Well, I would have to say l0pht is used alot, and by most people.

if remote, and admin group access, sam dumps are all good.
but if remote and only normal user account access then problems
.

So if i only have a normal account i give my ftp crack a spin.
IISFTP opens password attacks with open arms, it dosnt dissconnect after X attemps and Admin group accounts can be cracked with it (even Administrator) remotely.

so i just upoad it, let it run localy (or against another comp on the remote lan) sit back and crack another beer open. although it is quite slow at the moment becuase it only uses single thread/sockets (approx 400/sec on Celeron 500 laptop).