Create a permanent hidden account under win2003


A popular phrase in the previous period, "meat machine", in fact, if you want to control the remote computer, then I think it is necessary to hide the user account, in fact, create a hidden user account. Still relatively simple, now I will tell you to create a hidden user account.

In fact, every user account has its own account data item in the registry:

First, let's see what the administrator's data items in the registry are (as shown below). Br>

Operation 1. Open the registry: HKEY_LOCAL_MACHINE\\SAM\\SAM

SAM is the place to save user accounts, but this "item" is not visible by default. If we want to see the internal content, we must first authorize it. (Recommended for the registry is not very familiar friends do not change the registry)

Operation Second, understanding the registry account classification

User Accounts in the OS whether it is built Account number, or post-build account, can be seen in the registry. However, there are two accounts that everyone must be able to recognize, that is, the administrator account and the guest account. (See below)

In this figure, & rdquo; 000001fa4 & rdquo; represents the administrator account, the administrator account is renamed even this value is not changed, so that the value we can To judge, rename the administrator account.

“000001fa5” indicates the guest account, the same value will not be changed because the guest account is renamed. The rest of its

value is basically the user account created later, the generated value.

After knowing the registry, now we will use the "net user” command to create an account, and create a hidden account must be under CMD. If you are not familiar with this command, you can refer to my other article, which is about common commands, but these commands can also be found in the help of the OS.

Operation 3, use the "net user” command to create an account

First, create a hidden user xbx$

1, net user xbx$ 123, abc /add< Br>

The meaning here is that the password for creating an xbx$ account is 123, abc (as shown below)
1, C:\\Documents and Settings\\Administrator>net localgroup administrators xbx$ /add

This means adding xbx$ users to the management group so that we can create users with administrator privileges.

First, observe the changes in the registry, and the registry to make the appropriate changes.


1, find the user account (Figure)

we just created in this picture we can see & rdquo; 000003f6 & rdquo ; is our newly created “xbx$” account.

2. Copy multiple account permissions in the registry

Locate the HKEY_LOCAL_MACHINE\\SAM\\SAM\\Domains\\Account\\Users

item and open the ”000001f4” then open & rdquo; F & rdquo; (below)

and these values ​​inside, select all, paste and cover & rdquo; 000003f6 & rdquo; a & rdquo; F & rdquo; value
<. p> 3, export the registry value

Now the registry and the three registry values ​​of “000001f4”, “000003f6” and “xbx$” are exported and saved. (As shown below)

4, delete the account

Next we re-enter the & ldquo; CMD & rdquo; deleted & ldquo; xbx $ & rdquo; account.

When you delete an account, then there is no value in the registry, and this time we then just exported the registry key into the registry.

At this time we open “local computer users and groups>; we can't see the account of xbx$”, but we can use this account to log in to the computer and have administrator privileges.

Copyright © Windows knowledge All Rights Reserved