Press the key combination Win+R. a dialog box Appears "Run", in which enter gpedit.msc and press Enter. This opens the local group policy editor.
In the left part of the window navigate to the directory "computer Configuration" > "Windows settings" > "security Settings" > "Policies of restricted usage of programs". If the policy has not been assigned yet, click the menu "Action > Create policy restricted use programs". In the right part of the window click the right mouse button on the newly created parameter "Designated file types" and select "Properties". Scroll down to the "Designated file types" to determine the presence of MSI and EXE formats. If any of them is missing, add it using the input field "Extension" and "Add" button at the bottom of this window. To put changes into effect, click "Apply" and then OK or just click OK if no changes were made.
In the left part of the window, select "security Levels", and in the right pane right-click on the parameter "Forbidden" and in the appeared menu, click "default". In the new window click the "Yes" button. The system will now prevent users from running all applications (including. EXE installers and. MSI) in the list of "Designated file types". The following instructions describe the steps to block access to the local group policy editor.
Activate the guest account. To do this, click "start" > "control Panel". Further two variants are possible: if the control panel appears, select "user Accounts" > "Manage another account", as if the categories, find the "user Accounts and family safety" and click it to "Add or remove user accounts". A new window will appear where you can click the button "Guest" and "Enable". You have activated the account under which the user will log in to the system.
Select the administrator profile, i.e. the account under which you log in. Click on "create a password". In the window that appears, enter the password, confirm it, and optionally write a prompt. Finally click on "Create a password". Thus, you have allowed unauthorized users access to the system only through the user account "Guest". Through it they will not be able to open the local group policy editor, and, thus, remove the block to install programs.
Advice 2: How to temporarily block Internet
The natural desire of parents is to ensure the information security of the child, limit the websites he can visit. The simplest solution is to lock the Internet at the time of the absence of parents at home.
First, create a separate account for your children with the minimum number of rights. In the "children's" accounts limit the ability to delete and install programs and create additional Internet connections and change the settings that I have at the moment. Remove the connection if it is. If you connect to the network using dsl connection, set connection to the computer only for the main account. If you are using a wi-fi router, set a password and disable its preservation in computer memory, and automatic connection. Don't forget to turn off the computer when you leave home.
You can also limit the access time to the Internet using special programs, for example, Kaspersky CRYSTAL. A feature of this, is that you can set the exact time at which Internet access is prohibited, and users, to be subject to this limitation. The easy option is also the setting of the password is guaranteed to protect you from changing the settings and connect to the Internet in your absence.
Often the level of computer literacy of children often far exceeds the level of knowledge of their parents on this subject. There are ways to bypass the administrator password that will give the child the ability to connect to the network. However, this method can easily be seen with the help of the administrator password is not cracked, but simply removed without the possibility of installing the same, that will be easy to notice. Alternative to software techniques is the blocking insulation of equipment with which you access the Internet, modem, router or cables for power and computer connection - from the child in your absence.