Seven weapons allow you to easily crack the "recovery Genie"

Source: Internet
Author: User

In some cases, do you bother restoring the Genie? After you have just configured the system and restarted the system, you will be able to restore the original appearance. In this article, we will introduce you to the seven major methods of restoring the genie ......
Method 1: temporary solution

If you have installed a new program after you forget to restore the genie password, the software prompts you to restart the computer. Do not click "OK" and select "restart later ". Then select "Restart computer" in "Start> Shut Down System". Note that at this time, you must press and hold the Shift button, so that the computer will directly reload the system program, this bypasses the protection of the restore genie.

Method 2: long-term solutions

If you want to save your files for a long time, you must unmount the recovery genie or obtain the administrator password of the recovery genie. It is not difficult to unmount the recovery genie. There is a program on the Internet to specifically clear the recovery Genie ", after running the command, clear the password of the restore wizard. However, it should be noted that the recovery genie is an article in the MBR, which is the most important Master Boot Record on the hard disk. Therefore, it is dangerous to use this recovery genie remover.

Method 3: Use the initial password

The recovery card has a default initialization password. If you have not modified the default password, it will be much simpler, because the default password of the recovery genie is 12345678!

Method 4: write a letter to ask for a password

When the Restore tool is installed, the tool readpwd.exe is provided. You can run readpwd.exe to obtain the password of the Restore tool. The format is similar to this: [DB] [B8] [5E] [79] [3E] [3B] [5E] [C5] [BD] [B2: info@yuanzhi.com.cn, only one or two days to get the password sent from the software developer.

In this way, the password of the reset genie can be obtained in a few simple steps without any software! In turn, anyone can use this method to get the password of the recovery genie, including restricted users! To save the password reading tool readpwd.exe, you can change its name to hidden or simply delete it.

Method 5: rewrite the primary Boot Sector

The restore wizard intercepts the underlying function calls of the system and leaves its own traces in the master boot area of the hard disk. The primary boot area of the hard disk stores the system's primary boot information and partition information. Generally, viruses are very interested in it. If we can occupy the primary Boot Sector (MBR) of the hard disk before the recovery genie, we can have the maximum management permissions on the hard disk. In other words, the recovery genie has been "killed" by us.

Based on the above principle, use the fidisk/mbr command to overwrite the primary Boot Sector, and then restart the computer, so that the restore Wizard will be gone.

Method 6: Use the hexadecimal file editor

The Memory search and editing function of WinHex helps us retrieve the lost reset genie password. Specifically, right-click the restore wizard icon in the lower-right corner of the taskbar, select "parameter settings> Change Password" in the pop-up menu, enter the old password in the dialog box, and enter a few random numbers, such as 123456; enter the new password in the new password box, and enter 371042 randomly. Click "OK.

The old password is incorrect because we entered the password randomly. A dialog box is displayed, prompting you that the password is incorrect. Do not click "OK, run the hexadecimal file editor WinHex, click "RAM Editor" in the "Tools" menu, and find "Main Memory" under Hddgmon in the open window ", hddgmon here is the process of restoring the genie.

Finally, click the "Search> Search for text" menu option in WinHex, and add the fake password 371042 you entered in the window that opens. After clicking "OK", the real password will appear in front of us!

Principle: After the password is entered, the software calculates the real password by using the internally defined method, and compares it with the entered password. This comparison process is performed in the memory. WinHex has excellent memory editing functions. Therefore, you can search for input strings in the memory to find them. In general, the comparison of true and false passwords is very close, so that we can easily find them.

Method 7: Use the reset genie password to read the software

Through Method 6, we can easily conclude that the recovery genie has the vulnerability of storing plaintext passwords in the memory. By using this software, the recovery genie password can be easily obtained. The software is easy to use. You only need to open the "Change Password" Window of the restore genie or the "check administrator password" window without entering any password, by clicking the "read" button of the software, the password is automatically read from the memory of the recovery genie.

 

Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.