|
Audio Asylum Thread Printer Get a view of an entire thread on one page |
For Sale Ads |
74.176.110.200
In Reply to: RE: How to tweak SECURITY HIVE posted by steppe on February 01, 2012 at 12:54:56
I think this is as far as one can go. It is as far as I can go. I tried many combinations and this is what works
I also found I could delete svchost.dll. Whether this has anything to do with "this" or not I do not know. No need to "suspend" that one any longer!
Tried to delete isass and watchdog but to no avail.
As I posted before one can delete WINTRUST and WATCHDOG from the registry.
The machine is working very well.
If you try this ignore the momentary squeals that you might hear. I heard them upon first re-installing the drive but after a second boot I never heard them again.
Before I finalized this the machine would take longer than usual to load a file. But now it is back to loading quickly. Sometimes it will turn itself off when asking for shutdown and sometimes it hangs after doing the typical cMP bar zipping a few times and just hangs there. Nothing to worry about.
I do think it sounds even better.
Tomorrow more experiments. Wondering if hex editor is the key to minimizing issas and watchdog? They might just need to be there even if they are rendered impotent. I hope so.
Follow Ups:
Hello, Rick! I have just trimmed down SAM and removed from security all accounts but 1-0-0-1 or whatever is its name. compacted. Sam is 12 kb. Security - 8kb.
About svchost.dll - IT IS A VIRUS - there is no such dll, I have checked it here - the place I look up the info about *.dlls
http://xpdll.nirsoft.net/
Or was it svchost.exe?
I think I will try removing now authorisation and security dlls. As for Watchdog, as it's still in the system, it must be envoked by lsass or even ntloader, so, removing it from the registry may cause it to function at default, and this is smth, we don't need. So, probably we should let it remain "sedated"?
Serge.
it was .exe
Really! I marvel at Your ability to do such things, Rick!
Please, tell me, exactly, do I load SAM under HK_USERS?, and then I will see it in two places?
About svchost - it's unbelievable, yet, it's true...
However, it's svchost.exe that is suspended together with hatefull lsass.exe (but they, yes, they call upon svchost.dll and lsasrv.)
I wonder if you are so tired that you don't listen to the result now?
I know what security deletions would bring, now for SAM...
Serge
P.S. Thank You!
Post a Followup:
FAQ |
Post a Message! |
Forgot Password? |
|
||||||||||||||
|
This post is made possible by the generous support of people like you and our sponsors: