Website hanging horse Nai I what-vulnerability warning-the black bar safety net

ID MYHACK58:6220066280
Type myhack58
Reporter 佚名
Modified 2006-01-11T00:00:00


In fact, now a lot of people say to hang horse, or more worried about their own safety, after all, now too many cattle people to create afree to killthe Trojan, but I have not put these Trojans looked down, why? Listen to me carefully know, a Trojan is downloaded to the Local, the running and associated to the registry, the premise is still a permissions issue, in fact many of the Trojan itself does not have permissions to this concept, is entirely dependent on your system the user permission to run, calling the Trojan the user has what permission then the Trojan itself will have what privileges, this truth I think we all understand it. Here involved to a permission-dependent problems, as a simple example, a malicious Web page with a user with administrator permissions to access immediately, but with a guest user to access but nothing happened, it's called permission-dependent problems. Everyone should now be apparent I'm not afraid to website hung it to the reason of it, is the use of the rights to defense, I am here to advise everyone when the Internet is better not having administrator privileges to the user, but you hard can also be used, but you want to set a double to set up two users with administrator privileges, one for setup, one for Internet access, the installation program that users do not have to set what permissions, but access to the Internet this user has a good set of a fan, the Windows directory, just windows itself directory does not include subdirectories and the system and system32 directory set the Internet access of the users only have read permissions, this intention I think we all know it, and then is to Registry permissions, set registry permissions is also a focus,

Note: 2 0 0 0 registry permissions settings and XP/2 0 0 3 different. In addition there are some key value. HKEY_CLASSES_ROOT\exefile\shell\open\command HKEY_CLASSES_ROOT\txtfile\shell\open\command HKEY_CLASSES_ROOT\inffile\shell\open\command HKEY_CLASSES_ROOT\inifile\shell\open\command The above 4 keys are some of the commonly used file Association HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL This key value is about the system hidden attribute HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main The two key value is the system default home page HKEY_USERS\. DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel This key value is about the change the default home page button is gray unavailable HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx The above key value is about since the start of the file HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services This key value is about the systemservice. Above these keys in your system settings once and then cancel the user full control, just give the user read permissions this is just part of the, more common, of course, not all. If you what other insights please together to discuss it. In fact, do not know everybody noticed No, for some stubborn files can also be used access restrictions to be removed, such as in the normal mode and the Safe Mode could not delete the file, but when these files under DOS it is very easy to delete, very simple principle, that is start the system is the user itself or the system to call that file cause the deletion is unsuccessful, but we do not allow any user to access this file yet, first put this file the Full Access user are deleted, and then re-starting and then giving this file the user Full Control permissions to delete, some files upon logoff can be removed, but I'm here still suggest that you restart and then delete. Learning computer is in fact learning a way of thinking, when you have a problem how to composition your acquired theoretical knowledge and you have the skill level to get out of the solution, that's what your thinking. The first submission, poorly written also hope you forgive me