 4 reply threads
    Reply To: The ASR GUI tool is safe

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the AskWoody Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • How to use the Forums
  • All Forums

    • Recent Topics

    March 2023
    S M T W T F S
     1234
    567891011
    12131415161718
    19202122232425
    262728293031  

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2023 by AskWoody Tech LLC. All Rights Reserved.