Windows 2003 ntds.dit error

[GoogleCodeExporter]

Windows Sever 2003 sp2(32bit)
What steps will reproduce the problem?
1. I use vssown.vbs to copy ntds.dit\ sytem \sam files
2. then I use "quarkspwdump.exe --dump-hash-domain ntds.dit"
3. error
[+] SYSKEY restrieving...[OK]
SYSKEY = 8B78DC1F1EFB8A0ED704CDBF12238CB6
[+] Init JET engine...OK
[+] Open Database c:\ntds.dit...ERROR : JetAttachDatabase() failed with JET_ERR 
= -550
Details : JET_errDatabaseDirtyShutdown, Database was not shutdown cleanly. 
Recovery must first be run to properly c
omplete database operations for the previous shutdown.
[!] NTDS_OpenDatabase failed!

Original issue reported on code.google.com by sjz6...@hotmail.com on 11 Jul 2012 at 3:19

[GoogleCodeExporter]

In fact, you need to repair the database with esentutl command before using it 
with quarkspwdump or for restore purposes. Try "esentutl /p c:\ntds.dit".

Here is the procedure which will be included in the next release of 
quarkspwdump:

On windows 2003, VSS has been implemented but not NTDS-type snapshots.
But you can use ntbackup tool, here is the procedure:

- Launch NTBACKUP gui
- Use backup wizard (advanced)
- Choose to save system state only and choose output filename
- Wait some minutes
- Use restore wizard (advanced)
- Choise your backup, click next and use advanced button
- Choose to restore file on another location (c:\tmp\ for example)
- Choose to overwrite everything and next uncheck all restoration parameters
- Validate and wait some minutes
- Open a command shell to "c:\tmp\Active Directory"
- We need to repair the database with this command 
 #esentutl /p ntds.dit
- Validate warning and wait some minutes

ntds.dit file can now be used with quarkspwdump.

Original comment by deessk@gmail.com on 16 Jul 2012 at 9:56