reg add “HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System” /v DisableRegistryTools /t reg_dword /d 1 /f
Undisable regedit
reg add “HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System” /v DisableRegistryTools /t reg_dword /d 0 /f
Titik rawan registry windows :
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System\
DisableRegistryTools reg_dword
DisableTaskMgr reg_dword
Shell reg_sz
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell reg_sz
System reg_sz
Userinit reg_sz
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folder\Common Startup reg_sz
HKLM\system\controlset001\safeboot\
alternateshell reg_sz
HKLM\system\controlset002\safeboot\
alternateshell reg_sz
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\
apa_aja reg_sz
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\
apa_aja reg_sz
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\
NoFolderOptions reg_dword
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\
NoFolderOptions reg_dword
HKLM\SYSTEM\CurrentControlSet\Control\Lsa\
ForceGuest reg_dword
HKLM\System\CurrentControlSet\Services\LanmanServer\Parameters\
AutoShareWks reg_dword
AutoShareServer reg_dword
etc.
0 komentar:
Posting Komentar