- Dec 23, 2014
- 8,593
Your post was helpful to me.Thanks Andy
This is the complete line in the log:
De beheerder heeft de toegang tot ...
\AppData\Local\Temp\7zS6ECF\FileExtractor.exe beperkt op locatie met de beleidsregel {1016bbe0-a716-428b-822e-3e544b6a3281} voor het pad C:\Users\*\AppData\Local\Temp\7z?????????\*.exe.
Thanks to you I figured out how to avoid blocking software updates made via 7-Zip SFX installers. Simply, if one tries to run the executable from 7-Zip GUI, it is unpacked and executed in the temporary folder ...\AppData\Local\Temp\7zO....\ . But, when the application updates via SFX, it uses the folder ...\AppData\Local\Temp\7zS....\.
So the improved H_C rule should block only the first scenario by applying the SRP rule: ...\AppData\Local\Temp\7zO????????\*.exe