Author Topic: Who ever had to use this little tool?  (Read 2338 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33986
  • malware fighter
Who ever had to use this little tool?
« on: May 22, 2006, 12:47:24 AM »
Hello forum members,

It could happen to everyone of us? One bad day you have lost your NT Admin Password. What to do next. Who of you have used this tool from here: http://home.eunet.no/~pnordahl/ntpasswd/
Is the tool mentioned here secure to use, and what are the risks? Polonus likes to hear from you? But prevention is the best policy, and this is a nice tool for this purpose:
http://eyecanseeyou.free.fr/?q=download.php.

polonus
« Last Edit: May 22, 2006, 12:54:06 AM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

CharleyO

  • Guest
Re: Who ever had to use this little tool?
« Reply #1 on: May 22, 2006, 03:46:17 AM »
***

Hi Polonus,

Fortunately for me, I have never had the need for those tools. Hopefully, I never will.    ;)

Thanks for posting the links because you never know when they might be needed by someone.    :)


***

Offline szc

  • Avast Evangelist
  • Starting Graphoman
  • ***
  • Posts: 6927
Re: Who ever had to use this little tool?
« Reply #2 on: May 22, 2006, 05:18:42 AM »
Just read their DISCLAIMER:

Quote
THIS SOFTWARE COMES WITH NO WARRANTY WHATSOEVER. THE AUTHOR IS NOT RESPONSIBLE FOR ANY DAMAGE CAUSED BY THE (MIS)USE OF THIS SOFTWARE!
It's VERY ALPHA yet, and relies heavily on undocumented structures and methods. You have been warned!

I wouldn't advise anyone use this tool. You can find all over ther net, that tools like this one sometimes work, sometimes not... and sometimes they can cause some additional problems. I had a chance to try one of these when I bought one old PC to have something like a spare, test machine. I wasn't able to find out what was the Admin password for it, and the account that was created on that PC was an account with limited rights... so you're guessing right... couldn't do anything serious with it.

Anyway... My first and only intention was to completely wipe out everything, reformat and repartition everything the way I wanted and make it one nice and perfectly clean machine for testing purposes, which I actually did at the end... So knowing that, I just wanted to play with these things and if nothing else, try if those password-reseters work. Belive me, none of them worked properly. I tried 3 of them. I did exactly as they advised, everything went perfectly, I even got a confirmation that password was successfully reset... but bummer... nothing for real. When I tried to log in to Windows under administrator account with blank password (as you suppose to do when password is reset and/or not set at all), it wouldn't log in no matter what I tried. I even noticed some problems inside the Windows installation when I logged-in under that limited account later.

So, my advise would be... do not play with these things unless it's a testing machine or you securelly backed up all your important data and information, and when I say "backed-up", I really mean some serious backing-up (like for example this wonderful Norton Ghost), not some simple SYSTEM RESTORE in Windows... then you can play and do whatever you want.

Cheers !
MB: GIGABYTE GA-Z77X-UD3H Intel 7 Series  - LGA1155, CPU: Intel Core i5-3570K - Quad Core, 3.40GHz (3.80GHz Max Turbo), CPU COOLER: Cooler Master Hyper 212 EVO Direct Heat Pipe R2, RAM: 16 GB Kingston HyperX Blu DDR3, VIDEO CARD: Galaxy GeForce GTX 560 Ti - 1GB, GDDR5, POWER SUPPLY: Corsair Enthusiast Series TX750 V2 - 750 Watts, HD: Seagate Barracuda - 2TB, 7200RPM, 64MB, SATA 6Gb/s

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33986
  • malware fighter
Re: Who ever had to use this little tool?
« Reply #3 on: May 22, 2006, 11:59:16 PM »
Hi Sasza,

Thank you for the informed reply. We have to wait then for a better solution, if it ever comes up. Or we have to stricten our password policies.

friend polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!