Free Computer Repair Service

Why you need to prevent an attacker romote access windows xp/2000 registry? The registry is the core of windows operating system. However, by default, all registry of Windows-based computers on the network can be accessed.  Hacker can use this vulnerability to attack your company’s computer system and modify the file relationships, and allows the insertion of malicious code. To protect your network, you need to prevent remote access the registry.
Attention. Editing the registry may be at risk, it is necessary to ensure that you have backup the registry before do this.

To modify the registry

The use of Windows 2000, Windows XP, and Windows Server 2003 systems computer, take the following steps:

1, click the “Start” menu, select “Run.”

2, type “Regedt32.exe”, then click “OK”.

3, select “HKEY_LOCAL_MACHINE SYSTEM Current Control Set Control SecurePipeServers”.

4, if the winreg key already exists, skip to step 8. If the key does not exist, click the “Edit” menu, select “Add.”

5, to the key named “winreg”, type set to REG_SZ.

6, select the newly created key, and then click the “Edit” menu, select the “added value.”

7, input as the following :

Name: Description

Type: REG_SZ

Value: Registry Server

8, select winreg key to enter the security | licenses.

9, to ensure that the local system administrator group (System Administrators Group) have full access right, open read-only access to the system account (System account) and all groups (Everyone group).

10, close the Registry Editor, restart your computer.

If you set a special group to support the workstation or server to support, the members of these groups are not an administrator, you should also set the appropriate permissions for them.

Also, if the computer you faced is a server or a computer service remote service for a particular user, you must allow the account that have the right to use the service have read-only permission to the relevant content.

Disable TCP / UDP ports 135,137,138,139 and 455 on the firewall or the router is a good solution. Disable these ports is not just to prevent remote access to the registry, also can prevent the most remote attacks against Windows systems.

Close these ports quickly improve your Windows network security, when not disabled these ports, you need to confirm whether there are commercial reasons to maintain these ports open. the above is the method to prevent an attacker romote access windows xp/2000 registry, if you have good idea, welcome to share! If you think the above method make you feel confused, you could use a registry software to do this, which make you could modify registry very easy, if you don’t know which one to use, please reference the following article: Ten Free Registry Repair Software Reviews.