Modify screen saver file Method
Principle: when Windows 2000/XP is started, if it is not in the system, screen saver will be automatically started, if CMD is used. EXE or explorer. EXE replaces logon. SCR: The cmd command is actually started at startup.
Procedure
Copy the system installation directory system32 \ logon. scr file backup (DOS is required, ntfs4dos is required if necessary, or Windows PE/Bart's PE is started );
Change the name of cmd.exeor cmder.exe to the logon. scr file and replace logon. scr In the System32 directory of the system to be cracked;
And the current identity is local system
Change the password in the command line mode (in fact, it is to use the net user command to restore the system login user password)
Net user administrator your-New-Password
If this is a domain controller, enter net user administrator your-New-Password/Domain
Log on to the system and restore the logon. scr backed up in step 1.
Advantages: simple and secure.
Disadvantage: it takes a long time to wait. If the screensaver is not enabled, it may not be valid. You cannot retrieve the password of another account with an administrator identity. You can only modify the password. If you use EFS to encrypt the account, the encryption is damaged, and data is lost.