The Windows Server 2003 server hosted in the telecommunications room was in the program test phase. Many people in the administrator account knew that the suspicious program network monitoring software was found, but it was not determined whether the hacker was invaded or installed by other administrators. Sunday, March 31, 2013 Log in again using the administrator administrator. The prompt is as follows. Log in using the administrator account created yesterday, indicating that the password is incorrect. Therefore, it is concluded that the server has been hacked into www.dnzg.cn. Now the remote desktop of the server is still enabled, that is, you cannot log in using the remote desktop. Fortunately, the password of the administrator has not changed. How to determine that the password has not changed? I use Windows Server 2003 to access the shared resources of the server, then I need to enter the administrator account and password to access the server. Enter the account number and password, select Remember my password, enter the server's administrator account and password, can open the server's shared folder, so it is determined that the password of the administrator user has not been changed after the hacker. When you use the management tool to remotely manage the server, you do not need to enter an account and password. On the local computer, open the Computer Management tool and connect to another computer to enter the IP address of the compromised server. You can see that you can successfully connect to the past, but local users and groups cannot be remotely managed and can manage the services of remote servers. Www.dnzg.cn The following operation enables the server's telnet service, use the telnet service to re-create a new administrator on the server telnet remote server input y input server administrator's account and password using telnet remote login to the server, use the command to create The user wang password is wang added to the administrator group, and the administrator group name of the remote server has been changed to another name other than administrators. Now you need to determine the name of the remote server administrator group. The registry allows you to view the names of users and groups on your computer. How to open the registry of the remote server? , you need to enable the remote register service. Open the registry management tool locally. The default is to open the local registry, click on the link network registry to enter the server's IP address. Can open the registry of the remote computer, as shown in the figure, but can not open the SAM registry sub-key, you need to change the permissions. Set the administrators group to full control. Press F5 to refresh. You can expand the SAM as shown in the following figure. The administrator group has been changed to administrators to determine the name of the administrator group. Use telnet to log in to the server and add the created users to the administrator group. . Now connect to the server remotely using the newly created administrator. Logging in successfully to open the computer management tool You can see that there is no user management to install 360 anti-virus software, install 360 security guards to scan, found stubborn viruses and problems that need to be fixed.
with Windows Server 2003 One requirement description The unit project group uses VSS (visual source
What is the servers diary? The servers diary is to record the whole process of the website being acc
The server is Windows server 2003. Some problems occurred when copying files using ftp. The
For Windows Server 2008 systems, we can make full use of the systems own functional commands to tran
Windows Server 2003 VPN (Virtual Private Network) (4)
Installing SQL Server 2008 R2 1433 port in windows server 2008 is not enabled
Solve the problem of connecting windows 2003 remote desktop with win7 and 2008
The same IP is used to set up multiple websites in the IIS environment.
Windows server 2008 R2 cross-hardware platform upgrade 2012
Create a 4th primary partition under Windows Server 2008
It's time to consider Windows Server 2012 migration
Windows2008 server and win7 how to cancel ban
How does the Win7 system redisplay the language bar to the taskbar
Install and configure sound card under Windows XP
Win7 system boot prompt TpKnrres.exe - damaged image how to do
There are pictures with the truth. The latest Windows8 system screenshots enjoy (3)
Windows 7 method to adjust the screen display direction
CentOS Linux VPS installs IPSec+L2TP VPN
do you know? Winxp hidden files can also be searched like this
How does Win10 call up the NVIDIA Control Panel?
Scorpio catch fireflies task how to do Scorpio catch fireflies task Raiders