How to Configure, Protect and Run Programs Blocked by Avast Hardened Mode

Discussion in 'Avast' started by Spawn, Aug 2, 2016.

  1. Spawn

    Spawn Administrator
    Staff Member Content Creator

    Jan 8, 2011
    16,256
    24,180
    How to Run Programs Blocked by Avast Hardened Mode (for All Users)
    By @Huracan

    Includes:
    • How to Configure avast Hardened mode
    • How to Protect avast with Protection control
    • How to Run Programs Blocked by Avast
    • Recommendations for inexperienced and experienced users


    What is Hardened Mode? - Source


    "Hardened Mode is a means of “parental control” for executable files.

    When enabled, it is always running in the background and checking every process launched on the machine. The evaluation of files is based on their reputation coming from the cloud (controlled by the VLab).
    • In the Aggressive Hardened Mode, only chosen executable files with known high ratings are allowed; the rest gets prevented from running.
    • On the other hand, the Moderate Hardened Mode blocks only files which have bad ratings (and those which have no ratings at all, due to being new).
    This is useful for inexperienced users who do not always know what exactly they are launching."

    How to Configure Avast Hardened Mode?


    Users of Avast Free Antivirus (including Pro Antivirus, Internet Security and Premier) can all access this setting from the General Settings from the Avast UI. Once enabled, there are 2 settings available to choose from; Moderate or Aggressive - differences are explained above.

    Click OK to save changes.

    "Use the Avast Hardened mode to further lock down the security of this computer. This is recommended for inexperienced users."
    avast-hm-settings.png
    Image: avast Settings - Hardened Mode enabled under General settings.

    How do I know an App or Program has been Blocked?


    Avast will notify you with a pop-up very similar to this, it will be labelled "Program blocked" with further details of the application's filename and location.

    Example: C:\Program Files\...\BlockApp.exe

    upload_2016-8-2_21-58-11.png
    Image: avast Warning - Notification of an Application blocked from running.


    How to Lockdown Avast from Misuse, Human Error or Inexperienced Users?


    Not only is it important to make sure Avast is running 24/7 and up to date, it's also critical that Settings cannot be tampered deliberately by inexperienced users or disabled by malicious software.

    Recommended: All users should use a password to protect core functions.

    upload_2016-8-2_23-2-46.png
    Image: avast Settings - Protect Avast with a password enabled under General Settings.

    How Password Protection Control makes a difference?


    Let's say this was a malicious program extracted from a suspicious email download for free bitcoins. The option to Add an Exclusion is still visible, but without the correct password no changes have been made.

    upload_2016-8-2_22-47-10.png
    Image: avast Warning - Notification of an Application blocked from running.

    If the user closes the Authorization window or enters an invalid password, changes are prevented.

    "An attempt has been made to enter a protected area of Avast (Protection control). This may be a legitimate action, but could also be the result of a malware attack".
    upload_2016-8-2_23-0-23.png
    Image: avast Warning - Notification of Authorization required to make changes to protected Avast settings.

    How to Run any Blocked Program and View any Exclusions?

    For demonstration purposes, here is an example of Hardened mode protecting a user from an application with a low file rating, and how easy it is to add exclusions.

    If enabled, Protection control will prompt for a password before being allowed to modify the settings.

    [​IMG]
    Image GIF: avast with Hardened mode on Moderate. (2) Ran Messaging app. (3) Blocked by Hardened mode. (4) Clicked on Add an exclusion to allow program to run. (5) Opened Avast Settings to see all exclusions added under Hardened mode.

    For the nerds: What actually happened above?


    After the Anniversary Update for Windows 10 installed and because I have enabled Hardened mode, many of the new Windows Apps included in this update were being blocked.

    Recommendations for All Users


    As an Avast users for several years (on and off), I sincerely hope that this has been helpful and consider the following options when using Avast Antivirus:
    • Create an Avast Account for FREE to monitor and manage the status of your PC remotely.
    • Use the Recommendation scheme to protect your friends and families computers.
    • Enable Hardened Mode to bolster your already secure Windows PC.
    • Enable Protection control to prevent unauthorised changes to Avast.
    • Be vigilant before visiting shady websites, downloading suspicious email attachments, executing unknown program or adding exclusion to Avast.
    Thanks for reading. :)

    Typo alert
     
    Itachi Sempai, Rebsat, Svoll and 19 others like this.
  2. DardiM

    DardiM Level 26
    Trusted AV Tester

    May 14, 2016
    1,567
    15,193
    France
    Windows 10
    Kaspersky
    Thanks for the share :)

    Great job :)
     
    Svoll, Yash Khan, Andytay70 and 8 others like this.
  3. safe1st

    safe1st Level 16

    Jan 29, 2016
    787
    7,092
    Unknown
    Windows 10
    Zemana
    Svoll, Yash Khan, Andytay70 and 7 others like this.
  4. Logethica

    Logethica Level 12

    Jun 24, 2016
    584
    9,324
    UK
    Windows 10
    Thank you for the time and effort taken to create this post @Huracan :)
     
    Svoll, Yash Khan, Andytay70 and 6 others like this.
  5. DJ Panda

    DJ Panda Level 29

    Aug 30, 2015
    1,811
    8,661
    Madison, Wisconsin
    Windows 10
    Emsisoft
    Thanks! I follow the Avast Maximum Protection guide but also have a password preventing access to the program.
     
    Svoll, Yash Khan, Andytay70 and 8 others like this.
  6. King Mellow

    King Mellow Level 25

    Jun 21, 2013
    1,426
    8,285
    Nurse
    Manila, Philippines
    Windows 10
    Emsisoft
    Svoll, Yash Khan, Andytay70 and 7 others like this.
  7. JM Security

    JM Security Level 28
    Trusted

    Apr 12, 2015
    1,746
    13,954
    SecureMyBit Developer
    Unknown
    Great tutorial, and well explained, thanks @Huracan ! ;)
     
    Svoll, Yash Khan, Andytay70 and 7 others like this.
  8. Morro

    Morro Level 8

    Jul 8, 2012
    413
    398
    Netherlands
    Thank you Huracan, I just recently switched to Avast Free 2016. :)
     
    Svoll, Yash Khan, davisd and 3 others like this.
  9. Trickster

    Trickster Level 14

    Jul 28, 2016
    663
    5,197
    Loving / caring Husband :)
    Europe
    Windows 10
    BullGuard
    thanks @Huracan for this extensive guide! you have certainly have put a lot work and effort into this. It was a joy to read! ;)
     
    King Mellow, Svoll, Yash Khan and 4 others like this.
  10. shmu26

    shmu26 Level 53

    Jul 3, 2015
    4,245
    13,474
    Utopia
    how does avast hardened mode compare to an anti-exe program, for instance, voodooshield?
    for our purposes, let us ignore voodooshield's easy access to Virus Total score and other Ai extras. Let us just focus on the raw power to block malware. I guess what I am asking is: why do people go looking for anti-exe programs, if they can use avast hardened mode?
     
    Svoll, Yash Khan, DardiM and 2 others like this.
  11. Hanmin147

    Hanmin147 Level 28

    Jul 28, 2014
    1,786
    7,607
    Windows 10
    Avast
    Thanks @Huracan ! Personally I think it would be good if users are able to submit exe files for whitelisting so that they can be run in hardened mode in the event that they are blocked initially. Sometimes it's a waiting game with Avast to see when they will whitelist the programme.
     
    Svoll, Spawn, DardiM and 1 other person like this.
  12. Yash Khan

    Yash Khan Level 51

    Oct 22, 2012
    4,055
    8,960
    #12 Yash Khan, Aug 25, 2016
    Last edited: Aug 25, 2016
    Avast Hardened Mode works like Anti-Executable or HIPS? i.e
    Anti-Executable = You execute & HM blocks & you exclude & no further blocks.
    HIPS - You execute & HM blocks & you exclude & still further some files may be blocked.

    @Huracan
    You run Aggressive or Moderate Mode?

    Aggressive follows Avast whitelist & blocks rest
    Moderate blocks suspicious/low reputation

    You mentined AU new windows apps were blocked So I wonder you are running Aggressive or Moderate Mode?
     
  13. Rebsat

    Rebsat Level 5

    Apr 13, 2014
    213
    592
    Sulaimaniya, Iraq
    Windows 7
    Emsisoft
    Thank you very much for sharing this helpful tutorial bro (y):)
     
    XhenEd likes this.
Loading...