People more knowledgeable than I will probably address the rest of your question, but I wanted to jump in to point out that if you copy all files from All Users to the user profile folder, you will break the trust mechanism, and you will revert the trust level to "only trusted scripts" with no scripts or publishers trusted by default, regardless of what the settings are in the All Users profile.
That's by design, to mitigate certain potential attack vectors, so it's not a bug and it's not going to change.
Jamal Mazrui wrote:
Should a script copy all files from the All Users folder to the user profile folder? Should the file mask be more selective than *.* such as *.0* instead?
