Previous Thread
Next Thread
Print Thread
Rate Thread
#15355 08/15/02 07:02 AM
Joined: Aug 2002
Posts: 4
Junior Member
OP Offline
Junior Member
Joined: Aug 2002
Posts: 4
I am a bit of a newbie to hacking and my dad recently put an account on my computer and made himself system administrator so i can't do much on my account. I was wondering if anyone knew how to take that off and make me system administrator?

#15356 08/15/02 08:43 AM
Joined: Mar 2002
Posts: 96
W
The other other white meat
Offline
The other other white meat
W
Joined: Mar 2002
Posts: 96
does he have his account password protected? if not just log on his name and change your account to an admin too. if he has a password on it, download a keylogger and get his password from that, than log on and change your account.


Gizmo: Wizzy is SeXor
Gizmo: Wizzy is the other half of my Gizzy frown
#15357 08/15/02 09:44 AM
Joined: Aug 2002
Posts: 4
Junior Member
OP Offline
Junior Member
Joined: Aug 2002
Posts: 4
i can't install the keylogger because only the system administrator can install things. And yes he does have a password!

#15358 08/15/02 10:01 AM
Joined: Mar 2002
Posts: 1,041
I
UGN Elite Poster
Offline
UGN Elite Poster
I
Joined: Mar 2002
Posts: 1,041
There's a file in the %systemroot%\WINDOWS\system32\config folder called SAM. This is the file that contains all the users and passes for the machine (or network, depending). It's being run by the SYSTEM so you can't access it directly. There's a prog out there called PWDUMP2 (i think) that will extract the passes out of that file for you to abuse at your leisure. You're gonna need a pass cracker though cause they are encrypted. However, there *MAY* be a copy of the SAM file in the %systemroot%\WINDOWS\repair folder that is not in use. If I remember right, this backup is made during install, so unless your Dad created his acount while Windows was being installed the backup will only have the default account and passwords in it.

sum

#15359 08/15/02 10:35 AM
Joined: Aug 2002
Posts: 4
Junior Member
OP Offline
Junior Member
Joined: Aug 2002
Posts: 4
i downloaded that program, ran it but i don't know where the password file is located if there is one and i've tried searching for passwd.txt and no results came up! Any suggestions?

#15360 08/15/02 10:42 AM
Joined: Mar 2002
Posts: 1,041
I
UGN Elite Poster
Offline
UGN Elite Poster
I
Joined: Mar 2002
Posts: 1,041
Quote:
There's a file in the %systemroot%\WINDOWS\system32\config folder called SAM
Dude, I told ya where to find it. %systemroot% is a way of saying 'whatever drive your windows dir is on', usually the C:\ drive. Go look in there and/or where I said the backup copy was/is. As well read the instructions for that program, just running things blindly will get you absolutely nowhere.

sum

#15361 08/15/02 10:50 AM
Joined: Mar 2002
Posts: 1,041
I
UGN Elite Poster
Offline
UGN Elite Poster
I
Joined: Mar 2002
Posts: 1,041
Here, READ THIS FROM TOP TO BOTTOM!!!

PWDUMP2 README

Those are the exact instructions to do what you want. READ IT. And after you read it, READ IT AGAIN to make sure you understand it. If you still don't understand it after that then you shouldn't be messing with this [censored].

sum

#15362 08/15/02 10:51 AM
Joined: Aug 2002
Posts: 4
Junior Member
OP Offline
Junior Member
Joined: Aug 2002
Posts: 4
i have put the files pwdump2.exe and samdump.dll in C:\WINDOWS\SYSTEM32\config where SAM is located and i ran the file! Now what?

#15363 08/16/02 11:36 AM
Joined: Mar 2002
Posts: 185
M
Member
Offline
Member
M
Joined: Mar 2002
Posts: 185
A way that may be easier that I did once when I forgot the admin pass on my NT box (heh, yeah, shutup), was to boot to a floppy, you'll need to use NTFSDOS if your drive is using NTFS, otherwise just boot to a floppy and copy the SAM file to the floppy because the system won't be using it when you are running from the floppy. Then crack the file using LC3 from http://www.l0pht.com (that's a zero)


Cha want some w***up?

http://www.dopeskill.com
#15364 08/16/02 12:17 PM
Joined: Mar 2002
Posts: 257
Member
Offline
Member
Joined: Mar 2002
Posts: 257
[censored] u guys, this guy is NEW remember!

I mean pwdump is not a bad choice, but l0pht is not good to him since he cant install [censored] and l0pht is distributed in a commercial installation format.

I suggest booting to safe mode, usually that should not ask you for any pwd, and create a new user. if that dont work return to pwdump.

Also try booting to safe mode without networking that should defiantely do it.


The use of "hacker" to mean "security breaker" is a confusion on the part of the mass media. We hackers refuse to recognize that meaning, and continue using the word to mean, "Someone who loves to program and enjoys being clever about it."
--------------------
"Its not a bug, its a feature" (Epic Games)
#15365 08/17/02 12:14 PM
Joined: Mar 2002
Posts: 1,041
I
UGN Elite Poster
Offline
UGN Elite Poster
I
Joined: Mar 2002
Posts: 1,041
Well it looks like I need to take a little of my own advice. After glancing through the readme file myself I noticed something I have overlooked.

Quote:
You need the SeDebugPrivilege for it to work. By default, only Administrators have this right, so this program does not compromise NT security.
So it would appear that this won't help you at all paleothol.

/me tries to remove foot from mouth and swallow his pride in one motion

So, paleothol, I guess I should apologize for being short with you when the info I was giving you wouldn't even help you anyways.

Sorry paleothol.

sum

#15366 10/12/02 10:58 PM
Joined: Oct 2002
Posts: 10
Junior Member
Offline
Junior Member
Joined: Oct 2002
Posts: 10
No fear, paleothol. What you need is a handy Linux bootdisk with a handy binary on it that will do the hard work for you. The one I'm about to point you to will enumerate the user accounts and let you modify their passwords. What I'd recomend that you do is set a new password for the Administrator account, login as such and add your user account to the Administrator group, and then log in as you. Make sure that you log in and out again as yourself so that your dad doesn't boot up to find the Administrator account as last logon!

Keep in mind, this assumes that he is using an account with Admin privs, but that isn't Administrator. If you change HIS password, he's obviously gonna know about it.

Anyway, this tool actually works with SYSKEY encryption now - pretty handy. Select the "reset NT Password" from the list of bootdisks. Enjoy!


Link Copied to Clipboard
Member Spotlight
Phatal
Phatal
Houston, TX
Posts: 298
Joined: April 2004
Forum Statistics
Forums41
Topics33,840
Posts68,858
Average Daily Posts1
Members2,176
Most Online3,253
Jan 13th, 2020
Latest Postings
Where and how do you torrent?
by danni75 - 03/01/24 05:58 AM
Animation,
by JohanKaariainen - 08/15/19 01:18 AM
Blackbeard.....
by Gremelin - 10/03/18 07:02 PM
my old account still exists!
by Crime - 08/10/18 02:47 PM
Okay WTF?
by HenryMiring - 09/27/17 01:45 AM
The History Thread...
by Gremelin - 08/11/17 12:11 PM
My friend NEEDS your HELP!
by Lena01 - 07/21/17 12:06 AM
I'm having fun with this guy.
by gabithompson730 - 07/20/17 01:50 AM
I want to upgrade my phone
by gabithompson730 - 07/20/17 01:49 AM
Doom 3
by Cyrez - 09/11/14 08:58 PM
Amazon Gift Card Generator/KeyGen?te
by Gecko666 - 08/22/14 09:21 AM
AIM scene 99-03
by lavos - 09/02/13 08:06 AM
Planetside 2
by Crime - 03/04/13 07:10 AM
Beta Testers Wanted
by Crime - 03/04/13 06:55 AM
Hello Everyone
by Gremelin - 02/12/12 06:01 PM
Tracfone ESN Generator
by Zanvin Green - 01/18/12 01:31 PM
Python 3 issue
by Testing - 12/17/11 09:28 PM
tracfone airtime
by Drache86 - 07/30/11 03:37 AM
Backdoors and the Infinite
by ZeroCoolStar - 07/10/11 03:52 AM
HackThisZIne #12 Releaseed!
by Pipat2 - 04/28/11 09:20 PM
gang wars? l33t-wars?
by Gremelin - 04/28/11 05:56 AM
Consolidate Forums
by diggin2deep - 04/21/11 10:02 AM
LAN Hacking Noob
by Gremelin - 03/12/11 12:42 AM
Top Posters
UGN Security 41,392
Gremelin 7,203
§intå× 3,255
SilentRage 1,273
Ice 1,146
pergesu 1,136
Infinite 1,041
jonconley 955
Girlie 908
unreal 860
Top Likes Received
Ghost 2
Cyrez 1
Girlie 1
unreal 1
Crime 1
Powered by UBB.threads™ PHP Forum Software 7.7.5