Retrieve 7 "keys" to restore the sprite password

If you forget to restore the password of the wizard, the trouble is big. This method cannot be solved by uninstalling the software, because it is also necessary to enter a password when uninstalling. What should I do? Don't worry, I have a way!

Method 1: Temporary Solution
If you forget to restore the wizard password, you have installed a new program, the software prompts to restart the computer, do not click the "OK" button at this time, select "Restart later" ". Then select "Restart Computer" in "Start → Shut Down System". Note that you must hold down the Shift button at this time, so the computer will directly reload the system program, bypassing the protection of the Restore Wizard.

Method 2: Long-term solution
If you want to save your own files for a long time, you must uninstall the restore wizard or get the administrator password of the restore wizard. It is not difficult to uninstall the restore wizard. Clear the Restore Wizard's program "Restore Wizard", and directly clear the password of the Restore Wizard after running. However, it should be noted that since the Restore Wizard is an article in the MBR, the most important master boot record of the hard disk, there is a certain danger in using this Restore Wizard.

Method 3: Using the initial password
The restore card has a default initialization password. If you have not modified its default password at all, it is much simpler, because the default password of the restore wizard is 12345678! Simple?

Method 4: Write a letter to request a password
When you install the restore wizard, there will be a restore wizard auxiliary tool, that is, the vendor-supplied password reading tool readpwd.exe, you can also get the restore wizard Encrypted password, the format is similar: [DB][B8][5E][79][3E][3B][5E][C5][BD][B2], send the encrypted password to this mailbox: info@yuanzhi .com.cn, you can get the password from the software developer in just one or two days.

This way, you don't need any software, you can get the password of the restore wizard in a few simple steps! Conversely, anyone using this method can get the password of the Restore Wizard, including restricted users! So everyone should save the password reading tool readpwd.exe, rename it hidden or simply delete it, so it is much safer.

Method 5: Rewrite the main boot sector
The restore wizard intercepts the underlying function call of the system and leaves its own trace in the main boot area of ​​the hard disk. The main boot area of ​​the hard disk stores the main boot information and partition information of the system. Generally speaking, the virus is very interested in it. If we can preempt the main boot sector (MBR) of the hard disk before the restore wizard, then we can have the most management rights to the hard disk, in other words, the restore wizard has been "killed" by us.

According to the above principle, use the fidisk/mbr command to rewrite the main boot sector, and then restart the computer, so the restore wizard will be gone.

Method 6: Using the hex file editor
WinHex's memory search editing function can help us retrieve the lost restore sprite password. The specific method is: right click on the restore wizard icon in the lower right corner of the task bar, select "Parameter Settings → Change Password" in the pop-up menu, enter the old password in the dialog box, fill in a few numbers such as 123456; enter in the new password box The new password, here also filled in a 371042, and finally click the "OK" button.

Since we are a random password, the old password will not be correct. A dialog box will pop up, indicating that the password is incorrect. Be careful not to click the "OK" button and run the hexadecimal code. File editor WinHex, click "RAM Editor" in the "Tools" menu, find the "main memory" under Hddgmon in the open window, where Hddgmon is the process of restoring the sprite.

Finally, click on the "Search → Find Text" menu option in WinHex and add the fake password 371042 that you just filled in. After clicking "OK", the real password will appear in front of us!

Principle: After entering the password, the software will calculate the real password using its internally defined method, and compare it with the entered password. The comparison process is performed in memory. Because WinHex has excellent memory editing capabilities, it is found by searching the input strings in memory. In general, the comparison of true and false passwords is so close that we can easily find them.

Method 7: Using the Restore Wizard to read the software
Through Method 6, we can easily conclude that the Restore Wizard exists in the memory to store the plaintext password vulnerability, restore the wizard password reading software, use the software can Easily get the password for the Restore Wizard. The software is very simple to use, just open the Restore Wizard's "Change Password" window or the "Check Administrator Password" window, and then do not need to enter any password, just click the "Read" button of the software, it will automatically restore from The password is read in the memory of the sprite.