The Custom Application Control Settings window provides several high-security settings that are designed to prevent malicious programs from controlling trusted programs.
Enable Advanced Application Control
|
Prevents trusted programs from being used by untrusted programs to circumvent outbound firewall protection.
|
Enable Application Interaction Control
|
Alerts you when a process attempts to use another process or when a program launches another program.
|
Enable Timing Attack Prevention
|
Detects and stops programs that try to hijack a trusted program’s permissions (e.g., to load drivers, change registry keys, or regulate processes). Also known as handle protection. On by default when Application Control is High or Maximum.
|
Enable Microsoft Catalog Utilization
|
When enabled, prevents alerts for programs that are cataloged by Windows as known and trustworthy. Enabled by default. (Depending on your settings, ZoneAlarm may still alert you about such programs if they attempt to act as a server outside your Trusted Zone.)
|
Enable component control
|
Restricts or monitors individual components, such as DLL files or ActiveX controls, that malware programs may use to access the network. If Application Control is Medium, component control tracks components but does not restrict them. If Application Control is High, it prompts you to allow or deny new components. See Enabling Component Control for details.
|
Enable services control
|
Alerts you if untrusted programs attempt to install or modify a service or driver. Active when Application Control is set to High or Maximum.
See Understanding services control for more information.
|
To learn about the settings on the OSFirewall panel of this dialog, see Configuring OSFirewall protection.
Print
