Shulou(Shulou.com)06/02 Report--

Microsoft has released the related patch MS17-010 to fix the system vulnerability of " Eternal Blue" ***, please install this security patch as soon as possible, the website is www.example.com. https://technet.microsoft.com/zh-cn/library/security/MS17-010

Second, close ports 135, 137, 138, 139 and 445, and close network sharing to avoid being caught.

Enter "dcomcnfg" in Run (window+R key);

To the right of the Computer option, right-click My Computer and select Properties;

In the Default Properties tab of the My Computer Properties dialog box that appears, remove the check mark before Enable Distributed COM on this computer;

Select the Default Protocols tab, check Connection-Oriented TCP/IP, click the Remove button, and finally Confirm.

Close ports 135, 137 and 138

In the lower right corner, click Network Connections to open the Network and Sharing Center, click Change Advanced Sharing Settings, remove File and Printer Sharing from Microsoft Network, and Public Folder Sharing.

、

Close port 139

Port 139 is the NetBIOSSession port used for file and print sharing. The method to close port 139 is: in the "Local Connection", select the "Internet Protocol (TCP/IP)" attribute, enter the "Advanced TCP/IP Settings""WINS Settings", there is an item "Disable NETBIOS for TCP/IP", check to close port 139.

Close port 445

Start-Run Enter regedit. OK, go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetBT\Parameters, create a DWORD value named "SMBDeviceEnabled" and set it to 0 to close port 445.

VI. Open the system firewall.

1. Open Control Panel-System and Security-Windows Firewall, click on the left to start or close Windows Firewall

2. Select Start Firewall and click OK.

7. Use the advanced settings of the system firewall to block connections to port 445.

1. Click Advanced Settings

2. Click Inbound Rules to create a new rule.

Select Port, Next

4. Specific local port, enter 445, next step

5. Select Block Connection, Next

6. Configuration files, select all, next step

7, name, you can enter any, complete.

Eight, open windows automatic update, update to the latest.

XP system processing flow

1. Open Control Panel, Security Center, Windows Firewall, and select Enable.

2. Click Start, run, enter cmd, and confirm to execute the following three commands

net stop rdr

net stop srv

net stop netbt

3. For Windows XP/2003 and other officially discontinued systems, Microsoft has launched a special security patch for the virus exploitation vulnerability. The download address is:

http://www.catalog.update.microsoft.com/Search.aspx? q=KB4012598

Windows XP system installation of this patch requires pre-upgrade to SP3, select your system patch, click download.

Use 360 software for protection

1. Download address of "Bitcoin ransomware" immune tool released by 360 Company: Copy the link below and it will be automatically downloaded.

https://dl.360safe.com/nsa/nsatool.exe

Click 360 Security Guard.

3 If it is not 64-bit system may not be able to open the core crystal protection, then click only to open anti-extortion.

4. Use 360 system to repair.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.