Posted: 1/16/2003 9:14:14 AM EDT
|
Somehow, Windows 2000 has lost my username/password. When I try to log on, it tells me that they are incorrect. Is there any way to get around this? Can I get into a command prompt and rewrite the file that stores the username/password? I've tried everything I can think of, including "Safe Mode". Nothing works. |
|
Quoted: If this helps, the file that stores your password ends in .pwl. In 95/98/Me you could delete that file in DOS and it will ask you to create a usename/pwd next time you start up Windows. Don't know if this will work in 2K though. Heh, you funny. Yes, we all know of win9x amazing security. Bro, I've worked on SO many 2000/xp machines, but I have never heard of this before! There must be more to this story, there always is. [:P] Is this a local machine login? Has this computer ever been part of a domain? Your going to need a reload or get a password cracker. |
|
You probably already know this but I'll tell ya anyway. If your logging onto a network (domain) then there is nothing locally that you can do except log onto the local computer vice network login. Just change the drop down menu to the non-domain lookning name. In order to gain access (authenticate) onto the domain you need a valid username and P-word and those are maintained at a central server (Active directory). If your logging on locally you can always log on as administrator. How do you install software? Log on as administrator right? Once logged on you can change the username and P-word of any users, or create a new user. Sometimes during install people opt to not enter a p-word for administrator. Try username administrator and leave the password field blank. If this works then you and Tat have to do a chrony/gelatin test of 45 Super out of a 11.5 bbl AR.[;)] |
|
Quoted: Quoted: If this helps, the file that stores your password ends in .pwl. In 95/98/Me you could delete that file in DOS and it will ask you to create a usename/pwd next time you start up Windows. Don't know if this will work in 2K though. Heh, you funny. Yes, we all know of win9x amazing security. Bro, I've worked on SO many 2000/xp machines, but I have never heard of this before! Good :) I've never lost my password for XP yet, so I didn't have to find a way around it yet. |
|
Format C: and reload Win2K. [B]or[/B] Windows 2000 Pro Password Recovery The Windows is infamous for its compromised security. Frankly it is loaded with security loop-holes. With its latest Windows 2000 Professional Edition, it is not that hard either to break into the system as long as you have physical/logical access to the machine and know the right modus operandi . Required tools to achieve Administrator access without the Administrator password on Win2k: A) Physical access to the target machine. B) Read/write access to the system partition. A dos floppy will work for FAT drives or you will need NTFSDos Pro or equivalent for NTFS drives. C) One of the many floppy based programs ( NT Passwd ) that will change the Administrator password. D) Familiarity with the AT command. E) Be able to log into the target machine. It doesn't matter the level. Steps: 1. Boot the machine with the read/write floppy (NTFSDos Pro or equiv.) and copy the original SAM file to the floppy. Keep it safe because this is what will put the machine back the way it was. 2. Shut down and then boot with the Administrator password changing floppy. Do not turn off syskey, just change the password. Syskey will encrypt the new password when you boot win2k next time and it will recognize it fine. 3. Shut down and boot into Win2k. Log in as Administrator with your new password. Bring up a command prompt and run an AT command like this one: AT 16:00 /interactive cmd In this example I'm telling the NT scheduler to bring up an interactive command prompt at 4 pm. With me logged in as Administrator creating this event, it will run with Administrator privileges. Be sure to set the time about 15 minutes from when you're doing this. Now you must accomplish steps 4 - 5 and be logged back in as yourself before this time. 4. Shut down the machine and boot with the read/write disk. Copy the original SAM file back to the machine, overwriting the SAM file you had changed. This is why you need write access. You are putting the machine back to its original security state. You can do this because this is how MS repairs registry problems. 5. Shut down and reboot into Win2k. Log in as your normal self. Wait for the command prompt to show up. When it does, anything run from the prompt will have administrative rights on that machine. I'll leave it up to the reader to complete the exercise of using the Administrator access to crack the password and or whatever other fun you wish to have. or try here [url]http://home.eunet.no/~pnordahl/ntpasswd/[/url] or this one [url]http://www.securiteam.com/tools/6T00D0A35S.html[/url] |
|
Ok guys, who here doesn't have the Linux based NT password reset disk? Yep, it works for 2000, I tried it. It will allow you to reset any local password on the pc, even the Admin password. Google should find it for you. No Admin should be without this tool. Ok, I said it.[;)] ByteTheBulet (-: |
|
Quoted: Ok guys, who here doesn't have the Linux based NT password reset disk? Yep, it works for 2000, I tried it. It will allow you to reset any local password on the pc, even the Admin password. Google should find it for you. No Admin should be without this tool. Ok, I said it.[;)] ByteTheBulet (-: Hmmm sounds bogus. Got a link? I typically would reinstall Windows 2000 in a temp directory, then run Lophtcrack on the SAM to get all the accounts and passwords, then just reboot, and log into the original OS install. |
|
Quoted: No link, my jobs wonderful firewall doesn't like "hacker" sites so I cannot find one right now. Ironic that I cannot get to it, huh?!? But I do have the .exe file that creates the boot disk. It is 1.43mb in size. ByteTheBullet (-: Can you email me that file??? |
|
Quoted: No link, my jobs wonderful firewall doesn't like "hacker" sites so I cannot find one right now. Ironic that I cannot get to it, huh?!? But I do have the .exe file that creates the boot disk. It is 1.43mb in size. ByteTheBullet (-: I think you should share that with us [:D] Would ya mind? -Gloftoe (deals with W2K enough to warrant it!) |
|
Hey, can you email it to me as well??? [email protected] Thanks! |
|
Me three please! [:)] |
|
Wow great info. BTW, it looks like Gaspain already provided a link for the Linux boot disk. Also, his second link contains an ISO file to burn bootable CD with a PW recovery program... Quoted: ***** or try here [url]http://home.eunet.no/~pnordahl/ntpasswd/[/url] or this one [url]http://www.securiteam.com/tools/6T00D0A35S.html[/url] |
|
Quoted: BTW, it looks like Gaspain already provided a link for the Linux boot disk. Also, his second link contains an ISO file to burn bootable CD with a PW recovery program... Yeah-- I already downloaded all that too! [:D] I just wanted a version that is |
|
I used the boot disk.... it works on desktops no problem. Wont work on my servers, because it does not have built in SCSI drivers for a lot of the more complex (raid) SCSI cards. Does not work on XP. Works on Windows 2000 and NT4 (I verified) You dont even need to know the name of the local admin account, if it has been renamed. Brou - this will solve your dillema. |