Crack local password

Recently had an issue where the local Administrator password was lost for a Windows 2008 R2 server.

This is how I changed the password of the Administrator’s account using the Windows 2008 R2 installation DVD / ISO image.

Boot from the Microsoft Windows Server 2008 R2 DVD / ISO image (I used ISO server didn’t even have DVD Drive)

From the Install Windows menu, click “Next”.

Select “Repair your computer”

In the System Recovery Options, selected the OS instance and clicked “Next”.

Selected “Command Prompt”.

At the command prompt, I ran the following commands:

c:
cd windows\system32
ren Utilman.exe Utilman.exe.old
copy cmd.exe Utilman.exe

Rebooted the server allowed Windows to load as normal

At the logon screen, pressed Windows Key + U.
At the command prompt, entered the following command:

net user administrator NewP$sswOrd (Whatever PW you want it to be)

This set the password for the Administrator user to NewP$sswOrd.

Closed the command prompt, and was able to log back onto the server using the password from the last step.

Got in using this old trick but for good measure I put everything backā€¦.

Repeated the steps above about booting using the Windows Server 2008 R2 DVD/ISO and run the command prompt again.

Delete the newly created Utilman.exe from C:\Windows\System32
Rename Utilman.exe.old back to Utilman.exe

That’s all there was, other than the documentation of the PW this time!! (It’s not NewP$sswOrd anymore)