Paralys Posted January 11, 2007 Share Posted January 11, 2007 Ok, I'm sitting on a rather large network right now and I'm slowly working on getting into it and creating a new account with administrator rights. The account im using on it isnt my own so thats not to be worried about. The admin of said network is stupid (I won't say too stupid, nor will I underestimate anyone) but he's not too bright. I have a command prompt which he had originally removed from the menu (which coulda been harder to get to if he had killed off the Run option too, but I just wrote a quick .bat to open it @ echo on command @ echo off Now, I'm in the command prompt, and I know this sounds a bit black hat, but I need to kill a task, one by the name of Mcshield.exe (you probably can figure out what it is if you think about it.) Killing tasks is disabled through Task Manager, though I think it'll work through command prompt. Hope this doesn't get me flamed. (Trust me, I'm being smart and not doing anything malicious, this is just out of curiosity to see if I can do it.) Edit: :x It's blocked in this too, i found the command tskill and its still blocked, If anyone has any suggestions, then throw em out there, if not, delete this thread. Edit 2: Well, the BIOS isn't blocked so I can still get into that. Theres an option in there "System Event Log" which I can look at, clear and mark all the entries as read. Will this log tell if i boot in safe mode? (I need to clear it afterward if it does.) Edit 3: (Yeah, lots of edits, I'm updating this as I'm doing it.) Well, Edit two is the only one that matters right now, everything above it is irreleveant, when booted in Safe mode with Networking, the box doesnt even start Mcshield.exe, meaning I don't even need to find a way to work around it. I still need to know if that system log will record me logging into safe mode, which is what I'm about to check, also, I need to know if NT and LM password hashes for the entire network can be accessed if you're on a box that is on the network and have admin privelages. Still hoping I don't get flamed for this one, I gotta let my hat get a little tinted every once in a while huh? :D Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.