First trick
O & O BlueCon 2000 is a tool software developed by Germans. It allows you to make it easy to repair damaged Windows NT / 2000 systems, similar to Windows 2000 recovery console, and the only difference is that it does not need you to enter your password. Enter the system. The most common function of this tool may be the password to modify the local administrator.
The steps to modify the local administrator password using O & O BlueCon 2000 are as follows:
I. Making tool disc.
(1) Production of four Windows2000 installation startings, the production method is used to see the Winnt / 2000 important floppy disk production of this station.
(2) Start O & O Bootwizard, "O & O Bootwizard", modify the installation floppy disk we just made (only to modify the 1st and 4th), and a total of four steps.
(3) The first step SELECT BOOT Device asked which way you use the boot system, is FLOPPY (ie four installation floppy disk) or CD-ROM, we choose FLOPPY (4 Disk Required), press another step ;
(4) Second step SELECT OPTIONS Ask We create a Windows2000 installation boot disk, because we have created just now, so do not choose, press Next;
(5) The third step PATCH DISK 1 and PATCH DISK 4 will prompt you to insert the first and 4th to modify the operation. Press the screen prompt to complete the tool disc production.
2. Modify the local administrator password
This tool is the same as the tool for modifying administrator passwords in the previous paragraph, and can only modify the local administrator password in the SAM.
Before using O & O Modify the local administrator's password, let's introduce the commands of O & O support, a total of 28, you can use the "?" Or "Help" command in the "A: />" prompt. These 28 commands More important in:
Backup: Backup Registry
Device: Displays the hardware configuration of an operating system
Edlin: A text editing tool
Passwd: Modify Password Command
Reboot: Restart Machine Command
Regedit: Edit Registry Command
Service: Display / Start / Prohibition Service Command
SCOPY or SCP: File Copy Command, you can copy the security properties of the file
User: User displaying an operating system
VMAP: Display the information of the current volume
The parameters of these commands are obtained by using the "command /?" Mode.
The specific modification of the local user is as follows:
(1) Insert the first soft disk into the floppy drive, restart the machine, use the floppy boot system, press the screen prompt to insert these 4 plates, go through the installation interface, and finally, the system will prompt:
O & O Bluecon 2000 V2.0 Build 256 - English Keyboard
(c) 2000 o & o Software GmbH. Allright reserved.
A: />
(2) Use the passwd command to modify the password of the SAM database account, the use of the Passwd command is as follows:
Passwd
Password parameters in the passwd command are optional. If you don't enter the password of the account, the password of the account will be emptied (not suggesting).
If you want to modify the password of the administrator to 123456, you can use it:
A: /> Passwd Administrator 123456
After entering! If you present multiple operating systems in the current system, you will prompt you to modify which operating system administrator password. Similar prompts are as follows:
Please choos a system to logon
1. "Microsoft Windows 2000 Server" / FastDetect
2. "Microsoft Windows XP Professional" / FastDetect
3. "Microsoft Windows 2000 Recovery Cortrol" / cmdcons
Choose a suitable operating system to modify, we choose 1, you want to modify the WINDOWS2000 Server administrator password. If the system prompts "Password Was Success,", it means that the password in the management is successful. If your O & O software is not Complete version but just unregistered, the system will prompt the administrator's password to read only, can not be modified. (3) Remove the floppy disk from the floppy drive, restart the system, enter the directory recovery mode, we can use new The administrator password enters the system.
The latest version of this software is http://www.oosoft.com
The second stroke: input method loopholes
First, use file type editing to create administrator users
Boot to the login interface
1. Turn out the input method, such as full fight -> Help -> Operation Guide, Jump out the input method guide
2. Right-click the "Options" button to select "Skip to URL"
3. Add "C: /" to the URL, others can also.
4. The right side of the help will enter C: /
5. Press the "Options" button in the help.
6. Select the "Internet" option. The file type edit box will be started.
7. Create a new file type, such as a you file type, add "you" in the skip file suffix. OK.
8. Select the "You" file type in the File Type box, click the "Advanced Buttons" below, the file operation dialog box appears.
9. Newly built a file operation, operand, such as "PPP"
10. The command executed by this operation is as follows:
C: /winnt/system32/cmd.exe / c net user aboutnt 123456 / add & c: /winnt/system32/cmd.exe / c net localgroup administrators
AboutNT / ADD
Exit after completion
11. Change the C: / to "PPP.txt" to "PPP.txt.you", then double-click to open this file.
12. Usually this file is not open, the system runs for a while, but then we have added users AboutNT, and the permissions are administrators.
13. Return, re-login with the ABOUTNT user.
Second, create administrator users using shortcuts
1-4 step with the first one.
5. Right-click on any file or folder under C: /, such as right-click the Winnt folder, create its shortcut: "Shortcut Winnt".
6. Right-click the "Shortcut Winnt" file-> "Properties" -> Shortcuts tab, modify the target to "C: /Winnt/System32/Net.exe User AboutNT 123456 / Add", the starting position is modified to "C: / WinNT / System32". Determine exit. The icon of the "Shortcut Winnt" file will turn it by a folder into a DOS window.
7. Right-click "Shortcut Winnt", run it, create "ABOUTNT" users
8. Repeat 6 steps, modify the target to "c: /winnt/system32/net.exe localgroup administrators
AboutNT / Add ", the starting position is modified to" C: / Winnt / System32 ". OK to exit.
9. Right-click "Shortcut Winnt", run it, and add "ABOUTNT" users to the local administrator group.
10. Delete the "Shortcut Winnt" file and return to log in with the AboutNT user.
3rd strokes: screen saver
The screen saver sometimes is very large, using it to recover the forgotten administrator password is an example.
Using a screen saver, everyone knows, usually (note, no absolute), if the system starts the login invitation box 15 minutes does not log in 15 minutes, Win2000 will start the screen saver logon.scr, located in C: / WinNT / Under System32, a Win2000 flag will be full.
I made a hand feet on this logon.scr, because logon.scr is an executable file, so I first rename the logon.scr to logon.zqs, then copy the costr.exe under C: / Winnt to C: / WinNT / System 32, renamed Logon.scr, this step requires us to remove the hard drive to other machines, of course, there is other ways. Restart the machine, do not log in after the login dialog, wait 15 minutes, screen The protection program starts, one resource manager appears, the target positioning is in C: / Next, the following operation is simple, the method of using the input hole can be used. No more details.
Fourth, start / shutdown script
The fourth method is the most feasible one by the second, third method, which may be a hundred hundred. Please focus on the last application of the startup script.
Deepen Shallow WIN2000 computer start / shutdown script
Introduction
Win2000 computer start / shutdown script (startup / shutdown scripts) is a new feature of Win2000. The startup script is a batch file that is invited to run before logging in, which is similar to the automatic execution batch file autoeexec.bat in Win9X and DOS; The shutdown script is a batch file running before the computer is turned off.
Compared with Win2000 User Log in / Log In, the main difference between them is: Computer start / shutdown scripts run when computer startup and shutdown, the script is only running once, usually after the startup script is completed. Only the invitation user login dialog; user login / logout script runs after inviting the user login, the user logs in to the system or runs from the system, and the number of runs is determined by the number of users log in / logout, each login / logout system Once, the script runs once.
II. Assignment
Before the computer start / shutdown script is enabled, it must be assigned. Assign computer start / shutdown scripts need to be performed by Group Policy MMC (Management Console) management unit, the specific operations are as follows:
1. Click Start menu -> "Run", enter "MMC" in the open box, open the Microsoft Management Console, MMC.
2. Click Console Menu -> Add / Delete Administrative Unit ... ", click the Add / Delete Management Unit dialog box to add an independent management unit.
3. Select "Group Policy" in the "Available Independent Management Unit" list of "Add Independent Management Unit" dialog box, press the "Add" button below.
4. When the system is asked which group policy object is used, if you want to assign a local computer, start / shutdown on the local computer, select the default Local Computer group policy object; if you want to assign Win2000 domain, start / shutdown scripts on all computers in the domain, then click the "Browse ..." button in the "Select Group Policy Object" dialog box, select the "Browse Group Policy" dialog box to apply to the entire Group Policy Objects in the domain, here as an "Default Domain Policy" object, which is the Win2000 domain default domain policy object (Figure 1) (T1.GIF).
5. After the completion is completed, close the dialogs and return to the management console. Now there is a corresponding group policy object tree (Figure 2) (T2.GIF) on the management console.
6. In the console tree pane on the left side of the management console, expand Group Policy Objects -> "Computer Configuration" -> "Windows Settings" -> "Node (Start / Close)" node, double-click the right side detail The "Start" or "Shutdown" item in the pane can set the script used when the computer is started or turned off (T3.GIF) (T3.GIF) (Due to the same method as the Win2000 computer starts and the shutdown script, the following operations are all Take the startup script as an example).
7. Double-click the "Start" project in the detail pane on the right, click the "Add" button in the "Start Properties" dialog box to add a new computer startup script.
8. A startup script entry includes two aspects: script name and script parameters (Figure 4) (T4.GIF). If the script is not included, such as the script file name in the figure is just "scripta.vbs", system Looking for this script file in the default computer startup script path. The parameters of the script are optional, can be filld, not filling, see the actual situation, and the boot script in the figure uses the run parameter "start" .9. Local computer The default path of the script is usually "% systemroot% / system32 / grouppolicy / machine / scripts", such as "C: / Winnt / System32 / GroupPolicy / Machine / Scripts". The default path of computer scripts applied to the domain is usually " "//
10. We can repeat the "Add" button in the "Start Properties" dialog box as needed, add multiple boot scripts (T5.GIF) to your computer.
11. After setting up, the group policy MMC management unit is exited after saving. When the Group Policy is refreshed, these scripts work when the computer is started and turned off.
Three in depth
1. We have saved the computer start / shutdown script by Win2000 in a hidden configuration file called Scripts.ini, this file is located in the "C: / WinNT / System32 / GroupPolicy / Machine / Scripts" directory, you can Use any file editing software such as Notepad for editing.
Scripts.ini file content typically contains two data segments: [startup] and [shutdown], the [STARTUP] data segment is the startup script configuration, the [shutdown] data segment is a shutdown script configuration. Each script entry is divided into feet and Since the script parameter is stored, the script name is saved under the XCMDLINE keyword, and the parameters are saved under the XParameters keyword, where x represents the script serial number starting from 0 to distinguish the number of scripts and flags of each script. Here is an example of a simple scripts.ini file:
[Startup]
0cmdline = d: /start/ss.bat
0Parameters =
1cmdline = scriptsa.vbs
1Parameters = Start
[Shutdown]
0cmdline = shut.vbs
0Parameters =
From the example, we can see that two computers are set up: ss.bat and scripta.vbs.ss.bat are located in the D: / Start directory, no parameters; Scriptsa.vbs is located in the default startup script directory C: / Winnt / System32 / GroupPolicy / Machine / Scripts / Startup User Use the parameter "start". The execution order of the two scripts is to perform Scriptsa.vbs after SS.BAT. Set a shutdown script Shut.vbs, No parameters are used, the script is located in the default shutdown script directory C: / WinNT / System32 / GroupPolicy / Machine / Scripts / Shutdown.
2. Start / shutdown script, contain whether it is synchronously run, whether it is displayed, the longest waiting time, etc., can be fine-tuning in group policies. The specific operation is as follows:
(1) - (5) Step the second part assigning 1-5 steps in the operation;
(6) In the console tree pane on the left side of the management console, expand the Group Policy Object -> Computer Configuration -> "Administrative Template" -> "Login" node, the right side is displayed in the details pane. The content has four related to the start / shutdown script (Figure 6) (T6.gif): Non-synchronous running start script, display the running script of the startup script, display the running script of the shutdown script, the longest wait time of the group policy script. 7) Non-synchronous running start script
Under the default (that is, there is no configuration, the following), the system should wait for each startup script to run the next startup script. If this policy is enabled, the system will not coordinate the running order of the startup script, start the script You can run at the same time. If this policy is deactivated or not, each startup script is to run after the last script is running. It is recommended not to configure.
The registry value corresponding to this policy is "HKEY_LOCAL_MACHINE / SOFTWARE / Microsoft / Windows / CurrentVersion / Policies / System / RunstartupScriptsync", this is a REG_DWORD value, 0 indicates enabled, 1 indicates disabled.
(8) Display the running status of the start / shutdown script
By default, the system does not display instructions in the startup script. If this policy is enabled, the system will display each instruction when the script is started, and the instruction will appear in the command window, or display the interface of the interfacial interface. This feature is mainly designed for advanced users. If you deactivate or do not configure this policy, the instruction will not be displayed. It is recommended not to configure.
For example, assume that you have a command in the startup script is "c: /winnt/explorer.exe c: / winnt", if this policy allows this policy to display the running state of the startup script, then when the computer is started, one The resource manager window will jump, the desktop is opened, and the system logs in to the computer with the SYSTEM user, which is tantamount to the famous input method! This can be seen, open the start / shutdown script. Sometimes it is very dangerous.
The two group policy registry entries corresponding values are "HKEY_LOCAL_MACHINE / SOFTWARE / Microsoft / Windows / CurrentVersion / policies / system / HideStartupScripts" and "HKEY_LOCAL_MACHINE / SOFTWARE / Microsoft / Windows / CurrentVersion / policies / system / HideShutdownScripts", are For the REG_DWORD value, 0 is activated, and 1 is disabled.
(9) Group policy script's longest waiting time
This policy limits all the time required to run login, start and turn off scripts by group policies. If the specified time has exceeded but the script has not been run, the system will stop the script processing and record an error event. By default, the system Allow the merged script set to run 600 seconds (10 minutes).
To use this policy, type the number between 1 and 32000 between the second box to determine the time you want the system to wait for the script, the unit is second. To allow the system to wait until the running script, no matter how long it takes time, Type 0 (Figure 7) (T7.gif). But do not recommend this, if your script is very bad, then the consequences will be unimaginable!
If other system tasks must wait for script to be done, this interval is very critical. In the default, each startup script must be completed, you can also use the "Non-Synchronous Running Start Script" policy to let the system When the startup script is completed, the invitation user login is invited to log in. The interval can delay the system and make the user inconvenient. If the interval is too short, the required task cannot complete the system prematurely, resulting in problems.
The registry value corresponding to this group policy entry is "HKEY_LOCAL_MACHINE / SOFTWARE / Microsoft / Windows / CurrentVersion / Policies / System / MaxGPoscriptWait", is also a REG_DWORD value, which represents the waiting time, the unit is second.
Application
There are many applications for computer boot / shutdown scripts, and the following is a relatively typical example:
1. Computer launch and shutdown time audit
(1) Write a script logtime.vbs that can record time, as follows:
'================================================= DIM Argobj, Str, Strtmp
Set argobj = wscript.Arguments
IF argobj.count <1 THEN
Strtmp = "No parameters!"
Else
Select Case Argobj.Item (0)
Case "Startup"
StrtMP = "server start."
Case "shutdown"
Strtmp = "The server is turned off."
Case Else
Strtmp = "Unknown action! Parameters:" argobj.Item (0)
End SELECT
END IF
SET FSO = CreateObject ("scripting.filesystemObject")
Set tmp = fso.opentextfile ("d: /log/logtime.txt", 8, true)
Str = "[" CSTR (now ()) "]" strtmp chr (13) chr (10)
Tmp.Write Str
TMP.CLOSE
SET TMP = Nothing
SET FSO = Nothing
'====================================================
This script has two parameters: startup and shutdown. When used as a startup script, use the "startup" parameter; when using the shutdown script, use the "shutdown" parameter. In addition, the FileSystemObject object is used in the script, before using this script Make sure this object already exists on your computer.
(2) Set the script to set the script in the previous method. This script will run each time the computer is started or turned off, and the computer is started or turned off (actually at which the script is running, but the two should be different) records. In a text file, the example is "d: /log/logtime.txt", which can be changed as needed.
2. Delete some special sharing
In WIN2000, due to computer management, user login, etc., many special shares, such as C $, D $, Admin $, IPC $, Netlogon, etc., but these shares are not all computers. Use "Computer Management" MMC or NET Share command, etc., forbidden these shares, just a method of cursor, reappeared after the computer is restarted. For security, we sometimes want to completely delete these sharing Now remove this particular shared method, such as editing the registry, then provide a method of deleting these special sharing using the startup script.
(1) Write a batch file DELSHARE.BAT that can delete special sharing, as follows:
NET Share C $ / Delete
NET Share D $ / Delete
NET Share IPC $ / DeleteNet Share Netlogon / Delete
(2) Set the script to start the script in the previous method, restart your computer. OK, everything is clean.
3. Restore administrator passwords or new administrator accounts
Lost administrator password is a very headache thing, but maybe it will encounter. In emergency, how to restore administrator passwords and even create a new administrator account, now there are many mature technologies, such as classics Login screen saver, using O & O software, etc. In fact, the startup script is also a quite good choice.
(1) If the fault computer uses the FAT / FAT32 file system, you can use the WIN98 boot disk directly. If you use the NTFS file system, you can remove the hard drive on the failed computer to the disk mode to other Win2000 computers. The following operations are subject to the next case, assuming that the SYSTEM partition of the current faulty computer (usually C is a partition E: on a new computer.
(2) Write a batch file from the batch file that can restore administrator's password, and the content can only be a "Net User" command. As follows:
Net user administrator 12345678
Here we assume that the current administrator is administrator, restore its password to "12345678". Save the file admin.bat to "E: / WinNT / System32 / GroupPolicy / Machine / Scripts / Startup", that is, the fault computer Under "C: / WinNT / System32 / GroupPolicy / Machine / Scripts / Startup".
(3) Write a start / shutdown script configuration file Scripts.ini, this file name is fixed, cannot be changed. The content is as follows:
[Startup]
0cmdline = admin.bat
0Parameters =
Save the file scripts.ini under "E: / WinNT / System32 / GroupPolicy / Machine / Scripts", which is the original "C: / WinNT / SYSTEM32 / GroupPolicy / Machine / Scripts" of the faulty computer.
(4) Restore the hard disk to the primary disk, then return the original computer, restart, wait for the startup script to run. Starting the script runs the password of the administrator Administrator is restored to "12345678".
(5) If you want to create a new administrator account, the content of the admin.bat file can be modified to:
NET User Admin 12345678 / Add
Net localgroup administrators admin / add
Such an administrator account named "admin" and password is "12345678".
This method can not only restore the local administrator password on the standalone server, but also the password of the Win2000 domain administrator.