Re: Security Policy

From: "Steven L Umbach" <n9rou@xxxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Wed, 1 Feb 2006 19:44:38 -0600

Yep that looks like a Software Policy Restriction. If you are using XP Pro 
open Local Security Policy [secpol.msc] and go to Software Restriction 
Policies - additional rules and either remove that path rule or change it to 
unrestricted security level after selecting the properties of the path rule. 
If there are a lot of path rules delete any that show security level as 
disallowed.  Something or somebody configured such.  --- Steve



"who_cares" <whocares@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message 
news:7A14DC72-9A28-485C-8EC9-16457028F11F@xxxxxxxxxxxxxxxx
>I found this in event viewer:
> Access to C:\Program Files\ThinkPad\ConnectUtilities\qcwizard.exe has been
> restricted by your Administrator by location with policy rule
> {bfcc4b52-44c6-4f0d-ae01-5362ed56b041} placed on path C:\Program
> Files\ThinkPad\ConnectUtilities\QCWIZARD.EXE
>
> For more information, see Help and Support Center at
> http://go.microsoft.com/fwlink/events.asp.
>
> I am the administrator and I certainly didn't make that change. I can run
> some spyware checks to be sure though.
> I have a WPA key on my wireless, Lavasoft is already installed, and I am
> behind 3 firewalls. The only event in my security log is a succesful 
> audit...
>
> "Steven L Umbach" wrote:
>
>> Is your computer a member of an Active Directory domain? If so you could
>> have Software Restriction Policies that are preventing it and if you look 
>> in
>> the application log via Event Viewer you should see a SRP event logged
>> showing that executable was not allowed. Even non domain computers can 
>> have
>> SRP enabled in Local Security Policy for XP Pro though that normally is
>> something that the computer owner or administrator would know about. Does
>> everything else work fine and what version of XP are you using?? Are you
>> behind a firewall?? Is your wireless network protected by WEP or much 
>> better
>> yet WPA? If using WEP when was the last time you changed your WEP key? 
>> Are
>> you the only user and the only one that has access to this computer? 
>> Malware
>> can cause all sorts of unexplained behavior and you should proceed
>> accordingly being sure to scan your computer for both viruses and spyware
>> being sure to use up to date definitions for each program you use and 
>> also
>> scan in Safe Mode. AdAware SE is a pretty good spyware program if you
>> currently do not use one. If malware is detected then the antivirus 
>> program
>> may remove the malware but not be able to change the settings it 
>> implemented
>> though you may be able to do it manually with the help from users in this
>> newsgroup if you post specifics of the problem. Also check your security 
>> log
>> via Event Viewer to see if any suspicious activity is found such as user
>> logons at unexplained times.  --- Steve
>>
>> http://www.microsoft.com/athome/security/protect/windowsxpsp2/Default.mspx
>>  --- Protect Your PC tips and other helpful links.
>> http://www.lavasoftusa.com/software/adaware/   -- AdAware SE
>>
>> "who_cares" <who_cares@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
>> news:67230070-755D-478B-9B7C-D8FF0D2C7B7B@xxxxxxxxxxxxxxxx
>> > When I logged in today I couldn't opne my IBM wireless manager.
>> > Windows said that a local security policy was stoping the exe from
>> > running.
>> > Where can I disable that policy
>>
>>
>> 


.

References:
- Re: Security Policy
  - From: Steven L Umbach

Prev by Date: Re: command prompt tab auto completion
Next by Date: Re: network restrictions
Previous by thread: Re: Security Policy
Next by thread: Re: System32 Security Message
Index(es):
- Date
- Thread