WOW, what great information. Now that I have read about the passwords 2K/XP use, I ran the cachedump program and found an account on my pc with a hashed (I'm assuming) password. How do you decrypt that string of characters. This is an XP machine. The logon account is not a local account. I tried JTR but found it to be too complexed (playing with it for an hour or so). Any help?