Masquerade Posted November 22, 2008 Share Posted November 22, 2008 Hey everyone I got a dell computer from a more or less stranger. Only a guest account is avalaible. I successfully installed Ophcrack on this machine (what comes with pwdump6). The only problem is that the AntiVirus protection prevents me from fetching the hash. . It seems quite useless to me to try random hash dumpers. So my question is, if there is any other way to get the hash. The Anitvirus protection is called G DATA AntiVirus Client. Thanks a lot! benny Quote Link to comment Share on other sites More sharing options...
Sparda Posted November 22, 2008 Share Posted November 22, 2008 I'd reinstall Windows Quote Link to comment Share on other sites More sharing options...
ls Posted November 22, 2008 Share Posted November 22, 2008 yep, the best would be to reinstall your os since it will be probably full of virusses and random junk Quote Link to comment Share on other sites More sharing options...
digip Posted November 22, 2008 Share Posted November 22, 2008 BUT if you wanted the password, run Ophcrack off the live cd. No antivirus can protect against it since it will not be running. I never heard of "installing" Ophcrack to get a windows password. Either way, once you get the password, its useless, since if there were files you wanted to see, you could easily copy anthing off the machine while in a live disc state to an external HDD drive or USB flash drive. Then resintall windows, as stated above, never use someoen elses account as you do not know what kind of malware is on there. The guy who gave it to you should have at least kept the HDD or at minimum dban'ed it before giving it to someone. Quote Link to comment Share on other sites More sharing options...
Masquerade Posted November 23, 2008 Author Share Posted November 23, 2008 I already tried the live CD. The problem is, that i dont have the ability to boot from CD ROM; i dont know the BIOS password. And it doesnt seem like there are backdoor/master passwords for the dell optiplex. Quote Link to comment Share on other sites More sharing options...
Sparda Posted November 23, 2008 Share Posted November 23, 2008 Open up the computer and clear the CMOS by disconnecting the computer from the mains taking the battery out for 10 seconds. Quote Link to comment Share on other sites More sharing options...
gEEEk Posted November 23, 2008 Share Posted November 23, 2008 I think you are referring to L0phtcrack. Which is a program you run INSIDE Windows. Clear the CMOS as mentioned. And then boot into OphCrack, via a CD or a Pendrive. Try if the administrator account is active, and hopefully without a password. By pressing CTRL ALT DELETE at the login screen. Quote Link to comment Share on other sites More sharing options...
digip Posted November 23, 2008 Share Posted November 23, 2008 Try the CMOS battery removal, which should remove any bios password. If its shadowed on the HDD, then try http://www.freelabs.com/~whitis/security/backdoor.html or http://www.xs4all.nl/~matrix/mpwlist.html Quote Link to comment Share on other sites More sharing options...
Masquerade Posted November 29, 2008 Author Share Posted November 29, 2008 Thanks a lot! I will try this. Is there any way to get the password without physical access? Quote Link to comment Share on other sites More sharing options...
Sparda Posted November 29, 2008 Share Posted November 29, 2008 Find the stranger and ask them what it is. Quote Link to comment Share on other sites More sharing options...
Masquerade Posted November 29, 2008 Author Share Posted November 29, 2008 Find the stranger and ask them what it is. hes already gone. i got the machine on a market where people sell old stuff they dont need anymore. Quote Link to comment Share on other sites More sharing options...
x5h4d0wx Posted November 30, 2008 Share Posted November 30, 2008 Hey everyone I got a dell computer from a more or less stranger. Only a guest account is avalaible. I successfully installed Ophcrack on this machine (what comes with pwdump6). The only problem is that the AntiVirus protection prevents me from fetching the hash. . It seems quite useless to me to try random hash dumpers. So my question is, if there is any other way to get the hash. The Anitvirus protection is called G DATA AntiVirus Client. Thanks a lot! benny not sure whether or not youve decided to do anything to this pc yet, but if you are still locked out of it, i always try a more simplistic approach to breaking into windows accounts. If you restart your pc, and press either f8 or f12 usually its one or the other you can load windows in safe mode. once in safe mode you will be brought to the windows logon screen where you can choose which account you can log into. but now instead of the usually visible accounts there is typically a extra Administrator account available now that is usually hidden. most of the time this account goes hidden and unnoticed by the basic pc user, so it typically doesnt have a password. once you log in you can remove passwords from other user accounts. now if this is someone elses computer and you dont want them to know about you breaking in then i dont recommend this approach. Quote Link to comment Share on other sites More sharing options...
Masquerade Posted November 30, 2008 Author Share Posted November 30, 2008 Thanks, ill try this also next time. Quote Link to comment Share on other sites More sharing options...
aeturnus Posted December 9, 2008 Share Posted December 9, 2008 I'd reinstall Windows If you just want access, what's wrong with simply reinstalling? Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.