Recently found someone by RDS remote desktop into my computer [note: my computer in an independent environment (all local area network (LAN) a computer must be through the IP routing and distribution of ports to the remote computer connection into the independent environment), independent unable to connect to the network environment, only under the environment of independent host connection],
Now found that hackers remote connection to the independent environment, through the network and the process hacker 2, NS. Exe software, such as (due to the system log to be killed, cannot see traces)
The existing questions:
One, by the independent environmental all computers are banned, copy and paste can drive mapping, also have no other open FTP port, only open the remote desktop port, the hacker is how to upload the file to independent environment?

One of the brothers and sisters to trouble each know,

CodePudding user response:

Remote desktop has not open the file transfer?

CodePudding user response:

@ # 1 has said the above, the independent environment is only one port of the remote desktop, any other port is not open, it can only through the remote desktop port (e.g., 3389) to upload, but has also been banned in gpedit dish operator, copy, paste, the mapping of the LPT, etc, so I can't imagine how hackers to upload files into it? What way can go round?
System is Windows 7 64 - bit, no patch, the outside is not access to any port in addition to 3389, so also should not exist by the eternal blue these means to attack the holes may be,