Solved

Why are the default settings never set to default, even after a clean install?

Posted on 2004-10-08
7
179 Views
Last Modified: 2013-12-04
Running XP Pro, single user. All updates, anti-virus, anti spyware etc..

I have been pondering this question for about a year now.

Why is it when I first set up my Local Security Configerations and Analysis, or Local Security settings the default settings,  as per Microsoft,  in help,  are never set to the default settings?
Example: Under Local Security Policy/User rights the following few wxamples are already set.

Adjust memory quotas for a process. Default setting is Local System. Mine is set for Local Service and Netwrok Service

Generate Security Audits: Local System. Mine is set for Network Service and Local Service

Log on as a service. Default setting is none. Mine is set for Netwrok Service

I know how to change them, I am just very interested as to why they are not at deafault? Is this OK? Normal?

There are others too, Like Create a page file, Create a token object,
0
Comment
Question by:chick7t7
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
7 Comments
 
LVL 34

Expert Comment

by:Dave_Dietz
ID: 12265815
This is normal if you have IIS installed.

Dave Dietz
0
 

Author Comment

by:chick7t7
ID: 12268588
IIS is not installed.
0
 
LVL 34

Expert Comment

by:Dave_Dietz
ID: 12268916
What else is installed on the machine?

Anything like SQL or Office?

I'm not sure if either of these would do it but trying to find the culprit without some other leads will be rough.....  :)

Dave Dietz
0
How Do You Stack Up Against Your Peers?

With today’s modern enterprise so dependent on digital infrastructures, the impact of major incidents has increased dramatically. Grab the report now to gain insight into how your organization ranks against your peers and learn best-in-class strategies to resolve incidents.

 

Author Comment

by:chick7t7
ID: 12272843
NO.  I do not have any Office, SQL...nothing.
What I did just find...and is very very interesting is  under Application Data/ Outlook Express.
I do not use OE. I do not configure it. I uninstall it (so they say) in Add/Remove/ Windows Components.
Yet today,  cruising around my files I noticed Outlook Express had Inbox files, Outbox files etc...all with files in them.
Of course, when I went to open them it was  encrypted.
 I then opened Outlook, and found under tools, it said I had AD set up. WHile doing this I received a pop up that said "Do you want to hang up the modem before going offline"
I never set up AD, OE, and I usually have my modem disabled.
So, I removed system permissions to OE, disabled my modem, and now under Application Data are files for more than 1/2 of my program files that were not their before?
What am I not getting here?
0
 
LVL 34

Accepted Solution

by:
Dave_Dietz earned 500 total points
ID: 12273572
This almost sounds like an intruder on your machine.

Run a complete virus/spyware/adwware scan and make sure you have your firewall enabled.

May also want to check your event logs and turn on auditing of logon/logoff events.

My guess is that you have a bigger problem than your policies being different than default.

Dave Dietz
0
 

Author Comment

by:chick7t7
ID: 12295660
I am one lucky girl!!! You were absolutely correct...I had an univted guest. Luckily I  (you) caught it before any real damage was done (my fingers are crossed). I was able to pin point when this visitor came, what changes were made, what files where not mine, and got rid of them, went through a series of scans to double triple check, and so far so good.

How did thid happene with all the updates in place, security set, firewall, anit-virus, anti-spyware you ask?  Eell, someone ( oops) had to reinstall last week, never set her password, and left the PC on....and connected....:) :(...

Thank you very much...and go ahead you can laugh at me...:)
0
 
LVL 34

Expert Comment

by:Dave_Dietz
ID: 12299865
Having an unwanted intrusion on your computer is never a laughing matter.

I'm just glad you were able to track it down before any serious damage was done.  :-)

Dave Dietz
0

Featured Post

The Ultimate Checklist to Optimize Your Website

Websites are getting bigger and complicated by the day. Video, images, custom fonts are all great for showcasing your product/service. But the price to pay in terms of reduced page load times and ultimately, decreased sales, can lead to some difficult decisions about what to cut.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, a new law in my state forced us to get a top-to-bottom analysis of all of our contract client's networks. While we have documentation, it was spotty at best for some - and in any event it needed to be checked against reality. That was m…
Our Group Policy work started with Small Business Server in 2000. Microsoft gave us an excellent OU and GPO model in subsequent SBS editions that utilized WMI filters, OU linking, and VBS scripts. These are some of experiences plus our spending a lo…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Do you want to know how to make a graph with Microsoft Access? First, create a query with the data for the chart. Then make a blank form and add a chart control. This video also shows how to change what data is displayed on the graph as well as form…

729 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question