The runas command could be used to run an application with lower privileges but it has the serious disadvantage that there is no password switch meaning the user has to enter the password whenever he is executing the application. It does not work with blank passwords and requires the Secondary Logon service to be running.

A better alternative is the PsExec tool by Sysinternals. That little tool can be used to start any application with another user. Unlike runas it comes with a password switch.

PsExec is part of the PsTools suite of Sysinternals, you only need psexec.exe which should be moved into a system path folder, for example system32.

The next step would be to create a new user account in Windows. To do that go to Control Panel > User Accounts and click on the Create A New Account link in there. Now type a name for the new account and set it to be limited in the next window.

Specify a password for the account by clicking on the Create Password link in the user account control. Once the limited account has been created it is time to test if psexec is working properly.

Start the Windows command line by pressing [windows R], typing cmd and hitting enter. Now type the following command to test the functionality of psexec:

psexec -d -u "low privileges" -p test notepad

This will start notepad using the user account low privileges with the password test. If everything worked out well notepad should appear. It is now time to check if notepad has been executed with lower privileges.

The Task Manager can be started with [CTRL ALT DEL]. Click on View > Select Columns in the top menu and check the User Name box so that the username that started an application is shown in the Task Manager.

You should now be able to locate the username with the lower privileges and see that notepad was started from that account.

It would be time consuming to run the processes from the command line all the time. You can simply create a bat file with the command to start the applications that you want to run with lower privileges. To do that for Firefox you would add the line

psexec -d -u "low privileges" -p test "D:\Program Files\Mozilla Firefox\firefox.exe"

in the bat file. The file could then be moved into the start menu.

Let’s say you’re curious to know exactly what each entry does. In that case, head over to Exelib. This site is a database of executable programs. When you type in the name of an exe file, you get information about what that file does, where it is located, what effect does it have on your system, and how much of a threat it is to your machine.

Take svchost.exe for example. This entry in the Task Manager scans the ‘to be started’ section of your machine and creates a list of processes to launch. While this application itself does not pose a threat, it may occasionally launch a critical process.

Exelib helps you determine what executables your computer is running or possesses. While it is always good to keep track of executable files, this site can also help protect your computer. You can check new executables that have newly appeared to see if they are viruses or have spyware properties. Occasionally, you may come across an exe file that isn’t in the database. However, the database is always being updated so you can always check back later.

Do you have any special way to check what your executable files can do? How do you deal with unknown files?

The chance that your home system is infected by a keylogger is rather slim especially if you are a careful user with some basic computer security knowledge. The real danger lies out there in the real world and they go by the name public computers. There is no way normally that you can check if a public computer is running a keylogger in the background or another type of nasty virus or trojan that records your computer activity.

Safekeys is a small software that does not need to be installed which makes it an ideal application for such situations. It displays a virtual keyboard on your screen and you can use the mouse to type the asterisked password in. It supports all the chars that are normally located on a real keyboard.

The so created password is displayed in the Safekeys software and you have to mark and drag and drop it to the password field on the website or application that you want to use.

Now seriously. Have you ever received a document (a clean one) with an extension you never heard of and didn’t even know what application you were supposed to use to open it? That’s not a problem any more due to applications and online services that can understand varied file formats and display the contents of those files for you. Of course, you can’t edit such files with viewers because their only purpose is to display the contents of the document. But hey, better that nothing, ain’t it…

Let me introduce 2 ways of viewing contents of a document with an unknown extension:

1) Install a single program to rule all the document extensions you can ever happen to meet (alright, maybe not absolutely all of them but pretty much most of the common ones). I’ve tried a freeware tool called TextMaker Viewer and it does it’s job well. It’s a simple document viewer without useless functions but it has everything needed to fulfil it’s purpose. It supports 10 of the most common file formats which should be quite enough for average use. According to the coders, Linux version is under development.

2) Don’t install anything while keeping the possibility to view common file types through your browser. Zoho Viewer is an online service that does just that. You can either choose a file from your local computer to be displayed or enter URL of an online document you’d like to read. You can even print the document or obtain a code allowing you to embed it somewhere else on the web. No annoying ads, clean interface, 15 file types supported.

The advantage of the second method is that you do not have to execute the file to view its contents.