Questions

Is there anyway possible to bypass the password in Windows XP

+
1 Votes
Locked

Is there anyway possible to bypass the password in Windows XP

I am a network administrator in a small technical school. I am asked many times how to use a computer that the admin's password has been forgotten. (This is on the student's home computers) To the best of my knowledge and extended research, the only fix is to reformat and install the OS. Does anyone know of a better soultion.
  • +
    0 Votes
    seanferd

    Sorry. Policy, roughly as follows:

    The members of TechRepublic - A Resource for IT Professionals and Riff Raff, will not assist anyone in the recovery of lost passwords. You may have a legitimate reason to recover a password. However, we cannot verify your motives and will therefore not assist anyone in what may be an attempt at gaining unauthorized access to a computer system. Due to the open nature of this forum, any assistance given to help circumvent security measures, even for legitimate purposes, would be available for unscrupulous individuals to use for illegitimate purposes. This is a risk that we the members of TechRepublic will not take. Please do not ask questions of this nature on TechRepublic. If you have a legitimate need to circumvent a password scheme, please contact the vendor for the software / hardware and request their assistance.

    However, an internet search of this site may turn up a couple of articles.

    +
    0 Votes
    OH Smeg

    The members of TechRepublic - A Resource for IT Professionals, will not assist anyone in the recovery of lost passwords. You may have a legitimate reason to recover a password. However, we cannot verify your motives and will therefore not assist anyone in what may be an attempt at gaining unauthorized access to a computer system. Due to the open nature of this forum, any assistance given to help circumvent security measures, even for legitimate purposes, would be available for unscrupulous individuals to use for illegitimate purposes. This is a risk that we the members of TechRepublic will not take. Please do not ask questions of this nature on TechRepublic.

    If you have a legitimate need to circumvent a password scheme, please contact the vendor for the software / hardware and request their assistance. E.g. Windows XP password recovery issues should be taken up with Microsoft's technical support, Phoenix BIOS password recovery issues should be taken up with Phoenix Technologies, etc.. To those viewing this post: Please DO NOT respond any further to this thread.

    This template has been released under the GNU public license and you are encouraged to use it as a standard reply for questions of similar nature, provided that you make any modifications available to other users.

    Keep telling that or to go to the System Maker and pay them to get around the Password. Either way it will encourage them to remember what they use as a Password and the more that they pay the more it will reinforce the answer.

    Col

    +
    0 Votes
    .Martin.

    one of the best creations of the 90's.

    if you were to use this tool, you would be able to find many solutions to this problem... not that I endorse this behavior

    {this post is no way intended to offend... even if it may come over that way... in which case, sorry}

    +
    0 Votes
    SPC_TCOL

    Google would be one way, or why don't you ask someone from a different school nearby?

    If I would have this problem, by the way I had it for one of my servers, but I took the whole thing offline, and put up a new one, with a new HDD, then I would ask some other Admins from the nearby university.

    You know, use your school email, to prove that you are allowed to do this stuff, and give them a phone number in your school in case they want to check that you are allowed to do this stuff.

    Then there would be maybe a chance that they will give you a hand.
    To ask here on the internet is like asking someone to give you a key to break into something.

    +
    0 Votes
    w2ktechman

    Cracking PWds -- Edited
    Edited to add new top secret monitor information (flat panel), and to fix some typo's

    Please read my previous message first. This is a crack into a computer and its files and folders. However it is not meant to get into protected files (such as encrypted, or alternate installed SW (3rd party)).
    This is only intended as a guide. Please check out the laws in your area before attempting to crack into someone else?s system. I cannot stress this enough. Continue at your own risk!!! Don?t forget, it is not too late to back out and reconsider (best option)!

    Ok, Cracking a Win 2K/XP administrator PW and name (and enabling the account if disabled). This will give you full access to the system with unlimited permissions. If you are told that you do not have permissions, you can GRANT YOURSELF permissions, as this is a SUPER USER account.

    First, you will need some HW and basic tech skills.
    1. Antistatic wrist strap
    2. Iron or Steel rod 3/4 to 1 foot long and 1/2 to 3/4 Inches round.
    3. Electrically conductive gel
    4. A new spare HDD (within the last 3 years)
    5. A keyboard manufactured after 1997
    6. A grounding wire -- up to 5 feet
    7. A set of screwdrivers (small) with Philips, flat head, and Torx tips (or 3 small screwdriver sets)
    8. Small hammer (not required but useful)

    Ok, before you begin, put on the antistatic wrist strap. I cannot stress this enough. Follow its instructions to 'ground' yourself. But later this will not be enough, you will use the grounding wire for the more intense part.

    Get your screwdrivers out, along with the spare HDD.
    Open up the HDD. Note there will be screws under the labels. You can press down across the label to find the screw holes.
    You need to pull out PLATTER 1 (top) from the HDD, and the magnets need to be removed from this drive.
    Keep these handy.

    Start the computer, but do not attempt to log on. Press Ctrl -- Alt -- Del. Type in any random set of letters and/or numbers (not special characters though). You MUST do 13 characters though, this is the key. There is a 'special' 'hidden' 14th character that you will need to access.
    Use a small flat head screwdriver in between the P and O keys (funny story, they added it here for Override Password -- see the humor?). They added a special chip under/between these keys on all keyboards manufactured after 1997. This is a little known fact and very hard to obtain info (I can get into big trouble for posting it if they find out who I am). If you are unsure about your keyboard age, look underneath it. It should have a manufactured date on a sticker. If you cannot tell, go get another keyboard.
    Back on point, use the screwdriver to 'pop' the chip. If you did not hear a pop, try again. It is a small chip that is directly under and between the O and P keys. I prefer using a small hammer with not too much force here, but not using one should work fine.
    If you had 13 numbers and letters, you should see a 14th one flash quickly, but it is so quick that I rarely see it myself. The boot sequence may hang here. This is what should happen. Ok, power off the system.

    Open the case and unplug the HDD (boot drive if multiples exist). Then remove the drive, taking precaution against damage.

    Now with the boot HDD in one hand, grab the 1st platter from the spare drive. Place the platter underneath the boot drive (by the board and chipset). On the top, use BOTH magnets in a clockwise motion on the top of the boot drive. You must make at least 4 complete passes, but 6 is better. Since Windows was told to 'unlock' the password (via boot characters above), it is free to replicate on all platters and 'jump tracks'. That is why we need the platter underneath. And being the first platter means that it is the best possible platter to install it on.
    Now put the second HDD back together being careful not to damage it. This should be put back into your machine to keep the PW until later, but it is not needed right now.

    Ok, now is the tough part. We need to unlock the ADMIN account and reset it to administrator (if it was changed and disabled). To do this, on the boot drive look for where the platters all meet. There should be a screw or nut holding them all together. You need to 'ding or dent' very LIGHTLY on the top of the HDD case, away from the magnets and HDD heads. Some people like to put it at 180 degree from the arm for the heads. It should be visually dented, but not interfere with the HDD operation.

    Now the HDD and Windows need to both be synchronized with this new PW mess that we created. The PW is probably floating around randomly on several platters. So install the boot drive back into the computer. Now get the small flat head screwdriver ready.
    Boot the computer (it may make a bit more noise than usual, but do not worry.
    OK, for a few seconds this should display on the screen "BIOS Revision". Look closely at the "S" in BIOS. Looks a bit off or not normal doesn?t it (requires really close investigation, sometimes it has been reported that someone has to look through several boots to notice it). Ok, this S is a keyword for "Synchronize" after the PW unlocking. This gets triggered in the BIOS whenever the O and P keys were tampered with.
    Anyway, use the flathead screwdriver on the S on the monitor. To get it right, you may need to try several times. I suggest a couple of reboots to get setup properly.
    If this is an older monitor (CRT) you may want a small hammer to aid.
    Without too much force, you want to 'punch' the "S" in BIOS out. Quickly turn off the computer. Note: this is an update and highly restricted information. On all tft, and lcd monitors, the crack that is created from punching the ?S? out is automatically fixed on the next monitor boot. On the next monitor boot the flat panel sensors indicate this activation and a gel will spill across the top corner. All you need to do is wipe it dry with a micro-fiber towel and it will be fixed. Newer monitors are better at this, and hold enough gel to do this operation 3 times before a refill.
    Now for the final preparation before you obtain full access to the system. You will need a good ground so get out the grounding wire. Tie it to the computer case if another good ground is not close by. The best ground would be the 3rd (or grounding plug) in the wall socket. Bare about 1/3 feet of the other end and tie it around your ankle. Use the electrically conductive gel all around your hands and ankle (where the grounding wire is attached).

    This step may take several tries, but it will be well worth it when done properly.

    Turn the system on and very quickly plunge the metal rod into the power supply of the computer. A small hammer to help may be needed. BUT be careful as not to plunge it too far, we are looking to get a 'spike' not destroy the computer.
    WARNING: Do NOT wear gloves!!! We need the extra grounding to do this properly, or else it may destroy the computer and put you at risk!
    If you did not feel a slight jolt (very slight), try again with a little more force.

    Ok, when done properly, clean up. Now restart the computer. At logon enter the username ADMINISTRATOR and for the PW type "P_W_R_E_C_O_V_E_R" and press enter. Yes, those are underscores.

    You now have full access to the system

    +
    0 Votes
    seanferd

    Post it visibly. Hand it out with course materials.

    +
    0 Votes
    w2ktechman

    and please dont forget to pay me royalties (I mean donations) for this!

    +
    0 Votes
    seanferd

    Get on it. Can't just count on having published it. :0

    +
    0 Votes
    mamies

    Does not work why would you tell me to do this, Now my computer wont even turn on and smells like burning plastic hahaha. I really want someone to try this lol

    +
    0 Votes
    OH Smeg

    You didn't follow the instructions properly.

    He said be genital but Firm and he did say you don't want to destroy the computer.

    OH anyone know who W2K is and if it is a He or a She?

    Col

    +
    0 Votes
    mamies

    But they sure come up with some really good advice.

    +
    0 Votes
    seanferd

    <i>genital but Firm</i>

    :^0 :^0

    +
    0 Votes

    I have had a rash of people aksing because they had forgotten their own passwords and had not made a recovery disk which must be made before the password is forgotten. It was not intended for any neferious purposes. Sorry didn't mean to offend anyone with inappropriate posts. Won't happen again.

    +
    0 Votes
    1bn0

    Click on "send message" below my avatar and profile information at the bottom of the post to send a private message.

    Note: This WILL give me your email address to reply to.

    I will help you.

    Sorry the guys are so touchy. We get a lot of idiots who are obviously trying to hack a stolen computer. It gets kind of tiresome after a while.

  • +
    0 Votes
    seanferd

    Sorry. Policy, roughly as follows:

    The members of TechRepublic - A Resource for IT Professionals and Riff Raff, will not assist anyone in the recovery of lost passwords. You may have a legitimate reason to recover a password. However, we cannot verify your motives and will therefore not assist anyone in what may be an attempt at gaining unauthorized access to a computer system. Due to the open nature of this forum, any assistance given to help circumvent security measures, even for legitimate purposes, would be available for unscrupulous individuals to use for illegitimate purposes. This is a risk that we the members of TechRepublic will not take. Please do not ask questions of this nature on TechRepublic. If you have a legitimate need to circumvent a password scheme, please contact the vendor for the software / hardware and request their assistance.

    However, an internet search of this site may turn up a couple of articles.

    +
    0 Votes
    OH Smeg

    The members of TechRepublic - A Resource for IT Professionals, will not assist anyone in the recovery of lost passwords. You may have a legitimate reason to recover a password. However, we cannot verify your motives and will therefore not assist anyone in what may be an attempt at gaining unauthorized access to a computer system. Due to the open nature of this forum, any assistance given to help circumvent security measures, even for legitimate purposes, would be available for unscrupulous individuals to use for illegitimate purposes. This is a risk that we the members of TechRepublic will not take. Please do not ask questions of this nature on TechRepublic.

    If you have a legitimate need to circumvent a password scheme, please contact the vendor for the software / hardware and request their assistance. E.g. Windows XP password recovery issues should be taken up with Microsoft's technical support, Phoenix BIOS password recovery issues should be taken up with Phoenix Technologies, etc.. To those viewing this post: Please DO NOT respond any further to this thread.

    This template has been released under the GNU public license and you are encouraged to use it as a standard reply for questions of similar nature, provided that you make any modifications available to other users.

    Keep telling that or to go to the System Maker and pay them to get around the Password. Either way it will encourage them to remember what they use as a Password and the more that they pay the more it will reinforce the answer.

    Col

    +
    0 Votes
    .Martin.

    one of the best creations of the 90's.

    if you were to use this tool, you would be able to find many solutions to this problem... not that I endorse this behavior

    {this post is no way intended to offend... even if it may come over that way... in which case, sorry}

    +
    0 Votes
    SPC_TCOL

    Google would be one way, or why don't you ask someone from a different school nearby?

    If I would have this problem, by the way I had it for one of my servers, but I took the whole thing offline, and put up a new one, with a new HDD, then I would ask some other Admins from the nearby university.

    You know, use your school email, to prove that you are allowed to do this stuff, and give them a phone number in your school in case they want to check that you are allowed to do this stuff.

    Then there would be maybe a chance that they will give you a hand.
    To ask here on the internet is like asking someone to give you a key to break into something.

    +
    0 Votes
    w2ktechman

    Cracking PWds -- Edited
    Edited to add new top secret monitor information (flat panel), and to fix some typo's

    Please read my previous message first. This is a crack into a computer and its files and folders. However it is not meant to get into protected files (such as encrypted, or alternate installed SW (3rd party)).
    This is only intended as a guide. Please check out the laws in your area before attempting to crack into someone else?s system. I cannot stress this enough. Continue at your own risk!!! Don?t forget, it is not too late to back out and reconsider (best option)!

    Ok, Cracking a Win 2K/XP administrator PW and name (and enabling the account if disabled). This will give you full access to the system with unlimited permissions. If you are told that you do not have permissions, you can GRANT YOURSELF permissions, as this is a SUPER USER account.

    First, you will need some HW and basic tech skills.
    1. Antistatic wrist strap
    2. Iron or Steel rod 3/4 to 1 foot long and 1/2 to 3/4 Inches round.
    3. Electrically conductive gel
    4. A new spare HDD (within the last 3 years)
    5. A keyboard manufactured after 1997
    6. A grounding wire -- up to 5 feet
    7. A set of screwdrivers (small) with Philips, flat head, and Torx tips (or 3 small screwdriver sets)
    8. Small hammer (not required but useful)

    Ok, before you begin, put on the antistatic wrist strap. I cannot stress this enough. Follow its instructions to 'ground' yourself. But later this will not be enough, you will use the grounding wire for the more intense part.

    Get your screwdrivers out, along with the spare HDD.
    Open up the HDD. Note there will be screws under the labels. You can press down across the label to find the screw holes.
    You need to pull out PLATTER 1 (top) from the HDD, and the magnets need to be removed from this drive.
    Keep these handy.

    Start the computer, but do not attempt to log on. Press Ctrl -- Alt -- Del. Type in any random set of letters and/or numbers (not special characters though). You MUST do 13 characters though, this is the key. There is a 'special' 'hidden' 14th character that you will need to access.
    Use a small flat head screwdriver in between the P and O keys (funny story, they added it here for Override Password -- see the humor?). They added a special chip under/between these keys on all keyboards manufactured after 1997. This is a little known fact and very hard to obtain info (I can get into big trouble for posting it if they find out who I am). If you are unsure about your keyboard age, look underneath it. It should have a manufactured date on a sticker. If you cannot tell, go get another keyboard.
    Back on point, use the screwdriver to 'pop' the chip. If you did not hear a pop, try again. It is a small chip that is directly under and between the O and P keys. I prefer using a small hammer with not too much force here, but not using one should work fine.
    If you had 13 numbers and letters, you should see a 14th one flash quickly, but it is so quick that I rarely see it myself. The boot sequence may hang here. This is what should happen. Ok, power off the system.

    Open the case and unplug the HDD (boot drive if multiples exist). Then remove the drive, taking precaution against damage.

    Now with the boot HDD in one hand, grab the 1st platter from the spare drive. Place the platter underneath the boot drive (by the board and chipset). On the top, use BOTH magnets in a clockwise motion on the top of the boot drive. You must make at least 4 complete passes, but 6 is better. Since Windows was told to 'unlock' the password (via boot characters above), it is free to replicate on all platters and 'jump tracks'. That is why we need the platter underneath. And being the first platter means that it is the best possible platter to install it on.
    Now put the second HDD back together being careful not to damage it. This should be put back into your machine to keep the PW until later, but it is not needed right now.

    Ok, now is the tough part. We need to unlock the ADMIN account and reset it to administrator (if it was changed and disabled). To do this, on the boot drive look for where the platters all meet. There should be a screw or nut holding them all together. You need to 'ding or dent' very LIGHTLY on the top of the HDD case, away from the magnets and HDD heads. Some people like to put it at 180 degree from the arm for the heads. It should be visually dented, but not interfere with the HDD operation.

    Now the HDD and Windows need to both be synchronized with this new PW mess that we created. The PW is probably floating around randomly on several platters. So install the boot drive back into the computer. Now get the small flat head screwdriver ready.
    Boot the computer (it may make a bit more noise than usual, but do not worry.
    OK, for a few seconds this should display on the screen "BIOS Revision". Look closely at the "S" in BIOS. Looks a bit off or not normal doesn?t it (requires really close investigation, sometimes it has been reported that someone has to look through several boots to notice it). Ok, this S is a keyword for "Synchronize" after the PW unlocking. This gets triggered in the BIOS whenever the O and P keys were tampered with.
    Anyway, use the flathead screwdriver on the S on the monitor. To get it right, you may need to try several times. I suggest a couple of reboots to get setup properly.
    If this is an older monitor (CRT) you may want a small hammer to aid.
    Without too much force, you want to 'punch' the "S" in BIOS out. Quickly turn off the computer. Note: this is an update and highly restricted information. On all tft, and lcd monitors, the crack that is created from punching the ?S? out is automatically fixed on the next monitor boot. On the next monitor boot the flat panel sensors indicate this activation and a gel will spill across the top corner. All you need to do is wipe it dry with a micro-fiber towel and it will be fixed. Newer monitors are better at this, and hold enough gel to do this operation 3 times before a refill.
    Now for the final preparation before you obtain full access to the system. You will need a good ground so get out the grounding wire. Tie it to the computer case if another good ground is not close by. The best ground would be the 3rd (or grounding plug) in the wall socket. Bare about 1/3 feet of the other end and tie it around your ankle. Use the electrically conductive gel all around your hands and ankle (where the grounding wire is attached).

    This step may take several tries, but it will be well worth it when done properly.

    Turn the system on and very quickly plunge the metal rod into the power supply of the computer. A small hammer to help may be needed. BUT be careful as not to plunge it too far, we are looking to get a 'spike' not destroy the computer.
    WARNING: Do NOT wear gloves!!! We need the extra grounding to do this properly, or else it may destroy the computer and put you at risk!
    If you did not feel a slight jolt (very slight), try again with a little more force.

    Ok, when done properly, clean up. Now restart the computer. At logon enter the username ADMINISTRATOR and for the PW type "P_W_R_E_C_O_V_E_R" and press enter. Yes, those are underscores.

    You now have full access to the system

    +
    0 Votes
    seanferd

    Post it visibly. Hand it out with course materials.

    +
    0 Votes
    w2ktechman

    and please dont forget to pay me royalties (I mean donations) for this!

    +
    0 Votes
    seanferd

    Get on it. Can't just count on having published it. :0

    +
    0 Votes
    mamies

    Does not work why would you tell me to do this, Now my computer wont even turn on and smells like burning plastic hahaha. I really want someone to try this lol

    +
    0 Votes
    OH Smeg

    You didn't follow the instructions properly.

    He said be genital but Firm and he did say you don't want to destroy the computer.

    OH anyone know who W2K is and if it is a He or a She?

    Col

    +
    0 Votes
    mamies

    But they sure come up with some really good advice.

    +
    0 Votes
    seanferd

    <i>genital but Firm</i>

    :^0 :^0

    +
    0 Votes

    I have had a rash of people aksing because they had forgotten their own passwords and had not made a recovery disk which must be made before the password is forgotten. It was not intended for any neferious purposes. Sorry didn't mean to offend anyone with inappropriate posts. Won't happen again.

    +
    0 Votes
    1bn0

    Click on "send message" below my avatar and profile information at the bottom of the post to send a private message.

    Note: This WILL give me your email address to reply to.

    I will help you.

    Sorry the guys are so touchy. We get a lot of idiots who are obviously trying to hack a stolen computer. It gets kind of tiresome after a while.