How to retrieve EFS encrypted files in Windows XP system

Let me explain to you what EFS is. EFS encryption is based on public key policy and is transparent to users. This means that if you encrypt some data, then your access to the data will be completely allowed and will not be subject to any restrictions. Friends who use Windows XP know that the most annoying thing for them is to forget to export the certificate of the backup EFS encrypted file when reinstalling the system. What should I do if I encounter this situation? Can't you watch these files can't be used? Would you like to re-use these encrypted files? Then come with me, but this method of decrypting files requires a encrypted file. of.

Requirement: The EFS encrypted file certificate is not backed up. The encrypted file is only used for the folder encryption, but the subfiles and subfolders are not encrypted, and no new files are added to the folder. . If the files inside are also encrypted, this method can't do anything about it.

Taking the author's operating system as an example, the author's system is Windows Me/XP dual operating system. In order to enable Windows Me to access the Windows XP file system, Windows Me needs to be equipped with NTFS For 98. Very critical.

Reminder: The software uses 7 system files in Window XP, they are: autochk.exe, C_437.NLS, C_1252.NLS, L_INTL.NLS, NTDLL.DLL, NTFS.SYS, ntoskrnl .exe.

First enter Windows Me, then find the encrypted folder and copy the files inside to any folder. Then, open the file and see if the content of the file is what you want.

However, this method is not very applicable, because most people have added all the files. Therefore, it is necessary for us to back up the certificate of the EFS encrypted file in peacetime, so as not to "repent for a lifetime". In the case that the encrypted file certificate has been backed up, you can use the following method to retrieve the encrypted file:

Backup Key: When there is a backup key, we will not be afraid to open the system. Secret file. Click “Start →Run”, enter “certmgr.msc” in the “Run” dialog box to open the Certificate Manager, click “Certificate → Current User”Personal & Rarr;Certificate” ; (Can't see? How can you have a certificate without encrypted files?) Select “Certificate" right click, select “All Tasks & Rarr; Export”, select in the pop-up "Certificate Export Wizard" “ Export private key & rdquo;, then select the directory to save the certificate, press Enter, the private key will be successfully exported.

When you want to reinstall the system, you can import the original private key.

Set up the Windows Recovery Agent (hereafter the magic user is an example):

STEP1: First log in to the system as magic user.

STEP2: Enter “cipher /r:c:magic”(magic can be any other name) in the "Run" dialog box. Enter a password after entering the car. Just enter a carriage return. The magic.cer and magic.pfx files appear in the c drive.

STEP3: Install the magic.pfx certificate, enter the password of the protection certificate you just set, and press NEXT to complete the certificate installation.

STEP4: At “Start →Run"Enter>gpedit.msc”, open the Group Policy Editor, in “Computer Configuration →Windows Settings →Security Settings →Public Key Strategy &rarr Under Encrypting File System, right click on the pop-up menu, select “Add Data Recovery Agent”, open “Add Recovery Agent Wizard”, open magic.cer, then press the next step to complete the recovery. Proxy settings. Finally, you can use the magic username to decrypt the encrypted file.

If the efs file is lost, you can use the above method to retrieve it. After all, some encrypted files are still very important to everyone, but remind everyone that the problem of encryption or ordinary files is usually Save it so you don't have to get back.