I am quite a long time applocker users. After some time I was noticing some scripts being blocked, like: %OSDRIVE%\USERS\****\APPDATA\LOCAL\TEMP\SDIAG_107AD2D3-69E3-4250-BFA7-FCD61273BD08\TS_UNUSEDDESKTOPICONS.PS1 %OSDRIVE%\USERS\****\APPDATA\LOCAL\TEMP\SDIAG_107AD2D3-69E3-4250-BFA7-FCD61273BD08\TS_BROKENSHORTCUTS.PS1 I didn't really paid too much attention at that time. I was just wondering did anyone applocker users have seen those errors? I couldn't find those files as they don't exist anymore. (obvious with temp files...) after some research I only found one site mentioning them and fixed it: http://oostdam.info/index.php/faq/4...hell-for-repairs?tmpl=component&print=1&page= google translate: http://translate.google.co.uk/trans...hell-for-repairs?tmpl=component&print=1&page= It appears to be maintenance scripts located in: C: \ Windows \ Diagnostics I auto generated script rules to that folder. They don't have publisher, so I had to make hash rules. (18 rules for more than 200 scipts ) After it I navigated to Task scheduler\Microsoft\Windows\Digastostics and manually run task. Now I can see those scripts being allowed. For some strange reason Windows copies them to temp folder and executes them there with Standard user privileges. (rule was hash rules, so I am sure they were the same files) Obviously it gets blocked. Anyone experienced it?