Smallvoid.com
  • Home
  • About
  • Articles
  • Links
  • Forum

Reset Administrator password to recover access

January 1, 2000 by Snakefoot | 10 Comment

Different ways to recover a forgotten / lost password:
  • If there is another Administrator account then use that account to login and change the password for the problem account.

    Note in WinXP Home the builtin Administrator account has by default no password, but is only accessible through safemode, useful if forgotten the password for another account.

    Note if the user has encrypted files or e-mail messages, or have stored passwords for websites or network resources, then these will be losts if using an Administrator account to reset the password.
  • If using Windows XP and have been foreseeing to create password recovery disks, then they can be used:
    • Creating password reset disk when in a domain
    • Creating password reset disk when NOT in a domain
    Note Vista also include the option to Create a password reset disk
  • Use a 3rd party Password Remover, which is also able to edit the SAM (Security Accounts Manager) files and reset the password without damaging the other accounts.

    Note this will not work for a domain Administrator account, but it can be done:
    1. Use the Password Remover to reset the password for the local Administrator.
    2. Boot into safemode which disables the Active Directory(AD).
    3. Login with the local Administrator and then follow the steps described below to change the login screensaver and recovery of password for a domain controller.
  • Change the login screensaver to gain access to user management:
    1. Replace the %systemroot%\System32\Logon.scr with Explorer.exe or Cmd.exe
      • If having access to the registry one can instead change the screensaver with this registry value:

        [HKEY_USERS\ .Default\ Control Panel\ Desktop]
        SCRNSAVE.EXE = "cmd.exe"
        ScreenSaveTimeOut = 15 (Default = 900 secs)
        ScreenSaveActive = 1 (Default = 0)

        More Info MS KB185348

    2. Boot WinNT/2k/Xp and wait for the login screensaver (Not touching keyboard / mouse).
    3. My Computer or Command Prompt will come up after 15 minutes.
    4. Change the password:
      • If using WinNT run %systemroot%\MUSRMGR ( If a Domain Controller %systemroot%\USRMGR )
      • If using Win2k run %systemroot%\Compmgmt.msc ( If a Domain Controller %systemroot%\DSA.MSC )
      • If using Command Prompt one can also use this command:

        NET USER [username] [newpassword]

    5. Revert the screensaver changes so My Computer or Command Prompt doesn't popup at login.
  • Replace Sticky keys executable and use sticky keys to open Command Prompt or Windows Explorer (Windows 2000, XP, Vista)
    1. Replace %systemroot%\System32\sethc.exe with Explorer.exe or Cmd.exe
    2. Boot Windows and wait for the login screen to show, then press the Shift-key 5 times to activate sticky keys.
    3. Now change the password like if having replaced the login screensaver (See above).
  • Delete the 3 files SAM , SAM.SAV and SAM.LOG in the directory WINNT\System32\Config. This will erase all accounts with rights and passwords, but the builtin Administrator account will survive with no password.

    Note even if deleting the SAM-files the users profile directories with settings still exists. One can create a new user and change the default profile directory to point to an old profile directory and use the settings stored there.
Different ways to get access to replace or delete files:
  • If WinNT is installed on FAT16 or 32 partition then use a standard bootdisk for Win9x to access to the partition.
  • Use Knoppix Linux CD to boot Linux with NTFS access and registry editor.
  • Use Bart's PE CD to boot Windows XP/2003 with NTFS access and registry editor.
  • Install a parallel WinNT/2k/Xp and boot the parallel WinNT/2k/Xp and you will have access to the original installation files along with the offline registry.
  • If WinXP one can use the Win2k Install CD to login to the Recovery Console without needing a password.
  • Take the HDD and put it into another machine running the same or higher version of Windows and access the files and the offline registry using that machine.
More Info MS KB321305
Tags:
  • administrator, password, password-recovery, sam-database, system-recovery, windows-login
Category:
  • Troubleshoot,
  • Troubleshoot,
  • Troubleshoot

Comments:

  1. Muhammad Atif Lone says:
    31 July 2008 at 7:05

    Thanko thanko thanko......sum basterd change my admin password of AD(server located at other branch). But these tips works very accurately and i am able to reset my password and every thing is set to normal again.....the wrost thing could be happend that it is also a database server and i was unable to get the backup of databases as i cant logon......thank you so much 1's again.

    Reply
  2. scula says:
    10 January 2012 at 5:30

    you can try windows password reset tool

    http://www.ilikemall.com/guide/reset-windows-7-password.html

    Reply
  3. abid says:
    9 November 2012 at 5:50

    Nice website good soloution you may see mine effrot on the same topic

    http://www.ittechguru.net/?p=697

    Reply
  4. mts to mov says:
    6 September 2013 at 3:25

    you guide help me a lot, thank you very much

    Reply
  5. Raymond says:
    23 June 2014 at 15:27

    My preferred tool is PCUnlocker.

    Reply
  6. Shawn Zernik says:
    28 August 2014 at 4:37

    The following will walk you through gaining access to do a password reset:

    http://www.internetworkconsulting.net/article/reset-domain-controller-password

    Reply
  7. Russell says:
    27 May 2016 at 2:16

    Or use the well-known sticky keys trick to reset a forgotten Windows password:
    http://www.top-password.com/knowledge/reset-windows-10-password-without-reset-disk.html

    Boot your computer from Windows setup DVD, open the Command Prompt and replace sethc.exe with cmd.exe. The next time you get to the login screen, press SHIFT key 5 times will launch an elevated Command Prompt. From there you can reset the password.

    Reply
  8. Hasnilly says:
    3 August 2017 at 9:35

    Boot your computer from Windows installation DVD, then replace sethc.exe (Sticky Keys app) with cmd.exe. You can then launch a Command Prompt from Windows logon screen and reset your lost password. You can also try some password reset tool like iseepassowrd, ntpassword, ophcrack.
    source:
    https://www.iseepassword.com/
    http://www.chntpw.com/guide/

    Reply
  9. Gameasy says:
    14 March 2018 at 10:59

    Hi , Hasnilly ,i know what your mean, to boot computer from DVD is the best way , but before doing it , it is necessary to make a bootable disk with DVD .in other word , as long as you have other user account , you can login on it to account you computer , then you can reset login password for Windows ,
    There 2 tutorial for you to do :
    http://www.chntpw.com/guide/
    https://www.recoverywindowspassword.com/

    Reply
  10. Kidman2.0 says:
    6 September 2019 at 9:29

    All the above are true,pc can be rebooted by a bootable disk,meanwhile,the login password can be reset from Windows computer,so most people like making a on for their pc/laptop.
    Here is a way that you can reset your password directly:
    https://www.winpwd.com/

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Related Posts

  • No boot device found or available
  • Restore boot manager when NTLDR is missing
  • Recover deleted NTFS/FAT32 partition
  • Using Last Known Good Configuration
  • Fix blue screen of death with INACCESSIBLE_BOOT_DEVICE

Recent Posts

  • Disable IPv6 imaginary tunnel network interfaces
  • Encrypted backup to OneDrive or DropBox
  • Description of soft and hard page faults
  • Windows 10 Upgrade with black screen
  • Wordpress 4.2 Upgrade

Meta

  • Log in
  • Entries feed
  • Comments feed