Windows Xp user type

[The Duck]

Couldn't you just do this with an ordinary batch file?

[new_b_l33t]

Could i do it with a batch file? i haven't really worked very much with them before any good tutorials out there you could point me to?

todob1:
Are you talking about the help file that allowed a cracker to put malicous code on a website and delete files off of your computer? They demonstrated that on The screen savers (which now SUCKS) a while ago i think. If thats not what you are talking about could you please elaborate a little bit. Thanks a lot though for actually trying to answer my question i sincerely appreciate it.

[blaize]

A batch file is just a series of dos commands. When you run the file, it acts just as if you typed the contents of the file into a dos prompt. You can use any text editor to make them and then name the file xxx.bat.

In a third (scandalous) way of accomplishing the same thing, you could write a program to emulate the windows login screen to capture the admin password. Once it gets the password it would have to crash the computer or give a phony error message saying to restart the computer. Otherwise the admin would realize that it is not his account that he just "logged" into.

[new_b_l33t]

Is it possible to create a file that emulates commands from the user. I.E. start, control panel, users, etc. i could put it in the startup folder so that it runs then executes the commands at a time when i know for sure nobody is around (3:00 am on a monday night for instance.). With the batch file approach are you saying that i could gain admin access using it, or that i could use a batch file to execute whatever commands i wanted to execute as admin on the system. Another idea i just though of would be to install a rootkit, and get him to just switch users instead of signing off so that it keeps running? I'm just kindof shooting ideas around so if some of this sounds unsensical i apologize.

[The Duck]

I think you can make admin accounts from the Command prompt, but you have to have admin access. So what you would do is make a batch file that runs the necessary commands and put it in the startup folder on the admin account. I could be wrong about all this, but I actually think it might work.

[TheSpecialist]

I don't get why you would say that your looking for a challenge then go on to talk about rootkits & stuff. The whole idea behind trojans in general is that it pretty much does the job for you... only rootkits take it even yet another step further by replaceing files, hideing the existance of files, geting rid of logs, and do various keyloging and sniffing routines.

[new_b_l33t]

sorry specialist, about 5 seconds after i posted that i realized how incredibly uncool and unchallenging it would be to use a rootkit or trojan. The duck, AWESOME!! if you can make user accounts from the command prompt that is sweet and pretty much a solution, thanks a LOT!

[The Duck]

Well, like I have stated before, I am not entirely 100 percent certain, but it could work. Just do some research on batch files and different commands used in the command prompt.

[Tiger Shark]

The net user command allows the management of users from the command line.... However, you can't create a user with greater rights then the current context you are in nor can you assign users to groups that have greater rights than your current context.

So unless you find a way around that piece of security you are just going to make a bunch of useless accounts which he will notice piling up in his management console.....

[the_JinX]

If the windows is installed on an ntfs partition, your dads (admin) account is propably not writeable (if even accessable) from your account.

so to place that script you would, just like with the sam file need to do it with an ntfs capable boot disk