Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Rhinorhino on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Forgotten Password
- Thread starter TechJB
- Start date
Guest_imported
New member
- Jan 1, 1970
- 0
There is a commercial package called Passware that will recover passwords for a wide variety of operating systems and applications. Check it out at:<br>
<br>
<A HREF=" TARGET="_new">
<br>
<A HREF=" TARGET="_new">
Somebody had this same problem here a week or two ago and used Lophtcrack and the report was it worked fine.<br>
<br>
I believe that they had to copy the SAM file with a DOS boot disk or something to that effect, though. The thread should still be here.<br>
<br>
Dan <p> Dan Moore<br><a href=mailto:mooredan@nospam.jddealer.com>mooredan@nospam.jddealer.com</a><br><a href= > </a><br>Tell me again why FORMAT C: won't work...
<br>
I believe that they had to copy the SAM file with a DOS boot disk or something to that effect, though. The thread should still be here.<br>
<br>
Dan <p> Dan Moore<br><a href=mailto:mooredan@nospam.jddealer.com>mooredan@nospam.jddealer.com</a><br><a href= > </a><br>Tell me again why FORMAT C: won't work...
waynemaples
MIS
I detail all the ways I know to reset or recover the Administrators password from freeware linux boot disk which has ntfs drivers and a nt overwrite utility (requires booting but easiest and FAST), commerical packages, do-it-yourself techniques including brute force dictionary attacks (guessing password).<br>
<br>
Even the syskey encryption of hashes in SAM are not a significant barrier.<br>
<br>
See <A HREF=" TARGET="_new"> <br>
"Recover Lost Windows NT Administrator Password"<br>
<br>
-Wayne
<br>
Even the syskey encryption of hashes in SAM are not a significant barrier.<br>
<br>
See <A HREF=" TARGET="_new"> <br>
"Recover Lost Windows NT Administrator Password"<br>
<br>
-Wayne
This method does not require third party sofware...<br>
<br>
01. Install an alternate copy of Windows NT.<br>
<br>
02. Boot the alternate install.<br>
<br>
03. Use Control Panel / System / Startup.. to change the default boot instance to your original install.<br>
<br>
04. In the original Windows NT folder, navigate to the \System32 sub-folder.<br>
<br>
05. Save a copy of logon.scr, the default logon screen saver.<br>
<br>
06. Delete logon.scr.<br>
<br>
07. Copy CMD.EXE to logon.scr.<br>
<br>
08. Shutdown and restart your original install.<br>
<br>
09. Wait for the logon screen saver to initiate. It will actually open a CMD prompt, in the context of the local system account.<br>
<br>
10. Type MUSRMGR, into the CMD prompt from step 09, to execute User Manager, and reset the Administrator's password.<br>
<br>
11. Delete the logon.scr from %SystemRoot%\System32.<br>
<br>
12. Rename the saved default screen saver, from step 05, to logon.scr.<br>
<br>
13. If you wish to keep the alternate install:<br>
<br>
Compress its' folder.<br>
<br>
ATTRIB -R -S -H c:\boot.ini<br>
<br>
Edit c:\boot.ini and change the text of the alternate installs 2 entries to ALTNT.<br>
<br>
14. If you wish to remove the alternate install:<br>
<br>
Delete its' folder.<br>
<br>
ATTRIB -R -S -H c:\boot.ini<br>
<br>
Edit c:\boot.ini and remove the alternate install's two (2) entries. <p> DougP<br><a href=mailto: dposton@universal1.com> dposton@universal1.com</a><br><a href= > </a><br>
<br>
01. Install an alternate copy of Windows NT.<br>
<br>
02. Boot the alternate install.<br>
<br>
03. Use Control Panel / System / Startup.. to change the default boot instance to your original install.<br>
<br>
04. In the original Windows NT folder, navigate to the \System32 sub-folder.<br>
<br>
05. Save a copy of logon.scr, the default logon screen saver.<br>
<br>
06. Delete logon.scr.<br>
<br>
07. Copy CMD.EXE to logon.scr.<br>
<br>
08. Shutdown and restart your original install.<br>
<br>
09. Wait for the logon screen saver to initiate. It will actually open a CMD prompt, in the context of the local system account.<br>
<br>
10. Type MUSRMGR, into the CMD prompt from step 09, to execute User Manager, and reset the Administrator's password.<br>
<br>
11. Delete the logon.scr from %SystemRoot%\System32.<br>
<br>
12. Rename the saved default screen saver, from step 05, to logon.scr.<br>
<br>
13. If you wish to keep the alternate install:<br>
<br>
Compress its' folder.<br>
<br>
ATTRIB -R -S -H c:\boot.ini<br>
<br>
Edit c:\boot.ini and change the text of the alternate installs 2 entries to ALTNT.<br>
<br>
14. If you wish to remove the alternate install:<br>
<br>
Delete its' folder.<br>
<br>
ATTRIB -R -S -H c:\boot.ini<br>
<br>
Edit c:\boot.ini and remove the alternate install's two (2) entries. <p> DougP<br><a href=mailto: dposton@universal1.com> dposton@universal1.com</a><br><a href= > </a><br>
MasterRacker
Active member
See tip #1984 on <A HREF=" TARGET="_new"> This refers to a freeware program that allows you to simply boot the server to a floppy, open the SAM and change a password. As long as you're not using syskey encryption, it's quick and simple. <p> Jeff<br><a href=mailto: masterracker@hotmail.com> masterracker@hotmail.com</a><br><a href= > </a><br>
- Status
Similar threads
- Locked
- Question