«

don wrote:
> What is the best way to recover from a forgotten password on a Win XP
> system.

OphCrack

Download ophcrack and burn the CD which creates a bootable specialized
linux distro based on SliTaz and the developer's app and some rainbow
tables.

Then you boot the live CD which proceeds to examine the hash and use the
rainbow tables to 'reverse' the hash to find XP passwords if they aren't
too long or contain the wrong kind of characters.

http://ophcrack.sourceforge.net/ Ophcrack is a free Windows password
cracker based on rainbow tables. It is a very efficient implementation
of rainbow tables done by the inventors of the method. It comes with a
Graphical User Interface and runs on multiple platforms.


--
Mike Easter

Raymond Schmit wrote:

> On Thu, 18 Nov 2010 12:56:16 -0500, "Peter Foldes" <>
> wrote:
>
>>"don" <> wrote in message news:ic1n03$50c$...
>>> What is the best way to recover from a forgotten password on a Win XP
>>> system.
>>
>>> I was thinking maybe booting into Windows Recovery mode from my WIN CD....
>>> but not sure what next???
>>
>>Ask the person that set the Password
>
> He told you ...."best way to recover from a FORGOTTEN password"

The OP didn't say that *he* forgot the password. If he was helping a
"friend" then maybe that's where the password was forgotten but then
maybe his friend got his computer from his parents so the parents know
what are the admin login credentials. We don't know. We're all
guessing, including you. The dearth of details may have been deliberate
to be deceptive.

On Thu, 18 Nov 2010 20:06:15 -0600, VanguardLH <> wrote:

>Raymond Schmit wrote:
>
>> On Thu, 18 Nov 2010 12:56:16 -0500, "Peter Foldes" <>
>> wrote:
>>
>>>"don" <> wrote in message news:ic1n03$50c$...
>>>> What is the best way to recover from a forgotten password on a Win XP
>>>> system.
>>>
>>>> I was thinking maybe booting into Windows Recovery mode from my WIN CD....
>>>> but not sure what next???
>>>
>>>Ask the person that set the Password
>>
>> He told you ...."best way to recover from a FORGOTTEN password"
>
>The OP didn't say that *he* forgot the password. If he was helping a
>"friend" then maybe that's where the password was forgotten but then
>maybe his friend got his computer from his parents so the parents know
>what are the admin login credentials. We don't know. We're all
>guessing, including you. The dearth of details may have been deliberate
>to be deceptive.

BUT .... you guess .....

The op have reacted on my post saying:
"Thank-you, I don't know why people are so quick to jump on a post and
make stupid comments??????"

So, i am true ....

Raymond Schmit wrote:

> On Thu, 18 Nov 2010 20:06:15 -0600, VanguardLH <> wrote:
>
>>Raymond Schmit wrote:
>>
>>> On Thu, 18 Nov 2010 12:56:16 -0500, "Peter Foldes" <>
>>> wrote:
>>>
>>>>"don" <> wrote in message news:ic1n03$50c$...
>>>>> What is the best way to recover from a forgotten password on a Win XP
>>>>> system.
>>>>
>>>>> I was thinking maybe booting into Windows Recovery mode from my WIN CD....
>>>>> but not sure what next???
>>>>
>>>>Ask the person that set the Password
>>>
>>> He told you ...."best way to recover from a FORGOTTEN password"
>>
>>The OP didn't say that *he* forgot the password. If he was helping a
>>"friend" then maybe that's where the password was forgotten but then
>>maybe his friend got his computer from his parents so the parents know
>>what are the admin login credentials. We don't know. We're all
>>guessing, including you. The dearth of details may have been deliberate
>>to be deceptive.
>
> BUT .... you guess .....

But .... so do you ..... that Peter's response wasn't on target.

> The op have reacted on my post saying:
> "Thank-you, I don't know why people are so quick to jump on a post and
> make stupid comments??????"

His response says nothing of value. It doesn't reinforce or detract
from Peter's guess, or your guess that Peter was wrong.

> So, i am true ....

About what? The OP never did address the questions or even state whose
guesses were wrong or provide any additional details as to WHO forgot
the password. But then you were looking for a pat on the back for a
non-solution response.


His response did not state if your guess was correct. But then you
didn't offer him anything of help in his task of CRACKING the password.

On Fri, 19 Nov 2010 04:09:50 -0600, VanguardLH <> wrote:

>Raymond Schmit wrote:
>
>> On Thu, 18 Nov 2010 20:06:15 -0600, VanguardLH <> wrote:
>>
>>>Raymond Schmit wrote:
>>>
>>>> On Thu, 18 Nov 2010 12:56:16 -0500, "Peter Foldes" <>
>>>> wrote:
>>>>
>>>>>"don" <> wrote in message news:ic1n03$50c$...
>>>>>> What is the best way to recover from a forgotten password on a Win XP
>>>>>> system.
>>>>>
>>>>>> I was thinking maybe booting into Windows Recovery mode from my WIN CD....
>>>>>> but not sure what next???
>>>>>
>>>>>Ask the person that set the Password
>>>>
>>>> He told you ...."best way to recover from a FORGOTTEN password"
>>>
>>>The OP didn't say that *he* forgot the password. If he was helping a
>>>"friend" then maybe that's where the password was forgotten but then
>>>maybe his friend got his computer from his parents so the parents know
>>>what are the admin login credentials. We don't know. We're all
>>>guessing, including you. The dearth of details may have been deliberate
>>>to be deceptive.
>>
>> BUT .... you guess .....
>
>But .... so do you ..... that Peter's response wasn't on target.
>
>> The op have reacted on my post saying:
>> "Thank-you, I don't know why people are so quick to jump on a post and
>> make stupid comments??????"
>
>His response says nothing of value. It doesn't reinforce or detract
>from Peter's guess, or your guess that Peter was wrong.
>
>> So, i am true ....
>
>About what? The OP never did address the questions or even state whose
>guesses were wrong or provide any additional details as to WHO forgot
>the password. But then you were looking for a pat on the back for a
>non-solution response.
>
>
>His response did not state if your guess was correct. But then you
>didn't offer him anything of help in his task of CRACKING the password.


At anytime, you never understand that knowing WHO forgot the password
is not important ?.....
And also ....
"Ask the person that set the Password " is stupid because the password
IS forgotten - so no way to retrieve it by memory.

Raymond Schmit wrote:

> At anytime, you never understand that knowing WHO forgot the password
> is not important ?.....
> And also ....
> "Ask the person that set the Password " is stupid because the password
> IS forgotten - so no way to retrieve it by memory.

I disagree with all that.

It does make a difference who 'forgot' the pass.

Part of the strategy for recovering a pass includes guessing at the pass.

Sometimes a person leaves a pass blank/empty and the cursor needs to be
in the field so that the 'nothing is there' is entered.

Typically the person who forgot the pass has a number of possibilities
in mind that they might have created -- that is, they know that they
didn't employ a random pass generator and that their pass is pretty
short with no special characters and it might be any one of these
possibilities that they frequently use.

Or, the person who forgot the pass might know that they employed a long
pass created by a random pass generator which included special
characters, so then they know that some popular pass hash crackers like
OphCrack is not going to work in the free version, so instead of
spending time trying to crack/reverse the hash, they employ a different
free agent to get rid of the pass instead of cracking it.

OphCrack also has pay versions with greater capabilities if they need to
go that route.

So it definitely makes a difference who forgot the pass to the person
who is trying to solve the problem of a forgotten pass.


--
Mike Easter

On Fri, 19 Nov 2010 15:34:07 -0800, Mike Easter <>
wrote:

>Raymond Schmit wrote:
>
>> At anytime, you never understand that knowing WHO forgot the password
>> is not important ?.....
>> And also ....
>> "Ask the person that set the Password " is stupid because the password
>> IS forgotten - so no way to retrieve it by memory.
>
>I disagree with all that.
>
>It does make a difference who 'forgot' the pass.
>
>Part of the strategy for recovering a pass includes guessing at the pass.
>
>Sometimes a person leaves a pass blank/empty and the cursor needs to be
>in the field so that the 'nothing is there' is entered.
>
>Typically the person who forgot the pass has a number of possibilities
>in mind that they might have created -- that is, they know that they
>didn't employ a random pass generator and that their pass is pretty
>short with no special characters and it might be any one of these
>possibilities that they frequently use.
>
>Or, the person who forgot the pass might know that they employed a long
>pass created by a random pass generator which included special
>characters, so then they know that some popular pass hash crackers like
>OphCrack is not going to work in the free version, so instead of
>spending time trying to crack/reverse the hash, they employ a different
>free agent to get rid of the pass instead of cracking it.
>
>OphCrack also has pay versions with greater capabilities if they need to
>go that route.
>
>So it definitely makes a difference who forgot the pass to the person
>who is trying to solve the problem of a forgotten pass.


I had forgot a password (i had created it) ..... and i was unable to
retrieve it ....

Raymond Schmit wrote:
> Mike Easter

>> It does make a difference who 'forgot' the pass.

> I had forgot a password (i had created it) ..... and i was unable to
> retrieve it ....

.... but you were in a better position to be able to guess the *kind of*
password you created in the past.

People create many passwords over time. Over that time, their password
creation skill tends to evolve.

First they use very simple passwords and maybe use the same password
'all over the place'. Then they begin to learn more password tricks
about how to make better passwords and how to use password generators
and password keepers. They learn about passphrases and diceware and
outrageous nonsense and how to go about creating a password which is
easy to remember and very difficult to guess.

Then they develop a 'style' of using passwords, where some passwords are
trivial and some passwords are more important - so we have different
pass strategies for different situations.

Thus when it was you who created the pass, you know what kind of pass it
was even if you don't remember it - the actual pass - you remember what
'kind of ' pass you created in that situation.

If you are at the stage of password evolution which doesn't yet know how
to deal with the problem of remembering versus forgetting passwords,
then you aren't very far along the path of password creation skills.

This means that you created a fairly simple password of letters and/or
numbers.

So, you would know if the OphCrack free password cracker is going to
work for you -- it can do 14 character strings of upper and lower case
letters and the numbers.




--
Mike Easter