Win 2000 admin password, help needed
Page 1 of 2 12 LastLast
Results 1 to 10 of 15

Thread: Win 2000 admin password, help needed

  1. #1
    Senior Member
    Join Date
    Oct 2003
    Posts
    149

    Win 2000 admin password, help needed

    Hello everyone, been a while since I've really been posting here. Anyway...

    At my school (I'm 17 as of January) there is a computer in the studio that the tech crew uses every day for our video announcements in the morning. However, because of previous [physical and password security] problems the admin account's password has been changed by some one who has not come forward. Formatting is out of the question...

    Now, it's been a while since I've done windows password stuff, and my knowledge is very outdated, and fuzzy. I basically have no idea how to get back this account... whoever did this really messed up the computer, putting what I'll describe as 'awkward' images all over the drives.

    I felt I should give a story so no one thinks I'm trying to break into my school's network.

    So, if you haven't guessed by now, I would very much like to know how to change the password, or at least get the password so it can be changed, the system can be fixed, and we can finally update our virus protection.

    As far as I remember, passwords are stored in PWL files...in some directory, and passwords are encrypted by... something...

    Any help would be awesome.
    Hi.

  2. #2
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,324
    NT Offline Password and Registry Editor (CD/Floppy) should do the trick as far as resetting the Admin password. And in Win2K passwords are stored in the SAM and Registry.
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

  3. #3
    Senior Member
    Join Date
    Oct 2003
    Posts
    149
    Thanks, I'll be sure to try that.
    Hi.

  4. #4
    MsMittens > why don't you tell him to search the forums? the whole forums contain a lot of threads about removing / changing / retrieving windows 2000 and XP passwords....

  5. #5
    AO Ancient: Team Leader
    Join Date
    Oct 2002
    Posts
    5,197
    why don't you tell him to search the forums?
    'Cos she's a nice lady??????
    Don\'t SYN us.... We\'ll SYN you.....
    \"A nation that draws too broad a difference between its scholars and its warriors will have its thinking done by cowards, and its fighting done by fools.\" - Thucydides

  6. #6
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,190
    Formatting is out of the question...
    Why? if you can get into the system and save the data, you should be able to format it afterwards. After all this isn't some heavy duty production machine?

    Also................as the system has obviously been totally compromised and own3d, it would be classical security policy to do this as a matter of course? What else has this miscreant done to it?

    You do realise that this is not just a password issue, I hope This is SECURITY...............format and re-install would be my choice, otherwise you will have to VERY CAREFULLY scan for anything else that might be on the box? As you are an educational establishment, the software to do that will cost you.

    whoever did this really messed up the computer, putting what I'll describe as 'awkward' images all over the drives.
    I will decline to "rise" to that bait

    It serves to demonstrate that you need to clean the system and secure it. Format and re-install is the best method.

    And make sure that there is adequate physical security
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  7. #7
    Member
    Join Date
    Aug 2004
    Posts
    95
    Mr.Drakain Zeil , If your problem is true then try loptcrack, it should give you the admin password without any problem. You dont need to be worried about your SAM, it will locate and do the work for you.

    I dont know what OS your system has, this workd very well for 2000 and above. I have used at several vocations, it has never let me down, either for a standalone machine or a machine in network .

  8. #8
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,324
    LC5 is ok but rather expensive for a single operation. Cain and Abel is a quick and cheap (free) alternative as would be even SamInside (at $40USD).

    And I just posted the original link because I had been talking with a friend about it and had it handy.

    As for the ethics of this, that's his responsibility. The standard view still applies: if you get into crap for this, it's your own issue and don't whine to us. Anything found on AO can be used both ways (good or evil). So we leave that to the original poster to deal with.
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

  9. #9
    Member
    Join Date
    Aug 2004
    Posts
    95
    LC5 is free for trial, it works well for local system. They dont charge anything for 30 days and after its upto you to registser or not.

    I have Cain & Abel, i def. feel lc5 is worth.

  10. #10
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,190
    Hmmmmmmmmm,

    I am not really worried about the ethics here, just the security angle. My personal view would be that if I had a machine that had been that seriously compromised I would want to do a format and re-install.

    Recovering passwords is for when you have forgotten them. NOT for when someone has hacked your box and changed them.

    To put it another way, say I went to this machine and recovered the password and control, then the bad guy uses one of his backdoors to compromise it again..................I will have done one hell of a lot for my street cred?

    just a thought

    EDIT: Drakain~ what I am saying is be sure to cover YOUR a$$..............warn them that the correct procedure is to wipe and start again, and that you cannot accept responsibility for anything else that might be on that box.

    Hey, you are trying to do them a favour? please make sure that it does not come back and bite you on the bum...............there are some pretty ungrateful people out there mate!
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •