- Jun 19, 2013
- 174
- 0
- 18,710
In short: I have a (local?) Admin account on a Win10 Home OS. Local with question mark because I wasn't sure it was a Microsoft account. After all, the name of the Admin account shows my email address and I've use it more than eighteen months with a PIN code login. Because I really have no need or interest in any additional apps and cloud-based MS products I never looked into that. Although I do have an Xbox 360 and perhaps out of curiosity I once did 'something' on my PC with my MS account I can not really remember -especially if my login account as such was local or not.
Last morning I wanted to sign in but to my surprise it was not asked for my PIN but for my password. All recent known to me I tried but none worked and showed the message that I should / could reset my Microsoft account password. This, of course I tried (2x) and neatly through both my iPhone as well as my e-mail account I got new verification codes and reset my password. However, could not / I can not login with this new password.
Called Microsoft helpdesk (45 min), explained my situation, the employee assured me that it was in fact a Microsoft account and not a local account because it was an e-mail address and again referred to the same already tried web page to repeat the previous trial (Trial 3). Again nothing.
Then I spent so far 9 hours non-stop to get access to my OS.
FYI: I have a dual-boot system (via UEFI) for music production (currently Win 8.1) therefore separated SSDs (3x) and HDDs (3x) and 2 seperate boot SSD's and as such can access the internet looking for troubleshooting options.
I have tried various means of several methods:
1. Hirens Boot CD: Did not start cause of ACPI problems (system not fully compliant)
2. Puppy Linux Distro Slacked: ACPI problems again,
3. Kali Linux: Process was seemingly flawless but results were absent.
4. Offline NT Password & Registry Editor: stuck on loading drivers.
5. Original Win 8.1 DVD (repair, command line, etc.) to no avail.
With the above means I tried the following scenarios:
1. 'seth' file replacement (copy X: \ windows \ system32 \ sethc.exe X: \ / copy X: \ windows \ system32 \ cmd.exe X: \ windows \ system32 \ sethc.exe)
2. Replace v.d. Utility Manager: move X: \ windows \ system32 \ utilman.exe d: \ windows \ system32 \ utilman.exe.bak copy X: \ windows \ system32 \ cmd.exe d: \ windows \ system32 \ utilman.exe)
3. Create New Account: net user <username> / add / net localgroup administrators <username> / add
4. Using Kali to alter the SAM file (chntpw -l SAM / chntpw -u "username" sam)
With nothing I gained access to my OS drive (CMD/registry) except Kali but although the process seemed fine it solved nothing (or the exact reason for failing is lost by boiling my brain).
Semi-solution: In the end I managed with a Win Repair Live Disc (no idea that I had it lying around or suspected I ever downloaded it) to access REGEDIT (none of the above and some other scenarios managed this).
Here I could finally change a registry value and activate the MS 'hidden admin' account (HKLM \ Admin \ SAM \ Domains \ Account \ Users \ 000001F4 and the value F, Row 11, 0038 to put 10).
So now I have access to my OS with this 'hidden' Admin account but (obviously) I miss programs, personal settings and it's a mess.I still want to regain access to my real account.
QUESTION: I can as a new Admin acces accountmanagement but can not delete passwords (as I believe was still an option in Win7 and as can be seen in several examples on Google). What I can uncheck is the option fot users (2 Admins now) to login without a password required meanwhile choosing a preferred account. However, if I click Apply, I get a window where I need to specify a user who is logged automatically. By default Administrator (new account?) id autofilled in as the user (but can be changed).
I do not know if and how it means that this also changes the need for entering the password for my original Admin account and whether I actually still can choose this one at login (prob not cause this setting is about setting a prefered account) or -once I'm logged in under my new account my original account is still available in settings to choose as the primary. Does anyone know this or does anyone have any other ideas how I can gain acces again to my original account? Btw, I also tried this in 'Safe Mode'.
PS.1 The only two reasons I can think of for this problem are a) that last night I just downloaded Samsung Magician to see if it had some use. I dont think I changed anything in the settings (although you can only optimization and the likes so choose a PIN / password / login problem that arises here dont seem logical, although the issues with ACPI with amongst others Hiren seem strange and might be related). Also patch tuesday installed some MS updates. Perhaps it was something in here but still, PIN/password issues seem unlikely.
PS. 2 If anyone suspects that I want to hack someone else's account, this is not the case. After all, the OS is on my SSD and all files and data on a HDD that is accessible with my new account now as well.
Sorry for the long post but I just emptied my brain before I'd forgotten everything.
UPDATE: Meanwhile, it seems obvious to me it's about a local admin account is -confusion cause of the e-mail seen at login plus my name and I've never delved too much into account management and now understand that you Admin and 'super' admin accounts. I also now understand that the methods Seth vs. Utilman are OS-dependent (Win 7/8 vs. Win10). Since my initial installation was an original Win 8 disc and the Win10 upgrade (only recently) through MS updates I kind of lost track here and also never for e.g. made a Win10 disk.
I also read that the attempted methods with current UEFI / SafeBoot func. also work differently. I still, however, find it strange that the most suggested solutions got stuck with me (ACPI problems, CMD line or inaccessible OS disk, files not visible or edit registry does not show, etc.).
UPDATE 2:
1. Via the Command Prompt: See NET USER acounts (even in Safe Mode). See only:
/ Admin - Computer - DefaulftAcccount
/Guest
/ Job completed with one or more errors.
2. Run: compmngmnt.msc Here I dont even see a folder with local users and groups. Only an Admin.
3. I opted for PIN code acces activation on my current 'meta' Admin account to see if I get the option to chose for PIN when login in under my older account but alas.. I can choose PIN/PW login with the new account but the option doesn't come up for my 'real' account.
4. I cannot even create a new users with my new Admin account, nor with config nor with dskmngmnt (in which I don't even see a subfolder 'users') but the latter is inherent to Windows 10 Home Edition.
I'm running out of options here. Also because I do not fully understand the correlation/difference between this new "super" Admin account and my regular I am afraid to fuck this up. Perhaps utility manager or seth and SAM scenarios still could work but as described the Linux distros / Hiren and alternatives do not even have access to the folders / files. Of course, I can also remove the entire account or do a clean install as a last resort, but I can not imagine that there is no simpler way.
Finally, I see that there are several freeware and commercial tools that provide a solution. I do not know if it can trust any of these though and moreover most can only remove accounts (which I can already do manually) instead of resetting the password, and then I lose all my settings and the like and a clean install almost seems more attractive.
Any knowledgeable people wlling to chip in?
Last morning I wanted to sign in but to my surprise it was not asked for my PIN but for my password. All recent known to me I tried but none worked and showed the message that I should / could reset my Microsoft account password. This, of course I tried (2x) and neatly through both my iPhone as well as my e-mail account I got new verification codes and reset my password. However, could not / I can not login with this new password.
Called Microsoft helpdesk (45 min), explained my situation, the employee assured me that it was in fact a Microsoft account and not a local account because it was an e-mail address and again referred to the same already tried web page to repeat the previous trial (Trial 3). Again nothing.
Then I spent so far 9 hours non-stop to get access to my OS.
FYI: I have a dual-boot system (via UEFI) for music production (currently Win 8.1) therefore separated SSDs (3x) and HDDs (3x) and 2 seperate boot SSD's and as such can access the internet looking for troubleshooting options.
I have tried various means of several methods:
1. Hirens Boot CD: Did not start cause of ACPI problems (system not fully compliant)
2. Puppy Linux Distro Slacked: ACPI problems again,
3. Kali Linux: Process was seemingly flawless but results were absent.
4. Offline NT Password & Registry Editor: stuck on loading drivers.
5. Original Win 8.1 DVD (repair, command line, etc.) to no avail.
With the above means I tried the following scenarios:
1. 'seth' file replacement (copy X: \ windows \ system32 \ sethc.exe X: \ / copy X: \ windows \ system32 \ cmd.exe X: \ windows \ system32 \ sethc.exe)
2. Replace v.d. Utility Manager: move X: \ windows \ system32 \ utilman.exe d: \ windows \ system32 \ utilman.exe.bak copy X: \ windows \ system32 \ cmd.exe d: \ windows \ system32 \ utilman.exe)
3. Create New Account: net user <username> / add / net localgroup administrators <username> / add
4. Using Kali to alter the SAM file (chntpw -l SAM / chntpw -u "username" sam)
With nothing I gained access to my OS drive (CMD/registry) except Kali but although the process seemed fine it solved nothing (or the exact reason for failing is lost by boiling my brain).
Semi-solution: In the end I managed with a Win Repair Live Disc (no idea that I had it lying around or suspected I ever downloaded it) to access REGEDIT (none of the above and some other scenarios managed this).
Here I could finally change a registry value and activate the MS 'hidden admin' account (HKLM \ Admin \ SAM \ Domains \ Account \ Users \ 000001F4 and the value F, Row 11, 0038 to put 10).
So now I have access to my OS with this 'hidden' Admin account but (obviously) I miss programs, personal settings and it's a mess.I still want to regain access to my real account.
QUESTION: I can as a new Admin acces accountmanagement but can not delete passwords (as I believe was still an option in Win7 and as can be seen in several examples on Google). What I can uncheck is the option fot users (2 Admins now) to login without a password required meanwhile choosing a preferred account. However, if I click Apply, I get a window where I need to specify a user who is logged automatically. By default Administrator (new account?) id autofilled in as the user (but can be changed).
I do not know if and how it means that this also changes the need for entering the password for my original Admin account and whether I actually still can choose this one at login (prob not cause this setting is about setting a prefered account) or -once I'm logged in under my new account my original account is still available in settings to choose as the primary. Does anyone know this or does anyone have any other ideas how I can gain acces again to my original account? Btw, I also tried this in 'Safe Mode'.
PS.1 The only two reasons I can think of for this problem are a) that last night I just downloaded Samsung Magician to see if it had some use. I dont think I changed anything in the settings (although you can only optimization and the likes so choose a PIN / password / login problem that arises here dont seem logical, although the issues with ACPI with amongst others Hiren seem strange and might be related). Also patch tuesday installed some MS updates. Perhaps it was something in here but still, PIN/password issues seem unlikely.
PS. 2 If anyone suspects that I want to hack someone else's account, this is not the case. After all, the OS is on my SSD and all files and data on a HDD that is accessible with my new account now as well.
Sorry for the long post but I just emptied my brain before I'd forgotten everything.
UPDATE: Meanwhile, it seems obvious to me it's about a local admin account is -confusion cause of the e-mail seen at login plus my name and I've never delved too much into account management and now understand that you Admin and 'super' admin accounts. I also now understand that the methods Seth vs. Utilman are OS-dependent (Win 7/8 vs. Win10). Since my initial installation was an original Win 8 disc and the Win10 upgrade (only recently) through MS updates I kind of lost track here and also never for e.g. made a Win10 disk.
I also read that the attempted methods with current UEFI / SafeBoot func. also work differently. I still, however, find it strange that the most suggested solutions got stuck with me (ACPI problems, CMD line or inaccessible OS disk, files not visible or edit registry does not show, etc.).
UPDATE 2:
1. Via the Command Prompt: See NET USER acounts (even in Safe Mode). See only:
/ Admin - Computer - DefaulftAcccount
/Guest
/ Job completed with one or more errors.
2. Run: compmngmnt.msc Here I dont even see a folder with local users and groups. Only an Admin.
3. I opted for PIN code acces activation on my current 'meta' Admin account to see if I get the option to chose for PIN when login in under my older account but alas.. I can choose PIN/PW login with the new account but the option doesn't come up for my 'real' account.
4. I cannot even create a new users with my new Admin account, nor with config nor with dskmngmnt (in which I don't even see a subfolder 'users') but the latter is inherent to Windows 10 Home Edition.
I'm running out of options here. Also because I do not fully understand the correlation/difference between this new "super" Admin account and my regular I am afraid to fuck this up. Perhaps utility manager or seth and SAM scenarios still could work but as described the Linux distros / Hiren and alternatives do not even have access to the folders / files. Of course, I can also remove the entire account or do a clean install as a last resort, but I can not imagine that there is no simpler way.
Finally, I see that there are several freeware and commercial tools that provide a solution. I do not know if it can trust any of these though and moreover most can only remove accounts (which I can already do manually) instead of resetting the password, and then I lose all my settings and the like and a clean install almost seems more attractive.
Any knowledgeable people wlling to chip in?
Facebook
Twitter
Instagram