Tips for getting WINDOWS administrator privileges

Source: Internet
Author: User

From: http://blog.csdn.net/godttj/

A few days ago, when I was in the company, I ran to a meeting without locking the computer keyboard. When I came back, I saw that people in the IT department sat down with me and changed my administrator account password. I am very sad. I feel like my personal relationship with my computer has been broken into a cold machine. I don't want to give up my original feeling. So I wanted to find a software to calculate and solve the problem ,.
It takes a few hours to search online materials. But I know the following things.
Windows XP passwords are stored in the SAM file in WinntSystem32Config of the system. The SAM file is the account password database file. When we log on to the system, the system will automatically proofread with SAM in Config. If you find that the password and user name are all consistent with the encrypted data in the SAM file, you will log on smoothly; if an error occurs, you cannot log on.

Finally, after trying several hacker software programs, the hacker did not find a way to crack the software on the machine where I had no drive, no drive, and no second system. I had to take the hard disk home and delete the SAM file so that the Administrator account was empty.

The following is a fairly good article:

Five tips for restoring the XP Administrator Password
Author: Yun Yunfeng

Tip 1: as you know, Windows XP passwords are stored in the SAM file in WinntSystem32Config where the system is located. The SAM file is the account password database file. When we log on to the system, the system will automatically proofread with SAM in Config. If you find that the password and user name are all consistent with the encrypted data in the SAM file, you will log on smoothly; if an error occurs, you cannot log on. In this case, the first method is generated: Delete the SAM file to restore the password.

If you do not need to worry about any account in the system card and have two operating systems, you can use another operating system that can access NTFS to start the computer, or even if you have not installed two systems, however, you can use other tools to access NTFS. Delete the SAM file in the C: WINNTsystem32config directory and restart. In this case, the Administrator account has no password. Of course, it is also a good way to switch the hard disk to another machine to delete the SAM file.

Tip: The Security Account Manager (SAM) mechanism is used for Security management of user accounts in WindowsNT/2000/XP, the Security Account Manager manages Accounts by using Security Identifiers. Security Identifiers are created at the same time when an account is created. Once an account is deleted, the Security Identifiers are also deleted. The security identifier is unique. Even if the user name is the same, the Security Identifier obtained at each creation is completely different. Therefore, once an account is deleted, its security id no longer exists. That is, using the same user name to recreate the account will also be assigned different security ids, the original permissions are not retained.

The security account manager displays the % SystemRoot % system32configsam file. The SAM file is a user account database of WindowsNT/2000/XP. All user login names, passwords, and other related information are stored in this file.

Tip 2: The following describes a different method. You can install another XP on another partition. The format of the hard disk partition must be the same as that of the original one, and be sure not to install it in the same partition as the original XP! Before you start, you must back up the Boot MBR (Master Boot Record) in advance. There are many methods to back up the MBR, you can program yourself, or use tool software, such as anti-virus software KV3000. After installation, log on to the Administrator. Now you have the absolute write permission for the original XP. You can copy the original SAM and use lOphtcrack to get the original password. You can also overwrite all the files under WinntSystem32Config of the newly installed XP to the CWinntSystem32Config directory (assuming that the original XP is installed here), and then use KV3000 to restore the Master Boot MBR of the previous backup, now you can use the Administrator identity to log on to the previous XP.

Tip: MBR is commonly known as the "primary boot area". Its function is to read the Active Partition set in the Partition Table of the disk ), located in the position of the hard disk's cylindrical 0, head 0, Sector 1, that is, your 0 track position. It is generated by the partition command fdisk. MBR includes two parts: Hard Drive boot program and partition table. The ending mark of MBR is 55AA. You can use the F6 function of the anti-virus software KV3000 to view it. The default picture is MBR. If the MBR cannot find the active partition, an error message such as Missing operating System will be displayed on the screen. Therefore, if your WindowsXP cannot be enabled normally. Most of the error messages you see on the screen are shown here.
Tip 3: Use Off1ine NT Password & Registry Editor. This software can be used to create a Linux boot disk, which can access the NTFS file system, so it can well support Windows2000/XP. You can solve the problem by using Ntpasswd, a tool running in Linux on this floppy disk. You can also read the registry and rewrite the account password. The method is simple. You only need to follow the prompts after the startup to do it step by step. We recommend that you use the quick mode to list the user's password that you choose to change. By default, users in the Admin group are selected, and the users whose Administrator name is replaced are automatically found, which is very convenient.

Tip 4: Use Windows Key 5.0. This software package is included in PasswareKit5.0 and is used to restore the password of the system administrator. After running the software package, three files are generated: txtsetup. oem. winkey. sys and winkey. inf, the three files are only 50 kb in total, short and concise. Place the three files in any floppy disk, start the computer using the XP installation CD, and press F6 to allow the system to install a third-party driver. At this point, it is the best time for us to switch in. The portable floppy disk will automatically jump to the WindowsKey interface. It will forcibly change the Administrator password to "12345", so what will happen? Haha! After you restart, you will be asked to change your password again.

Tip 5: use ntfs dos, a tool that can write NTFS partitions from DOS. Use the software to create a DOS boot disk, and then go to C; WinntSystem32 to set the Screen Saver logon. scr rename, copy command.com to C: winntsystem32(2000you can use cmd.exe), and rename the file logon. scr. In this way, after the machine is started for five minutes, the screen protection that should have appeared is now changed to the command line mode, and has the Administrator permission, you can change the password or add a new Administrator account. Do not forget to change the name of the screen saver. : Http:/www.cgsecurity.org/index.html

 

 

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.