NEED URGENT HELP -- I need to crack the domain admin password FAST

Abzstrak

Platinum Member
Mar 11, 2000
2,450
0
0
yes it my server (well, a clients), they dont know the password, and do not have an ERD.. The linux boot disk trick doesn't work cause its a win2k domain controller and apparently has no affect on active directory.

The client is new and is seeking help because they screwed this up and dont know how to get in to fix it. Supposedly noone changed the password, they're pretty sure someone hacked in and did it..... which is COMPLETELY possible since they dont have any security whatsoever, and the thing is out on the internet without as much as a NAT router in front of it.

Anyways, if anyone knows a way I can crack it tonight, and I'm open to suggestion, otherwise I'm gonna have to reload this god forsaken POS.

And yes, I have physical access to the machine. It has two 18GB HDD, on a perc2 hardware raid controller (raid 1) if that helps...

Oh and they haven't run backups in over 1.5 weeks and need the data on the drives.

TIA



God I hate stupid users....
 

Smilin

Diamond Member
Mar 4, 2002
7,357
0
0

ROFL.

There's some guides on the net for this. Do a google search and you'll find something. Basically you want to get access to the hard drive, grab the SAM and run a cracker on it. Shouldn't take too long.

Personally I don't know if I could handle that much stupidity being placed in my lap all at once.
 

Saltin

Platinum Member
Jul 21, 2001
2,175
0
0
Basically you want to get access to the hard drive, grab the SAM and run a cracker on it. Shouldn't take too long.

This is a domain account. It's stored in Active Directory, not the SAM.
Also, if the password was changed by a hacker, he would have been smart enough to make it so robust that a cracker app like L0phtcrack would never crack it.

It is my opinion that you are SOL. Active Directory stores passwords in a very secure manner. Call Microsoft.
 

lowtech1

Diamond Member
Mar 9, 2000
4,644
1
0
Are you sure that they has lost their password or it was cracked on the DC?
Do you have an alternative admin user & passsword?

It might be simplee/cheaper to get a new hdd & install a Linux server on their network if they don't need AD service (no Exchange, if they are hacked into. It will give you more time to extract any important files that you may need, and more time to diagnostice the AD hdd.
 

Abzstrak

Platinum Member
Mar 11, 2000
2,450
0
0
thanx guys, been too busy to give an update... I was able to use the linux boot disk to change the local admin password for directory services restore mode and then I was able to login without AD, and restored the AD registery settings from a tape 3 weeks ago... booted back up and the password was back to normal.

All kindsa hacking goodness had been installed, ftp servers and such... these people had a passwordless pcanywhere connection running on the server too...

anyway a long story short, I cleaned it up, and am getting them a firewall and got the ok to put the network in the right way ;-)

Thanx guys