Recover Local Administrator password

Dear EE member,
I have three pcs shifting from factory to our office with windows 2000 Pro Operating
System. I have changed one of the windows 2000 administrator name from 'Administrator'
to 'John' and checked the 'Required user to press Ctrl-Alt-Del before logging on' in
Control Panel|Users and Passwords|Advanced Tab|Secure Booting. Initially, we can
login the system without password.

The nightmare come, because my wrong assumption that the admistrator password is blank. Therefore, I cannot login to this windows 2000 pc anymore.

Finally, I forced to clone the windows 2000 with ghost utility and reconfigure again all
the user setting, since these three pc belong to the same administrator name, I can
perform this action.

But, is there any alternative/way to detect my administrator password.

Thanks.

Rgds,
Peter


 
peter_chongAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
Rich RumbleConnect With a Mentor Security SamuraiCommented:
I just noticed that your ghosting the PC's from an Image, if you run Sysprep before the image is taken (typically this is the last thing you do, sysprep shuts down the PC and then you take your image) http://www.microsoft.com/downloads/details.aspx?FamilyID=0c4bfb06-2824-4d2b-abc1-0e2223133afb&DisplayLang=en
When you place that image on the PC, all the software, drivers etc are installed, the only difference is you now go through the profile and settings, such as making a new admin password and setting timezone, network etc... just like the last steps when setting up a PC via the cd-rom. http://en.wikipedia.org/wiki/Sysprep
-rich
0
 
JamesTX10Connect With a Mentor Commented:
Hi peter_chong,
Check out http://www.petri.co.il/forgot_administrator_password.htm

JamesTX10
0
Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

 
JamesTX10Commented:
lol nice timing
0
 
sirbountyConnect With a Mentor Commented:
0
 
sirbountyCommented:
@JamesTX10 - yep, that's why they should show seconds in the time stamp...lol
0
 
Rich RumbleConnect With a Mentor Security SamuraiCommented:
Those are reset utilities, which will work for your situation, you could use Cain&Able to import the SAM file from that HD, mount the HD as a secondary and add the SAM hashes to the "cracker" to recover the current password. Resetting will typically have no deleterious effects however and is much faster typically. If possible, do the rest on a ghosted version of that PC so you don't risk messing anything up on the current pc, just in case.
-rich
0
 
JamesTX10Connect With a Mentor Commented:
This looks easy. http://www.loginrecovery.com/

Free if you can wait.


JamesTX10
0
 
orangutangConnect With a Mentor Commented:
LoginRecovery is the best. I made a program to convert LoginRecovery's dumps to valid dumps so other programs can use it such as http://lcpsoft.com/download/lcp504en.zip

But that's only if there's only one administrator account.
0
 
peter_chongAuthor Commented:
Dear EE members,
If I don't want to use any complicated tools, is there any command that I can use
when the computer is boot up by startup floopy.

E.g: delete some files/change parameter in registry/ ...

If not, what is the free tool that is suitable for beginner like me to recover the password?

Thanks.

Regards,
Peter
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.