Reset Admin Password XP

passcert23

I had a ticket today where I had to create a local account for a user. The computer is not connected to the network. I tried the default login/pw but it would not take it. After three attempts it locked me out. I am relatively new at my job so this could had been an old image with a different pw. I talked to my coworker and they told me to reimage it. Is there a way to reset the admin pw without running any type of media? I also read that you can reset it in the command prompt when you boot into safe mode. Anyone experience with this?

dynamik

Boot from this: KON-BOOT - ULTIMATE WINDOWS/LINUX HACKING UTILITY

Zartanasaurus

I've always done it with UltimateBootCD.

tiersten

dynamik wrote: »

Boot from this: KON-BOOT - ULTIMATE WINDOWS/LINUX HACKING UTILITY

Dynamik is alive!

arwes

I usually use Ultimate Boot CD, but if it's a case of just simply retrieving the password, I had a great experience with the L0phtCrack live CD. The person who configured our backup Exchange server couldn't remember what he used for a local admin password. L0phtCrack had it figured out in just a few seconds. Really useful program, but potentially dangerous in the wrong hands.

jibbajabba

Unfortunately we would be out of luck with any of those tools unless we'd "hack" some raid driver into the isos

subl1m1nal

Gomjaba wrote: »

Unfortunately we would be out of luck with any of those tools unless we'd "hack" some raid driver into the isos

You can slipstream the RAID drivers using Bart. I believe there is an option when setting up an UBCD4Win.

kriscamaro68

passcert23 wrote: »

I had a ticket today where I had to create a local account for a user. The computer is not connected to the network. I tried the default login/pw but it would not take it. After three attempts it locked me out. I am relatively new at my job so this could had been an old image with a different pw. I talked to my coworker and they told me to reimage it. Is there a way to reset the admin pw without running any type of media? I also read that you can reset it in the command prompt when you boot into safe mode. Anyone experience with this?

Ophcrack

Paul Boz

kriscamaro68 wrote: »

Ophcrack

Ophcrack is a password brute forcing tool. Unless you have the password hashes Ophcrack is worthless. I know you said no media (not sure why) but I second Dynamik's recommendation to use Konboot. It's free, takes two seconds to burn, and even less time to use.

phoeneous

Winternals ERD Commander, specifically the locksmith tool.

Chris:/*

Here are some specific examples, of how to crack the Admin Password, hope this helps. I am assuming you have no other account access on the system so you can skip the first example.

BTW never send off system passwords to recovery service sites like the one at the bottom of this link. You are inviting attempts on your network.

How to Hack or Crack a Windows XP Administrator Password

Monkerz

Or, you can utilize your XP disc and do the following, to reset your password:

1. Place your Windows XP CD in your cd-rom and start your computer (it’s assumed here that your XP CD is bootable – as it should be - and that you have your bios set to boot from CD)

2. Keep your eye on the screen messages for booting to your cd Typically, it will be “Press any key to boot from cd”

3. Once you get in, the first screen will indicate that Setup is inspecting your system and loading files.

4. When you get to the Welcome to Setup screen, press ENTER to Setup Windows now

5. The Licensing Agreement comes next - Press F8 to accept it.

6. The next screen is the Setup screen which gives you the option to do a Repair.

It should read something like “If one of the following Windows XP installations is damaged, Setup can try to repair it”

Use the up and down arrow keys to select your XP installation (if you only have one, it should already be selected) and press R to begin the Repair process.

7. Let the Repair run. Setup will now check your disks and then start copying files which can take several minutes.

8. Shortly after the Copying Files stage, you will be required to reboot. (this will happen automatically – you will see a progress bar stating “Your computer will reboot in 15 seconds”

9. During the reboot, do not make the mistake of “pressing any key” to boot from the CD again! Setup will resume automatically with the standard billboard screens and you will notice Installing Windows is highlighted.

10. Keep your eye on the lower left hand side of the screen and when you see the Installing Devices progress bar, press SHIFT + F10. This is the security hole. A command console will now open up giving you the potential for wide access to your system.

11. At the prompt, type NUSRMGR.CPL and press Enter. Voila! You have just gained graphical access to your User Accounts in the Control Panel.

12. Now simply pick the account you need to change and remove or change your password as you prefer. If you want to log on without having to enter your new password, you can type control userpasswords2 at the prompt and choose to log on without being asked for password. After you’ve made your changes close the windows, exit the command box and continue on with the Repair (have your Product key handy).

13. Once the Repair is done, you will be able to log on with your new password (or without a password if you chose not to use one or if you chose not to be asked for a password). Your programs and personalized settings should remain intact.

Hyper-Me

I doubt its a "security hole".

Afterall, you can press Shift+F10 at various stages in the Vista/7/Server 2008 install processes and get a command prompt as well. I think its there for administrative use, troubleshooting, etc.


for example, you have to use it to attach a VHD when installing an OS into a native boot VHD.

Monkerz

Hyper-Me wrote: »

I doubt its a "security hole".

Afterall, you can press Shift+F10 at various stages in the Vista/7/Server 2008 install processes and get a command prompt as well. I think its there for administrative use, troubleshooting, etc.


for example, you have to use it to attach a VHD when installing an OS into a native boot VHD.

I kinda wanted to sound cool. There goes my hopes and dreams...

undomiel

It's also a really handy way to check the installation log files to find out what specifically is causing an install to fail.

tiersten

Monkerz wrote: »

I kinda wanted to sound cool. There goes my hopes and dreams...

The attacker needs physical access to the machine to do this so its already game over before they had even started

fly351

phoeneous wrote: »

Winternals ERD Commander, specifically the locksmith tool.

+1. I haven't tried it on win7, but it didn't work on Vista.