RunGuard is a tool allows you to automatically check a file before its execution. If the file will be suspicious, RunGuard will warn a user to proceed execution or decline it.
RunGuard uses own "ScriptCheck" technology to determine if a file is useful or harmless.
RunGuard can check:
· Microsoft Office files (doc, dot, xls, xlt, ppt);
· HTML files (htm, html, shtml, asp, mhtml);
· Windows script and batch files (vbs, wsh, js, bat pif, cmd);
· Windows HTA (hta);
· Windows registry files (reg.)
Note!
RunGuard is included to the Gold Edition only.
When does RegRun begin defend you?
Immediately after installation RegRun Gold if you chosen "High" or "Ultra High" Security Level.
What will I see when I use RunGuard?
You will see nothing while you do not launch a suspicious file. RunGuard will display an alert if it decides that you must pay attention to this file.
What can I do when I got alert?
You can:
1. Quickly check this file by antiviral software installed on your computer.
2. View file source code.
3. Block file execution. You may send this file to Greatis Software or to another antiviral company for testing.
4. Safely view file contents. This allows you to see Microsoft Word files in WordPad without macros execution. If you check HTML file RunGuard will strip all dangerous tags and will create the safe file in the temporary folder. You can see a text without images.
5. Cure file. This feature is valid for HTML files only. RunGuard will strip dangerous tags and replace the original file.
How can I block execution of the file?
Add this file to the Black List.
Click on the "Stop this file from running" button and choose "Never run this file" option.
Also you can choose "Delete File" and "Quarantine File" (move to Quarantine folder) options.
I know that the file is good. How to skip its testing?
Add this file name to Allowed list.
Click on the "Allow to Run" button and choose "Always run this file. Add it to Allowed list.
You can manually check a file. Open RunGuard, click on the "Check File" button and locate for a file.
RunGuard logs files execution. You can view log file by launching RunGuard, Show History.
What are the "PIDL" records?
Windows uses special item ID identifiers to execute virtual links such "My Computer". The PIDL may do not be related to executable file. The PIDL is not constant value it is variable and it has the defined value only during current Windows session.
You can disable writing History via RunGuard configuration.
1. RunGuard traps execution files according you configuration. You should select which types you want to trap. It checks file extension to determine file type. Open RunGuard, Configuration.
2. RunGuard can’t trap if you open a file in the application. For example, if you open a file in Microsoft Word via File, Open method, RunGuard do not check the file. The same will be if you launch it from Start menu, "Run": winword.exe doc1.doc.
What is the "rrshell.dll"?
This DLL is used to trap file execution.
You can see it in the Start Control, "Windows Core Components", "Shell Loggers" tab. This DLL is required to use RunGuard in auto mode.
If you are being asked by WatchDog about "rrshell.dll" you should decide do you want to use RunGuard in auto mode or not.