Except it won’t. As long as you let users install software you’ll never get rid of malware. Users are the unclosable security hole and are the primary vector malware uses.
If used properly it will prevent them from being able to run a program that claims to be from a know, trusted source (Microsoft, Adobe, etc.) but really isn’t.