I am finishing it. The system-wide settings for all accounts (blocking the VBA interpreter and Adobe Acrobat Reader XI/DC hardening) are now in Hard_Configurator. They can be used on Windows 10 with activated ASR rules.
I prepared the external application to configure MS Office and Adobe Acrobat Reader XI/DC for the separate accounts (non-system-wide). This application can harden MS Office even more strictly and should be used when another AV is a real-time protection or when the user cannot apply ASR rules.