Cracked windowsxp/2000/2003 login Password/Remove login password/Reset Login Password Method Summary _ Application Tips

Source: Internet
Author: User
Tags net command administrator password
Cracking Windowsxp/2000/2003/98/me's password method is really much, so Microsoft's Windows vulnerabilities are really many! But this also facilitates a lot of users of the computer Management, advantages and disadvantages!
Many friends have consulted this kind of questions many times, each time I have to answer one by one, so today I will synthesize the method, hoped that has some practical value to everybody!
Cloud-dwelling Community

First of all, from a simple start:
For users who can access the system, and then have administrative rights, to crack the password of the Administrator Admin User:
Right click on my Computer, select "Manage" into "Computer Management" "Local Users and Groups" on the right, find "administrator"
Right-click "Set Password" to set your new password. Here you can also design other user passwords are the same. Of course, you can also use the other way, is to run Lusrmgr.msc directly open the user management panel.
The system suitable for this method is the 2000/XP/2003 series.
[color=red] cloud-dwelling community

For users who do not have access to the system or do not have administrative privileges, you can try the following methods:
When you log on, XP generally does not appear to users of the administrator, but to other administrators. Here you can press the Ctrl+alt+del key combination twice in a row. And then there will be the same login interface as 2000/2003.
At this time, many users of the computer does not set the administrator password, so here you can directly enter the administrator's account username password for the empty access system.
The system suitable for this method is the 2000/XP/2003 series.

Let's talk a little bit more complicated:
Here's how to set the administrator's password, or the following several ways:
Cloud-dwelling Community

Light area or soft zone, or other boot device:

①. Starts with a cracked boot disc, there is a later version of the tomato, the system of the home, system maintenance and so many have. Then run the crack program inside. After running, enter "1" in "Your choince:[]" (select Logical Disk) and press ENTER Displays your computer's hard disk partition Table window, at which point you continue to press ENTER, and a disk MS SAM database File window appears. Press ENTER again, the user in the system will be all displayed, in "Your choince:[]" enter "0" And then press ENTER (if your system administrator user name is not administrator, but other name, just enter the serial number before its name). After the "Would" to Rest this user ' s password? (Y,n) [N]: [] "After the prompt, you enter" Y "and press ENTER, wait a moment will appear" Password has been successfully reset. (Press any key ...) " Hint that the password is cracked successfully. Restart your computer to login directly to the system here are some software tips different, they can be more familiar with the next! Computer English still needs to be used. There are also a lot of software here, such as Dospass, is in DOS after running the same interface will also appear ! We can find out for ourselves.
Cloud-dwelling Community

②. Use the Winkey program provided by Microsoft to crack, this needs to be winkey as a driver on a floppy disk, then start with an XP system disk, when prompted  Press F6 if you  Need install party scsi or raid driver ... , press F6, wait for the loading process to finish, see the prompt after the loading process: To specify addition al scsi adapters, cd-rom  drivers or special disk controllers for use with Windows  2000,including those for which you have a device support disk  from mass storage device manufacturer press s, press the S key immediately, then the system will then prompt:please  Insert the disk labeled maufacturer-supplied hardwaresupport disk into  driver a: * press enter when ready. Then insert the floppy disk to load the WINDOWS XP-2000-NT  key Drive. Wait a moment, the system will automatically enter the Windows xp-2000-nt key environment. Then the system will prompt: Set administrator\password to  \12345\? (y/n):, type Y. Note: At this point, the system administrator account password has been changed to 12345, pay attention to the use of WINkey made floppy disk into the soft zone .  then you can reboot.

③. Enter the DOS below (how to enter DOS for a while.) Then enter the system directory, such as the 2000 system, assuming that the system disk is a C disk, the command is as follows:
CD Winnt\system32\config
That's it. or directly with the command del C:\WINNT\SYSTEM32\CONFIG\SAM back to press Y on it.
Ice Cold water Reminder: This is only for 2000 systems with no SP patch Pack installed, Windows XP and Windows 2003 are not going to work (a "Security account initialization failure" Prompt will appear when you start the system).

④. For the xp/2003 system, the following method can be used:
Start or go into dos below, the command is as follows:
The prompt that appears is ok to press Y OK.

Ice COLD water Hint: if can not enter the DOS person, may install a dwarf dos toolbox, my blog inside the common tool also has the downloading.
This allows you to install the DOS Toolbox directly into the DOS or DOS Toolbox to provide a password-breaking program. It's a lot of trouble.
Cloud-dwelling Community

For friends who cannot access the system Installation DOS toolbox, you can use the following method:
Take down your hard drive, pick up the other computer, connect to the other computer's hard drive, and then use the computer to get into the computer's operating system. This way, you can see all the data on your hard drive. And then remove the original \winnt\system32\ from your hard drive. Config directory of the Sam file, the original password was deleted. Go back to the hard drive and start the login without a password. Xp/2003 's system is to copy the SAM below Windows\repair to the windows\system32\config below. Remember, it's up to you to see for yourself. It is usually in the new computer that the D disk.
Cloud-dwelling Community

⑤. Use the system's default screen saver to crack the system password.
Enter DOS below and go to the System32 directory of the system directory: command as follows:
CD Windows\System32
Then restart the computer, into the login interface, do not move, and so on into the system's default screen saver, and then entered the DOS state, here DOS has the function of administrative privileges.
At this point you can add a change account and password under DOS.
You can use the following command:
Lusrmgr.msc This command to open the User Management Control Panel, you can change it casually!
or use the network command directly:
NET user cnaxh 123456/add forces the password of the CNAXH user to be changed to 123456
If you want to add a new user here (for example, user name is cnaxh password
Please type NET user cnaxh add available net localgroup Administrators Cnaxh/add
command to elevate the user to the system Administration administrators user and to have super privileges.
Ice Cold water tip: Here is only suitable for those who do not modify the screen saver, or have a screen saver friend!

⑥. Use Windows system disk overlay installation, etc. when running to the installation device, press the SHIFT+F10 key, and then enter the DOS command mode, Here you can also enter Lusrmgr.msc or use the Add command above. You can also use the Windows PE tool disk to start the run effect is the same! Of course the software is a lot of content, see how you use, most of the principles are the same.
Cloud-dwelling Community

1. Create a boot floppy that fixes a user's password
Microsoft provides us with Windows XP the ability to create a startup floppy that fixes a user's password. When we forget the password, we can use this floppy disk to start the computer, so we should make a password to start the disk in case. Click the "User account" option in the "Start" Control Panel, Select your account in the Pop-up dialog window and enter the control interface of your account. Then click the "Block a forgotten password" option at the top left of the window and go to the Forgotten Password Wizard dialog box. Click Next, and then the wizard prompts you to insert a blank, formatted disk into the floppy drive. And then click the "Next" button, the wizard prompts you to enter the current password for the account, and after a few seconds the loser creates the complete password startup disk. When we forget our password one day, just click on the arrow to the right of our account and click on the "Use password reset disk" in the pop-up prompt. Insert the previously done password boot disk into the floppy drive, and follow the prompts to reset your password and log on to Windows XP. This method is appropriate for Windows XP in various partitioned formats.
Cloud-dwelling Community

2. Remove Windows XP login password via dual system
If there are other operating systems in our machine other than Windows XP, you can start with another operating system and then delete the "SAM" file in the "C:windowssystem 32Comfig" directory (this assumes that Windows XP is installed on C disk). This is the account password database file. Then restart Windows XP, the administrator "Administratoc" account will not have the password. Extrapolate, if you have only one Windows XP system, you can also remove the SAM file by removing the hard drive and switching to another machine. This method applies to Windows XP installed with FAT32 partitions, if installed with an NTFS partition, to ensure that other systems have access to the NTFS partition.

3. Use the Ntfsdos tool to restore the Windows XP login password
First download a tool called "NTFS DOS" from "". This tool produces a boot disk that can operate an NTFS partition from DOS. After starting DOS switch to the system directory, such as "C:windowssystem 32", "LOGON.SCR" renamed "Logon.scr.bak", and then copy a " "and rename the file to" Logon.scr ". Then reboot the machine, and when you start screen saver, you'll notice that the screen is displayed as command line mode and has ADMINISTRATOC permissions. This allows you to modify your password or add a new administrator account. After entering Windows XP, change the name of the "Logon.scr.bak" screen saver. This method applies to Windows XP installed on NTFS partitions.
Cloud-dwelling Community

4. Use other tools to rebuild the Windows XP login password
You can find many Windows XP login tools on the Web, such as using the Linux boot disks boot disk to access the NTFS file system, read the registry, rewrite your account and password, and use the NT Acess tool to bypass the protection of system SYSKEY and reset windows nt/2000, Windows xp password, as well as Passware kits, O&obluecon 2000 tools, the specific operation you can refer to the software instructions.
Cloud-dwelling Community

5. Change WinXP user password without knowing
The Windows XP startup script (startup scripts) is a batch file that the computer runs before the logon screen appears, and functions like an automated batch file Autoexec.bat in Windows 9x and DOS.
With this feature, you can write a batch file to reset the user's password and add it to the startup script, which achieves the goal.
The following are concrete steps (assuming the system directory is C:\Windows).
1. Use the Windows98 boot disk to start the computer. write a batch file to recover the password a.bat, the content only need one "net user" command: "NET user rwd 12345678".
This command means to set the user RWD password to "12345678" (for the use of the Net command, refer to Windows Help). Then save the file A.bat to the C:\windows\system32\GroupPolicy\Machine\ Scripts\startup "under.
2. Write a startup/shutdown script configuration file Scripts.ini, the filename is fixed and cannot be changed. The contents are as follows:
3. Save the file Scripts.ini to "C:\winnt\system32\GroupPolicy\Machine\Scripts". Scripts.ini save setup data for computer startup/shutdown scripts. The contents of a file typically contain two data segments: Startup and [Shutdown]. Under the [Startup] data segment is the startup script configuration, and the [Shutdown] data segment is a shutdown script configuration.
Each script entry is divided into the foot name and the script parameters are stored in two parts, the Xcmdline keyword is saved under the key, the parameter is saved under the Xparameters keyword, here x represents the script sequence number starting from 0 to distinguish multiple script entries and flags the order in which each script entry is run.
4. Remove the Windows 98 Startup disk, reboot the computer, and wait for the startup script to run. The user RWD password is restored to "12345678" after the startup script runs.
5. After successful login, delete the two files created by the above steps.
Note: The computer uses the FAT32 file system, and if you are using the NTFS file system, you can do this on a computer that is attached to the NTFS file system (such as Windows 2000 or Windows XP) from disk mode. This method restores the administrator ( Administrator). The password recovery for local computer users and domain users in the Windows2000 system is also valid.
Cloud-dwelling Community

6. Use the Off1ine NT Password & Registry Editor. The software can be used to make a Linux boot disk that can access the NTFS file system, so it can be well supported windows2000/ XP. You can solve the problem by using a NTPASSWD tool that runs on Linux in this floppy disk. And you can read the registry and rewrite your account password. The method used is simple, just follow the prompts after it starts step by step. Here, I suggest you use the quick mode, This lists the user's password for the user you choose to modify. The default selection of users of the Admin group, automatically find the name of the administrator to replace the user, very convenient.

7. (not tested) here is a more unusual approach. You can install another XP on another partition, the hard disk partition format should be the same as the original, and please note that you must not be installed with the original XP in the same partition! Before you begin, be sure to back up the boot area MBR (Master boot record) beforehand. There are many ways to back up the MBR, either by programming it yourself or by using tool software such as antivirus KV3000. After loading, log in with the administrator, Now you have absolute permission to write to the original XP. You can copy the original Sam and use Lophtcrack to get the original password. You can also overwrite all files under the newly installed XP winnt\system32\config\ to C\winnt\system32 \CONFIG directory (assuming the original XP is installed here), and then restore the previously backed up master boot area MBR with KV3000, you can now log on to the previous XP with the administrator identity.
Tip: MBR is commonly known as the "Master Boot Zone", which is to read the disk partition table (Partition table) set in the active partition (active Partition), located in the hard disk of the cylinder 0, head 0, Sector 1 position, It is also vulgar your 0 track position. It is generated by the partition command Fdisk. The MBR includes both the hard disk bootstrapper and the partition table. MBR end Flag 55AA, with anti-virus software KV3000 F6 function can be viewed, the default screen is MBR. If the MBR cannot find the active partition, will display error messages such as missing operating system on the screen, so if your Windows XP does not open properly.

Cloud-dwelling Community

8. When the boot, in the input password, tune into intelligent ABC, enter V, press ↑, press DELETE, enter. (not tested)
The second recruit: Use Microsoft Pinyin Input method, have a custom phrase, point browsing, out of a box, fix, then needless to say

9. (not tested) you can delete the * from the Windows installation directory. PWL password file (or rename *.pwl) and all personal information files under Profiles subdirectory, and then restart Windows, the system will pop up a password without any user name box, no need to enter any content, directly click the "OK" button, Windows The password is deleted.
Also, run "Regedit.exe", open the Registry database "HKEY_LOCAL_MACHINE" → "Network" → "userprofiles" under the "Logon" branch, modify to "0", and then restart Windows can also achieve the same goal.

10. (not tested) as early as 2003, the 1th issue of "Microcomputers" published an article about cracking Windows XP login password, seriously speaking of this is not cracked, but by adding users to another new user to use Windows XP, the operation is also slightly cumbersome. Recently, the author in some forums " Pouring "to the password file on Windows XP, a new hack login method is invisible in the mind. First find a WINDOWS XP system without a password, and go to the "\Windows\System32" system directory of the XP system disk, which is named "SPOOLSV." EXE "(50KB) to a floppy disk or flash memory if the specified file is not found in the System32 folder, the current system hides display system files, click menu" tools → folder Options "in Explorer, and undo" Hide protected operating system files (recommended) "In the View tab page. check box, and select Hide files and folders as the "Show All Files and folders" method. Once the password file is ready, confirm the Windows XP file system (that is, the disk system format) to be cracked, and if it is FAT32, just find a boot disk and "SPOOLSV" in the floppy disk. EXE "Copy to the target XP system's" \Windows\System32 "folder overlay. The file system for the target XP system is NTFS, and if it is installed with other operating systems that recognize the NTFS file system (such as Windows 2000 or Windows Server 2003), go directly to the system for overwriting. Otherwise, you can load NTFS for in pure DOS state  DOS tool for access overrides. When you replace a file, you start Windows XP normally, and you can go directly to the Windows XP desktop without entering a password (a multiuser XP system chooses the default, the first user to log in). Bring up the Windows Task Manager tool (shortcut key) Ctrl+shift+esc "), you can view the SPOOLSV in the process list. EXE process (Figure 2).
Note that this method can cause XP to not use hibernation shutdown, when switching users (shortcut "Win+l") will also prompt for a password to return to the desktop, please use caution. In addition, this article only for the technical discussion, do not use in illegal purposes, or the consequences of conceit.
Cloud-dwelling Community
For the above method, is really a lot of people to operate the time to pay attention to, flexible use, such as the NTFS format problem ah, how to enter the DOS problem ah, how to delete and copy the problem, you need to recognize. For the absence of any external equipment, you can remove, you can replace! Need a certain hardware and system knowledge!

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.