Resetting system password on Win 10

Last edited:
tf76 said:
https://www.top-password.com/knowledge/clear-windows-password-with-parted-magic.html

I've used TRK for Win 8 and it worked in the past. Not too sure about Win 10.

Another tool which is quite cheap is:
https://www.lazesoft.com/buynow.html

Has support for UEFI/secure boot. I bought this on-special last year. Have used it a couple of times with no issues.

Regards,
Click to expand...

Thanks for the reminder. Forgot parted used chntpw from Nordahl. After seeing those screen shots I remember using it. Much easier than trying to burn just chntpw. I've switched to Gandalf's PE since it has many more M$ based tools available.
 
+1 for PC Unlocker. I've used both dvd & usb, never had a system it failed on. Assuming you can get the pc to boot from external media, that is.
 
katz said:
Assuming you can get the pc to boot from external media, that is.
Click to expand...
If you force a loss of power 3x in a row during the boot up process it will get you to the start up repair menu where you can boot from windows installation media or access bios to turn off secure boot. This may be difficult for a fast laptop with a built in battery and an nvme ssd.

From there, to reset local account password and/or bypass a MS account:

You can boot from the Windows installation media and select "repair your computer", "troubleshoot","system image recovery", "select a recovery image","advanced","install a driver", "ok (for add drivers)", which will open an explorer menu. Then you navigate to the windows\system32 directory. Make sure you are on the actual boot drive as it will not be "C:". Locate the file "Magnify.exe" file and rename it to something else, like magnify1.exe. Then copy and rename cmd.exe to magnify.exe. Now reboot from the C drive and at the password screen, select the ease of access icon in the lower right of the screen, then select "magnifier", which will open a command prompt. Use the command prompt "net user username newpassword" to reset the password, or to bypass an MS account use "net user /add newusername password" and "net localgroup administrators newusername /add" to add a new local account. Now you are in.

Just remember at this point, magnifier is now broken and you may want to put thing back if you think the customer may need them.
 
Last edited:
I may have dreamt it, but I think I saw somewhere that later versions of Windows have stopped that kinda thing. As well as the utilman.exe trick.

Anyone? :)

alluseridsrejected said:
If you force a loss of power 3x in a row during the boot up process it will get you to the start up repair menu where you can boot from windows installation media or access bios to turn off secure boot. This may be difficult for a fast laptop with a built in battery and an nvme ssd.

From there, to reset local account password and/or bypass a MS account:

You can boot from the Windows installation media and select "repair your computer", "troubleshoot","system image recovery", "select a recovery image","advanced","install a driver", "ok (for add drivers)", which will open an explorer menu. Then you navigate to the windows\system32 directory. Make sure you are on the actual boot drive as it will not be "C:". Locate the file "Magnify.exe" file and rename it to something else, like magnify1.exe. Then copy and rename cmd.exe to magnify.exe. Now reboot from the C drive and at the password screen, select the ease of access icon in the lower right of the screen, then select "magnifier", which will open a command prompt. Use the command prompt "net user username newpassword" to reset the password, or to bypass an MS account use "net user /add newusername password" and "net localgroup administrators newusername /add" to add a new local account. Now you are in.

Just remember at this point, magnifier is now broken and you may want to put thing back if you think the customer may need them.
Click to expand...
 
Cambridge PC Support said:
I may have dreamt it, but I think I saw somewhere that later versions of Windows have stopped that kinda thing. As well as the utilman.exe trick.

Anyone? :)
Click to expand...
How exactly would MS go about "fixing" it? This is why secure boot is SO STUPID. Other than encrypted drives and hard drive passwords, assuming they did try and do something, the next obvious step is to pull the drive and slave it to another computer where you could do what ever you want to it. Copy the files off, format it, put back in the computer and install windows and reload the files. Like to see the stop that..
 
Cambridge PC Support said:
I may have dreamt it, but I think I saw somewhere that later versions of Windows have stopped that kinda thing. As well as the utilman.exe trick.

Anyone? :)
Click to expand...

I believe current versions of windows 10 check the files before booting to the desktop and will kill the files that were replaced with cmd.exe and renamed. As far as i know the trick still works if you tell Windows 10 to boot into safe mode before booting from the install media and changing the files around. Once you change the files.. the next windows boot will boot into safe mode and the file check will not happen. At that point, you can continue to the command prompt and change your passwords. Hope that was clear.

I've started using Parted Magic's password tool recently, so I haven't tested this in 3 or 4 months, but I have used it successfully in the past.
 
TechLady said:
So far as I can see, that doesn't do anything much with password issues.
Click to expand...

PartedMagic is just a convenient way to mount the filesystem. From there any number of utilities work, but honestly... PCUnlocker is so cheap and easy to use it's just not worth the time to do it the hard way anymore. It pays for itself on the first job in time saved, and then you have it to use for the next.

If the drive is encrypted, you're SOL format C: to get the unit back unless the user has the decryption key.
 
Sky-Knight said:
PartedMagic is just a convenient way to mount the filesystem. From there any number of utilities work, but honestly... PCUnlocker is so cheap and easy to use it's just not worth the time to do it the hard way anymore. It pays for itself on the first job in time saved, and then you have it to use for the next.

If the drive is encrypted, you're SOL format C: to get the unit back unless the user has the decryption key.
Click to expand...


I agree, paying for a cheap tool that works will pay for itself quickly when you realize the "safe mode/file rename/reboot and change password" routine burns 15 minutes a pop and sometimes you just can't get the timing right.

Parted Magic does include a password reset tool on the ISO... it's command line and a bit convoluted, but lets you blank local passwords and unlock accounts easily.

That said, I took a look at PCUnlocker and almost bought it, then realized PM (which I already owned) had the built in tool. My thought is that I will most likely buy PCUnlocker next time I need to break into a box as it has more features and I like a nice gui. I'm old enough that I need all the help I can get... LOL
 
Abramsgunner said:
Parted Magic does include a password reset tool on the ISO... it's command line and a bit convoluted, but lets you blank local passwords and unlock accounts easily.
Click to expand...
(My emphasis.) That's the problem – chntpw doesn't work with Microsoft accounts, so you need another tool to hand (PCUnlocker), which you might as well use every time.
 
Mick said:
NT Password (CHNTPW) does still work - but only on local accounts.
Click to expand...

I actually used this today on a client's pc. They had an employee leave and didn't know how to get in. I have used this tool many times but saw a different issue this time. I kept getting a message like volume is hibernated (I didn't note the exact message). I tried getting past it with all the suggestions to no avail. I had the thought to disconnect it from the internet, then tried again with the standard steps and was successful.
 
exodus said:
the most reliable password reset for local account on win10 is get a copy of DaRT.
Click to expand...
Does it work on a variety of machines with different OS versions without having to recreate the DaRT recovery drive?
Why do you say it's the most reliable? I've never had a Windows password that can't be removed by PCUnlocker, plus it can handle MS account logins (by changing them back to local).
 
PCUnlocker also does that...
Key Features & Benefits
  • 100% recovery rate.
  • Reset local Administrator and other account passwords.
  • Reset forgotten passwords for Active Directory accounts.
  • Change or reset domain administrator passwords on Windows AD (Active Directory) Server.
  • Enable and unlock Windows account that is disabled, locked out or expired.
  • Promote any standard / limited user account to administrator.
  • Bypass Windows user password without overwriting your old password.
  • Reset Windows passwords with a bootable CD, DVD or USB flash drive.
  • Support password reset for Windows 10 / 8 local account and Microsoft account.
  • Support Windows 10 / 8 computers with UEFI Secure Boot, including Microsoft Surface Pro.
  • Support Windows 10/8/7/Vista/XP, Windows Server 2000, 2003, 2008, 2012, 2016.
  • Remove logon time restrictions on local account and Active Directory account.
  • Disable "Force Smart Card Login".
  • Simple, intuitive graphic interface.
  • FREE technical support.
Click to expand...
 
I suggest using some free software first, if not successful, then try other non-free software.By the way, although free software does not charge any fees, it will take a long time.
 
i do password resets often for $49. But i need the pc / laptop etc in store. Takes 10mins. I am based in the northern beaches of perth western australia.Im not going to tell you what i use because i don't think it should be public information. Hint: it is none of those mentioned so far, and is not available to the general public and you can't download it online.
 
You must log in or register to reply here.

Similar threads

thecomputerguy
Further challenged by a client I politely tried to fire.
Replies
3
Views
4K
britechguy
britechguy
frederick
Windows VM on Mac OSX - Your Doomed Network
Replies
3
Views
1K
frederick
frederick
M
Windows 7 Password Reset
2
Replies
24
Views
7K
praondevou
P
HubCityPC
MS DaRT
Replies
4
Views
3K
Martyn
Martyn
Back
Top