We have a machine here that is unable to boot into windows 2000 even in Safe Mode, or Last known Good etc... It is also unable to be recovered through recovery console. The problem is this: on one folder on the hard drive, EFS encryption was enabled by accident. I need to recover this data. I have been fiddling with Security for weeks taking ownership and full rights to the directory. However, any file that has EFS on it, is inaccessable. Does anyone have any suggestions? So far I have made this unbootable win2k NTFS drive a slave under a working machine. I have been able to move over most of the data except for that directory.

There is a tool on Resource Kit:
efsinfo [/u] [/r] [/c] [/i] [/y] [/s:Dir] [Pathname [...]] [/?]

Where:

/u
displays encryption information about the files and folders in the current folder. This is the default option: running efsinfo without switches produces the same output.
/r
displays recovery agent information.
/c
displays certificate thumbnail information.
/i
continues performing the specified operation even after errors have occurred. By default, EfsInfo stops when an error is encountered.
/y
displays the current Encrypting File System (EFS) certificate thumbnail on the local computer. The files specified might not be on this computer. If no items are returned, there are no encrypted files on the system.
/s:Dir
performs the specified operation on directories in the given directory and all subdirectories.
Pathname [...]
specifies the path of one or more files or directories for which to display encryption information.
/?
displays command-line help


Do you think I would be able to access this through booting from a win2k cd, using recovery console. How can I then turn off the darn encryption? You only have like 10 commands available in Recovery right? Cipher.exe is not one of them :(


-Gabe