Hard_Configurator - Windows Hardening Configurator

D

Deleted member 178

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,040
Emsisoft Antimalware installed. Checked nircmd.exe, nircmdc.exe (both 32 and 64.bit), all Hard_Configurator executables, and all installers (beta 3.0.1.0, 3.0.0.1, both 32 and 64.bit). No problems at all.
Emsisoft Behavior Blocker alerted twice: first time after running Hard_Configurator (System Policies), and the second time when applying recommended settings. Good work Emsisoft.
I did not notice any incompatibilities between Emsisoft and Hard_Configurator.

It seems that detection problems are related to "http://www.isthisfilesafe.com" website.
 

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,040
It seems, that form some time, Hard_Configurator v. 3.0.0.1 installers are accepted by SmartScreen (no SmartScreen prompt when downloading or running). So, thanks guys, for testing it. With your help, Hard_Configurator managed to get sufficient reputation.:)
 
Last edited:
5

509322

Emsisoft Antimalware installed. Checked nircmd.exe, nircmdc.exe (both 32 and 64.bit), all Hard_Configurator executables, and all installers (beta 3.0.1.0, 3.0.0.1, both 32 and 64.bit). No problems at all.
Emsisoft Behavior Blocker alerted twice: first time after running Hard_Configurator (System Policies), and the second time when applying recommended settings. Good work Emsisoft.
I did not notice any incompatibilities between Emsisoft and Hard_Configurator.

It seems that detection problems are related to "http://www.isthisfilesafe.com" website.

You can contact them via email. Explain that you are the publisher, provide your GitHub link, and they will reply. fp@emsisoft.com
 

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,040
You can contact them via email. Explain that you are the publisher, provide your GitHub link, and they will reply. fp@emsisoft.com

Thanks. This is a strange situation, because Emsisoft AntiMalware has no problem with those files - I installed the trial version, and checked the files locally on my computer. I already submitted the files with short explanations, using the link:
Emsisoft | Submit a Suspicious File
If this will not help, I will contact them via mail from your post.
 
5

509322

Thanks. This is a strange situation, because Emsisoft AntiMalware has no problem with those files - I installed the trial version, and checked the files locally on my computer. I already submitted the files with short explanations, using the link:
Emsisoft | Submit a Suspicious File
If this will not help, I will contact them via mail from your post.

If there are idiots that download and attempt to install your product, and it triggers a BB alert, and they quarantine your files, then those block and quarantine decisions will create a negative reputation in the AMN. The community of Emsi users does influence how the product will treat files.

Did you see an alert that the AMN query returned malicious or bad reputation ? If yes, then its the community-based rating\reputation. If the query returned unknown and then a BB alert appeared with the 4 options, then it isn't the AMN.

There was already one guy here at MT telling others not to use HC because it was a virus.

In your situation you should submit it via fp@emsisoft.com.
 

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,040
If there are idiots that download and attempt to install your product, and it triggers a BB alert, and they quarantine your files, then those block and quarantine decisions will create a negative reputation in the AMN. The community of Emsi users does influence how the product will treat files.

Did you see an alert that the AMN query returned malicious or bad reputation ? If yes, then its the community-based rating\reputation. If the query returned unknown and then a BB alert appeared with the 4 options, then it isn't the AMN.

There was already one guy here at MT telling others not to use HC because it was a virus.

In your situation you should submit it via fp@emsisoft.com.

Yes, this can be true. Behavior blocker alerted twice, when running Hard_Configurator and applying recommended settings. I will submit the final version via fp@emsisoft.com . Thanks for the help.:)
 
  • Like
Reactions: Sunshine-boy
5

509322

Yes, this can be true. Behavior blocker alerted twice, when running Hard_Configurator and applying recommended settings. I will submit the final version via fp@emsisoft.com . Thanks for the help.:)

With each new version you will likely have to re-submit unless you get a cert. I've seen on other forums where someone has stated HC is a virus. Not sure if it is the same guy who keeps saying it over-and-over, but there it is.
 
  • Like
Reactions: Sunshine-boy

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,040
With each new version you will likely have to re-submit unless you get a cert. I've seen on other forums where someone has stated HC is a virus. Not sure if it is the same guy who keeps saying it over-and-over, but there it is.
Hard_Configurator needs time and some improvements to get reputation. I am glad, that installers v. 3.0.0.1 are now accepted by SmartScreen.
 

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,040
Hard_Configurator_beta_3.0.1.0 is ready to download from GitHub::)
For 64-bit Windows: https://github.com/AndyFul/Hard_Con...Hard_Configurator_setup(x64)_beta_3.0.1.0.exe
For 32-bit Windows: https://github.com/AndyFul/Hard_Con...Hard_Configurator_setup(x86)_beta_3.0.1.0.exe

Edit.
There were problems with verifying the 32-bit version. The non signature part of Defender protection, still detected it as a trojan. I send an e-mail to Microsoft, but security guys could not reproduce my problems. After a few days they found the solution, now it is OK. Furthermore, the 32-bit new beta version seems to be accepted by SmartScreen ???
 
Last edited:

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,040

AlainS

Level 1
Aug 26, 2017
3
I'd like to report a possible bug.

On windows 8.1 x64, enabling "don't run exec from removable drives" blocked all programs that were installed on my secondary internal hard drive. I tried to revert the setting but it didn't worked, even after a full reboot. I finally had to use a system restore point to get things working again. I didn't enable any of the SRPs, I just used restrictions.
 
  • Like
Reactions: Andy Ful

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,040
I'd like to report a possible bug.

On windows 8.1 x64, enabling "don't run exec from removable drives" blocked all programs that were installed on my secondary internal hard drive. I tried to revert the setting but it didn't worked, even after a full reboot. I finally had to use a system restore point to get things working again. I didn't enable any of the SRPs, I just used restrictions.

It seems, that Windows OS recognized your secondary internal hard drive as a removable drive. This happens rarely, so thanks for posting it. Reverting <No Removable Disk Exec.> setting is explained in the help file:

"The removable disks have to be removed (use Safely Remove Hardware in the System Tray) and connected again to make this option work."

So, the drive has to be disconnected and connected again.
I am curious what kind of drive you have? Is this a flash drive FAT32?
 
  • Like
Reactions: Sunshine-boy

AlainS

Level 1
Aug 26, 2017
3
All my internal drives are formatted with NTFS.

I tried to use the "safely remove hardware" as instructed for the secondary drive, but windows refused stubbornly to unmount it.
My system drive is an SSD. I know the doc says SSD are untested, but I have macrium backups if worse comes to worst.
The secondary drive is a standard magnetic disk.
 
  • Like
Reactions: Andy Ful

Andy Ful

From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,040
All my internal drives are formatted with NTFS.

I tried to use the "safely remove hardware" as instructed for the secondary drive, but windows refused stubbornly to unmount it.
My system drive is an SSD. I know the doc says SSD are untested, but I have macrium backups if worse comes to worst.
The secondary drive is a standard magnetic disk.

Thanks. So, in some hardware configurations, this setting can be dangerous. I do not think, that it is related to SSD, because I have a similar config on two computers: SSD (system) + secondary magnetic disk. Anyway, this issue has to be investigated, because this could be the system disk, and then Windows would hang completely.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top