I would think that disabling Windows installer would only help if you were installing something that made use of this service (MSI files for example) 1. Check your NTFS permissions on the box. 2. Check group membership on the box. (For example, if you are running in a domain how did you grant access to your users to login to your TS Box) 3. Enable logging on the box, setup auditing on the Program Files Folder. 4. Apply a MD5 one-way hash against the Program Files directory using a utility like GFI System Integrity Monitor. Download this utility and configure the alerts section to notify you if something has changed in this directory. (This will help you track down the culprit assuming you don't know whom it is already) (ref: http://support.gfi.com/support.asp?pii=24&lcode=en) Hope this helps. -Murphy -----Original Message----- From: Lee Paterson [mailto:lee.paterson@xxxxxxxxxxxx] Sent: Monday, September 08, 2003 5:19 PM To: Thethin (THIN@xxxxxxxxxxxxx) Subject: [THIN] Preventing webbased installs on terminal server? We are running TS2000 and I have setup group policy to disable "windows installer" for uses, this however does not stop them installing via the web, I recently found yahoo messenger on the TS. How have you stopped this from happening?, what have I missed? Thanks. Lee Paterson Network Administrator South Taranaki District Council mailto:lee.paterson@xxxxxxxxxxxx 0274 839 725