Cleverly using NTFS permissions to protect IE security

Malware rampant, ie seems to be their eternal goal, because IE for the system itself, so the penetration rate is high. Occupy the IE, basically can follow this line "rogue" up. So it is very important to protect IE well (using the method in this article if the system is in the same partition as NTFS).

　　First, the method of defending before the recruit

If the system is just installed, there is no malware or virus infection, in this case, better to do, as long as the cancellation of all users to the IE folder Write permission on it, so that some malicious software attempts to implant ie, because there is no "write" permission, of course, implantation will not be successful.

Go to the Program Files folder of the system disk, locate the Internet Explorer folder, right-click, select Properties from the pop-up shortcut menu, and in the Open Internet Explorer Properties dialog box, switch to the Security tab. Remove the Write permission for all users in the list (see Figure 1).

Figure 1

With less write access, some malware that needs to be written to the IE folder to work will be at a dead stop.

Tip: In the Folder Properties dialog box, you cannot find the Security tab, remove the selection by using the Simple File sharing (recommended) option in Folder Options. This method also has disadvantages, some use BHO of the tool bar can not prevent

　　Second, the security method after the recruit

I have encountered a "malware collective attack", the system is extremely slow, the use of Malicious Software Removal Tool cleared, as long as the Internet, will soon be installed countless malicious software, and later through the monitoring process of dynamic discovery, is that these malicious software use IE, Automatically download and install new malware on the network. In this case the simplest way to defend is to ie "waste" off, into the Firefox category of non IE kernel browser.

As in the previous approach, just to do it this time, simply remove the user from the Security tab and click OK (see Figure 2). At this time because of the IE folder can neither read nor write, so IE browser can not use, the use of IE malicious software of course, there is no way.

Figure 2

　　Small tip:

1. Tall tree catches, because of the relationship between IE penetration, security is also really worrying, the proposed second protection method, ie locked completely, Ehin.

2. Using NTFS permissions, not only can protect ie, but also can kill software ads, such as thunder, Cool Dog and other software ads can be removed by this method