High Restricted - The applications of this group require the user's permission for most actions which affect the system: some actions are not allowed for such applications.
Rules.Please note that all the applications have the right to start.But you can change this rule to "Promt for action"
Untrusted - Application Control blocks any actions performed by the applications in this group
Rules.Please note that all the actions are blocked by defaultBut if you really want to be in control you can do this steps :
1. Advance Settings > Notifications - > Minor Notifications > Check : Applications Placed in Restricted Group > Ok
2.Enable Interactive Mode
Interactive. Kaspersky Internet Security informs the user about all malicious and suspicious events. In this mode the user will manually select actions: allow or block activities.You will get someKIS alets (to answer) sometime when installing applications but is a pretty powerful barrier against unknown applications and threats because it allows us to control its execution strongly.
How to enable Interactive Mode - http://support.kaspersky.com/kis2011/tech?qid=208281922
3. Enable "Block dangerous web sites "
Block dangerous websites
If the box is checked, Web Anti-Virus blocks access to the websites which have been considered as suspicious or phishing ones by Kaspersky URL Advisor. If Web Anti-Virus cannot return a clear verdict on safety of the website to which a link directs, you will be offered to load this website in Safe Run. When activated in Safe Run, malicious objects do not impose any threat to your computer.
Web Anti-Virus allows to download websites in the safe environment for Microsoft Internet Explorer, Mozilla Firefox and Google Chrome.
If the box is unchecked, Web Anti-Virus does not block access to known suspicious websites automatically.
How to enable "Block dangerous web sites " - http://support.kaspersky.com/faq/?qid=208281828
4. Go to Advance Settings > Threats and Exclusions ->Threats -> Settings -> Enable Other.
5.Increase Maximum time to define the application group
Maximum time to define the application group
Time period required for Application Control to scan applications being run, using heuristic analysis. Time period is set in seconds.
By default, Application Control analyzes an application for 30 seconds. If, when this time period expires, Application Control cannot clearly define threat rating of the application, the component moves it to the Low Restricted group. Application Control continues scanning the application in background mode, after which it is included into a trust group.
Go to Settings > Application Control > Maximum time to define the application group > 60 Seconds.
All this settings should make an awesome program like KIS more awesome for an Advance user.
Or you can just put everything in Untrusted...or High Restricted and tweak the rules.