本机装着Windows 2000,因工作关系将重要资料放于C:\studio\,(C盘为NTFS格式)并设置了如下权限:Lostar(就是我啦) 完全控制Everyone 只读 The machine containing Windows 2000, because of work will be important information to put in C: \ studio \, (C drive to NTFS) and set the following permissions: Lostar (is my friends) Full Control Everyone Read
后有一天,发现其中文件被人改动,大惊,接着一连几天文件都与我的记忆有出入。 After one day, found the file was changed, shocked, and then for a few days with my memory files differ. 对了,忘了介绍一下我的机子的情况: By the way, forgot to introduce my machine situation:
机子在办公室,大家任意玩,只是他们都只是Guests,也就是说,真正意义上的用户只有我一个。 Machine in the office, we play any, but they are only Guests, that is, truly I am the only user.
而这个情况的出现,说明:系统被人完全控制了! And this from happening, Description: The system was completely controlled!
可是,到底怎么了呢? However, in the end how it? 所有的人都是Guests呀,连User都没有。 Guests who are all ah, even the User at all. 难道是用的什么读写NTFS的黑客软件,那么我的那些重要资料不是暴露于别人的键盘之下? Do what is read and write NTFS hacker software, then those of my important information is not exposed to others under the keyboard?
只能向恶势力低头吗? You can only bow to the evil forces? HoHo,没门。 HoHo, no way. 我决定斗争到底,哪怕英勇牺牲。 I decided to fight in the end, even heroically.
在漫无目的检查中,我发现D:\backup\sys\windows\下竟然隐藏着另一个Windows 2000,在确定不是我备份的后,我晕倒了两次。 Aimlessly checking in, I found D: \ backup \ sys \ windows \ even hidden under another Windows 2000, I did not back up in the sure, I fainted twice.
看着这个Windows 2000,一个能读写NTFS的黑客软件出现在我的眼前。 Looked at the Windows 2000, a hacker software can read and write NTFS in my eyes.
我总结出一个笨但是很有用的方法来突破NTFS的读写权限,但有3个前提:物理接触主机、有权开机时修改CMOS、硬盘够大。 I summed up a stupid but useful way to break through the read and write access to NTFS, but there are three premises: physical contact with the host, the right to modify the boot CMOS, the hard disk is large enough.
方法很卑鄙,卑鄙的令人发毛:用Windows 2000光盘启动,重装一个Windows 2000到隐蔽的目录下,在新Windows 2000中改管理员名与旧Windows 2000相同,密码当然自己设咯。 Method is despicable, despicable people scared: use the Windows 2000 CD-ROM, reinstall Windows 2000 to a hidden directory in the new Windows 2000, change the administrator name and the same old Windows 2000, passwords, of course, set their own strategy. 然后你就可以对禁地中的文件为所欲为了。 Then you can be off-limits in the file they wanted.
修改过那些文件后,来到“系统特性”(也就是“我的电脑”->属性),选择“启动和故障恢复(S)...”->“默认操作系统”为第二个 Windows 2000(启动时会有两个相同的Windows 2000启动方式给你选,一般都是第一个是新装的,如果出现这个选择不就露馅了?)所以我们去掉“显示操作系统列表”复选框。 Modified those files, to "system properties" (ie "My Computer" -> Properties), select the "Startup and Recovery (S )..."->" default operating system" for the second Windows 2000 (start there will be two identical way to the Windows 2000 boot you choose, usually the first one is newly installed, if this option is not revealed the secret?) so we remove the "display list of operating systems" checkbox . 重启,OK! Restart, OK! 让管理员去奇怪吧。 Allows administrators to surprise it.
后记:我们自己怎么回到我们的基地呢? Postscript: how we return to our own base it? 该不会每次都重装吧? This will not always reinstall it? 在启动时大按F8,选择回主菜单,不就是由看见那张列表了吗? Large at startup press F8, choose to return to the main menu, not that by seeing the list goes on it?
怎么样,做一个幽灵吧? How to do a ghost, right? 篡改真正管理员的文件吧? Tampering with the real administrator of the file, right? 哈哈。 Haha. 被逮住了可别怪我。 Are caught can blame me.
Tidak ada komentar:
Posting Komentar