resetting admin password on sbs 2003 - i tried utilman.exe but there's no way to activate it?

trying to reset the password on an SBS 2003 box.  booted off linux USB, changed cmd.exe to utilman.exe and rebooted.  BUt there's no accessibility settings to start utilman : (

any ideas?

we tried windows + U and that didn't work either.
BeGentleWithMe-INeedHelpAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
comfortjeaniusConnect With a Mentor Commented:
Can you remote to the server when it is on?  If so you can open command prompt with elevated privileges.
First you will have to make sure Remote Registry is running:
Type:
sc \\<remote computer> start RemoteRegistry

Open in new window

Plus you want to download PsTools

You can install it in the c:\\windows\system32 folder location or where ever you want. Prime example mine is located in C:\\users\<username>\Documents\Software\Pstools. You will need to navigate to the folder location to perform the commands from the cmd prompt.

In the cmd prompt type:
pspasswd \\<remote computer name or ip address> accountname <newpassword>

Open in new window


For domain accounts
Type:
pspasswd  Domain\Account <newpassword>

Open in new window

0
 
BeGentleWithMe-INeedHelpAuthor Commented:
thanks.  I am going to try to remote into it as you describe.

I have erd commander and can boot into that / browse files on the server.  no way to rename anything else to get a command prompt or similiar, huh?  the app that runs the login page?  Replace that with CMD?  anything?!  I can browse the machine's files.  Not really sure what the server name is (this is a wacked situation - they can't reach their it guy for months now and want to get into the server.  browsing server, there's no new files in it, machines are in workgroup, dhcp is from router, sbs box is single nic, dns is public dns servers from ISP, etc.  box really isn't being used for ANYTHING!

easiest woul dbe to wipe drive, buit now it's a learning curve.
0
 
comfortjeaniusConnect With a Mentor Commented:
You can try Ophcrack

or you can try and use a Ubuntu Live CD to change the password Change or Reset Windows Password from a Ubuntu Live CD
0
SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

 
BeGentleWithMe-INeedHelpAuthor Commented:
Although those tools deal with local accounts not domain active directory accounts?  That said, we used erd commander and it's locksmith app to change local admin account and got in but I thought that wouldn't work?  I didn't see other users just administrator
0
 
Giovanni HewardConnect With a Mentor Commented:
Copy %SystemRoot%\NTDS\NTDS.DIT, use NTDSXtract (dsusers.py module), or Windows Password Recovery, and try to crack a domain admin user hash using the online rainbow table here.

If that fails, then you'll need to search out additional rainbow tables or manually crack the hash.

Or use Passware Windows Key Enterprise.
0
 
BeGentleWithMe-INeedHelpAuthor Commented:
Thanks for the tips, but again, I was able to reset the local admin password with ERD commander / locksmith and that got us back in the machine and able to completely administer it.  I wouldn't have thought that would work - but it did.
0
All Courses

From novice to tech pro — start learning today.