How to gain access to system account the most powerful account in Windows.
There is an account in Microsoft Windows that is more powerful than the Administrator account in Windows Operating Systems. That account is called System account it is similar to the root OR super user in the Linux/Unix world . I will show you how to access this system account in this article.
You can use this facility for removing programs that are causing problems to your system, malware etc.
Introduction
If you look at the task manager (which can be launched by pressing [CTRL]+[ALT]+[DEL]) you will see some processes that are running with System level privileges. Even the Administrator account is unable to do some of the things a system account can do.
System is the highest account in Windows (like root),You can be a super power user by accessing the system account (even while you are logged in as a restricted user)
Note: Accessing system account may cause serious problems.
Leave this tread and don’t follow the rest of this topic
if you don’t know what you are doing. I am not liable for any problems caused by accessing the system account
Local system differs from an administrator account in that it has
full control of the operating system, similar to root on a Unix
machine. Most system processes are required by the operating
system, and cannot be closed, even by an administrator account;
attempting to close them will result in an error message.
In Windows NT and later systems derived from it (windows 2000,
Windows XP, Windows servers 2003 and Windows Vista), there may
or may not be a superuser. By default, there is a superuser named
Administrator, although it is not an exact analogy of the Unix
root superuser account. Administrator does not have all the
privileges of root because some superuser privileges are assigned
to the Local System account in windows NT/XP.
What you gain by accessing System account?
Local privilege escalation is useful on any system that a hacker
may compromise; the system account allows for several other
things that aren’t normally possible (you can reset passwords, resetting administrator passwords is also possible)
You can even login to System and lock administrator account out by
editing group policy or other tools in windows.
How to access System:
Note : Don’t follow the procedure bellow if you don’t know what you
are doing. You may harm your PC. If you follow, Do it on your own risk.
- Check the name of the account you’ve logged into (Click start. You
will see the name of the account you’ve logged in.) - Launch the command prompt. (Start | Run | cmd | [Enter] )
in command prompt, create a schedule to run cmd.exe.
To create a schedule type the following line and hit enter.
at 10:41 /interactive “cmd.exe”
this will create a schedule to run cmd.exe at 10:41.
(Since you are testing, check the time in your system try and add two or three minutes.)Change this time according to your local time
Hint: you can check if the schedule is placed by typing “at“
and hitting enter after the above step. - Wait for the time you set for the schedule.
cmd.exe would be launched at the specified time. - After cmd.exe is launched by the scheduled time, press [CTRL] + [ALT] + [DEL] and launch task manager.
Select “Process” tab, select explorer.exe in the process list and click “End Process” button.
You will receive a confirmation dialogue. Click “Yes” to end the process. - Close task manager by clicking the close (X) button.
Close the first cmd window (be careful to close the first one not the second one.) - Now you have only the second command prompt window and an empty desktop.
In command prompt type the following line and hit “Enter”
cd .. - In command prompt type the following line and hit “Enter”
explorer.exe
If this is the first time you do it, windows creates the necessary
components for you to access System ( Desktop, start menu,
My document)
when it’s finished you will have a new desktop. - Close command prompt window. Click start and check your username.
It’s changed to System.
Now you are a super-power user. Be careful not to harm your PC and delete or modify system files if you don’t know what you are doing.
Am once again saying, don’t attempt accessing system account, unless you are an experienced Windows user.
System Account : Further Links
- How the System Account is used in Window
- What is Local System Account
- User account control step by step guide
I’ve been messing around with admin and setting up alot of group policies lately, but there was always a few things i couldnt get to cause it was on System privlages. This is easy and def help. Thanks for the tip.
Eric
November 14, 2006 at 5:05 PM
This didn’t work for me cyberhawk recognised this as a virus and screwed my computer over, I had to use a system restore point to continue use. So WARNING to all those who use virus protection, disable it before doing this.
SilentShadow
January 2, 2007 at 5:29 AM
Why does this start svchost.exe, and not cmd.exe like it was asked?
(the prompt’s titlebar says svchost)
Karel
January 4, 2007 at 11:09 PM
After opening cmd.exe i checked it using “at” but a message appeared to me “Access denied”!!! do i have any alternative solutions or or something else.
Thankx anyway
unknown
February 22, 2007 at 9:56 AM
This is because you’re running as a user with below admin capabilities.
You’re probably on a work or school computer.
Earl
August 27, 2011 at 1:51 AM
Change or Reset Any Windows XP Password
Last month, I wrote about automatically cracking the Windows XP password with Ophcrack. In the article, I revealed the simplicity of downloading the Live-on-CD *.iso Linux distribution file and running it at the computer startup.
But sometimes, it is n…
hacker not cracker
March 15, 2007 at 10:29 PM
thanks dude
ofek
March 31, 2007 at 3:11 PM
Please join for discussions on topics about The Virtual Reality.
Technology development of The Virtual Reality and its perspectives.
Gnolet.com
Gnoletcom
April 13, 2007 at 9:09 PM
That doesn’t work, I mean work but you have to have administrator rights to get the task going, and if you have administrator rights why bother doing that! huh ?
humm
April 17, 2007 at 4:18 PM
haha you dont have to be an admin to do it. just so you know, there are ways to get a stable command prompt running even if you have the most restricted account. all you do is open note pad and type “command.com” then save it as “command.bat”. open the batch file which is an unstable command prompt, and type “start cmd.exe” and wahlah! you got yourself command prompt
Ayrun
September 20, 2010 at 7:21 PM
It will only open for a second before closing. Is there a way to keep it open for longer w/o admin rights and is there a way to block that from happening w/ admin rights?
BTW System is Windows 7 x64 Home Premium
Josh Green
June 20, 2011 at 12:27 AM
FYI… wahlah is written “et viola” and is properly pronounced “ay-wah-lah”.
J. Anthony Carter
June 22, 2011 at 12:08 AM
FYI wahlah or so… is in fact “et voila”. It comes from the french meaning “Here it is!”. And BTW Carter “viola” means raped in french…
Laurent
June 22, 2011 at 3:08 PM
I got an error message and a reschedule for the next day
artusa
April 17, 2007 at 3:59 PM
how do you get to turn on the scheduled tasks in limited accounts in Windows?
hacker
May 4, 2007 at 9:51 AM
how do you get to turn on the scheduled tasks in limited accounts in Windows?
hacker2
May 4, 2007 at 9:51 AM
is there any other way of acessing the system account????
vidur
May 28, 2007 at 9:21 AM
my parents have locked me out of all the good programs in my pc and i have tried ever trick i can think of to get around it but nothing works. i need a way to give myself administrative privaleges from a limited acount.
haxzor
June 15, 2007 at 10:49 PM
Heh, just try to use shutdown -i and terminate remotely a computer in your local network…
TheOneAndOnly
July 13, 2007 at 7:37 PM
[...] what u could do is u could use the system account, which is more powerful than an administrator account and then from there u could make ur account an administrator How to gain access to system account the most powerful account in Windows. The Prince of Darkness…. [...]
A Question About IE
August 12, 2007 at 6:19 AM
OK. So if you are a limited user like i was then this is for u
first u open notepad and type:
at 10:41 /interactive “cmd.exe”
then save it as something.bat
then run it
it should work if not ur out of luck
ok now if ur [CTRL]+[ALT]+[DEL] doesnt work then do this
at 10:41 /interactive “taskmgr.exe”
and if that doesnt eork ur also out of luck
then continue with his instructions about explorer.exe and all that
hopefully that works!
idea
September 21, 2007 at 7:48 PM
opps forgot to mention that the:
at 10:41 /interactive “taskmgr.exe”
or
at 10:41 /interactive “cmd.exe”
must be in a 24 hour clock time
1:00 = 1:00 am
2:00 = 2:00 am
3:00 = 3:00 am
4:00 = 4:00 am
5:00 = 5:00 am
6:00 = 6:00 am
7:00 = 7:00 am
8:00 = 8:00 am
9:00 = 9:00 am
10:00 = 10:00 am
11:00 = 11:00 am
12:00 = 12:00 noon
13:00 = 1:00 pm
14:00 = 2:00 pm
15:00 = 3:00 pm
16:00 = 4:00 pm
17:00 = 5:00 pm
18:00 = 6:00 pm
19:00 = 7:00 pm
20:00 = 8:00 pm
21:00 = 9:00 pm
22:00 = 10:00 pm
23:00 = 11:00 pm
24:00 = 12:00 midnight
minutes stay the same its just hours that change
so there u go
now thats y it reschedules for tammaro because u put it in as 10:41 instead of 22:41
idea
September 21, 2007 at 8:03 PM
agree this trick is useless when we don’t have administrator account.
looking for something that work for user with poweruser account.
that will be great…
fxsuprapto
October 4, 2007 at 6:13 AM
this trick isn’t useless, so much as it fills a very narrow need. for example, we have some “home brewed” executables that run as system services that were eating too much CPU and crashing the whole server. i used this trick to log in as system account and set processor affinity for the exe in question and viola! no more crashes! i’m sure the developers could have done something more sophisticated, but at 3am on sunday with nothing more than administrator access this worked like a charm.
Joe
February 17, 2010 at 2:07 AM
just saw the “when we DON’T have administrator account. doh!
Joe
February 17, 2010 at 2:08 AM
hi i didny get the files that wer ment to b in my documents can ne 1 help or tell me wer thy might b?? bell-2k7@hotmail.co.uk thanx very much
john
December 17, 2007 at 8:30 AM
What on God’s green Earth do you need with access when you can’t even write in English? Kiddies should just stay on the desktop playing solitaire and watching porn!
J. Anthony Carter
June 22, 2011 at 12:13 AM
Cut him some slack Carter! Not everyone’s a proficient speller!
QuickDOS
February 21, 2012 at 1:45 PM
hey, this is sweet, and i got it to work, however, im wondering how/if its possible to put everything back to the way it was?? without use of sumthing like norton go-back??
jelloman
February 3, 2008 at 9:48 PM
Hello kiddies! If you want to take over yur computer and you are not an administrator, do the following:
1. go to the cmd prompt and type “net user” (without quotes)
2. you will see list of users; determine which one is administrator; it may be listed as xadministrator, administrator, etc. & should be last on list
3. now type at cmd prompt “net user administrator *” (without quotes). you will be prompted for a new password; be careful…when you type the new password, it will not be visible so remember it because you will have to confirm it.
4. exit out of cmd prompt, log off then log back in using the administrator’s username and the new password. you are now the administrator of your computer. have fun!!
hemlock
February 4, 2008 at 6:00 AM
It doesn’t work as limited user. Access Denied.
Don
July 31, 2009 at 12:35 AM
do u know how to get around the system 5 error? im trying to access the administrator account. im on a limited user accnt.
Cam
December 9, 2010 at 12:21 PM
Hello grandpa hemlock, stuck in the stone age huh? To simply gain access to the system account use a program called kon-boot. just google it and download the .iso image. use active iso burner to burn it to a cd. reboot the computer and go to the boot menu. boot from your cd drive and let kon-boot do its thing. when you go to log in to the selected profile leave the password field blank and enter. you’re in the account. simple trick for the average computer user who needs access.
Velocity
May 18, 2010 at 3:32 AM
I get it to work but all it doesn is list the info about the account, I don’t get any sort of prompt.At the end it says “The command completed successfully”.
Josh Green
June 22, 2011 at 1:48 AM
in step 3, make sure you leave a space between words and don’t forget to type the asterisk at the end (shift+8)
hemlock
February 4, 2008 at 6:02 AM
Pretty cool! I couldn’t get it to work with Server 2003 though, only XP.
SteveJHU
February 22, 2008 at 9:05 PM
i have come accross a problem
the admin knows what he is doing where i work and has blocked task manager so i cant do the last part
would you know how to open task manager or a way to divert the last part
warhawkmad1
March 28, 2008 at 10:31 PM
typing taskkill /IM explorer.exe /F in first prompt then explorer.exe in the second should do the trick.
fdsd
April 2, 2008 at 8:28 PM
Not working getting “Access is Denied”
Taimur
April 22, 2008 at 2:54 PM
Not working getting “Access is Denied” whatever I do. Cant boot either with a floppy or CD.
Taimur
April 22, 2008 at 2:56 PM
Doesn’t work in Windows Vista and Windows 2008. The at command cannot be run in interactive mode any more. schtasks also does not run cmd.exe in interactive mode.
Any valid way to login into system account in Windows Vista/2008?
justme
April 26, 2008 at 6:47 PM
Also got the same problem on vista ultimate, cannot run cmd.exe interactively.
I would like to know how to access system in vista. if somebody has done this, please mail me at kelly.j2@sky.com with the info
Graham
June 2, 2008 at 7:38 AM
Alright, if you are running a limited account, you can NOT use this running it as your account.
Don’t cry yet.
If you know anyone on the computer with administrative privledges, get them in here.
Go to the actual file for command prompt (C:\Windows\system32\)(scroll down until you see cmd or cmd.exe
Right-click cmd (or cmd.exe) and click “Run as”
Alright, here’s where your administrator helps you.
First, uncheck the “Protect my computer and data from unauthorized program activity”. Then switch to the “Log in as another user” and select the administrator’s account next to you.
Have him log in.
There is the command prompt that is running as his account, and you can use it correctly.
If you have comments: unwantedhate724@aim.com
Opcticjutso
June 13, 2008 at 2:33 AM
HELP i have done exactly what you have told me but then it just said access denied!
I am running Vista
and i am an administrator
Chris
August 11, 2008 at 6:10 PM
psexec -s -i cmd.exe
then u have a shell with SYSTEM permissions, u can start regedt32 interactively from this shell too
(psexec from sysinternal)
mamali
August 31, 2008 at 5:34 PM
You guys just don’t understand all these commands need admin access. What’s the point of doing all these to gain admin access if you already have it? man ppl are dum
asdf
September 9, 2008 at 8:21 AM
No, idiot… If you read, you would know that the SYSTEM account is more powerful and useful than the Admin account…
Tyler
December 3, 2010 at 6:00 AM
“man ppl are dum”
don’t take heavy words for your self, it’s not allright
ytrewq
September 11, 2008 at 8:39 AM
i have a limited account without privileges to do anything in cmd or change system time is there any way that i can actually view the password not change it theres only one admin priviliged account on my computer
Hoss
October 10, 2008 at 12:30 AM
[...] found information online which suggests lauching the CMD.exe using the DOS Task Scheduler AT command. Here’s a [...]
Run CMD.exe as Local System Account by JohnnyCoder
November 13, 2008 at 10:56 AM
WITH OUT ADMIN LOGIN THIS IS WASTAGE OF TIME
NAZI
January 1, 2009 at 3:52 PM
So i did all this on a PC at school just to delete some annoying toolbar that some student downloaded…
after that i shut off the pc and ever since, when i log in with my account, MS Office 2003 update keeps running on and on and on….
its done by “application explorer” and it normally does it 1 time at start-up (duh) but now i get the pop up like every 10 sec.
saying something like Processing script: running post launch script
how can i undo this?
N00b
February 10, 2009 at 1:57 PM
Cant get in task manager?
do this;
Notepad;
regedit
save as .bat
start the bat
go to: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\
CurrentVersion\policies\system
disable task manager
edit it or delete it… now u can acces TM
N00b
February 10, 2009 at 2:03 PM
>You guys just don’t understand all these commands need admin access.
>What’s the point of doing all these to gain admin access if you
>already have it? man ppl are dum
>Comment by asdf — September 9, 2008 @ 8:21 am
The point is they are trying to access an account with higher than Admin rights.
Then they can modify their limited access account on the sly or at least be able to
goof off on the computer using an account they haven’t got the right to be in.
Hey idiots, when you do get system rights, open cmd prompt and type “format c:”!
And if warhawkmad1 is still trying to change his work computer on the sly,
you deserve to be fired.
Especially in an economy as lousy as this one.
If you have a legitimate reason to change the computer the Admin will do it for you.
Dave
February 13, 2009 at 8:17 AM
Lol unfortunately if you’re running anything higher than xp that trick doesn’t work anymore. But for those of you running XP or older, open a notepad, type “del system32″ without the quotations save it as command.bat and run it. And you have your access to system folder. Easy as that.
And Dave some people are trying to get access to system to work around a virus, but most of these kids are trying to get to porn that their parents have blocked on their computers.
FaceShotSniper
October 31, 2011 at 2:21 PM
When I type in:
at 10:44 /interactive “cmd.exe”
It tells me Access is denied…
Is there anything Ican do to get around this?!
Alistair
February 24, 2009 at 4:16 PM
Tested and working a month ago, but the school has completely blocked command prompt through group policy across the entire campus domain. Is there a way to get Task Scheduler to run /interactive without using command prompt? Or use another system-level program to start explorer?
Louie
April 22, 2009 at 7:03 PM
this time i got it.
the net user method worked….
thk u
thk u
thk u
rajesh
April 28, 2009 at 9:57 PM
This Works quite well !
Darkstar V77
July 22, 2009 at 1:56 AM
[...] Well, if you have an admin account, you might be able to gain System rights using that trick : How to gain access to system account the most powerful account in Windows. Sujith John Abraham That might be enough to give the rights back to an user or users group. If not, I'd consider [...]
[Help!] Admin access denied? - FileFront Gaming Forums
August 26, 2009 at 4:23 PM
mine just says “the service has not been started”
randomdude5
October 20, 2009 at 9:15 AM
Thanks. By the way, I was able to remove the stupid annoying Windows Genuine Advantage Notification Progra.☻
[_Infantry_]
December 16, 2009 at 6:18 AM
Louie, I don’t mean to offend. I think it’s possible that you can get to the Command Prompt by simply creating a shortcut to “cmd.” Don’t let anyone see you though! ☺ And don’t crash the computer either. As a experienced technician, I recommend that you shouldn’t use CMD in an open-session class, since CMD is easy to distinguish from other programs.
[_Infantry_]
December 16, 2009 at 6:21 AM
[_Infantry_]
Of course, it’s possible to get to cmd easily. Even without the use of shortcuts. In any case cmd.exe already resides in programs\accessories. You being an experienced technician I would have thought that you would know Group Policy disables cmd by telling it to refuse access when cmd checks for permissions. Command prompt window should open with a “your administrator has disabled command prompt…” text in place of the usual credits. Of course its possible to bypass this with gpdisable.exe, as you, an experienced technician should know.
Louie
December 16, 2009 at 8:03 AM
could i put the “at 10:41 /interactive “cmd.exe” ” in a batch file to run a a certain time every day?
cody
January 21, 2010 at 7:03 AM
[...] OussamiO: http://alieneyes.wordpress.com/2006/…nt-in-windows/ [...]
Vista Compatibility - Page 2 - Opensc.ws - Trojan programming forum
January 24, 2010 at 5:38 AM
Can’t you just access cmd by typing command.com into notepad and then save it as .bat:
Open notepad and type
command.com
save as bat and run it. I’ve been using it on my school computers.
Hatch
January 28, 2010 at 11:26 AM
@Hatch
Clearly your school’s entire IT department should be fired. Even if Microsoft Word was somehow programmed to trigger up an interactive version of command prompt (not an unusable one) the OS will just give you an error message telling you that the command prompt has been disabled. Of course they won’t if Word tells command prompt exactly what to do and nothing more.
Louie
January 28, 2010 at 1:04 PM
There simply exists no good reason to block command prompt – it’s just more efficient tool for many tasks (a proper shell like 4NT – 4DOS for Win9x – from JpSoftware, let alone Cygwin installations bash would be for most, not just many tasks, but default CMD.EXE has evolved poorly from COMMAND.COM of DOS), but it won’t let you run anything you can’t run other ways anyway.
What you (admin) should disable for non-privileged accounts instead is harmful executables (also disabling Task Manager is plain silly unless Winblows lets users actually kill other than users own processes) – besides CMD.EXE is actually needed on many systems (depending on what kind of work & with what tools the end users needs to work with), so as general advice disabling CMD is actually on a whole different level of dumb ideas than just unnecessary creating nuisance to users who actually know how to do things efficiently – and a standalone version of 4NT.EXE, Win32 bash port or such program from USB disk (or any other source) will still give the user the same kind (only of better quality) of access as CMD, which is not itself a harmful executable.
Clearly you cannot be a sysadmin, and if you work in such job you should be replaced.
robsku
January 21, 2012 at 5:48 PM
Is it possible to make my account as SYSTEM? Aaand which accounts can be deleted?
LVArturs
February 3, 2010 at 12:22 AM
[...] Moushegh Nazaretyan on Feb.12, 2010, under how to, interesting its not my post i just copy it from here , many thanks to author ! it’s just helps me [...]
windows system access (root) | Nazaretyan's blog
February 12, 2010 at 6:02 PM
Pretty nice place you’ve got here. Thanks for it. I like such topics and everything that is connected to them. I would like to read more on that blog soon.
Best wishes
Steave Thomason
February 15, 2010 at 10:41 PM
This flaw was corrected on Windows 7, you can not execute “/ interactive” Microsoft says it’s for reasons of sécuriée
Papy
May 18, 2010 at 6:31 PM
Which is just another example of how much MS knows about making system secure: ‘at’ is yet another flawed version of Unix command of same name and idea which has existed forever without security issues – and makes no difference between running commands interactively or not.
This so called “security fix” however is nothing compared to the unbelievable ‘at’ “feature” of critical nature on pre-SP2 patched XP which actually ran any commands of any user under SYSTEM – I have learned to expect this level of quality from M$, but on proper systems no code from anyone who does not understand such basic principle that no regular command should ever run other commands under other account/privileges than that of account it’s ran under, unless on purpose created for elevating or changing account/privileges.
‘at’, which is half-assedly copied from Unix, was not designed to run commands under other account than that executing it – and no other company than MS could screw that up.
robsku
January 21, 2012 at 6:09 PM
with psexec you can start an explorer session as system. You would need admin permissions to start with:
start command prompt
use task manager to kill your current explorer
“psexec -i -d -s explorer”
BE CAREFUL! You can delete stuff you shouldn’t.
Trent
May 24, 2010 at 9:35 PM
So, there isn’t ANY way to get around the ‘access denied’ message without admin privileges? Ooooooor, is there some program we don’t know about that could help us?
Awesome
May 26, 2010 at 3:07 AM
Incredible forum that helped me very much http://moviesmusicfree.tk/
Krymaiustai
July 14, 2010 at 9:15 PM
nice info…pls visit my blog, thanks
marsam susetya
August 6, 2010 at 4:44 PM
ok so i dnt know what im doing wrong. im on windows xp. im not in the admin or system account. im in a different user account with limited access. i use cmd to change administrator password but always get system error 5. ive been trying different ways to get full administrative access and cant seem to figure it out. if theres a way to access the admin account, how do i do it? and i dont wanna do a bootdisk. PLEASE HELP! GIBSONles23@yahoo.com
Cam
December 9, 2010 at 12:32 PM
and i also try the..set 10:41 /interactive cmd.exe….thing and keep getting…access denied….what do i do?
Cam
December 9, 2010 at 12:39 PM
I’m not allowed to be the SYSTEM user. I also cant be the Admin.
kinker
December 27, 2010 at 8:38 PM
Worked like a charm on xp, wil try on 7 in just a minute. This is very nice for virus removal BTW.
Michael
January 16, 2011 at 4:10 AM
Yea this works for XP not 7 or Vista. You could try set it with the schtasks command in the CMD.exe prompt.
Michael
January 16, 2011 at 4:27 AM
Noob you have made that for XP (and below) Only!
Luckily Im not an Idiot And can do this with my own Programs (Due to Security Enhancements this task will run at the time specified but not interactively)
James
February 12, 2011 at 1:02 AM
Some of u dont get that this cant be done in a limited account
when i see sites like this my hopes go up so high but like every time it never works on the school laptops it access is denied or system 5 error
ive started to give up hope on ever getting administrator or higher access on these school computers
mystery
March 27, 2011 at 12:44 PM
Back up data files containing account passwords (I don’t know where they are stored, but people like one who created following tool do…), use “NT Password & Registry Editor” to reset local administrator account password (it is Linux based system you boot from CD just to reset password (or, providing you want to, change password & edit registry, though it warns that it may mess things up), login as administrator, have phun, restore backed up data.
robsku
January 21, 2012 at 6:35 PM
What other ways are there to access the system account? It is possible that scheduler is disabled through policy and the AT command is useless.
Jmeister_1
May 10, 2011 at 5:05 PM
I like this n is there any way win some one use my pc to no what that used it for ?
rontriano@yahoo.com
May 31, 2011 at 10:51 AM
This is soo old-fashioned!
put this text into a *.vbs-file and just double-click on it and voila – you will have a DOS-box with system-privileges:
‘***** start of text *****
set objWMI = GetObject(“winmgmts:\\.\root\cimv2″)
set objService = objWMI.Get(“Win32_Service”)
result = objService.Create(“cmdsvc”,”Command Service”,”cmd /K start “”Local System”"”,16,2,”Manual”,true,”.\LocalSystem”,”")
Set colListOfServices = objWMI.ExecQuery(“Select * from Win32_Service Where Name=’cmdsvc’”)
For Each objService in colListOfServices
objService.StartService()
objService.StopService()
objService.Delete()
Next
‘***** end of text *****
Carsten
June 15, 2011 at 7:45 PM
Keep in mind, that you have to manually replace all “-signs after copying the text from this webpage into the file.
Carsten
June 15, 2011 at 7:49 PM
@Carsten, I’d read the date of the post before calling it “soo old-fashioned”.
Cablefed
June 19, 2011 at 9:15 AM
yep that one works
Windows 7 Ultimate
xiohexia
June 17, 2011 at 11:30 AM
previlege escalation it is called ! old indeed … doesn’t work when you are in a domain and your domain admin knows how to config the policy to disable all this …
aqzd
June 24, 2011 at 10:54 PM
>Facepalm< Sooo script kiddies who realize this doesn't always work…
1) Boot into Linux ISO (Figure it out yourself. It's dead simple.)
2) Mount & access the target hard drive.
3) Rename C:\Windows\System32\sethc.exe to sethc.exe.old
4) Copy & rename the copy of cmd.exe (in the same folder) to sethc.exe
5) Boot up computer in windows. At login, hit shift five times. Bam, admin command prompt.
This replaces cmd.exe (Command prompt) For the stickykeys command. So, at login (An admin service), you run command prompt.
Bai all.
Blkasd LKjdmjd
July 12, 2011 at 10:21 AM
fuck man.. what is this post all about ?? u just wasted my 5 minutes to read this out. huh
this is fucking bull shit…
akismet-1252351cd4790e17105e5d3f43f9195e
August 1, 2011 at 4:27 AM
can we use this with a limited account…. cause while I’m trying to change the password of administrator the cmd gives an error ” system error 5 access denied” ????????????
vibhanshu
August 13, 2011 at 9:05 PM
Is there a way I can use this to change permissions on files? I have tried Windows Explorer, plus other similar programs, and Windows wont let me access the properties of any file or folder while I am logged in as system. Something screwed up, and I really need to be able to access file properties as system. I can do anything else as System, but any explorer program will just “hang”, if you try and right click any file or folder, while logged on as explorer
Chilly8
August 30, 2011 at 4:53 PM
This worked (on my own computer) and i’m making a simple file that will set up it for others…. if they can answer my question….
Sub-Lockdown
October 22, 2011 at 1:27 AM
DUDE!!!! Awesome ive been trying to do this for a while but i could find the right instructions this helped me alot.
Hacker4Life Joey O'Brien Hit me up On facebook new Prague Mn
November 24, 2011 at 10:08 AM
[...] If this is the first time you do it, windows creates the necessary components for you to access System ( Desktop, start menu, explorer.exe My document) cd .. How to gain access to system account the most powerful account in Windows. « Alien Eyes [...]
H/ks by ardalan - Pearltrees
December 31, 2011 at 3:35 PM
Perfect on windows 7 ultimate. THANKS..
it just didn’t popup de second cmd, but i just waited until it past the time “at” and did the rest of the list.
Super.. Thanks
Jos
March 15, 2012 at 4:07 AM
I have read others comment. But I didn’t get any help. Will somebody up there help me to do my loggin so I could start doing it. I had been the whole day trying to do the adsense, but still I had failed. Please help
Inah Osman
March 20, 2012 at 12:04 PM
Hello everyone..!!.
)
Can anyone tell me how to make trojan servers completely undetectable 4rm All major AVs..(All crypters seem to be useless) Sorry for the out of the topic ques.
Thanks in advance..
yoyoyoyo
March 23, 2012 at 2:09 AM
Warning: Due to security enhancements, this task will run at the time expected but not interactively. Use schtasks,exe utility if interactive task is required (‘schtasks /?’ for details). Added a new job with job ID = 3
WHAT does that mean? (I am running as administrator)
cmduser
March 24, 2012 at 6:04 AM
Never mind, wont work on win 7
cmduser
March 24, 2012 at 6:05 AM
I did the exact same steps in my Windows 7 computer and it won’t work. It says “Access is denied” and I am the administrator.. Any help would be greatly appreciated
Jins Joseph
May 5, 2012 at 5:07 AM