摘要 |
A method for disabling a process in a computer, particularly including processes such as viruses, spyware, adware, and malware generally. A file object (file or folder) is identified in the computer that is required by the process. An access control entry (ACE) is then stored in an access control list (ACL) for the file object. The ACE specifies an entity (user or group) and a permission needed by that entity to access or execute the file object. The ACE further specifies that the entity is denied the permission it needs. This disables the process by denying the entity the future ability to access or execute the file object.
|