Nowadays, Windows XP systems are widely used in the world to install CDs and files. It is indeed convenient to use. To install a system, you only need to restore the Ghost image file and mount the driver, it takes more than 10 minutes to complete the disconnection. However, among the various systems of the hichina ghost version, there are both excellent products and garbage, and there is a hidden backdoor trap!
1. Analysis of Windows XP Universal ghost
When the hichina ghost system is created, the redundant files that come with Windows are deleted after the installation is successful, hardware information is deleted, and then the system is encapsulated. If, before installation, the producer intentionally replaces a system file with a Trojan backdoor, or opens some ports in the system, opens some dangerous services, and leaves some Blank Password accounts, then the created Ghost system will have various security vulnerabilities. After these Ghost systems are circulated, users using these systems may be controlled by the authors as bots.
Ii. Overview of common vulnerabilities in the ghostversion System
1. Remote Desktop with a blank password. You can use a blank password to remotely log on to 3389 and perform operations on the task system. Use the 3389 vulnerability to fl qcoins and steal ADSL Password accounts.
2. Hide the sharing vulnerability. Any user can access and share it. non-default IPC $ sharing means that the sharing permission is fully controlled by everyone. There are many purposes. users in the guest group can also format your hard disk.
3. The Administrator user password vulnerability is not described much.
4. Use dangerous services. In service tools, you can find that many dangerous services are opened, and the remote Tab allows users to remotely connect to this computer to be started.
[Content navigation] |
Page 7: Be careful with the terrible traps hidden behind the Ghost Disk |
Page 7: Be careful with the terrible traps hidden behind the Ghost Disk |