Need to break into a syskey locked xp system

Page may contain affiliate links. Please see terms for details.
OP
OP
C

Crackle

..
Seevio said:
If my understanding of the problem is correct and assuming it's just syskey and not full drive encryption, a live linux disk should be able to recover the data.
Click to expand...
You couldn't point me at a tutorial to do that could you? The script I ran was a Linux script but my knowledge of Linux is too small to know what to do without a tutorial or script.
 
Milkfloat

Milkfloat

An Peanut
Location
Midlands
User33236 said:
And risk any unknown malware attacking his own system?!
Click to expand...

I would be very surprised - especially if everything is encrypted.
 
OP
OP
C

Crackle

..
John the Monkey said:
There's possibly some useful stuff in the comments - I've no personal experience of this one, but there's some discussion of tools & methods further down, from what I can see.
Click to expand...
There's a lot in there which may be helpful. An awful lot of it is for Windows 7 and onwards and XP is too old and cruddy to have the same features. I am beginning to feel this could take me a while and am reluctantly thinking I should go for the re-build. Now if I can just remember how I got the crappy old DOS version of Wordperfect to work again without erroring and then get him to find all the discs..........
 
Milkfloat

Milkfloat

An Peanut
Location
Midlands
Crackle said:
Now if I can just remember how I got the crappy old DOS version of Wordperfect to work again without erroring and then get him to find all the discs..........
Click to expand...

Walk away. This sounds like too much work. Anyone suing Word Perfect in this day and age cannot be saved.
 
OP
OP
C

Crackle

..
Milkfloat said:
Walk away. This sounds like too much work. Anyone suing Word Perfect in this day and age cannot be saved.
Click to expand...
Hah! He's an emeritus professor from a different age. I did eventually get him onto a new version but he still used the old one for reference. It's one of the reasons he was still on XP. Might be time for a new broom, though judging by his reaction to the new laptop he's just bought and I set up, this could be painful: Where's those Paracetomol.....
 
PhilDawson8270

PhilDawson8270

Veteran
Crackle said:
You couldn't point me at a tutorial to do that could you? The script I ran was a Linux script but my knowledge of Linux is too small to know what to do without a tutorial or script.
Click to expand...

Many of the linux distributions are available as a "live" version, that is USB or CD whichever you choose. USB is certainly more convenient if the system in question has the ability to boot from USB.

Essentially allowing you to run the Linux OS from the disc

Download here
https://www.ubuntu.com/download/desktop

Do this
https://www.ubuntu.com/download/desktop/try-ubuntu-before-you-install

The windows drive should show up inside Ubuntu then that is running from the CD. From this point, you can make a copy of important data onto a USB, and format the drive ready for reinstalling your XP. Better yet, just put Ubuntu on it if it's running XP.
 
U

User33236

Guest
Milkfloat said:
I would be very surprised - especially if everything is encrypted.
Click to expand...
I wouldn't assume everything on any drive is encrypted and wouldn't in the least bit be surprised if any malware on the drive was able to replicate across a network or within a host computer.
 
U

User33236

Guest
raleighnut said:
Any XP disc will reboot the machine after clearing it, all you need is the 'product key' to authenticate the OS.
Click to expand...
Windows XP has not been supported by Microsoft for a number of years and, I believe, the authentication servers form XP product keys have long gone too.
 
D

Deleted member 1258

Guest
PhilDawson8270 said:
Many of the linux distributions are available as a "live" version, that is USB or CD whichever you choose. USB is certainly more convenient if the system in question has the ability to boot from USB.

Essentially allowing you to run the Linux OS from the disc

Download here
https://www.ubuntu.com/download/desktop

Do this
https://www.ubuntu.com/download/desktop/try-ubuntu-before-you-install

The windows drive should show up inside Ubuntu then that is running from the CD. From this point, you can make a copy of important data onto a USB, and format the drive ready for reinstalling your XP. Better yet, just put Ubuntu on it if it's running XP.
Click to expand...

I've used this method in the past on a boloxed Ubuntu installation with success but had to give myself root privileges to copy data off the disc.
 
Wobblers

Wobblers

Euthermic
Location
Minkowski Space
Crackle said:
So if you read the title and thought, I can help, cool, if you didn't understand a word, you can't!

An acquaintance of mine got scammed. More exactly his wife got scammed in a Talk Talk scam. One of the things the scammers did was lock him out of his own PC with Syskey password which I can't guess. So, without re-building the whole PC, which will be a headache, I need to break the Syskey password, so I'm looking for utilities to do this. I've tried one but it didn't work. There are others but I'm reluctant to look at some of them as they're on dodgy hacking sites.

Has anyone any recommendations or methods or even password guesses?
Click to expand...

Treat that computer as hosed. You can absolutely bet that Syskey is the very least of your worries. Malware, ransomeware,, virusese, trojans, they're all distinct probabilities. The scammers had the opportunity to install all of these - and more. You have to treat everything on it as compromised.

My solution? Take off and nuke it from orbit. It's the only way to be sure. Or, more accurately, reformat the hard disk (a full format, not the quick option) and reinstall the operating system. I hope your acquantances have backups.

A high risk strategy is to take the hard disk out, attach it to another machine, and try and salvage the data - if the drive's not been encrypted. Don't attach it to another Windows machine, there's a good chance there'll be malware just waiting for that opportunity. Use something like Linux (it's more obscure, so there's fewer unpleasantries written for it), and don't use the root account! Assume any files you retrieve to be infected, and disinfect with multiple passes through several different AV programs and something like Malwarebytes.
 
Last edited:
You must log in or register to reply here.

Similar threads

Salty seadog
Epson xp 235 compatible ink cartridges.
Replies
7
johnnyb47
Feeling railroaded by giving a colleague a lift into work
Replies
77
Ming the Merciless
How to run a marathon
Replies
18
T
Asking for thread to be locked?
Replies
91
Top Bottom