This is a (problem) feature with SQL2K profiler after you have patched SQL Server 2000 to SP4. Use SQL Server 2005 Profiler. It will let you trace statements that includes password. Alternatively, if you must use SQL2K SP4 profiler, here is a tool that might help you http://www.andreabertolotto.net/Articles/SP4BlacklistedWordsRemover.aspx