ConfigureDefender utility for Windows 10

SeriousHoax

SeriousHoax

Level 47
Verified
Top Poster
Well-known
Mar 16, 2019
3,634
Tried to run the latest version of WiseVector and got this notification.
p.png

Which is alright I guess because WD probably didn't see this file before and the timeout is 60 sec because that's how I set it. Before when I had this timeout notification for other new files, the file always ran after few seconds but not this time. Now even after 30 mins WiseVector is still not running and getting this notification instead.
p2.png

Maybe a restart will fix it but I'm working on something now so can't do it at the moment. Found a log in temp regarding that timeout notification which is normal I think.
p3.PNG

I was wondering if anyone's familiar with this behavior?
 
  • Like
  • Wow
Reactions: oldschool, simmerskool, Protomartyr and 4 others
oldschool

oldschool

Level 82
Verified
Top Poster
Well-known
Mar 29, 2018
7,107
SeriousHoax said:
Tried to run the latest version of WiseVector and got this notification.
p.png
Click to expand...
This seems to be a new notification type from M$. I get it with every Brave Nightly update.

SeriousHoax said:
Now even after 30 mins WiseVector is still not running and getting this notification instead.
p2.png
Click to expand...
Is WD set to "Block"? That looks like an ASR or H_C block maybe? 🤔
 
  • Like
  • Wow
Reactions: simmerskool, Protomartyr, harlan4096 and 1 other person
CyberTech

CyberTech

Level 44
Verified
Top Poster
Well-known
Nov 10, 2017
3,250
silversurfer said:
www.bleepingcomputer.com

Windows 10 Defender's hidden features revealed by this free tool

Windows 10's built-in Microsoft Defender antivirus solution has many advanced hidden features that allow you to customize how the security software works. Unfortunately, most people do not know these settings exist or even how to access them.
www.bleepingcomputer.com www.bleepingcomputer.com
Click to expand...

Wow i cant believe this! we MT are proud of you! congrats @Andy Ful @oldschool @shmu26 you made it 👏

 
  • Like
Reactions: oldschool, Protomartyr, plat and 7 others
Andy Ful

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,129
SeriousHoax said:
Tried to run the latest version of WiseVector and got this notification.
View attachment 240292
Which is alright I guess because WD probably didn't see this file before and the timeout is 60 sec because that's how I set it. Before when I had this timeout notification for other new files, the file always ran after few seconds but not this time. Now even after 30 mins WiseVector is still not running and getting this notification instead.
View attachment 240293
Maybe a restart will fix it but I'm working on something now so can't do it at the moment. Found a log in temp regarding that timeout notification which is normal I think.
View attachment 240296
I was wondering if anyone's familiar with this behavior?
Click to expand...
Works well on my machine: H_C (ConfigureDefender HIGH + all ASR rules ON, CFA is ON).
WiseVector.png

I have got an alert from CFA which blocked WiseVector to access the Documents folder.
Are there any blocks in ConfigureDefender <Defender Security Log>?
 
  • Like
Reactions: jerzy601, simmerskool, Protomartyr and 6 others
SeriousHoax

SeriousHoax

Level 47
Verified
Top Poster
Well-known
Mar 16, 2019
3,634
Andy Ful said:
Works well on my machine: H_C (ConfigureDefender HIGH + all ASR rules ON, CFA is ON).
View attachment 240298
I have got an alert from CFA which blocked WiseVector to access the Documents folder.
Are there any blocks in ConfigureDefender <Defender Security Log>?
Click to expand...
No, nothing is CD log. I'll restart the system later. Probably that will fix the issue.
 
  • Like
Reactions: simmerskool, Protomartyr, oldschool and 2 others
Andy Ful

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,129
SeriousHoax said:
No, nothing is CD log. I'll restart the system later. Probably that will fix the issue.
Click to expand...
After looking into ConfigureDefender <Defender Security Log>, I noticed many ASR blocks from Lsass ASR rule. But, WiseVector seems to work without issues and detected some false positives on my machine.
 
  • Like
Reactions: oldschool, simmerskool, Protomartyr and 3 others
Andy Ful

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,129
TheGreenBear said:
what is the difference?

Cloud Protection level= highest or block ?=
i dont get it
Click to expand...
The second should be more aggressive. But, there are no details available (no documentation). From the tests on MH and my tests, the Block level does not block all unknown executables. It probably can block sufficiently suspicious & unknown files.
 
  • Like
  • +Reputation
Reactions: HunterKhajiit, simmerskool, ForgottenSeer 85179 and 6 others
Andy Ful

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,129
  • Like
Reactions: HunterKhajiit, simmerskool, ForgottenSeer 85179 and 6 others
Andy Ful

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,129
oldschool said:
Yes, but also somewhere it mentioned more FPs and is not advised.
Click to expand...
It can be deduced from the description = block unknown executables.:)
It is also obvious when one looks at the sequence:
Default >> High >> High+ >> Block.
I am trying to find something more informative for 2 years without any success.:(
 
Last edited:
  • Like
  • Sad
Reactions: oldschool, simmerskool, ForgottenSeer 85179 and 7 others
Vitali Ortzi

Vitali Ortzi

Level 22
Verified
Top Poster
Well-known
Dec 12, 2016
1,148
Andy Ful said:
It can be deduced from the description = block unknown executables.:)
It is also obvious when one looks at the sequence:
Default >> High >> High+ >> Block.
I am trying to find something more informative for 2 years without any success.:(
Click to expand...
Configure Defender is a very great tool made me come back to built in protection in some Configuration.
Unfortunately it's not up to Andy to lower the false positive rate .
Even default has false positives for some Users ,me as well(used to have in a few programs in my USB but replaced them with powershell/Bat scripts Wich fixed the issue and saved me space as well).
 
  • Like
Reactions: harlan4096, Protomartyr, [correlate] and 3 others
simmerskool

simmerskool

Level 31
Verified
Top Poster
Well-known
Apr 16, 2017
2,094
SeriousHoax said:
Tried to run the latest version of WiseVector and got this notification.
View attachment 240292
Which is alright I guess because WD probably didn't see this file before and the timeout is 60 sec because that's how I set it. Before when I had this timeout notification for other new files, the file always ran after few seconds but not this time. Now even after 30 mins WiseVector is still not running and getting this notification instead.
View attachment 240293
Maybe a restart will fix it but I'm working on something now so can't do it at the moment. Found a log in temp regarding that timeout notification which is normal I think.
View attachment 240296
I was wondering if anyone's familiar with this behavior?
Click to expand...

Yes I saw this or very similar the other day, when I was bored and tried to run an eset online scan of win10. H_C using default recommended settings for SRP, CD & firewall. Running as SUA. I assumed the block was H_C related, but I didn't really care about running eset scan, so I forgot about it.
 
  • Like
Reactions: stefanos, Protomartyr, oldschool and 2 others

Similar threads

Andy Ful
    • Like
    • +Reputation
    • Thanks
  • Sticky
Serious Discussion WHHLight - simplified application control for Windows Home and Pro.
Replies
254
Views
17,163
Hard_Configurator Tools
Andy Ful
Andy Ful
Andy Ful
    • +Reputation
    • Like
    • Applause
New Update Testing Windows Hybrid Hardening (new hardening application).
Replies
253
Views
21,979
Hard_Configurator Tools
South Park
South Park
Shadowra
    • Like
    • +Reputation
    • Thanks
App Review Microsoft Defender Antivirus with Andy Ful WHHLight
Replies
38
Views
3,883
Video Reviews - Security and Privacy
LennyFox
L

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top