This is quite simple and no third party application is to be installed for this safety measure.You just follow this for those application which you find suspicious.Right click on that exe file.You will find Run as.Click on it and check the box against "Protect my computer and data from unauthorized program activity".
Your work is done now. You may be surprised what is this and how does it works.Actually this has the following effects
* Group membership: If you were logged in as a member of Administrators, Power Users, or certain powerful domain groups, the app runs without the benefit of those group memberships.
* Registry: The app has read-only access to the registry, including HKEY_CURRENT_USER and HKEY_LOCAL_MACHINE. The app has no access to HKCU\Software\Policies.
* File system (assuming NTFS): The app cannot access the user’s profile directory at all. That includes “My Documents”, “Temporary Internet Files”, “Cookies”, etc.
* Privileges: The app has no system-wide privileges other than “Bypass traverse checking”.
These are very powerful restrictions, particularly those around the registry and profile folders. It’s probably a safe bet that most apps do not expect “access denied” errors when writing to HKCU or the user’s temp or MyDocs folders, and probably do not handle such errors gracefully. So by selecting this some of your applications might not work properly when executed.But this makes you registry editor and disk more safer for those application which you execute them self, not from viruses and spywares their execution is no always under your control.
via msdn blog
0 comments:
Post a Comment