No need to use any device to crack the power on password of Win7, Win8 and Win10

At the thought of the power on password, many people will use PE if they forget it, but sometimes they do not carry a PE USB flash disk with them. Next, we will introduce a method to solve the problem of forgetting the password.

Implementation principle:
Rename with sethc.exe File is cmd.exe , create a new account, increase administrator authority, and modify the original password.

WIN7 operation steps:
1) Normal startup, forced shutdown when the startup logo appears on Windows, and then select Startup Repair after restart
2) Start automatic repair, wait patiently for a while, and select "When you want to use System Restore to restore your computer" cancel
3) Then display the problem details, pull to the bottom to open the last link
4) Click to open the file - direct to C:/windows/system32
5) First cmd File changed to aaa , and then sethc File changed to cmd , restart after modification
6) When you arrive at the login interface, directly press' shift 'for 5 consecutive times to display the command line
7) Use the following command to add or modify the user password:

 Net user lcry lcry123/add//Add a user with lcry as the user and lcry123 as the password Net localgroup Administrators lcry/add//Promote lcry to super administrator Net user//View all users and confirm that the lcry is created successfully

8) Use a new user to log in and change the password of the previous user, and then restore it cmd by sethc , Restore aaa by cmd

Operation steps of WIN8 and WIN10:
1) The principle is the same, but the only difference is that win8.win10 directly uses the command prompt in advanced functions
2) Normal startup, forced shutdown when the Windows startup logo appears, select Advanced Options - Troubleshooting - Advanced Options - Command Prompt
3) Enter in the administrator window diskpart Enter, and then enter list volume Enter exit Exit the diskpart tool. This operation mainly confirms the drive letter of the system disk.
4) Navigate to cd C:Windows\System32 , will cmd File changed to aaa , and then sethc File changed to cmd , restart after modification
5) When you arrive at the login interface, directly press' shift 'for 5 consecutive times to display the command line
6) Use the following command to add or modify the user password:

 Net user lcry lcry123/add//Add a user with lcry as the user and lcry123 as the password Net localgroup Administrators lcry/add//Promote lcry to super administrator Net user//View all users and confirm that the lcry is created successfully

7) Use a new user to log in and change the password of the previous user, and then restore it cmd by sethc , Restore aaa by cmd

Note: For win8 and win10, if the network user directly accesses the network to retrieve the password, this method is aimed at forgetting the local account password.

Successful~~~~Successful personal test on September 21, 2018

Reference link:
https://jingyan.baidu.com/article/e75aca8500c345142fdac67a.html
https://blog.csdn.net/xiaoaps/article/details/79963389
https://jingyan.baidu.com/article/0aa223756cd2e388cc0d6436.html