Sometimes, life happens, and you wind up with a forgotten password in Windows and have to break into the system. The below article was written for Windows l0, but the creation of an administrator account by copying some critical files about 1/3rd of the way down the page works in Windows 7 as well. All you need is a boot USB to enter Windows PE mode (or you can boot into Linux and do the same thing).

Thankfully, the process of recovering your password in Windows 10 is much the same as it has been in Windows 8 and above, albeit with a few slight tweaks. Here’s how you can recover both your Microsoft Live 10 login, as well as the credentials for any other users registered with the local machine.

~ How to Reset Your Forgotten Password in Windows 10

The short of it:

  1. Boot into Windows PE (or Linux).
  2. Navigate to the OS drive (mount it if in Linux and cd to where you mounted it).
  3. Change into the Windows\System32 directory.
  4. Rename Utilman.exe to Utileman.exe.bak.
  5. Copy cmd.exe to Utilman.exe.
  6. Reboot into Windows.
  7. When it comes to the login screen, click on the Accessibility button. This will open a command prompt.
  8. Create a new user. For example: net user John /add
  9. Add new user to local administrator group. For example: net localgroup Administrators John /add
  10. Reboot.
  11. Login as the new user. You now have free reign to enable the built-in Administrator account, or change passwords on local accounts.
  12. Don’t forget to copy the Utilman.exe.bak back to Utilman.exe and cleanup the temporary account.

It seems that most banks are stupid. However, you usually at least have to look for the stupidity. The “Bank of the West Online and Mobile Service Agreement” is stupid and out in the open for all to see.

Some things still flabbergast me. Tonight, I wanted to deposit a check into my Bank of the West account, and the mobile app forced me to accept some updated agreements. No problem, I thought, I’ll just skim through them and be done lickety-split. The first one was tedious enough, but then I got to the “Bank of the West Online and Mobile Banking Agreement”, I was presented with a book that only a lawyer could love. I mean, it went through definitions, acceptable use, disputes and more. I downloaded the PDF, and it literally is 59 pages!

But that’s not all.
Continue reading ““Bank of the West Online and Mobile Service Agreement” Is Stupid”

Some people like to have voicemail forwarded to email, but when they try to listen, the attachment won’t open. That’s because Outlook SecureTempFolder is full. Here’s how to automatically empty it upon closing Outlook.

In Outlook SecureTemp Files Folder and Red X’s in Email Messages I explain what the SecureTemp folder is and issues that result from a “full” SecureTemp folder. I also tell you how to find the folder and empty it manually.

While you can delete the contents of the SecureTempFolder manually, you may want to delete the folder each time you close Outlook.

Source: Clear SecureTempFolder automatically using VBA

TLDR: Here is the script that you add to ThisOutlookSession using the VBA script editor ([Alt]-[F11]):

Option Explicit

'If you prefer to run this manually whenever you feel like it, change Private Sub Application_Quit() to Public Sub EmptySecureTemp() and run it as needed.
Private Sub Application_Quit()
' Deletes the files of the SecureTempFolder (OLK) when closing Outlook
' (c) Peter Marchert - //
' 2008-11-06 Version 1.0.0
Dim objFSO As Object
Dim objWsh As Object
Dim objFolder As Object
Dim strRegKey As String
Dim strOLK As String

On Error Resume Next
' To read data from the registry

Set objWsh = CreateObject("WScript.Shell")

' Set the registry key to read

strRegKey = "HKEY_CURRENT_USER\Software\Microsoft\Office\%.0\Outlook\Security\OutlookSecureTempFolder"

' Read SecureTempFolder from the registry

Select Case Left(Outlook.Version, 2)
Case "9.": strOLK = objWsh.RegRead(Replace(strRegKey, "%", "9"))
Case "10": strOLK = objWsh.RegRead(Replace(strRegKey, "%", "10"))
Case "11": strOLK = objWsh.RegRead(Replace(strRegKey, "%", "11"))
Case "12": strOLK = objWsh.RegRead(Replace(strRegKey, "%", "12"))
Case "14": strOLK = objWsh.RegRead(Replace(strRegKey, "%", "14"))
Case Else
MsgBox "Cannot determine your Outlook version.", vbCritical + _
vbOKOnly, "Delete OLK"
Exit Sub

End Select

' VBA does not provide comfortable functions to delete files, so we use
' VB-Script.

Set objFSO = CreateObject("Scripting.FileSystemObject")

' Delete all files in the SecureTempFolder (True = force deleting)

Call objFSO.DeleteFile(strOLK & "*.*", True)

' Reference the SecureTempFolder

Set objFolder = objFSO.GetFolder(strOLK)

' Open the folder if it is not empty

If objFolder.Files.Count Then Call Shell("explorer.exe " & strOLK)

' Clean Up

Set objFolder = Nothing
Set objFSO = Nothing
Set objWsh = Nothing
End Sub

Turns out, the remote desktop slow problem is a very old problem, and here is a 2007 article explaining its fix.

Remote Desktop slow problem solved Remote Desktop 6.0, the latest version of Microsoft Remote Desktop client, which comes pre-installed microsoft, RDP, Receive Window Auto-Tuning, remote access, Remote Desktop 6.0, Vista, Windows

Source: Remote Desktop slow problem solved

What’s old is new again. I was amazed to get a support ticket the other day where a user with a brand new setup was complaining that remoting into her desktop was slow. I had just finished setting it up from scratch a couple of days before another tech deployed it on her desk. Something told me the answer must be on the machine she was using locally, but I couldn’t figure out how that could be until I read the above article.

TLDR: Use the command: netsh interface tcp set global autotuninglevel=highlyrestricted

Equifax has lost the keys to the kingdom in the latest security breach.

Today, it came out that “Equifax Says Cyberattack May Have Affected 143 Million Customers” in the latest Equifax security breach. While the number alone falls well short of some other recent hacks, the potential for damage makes it even more serious than both Yahoo! breaches combined. The Yahoo! breaches were serious enough because password resets usually take place via email, but at least that requires the data thieves to work harder to get more information. Since Equifax has all credit data, including Social Security numbers, it is a one-stop shop for hackers. It is sufficient information for identity thieves to present to creditors, lenders and other service providers, to include information that identifies a person as the legitimate account holder.

“This is about as bad as it gets,” said Pamela Dixon, executive director of the World Privacy Forum, a nonprofit research group. “If you have a credit report, chances are you may be in this breach. The chances are much better than 50 percent.”

While there is no evidence that “core … reporting databases” were breached, the potential exists, and, as a result, Equifax has set up a website Cybersecurity Incident & Important Consumer Information where you can put in your last name and last six of your SSN to check whether or not you qualify for free credit monitoring.

Sadly, that falls far flat from a real solution, because once the information is out there, it is out there, and it can impact someone years from now. It really is time that companies that are negligent with personal identifying data be legally liable for their lack of safeguards.