八八論壇 Forum88 首頁 八八論壇 Forum88
天南地北八一八,一舒己見安樂哂
[常用網址]
 
 常見問題常見問題   搜尋搜尋   會員列表會員列表   會員群組會員群組   會員註冊會員註冊 
 個人資料個人資料   登入檢查您的私人訊息登入檢查您的私人訊息   登入登入 

解你燃眉之急 12種常用的密碼破解法

 
發表新主題   回覆主題    八八論壇 Forum88 首頁 -> 電腦軟件
上一篇主題 :: 下一篇主題  
發表人 內容
帝國
管理員
管理員


註冊時間: 2006-08-28
文章: 39291
來自: 帝國

發表發表於: 星期二 五月 13, 2008 2:42 pm    文章主題: 解你燃眉之急 12種常用的密碼破解法 引言回覆

在日常操作中,我們經常要輸入各種各樣的密碼,例如開機時要輸入密碼,QQ時也要先輸入密碼,假如你忘記了這些密碼,就有可能用不了機器、打不開文件、不能聊天...。
  也許還會造成很大的損失!下面我們就介紹電腦操作中常用密碼的破解方法,希望能解你燃眉之急!
  一、遺忘了SYSTEM密碼
  如果你遺忘了CMOS設置中的SYSTEM密碼,就無法啟動機器了,解決的辦法只能是:打開機箱,把電池取下、正負極短接,給 CMOS放電,清除CMOS中的所有內容(當然也就包括密碼),然後重新開機進行設置。
  注意:有些主板設置了CMOS密碼清除跳線,請參照主板說明書將該跳線短接,這樣也可以清除CMOS密碼。
  二、遺忘了SETUP密碼
  遺忘了該密碼,就不能進行CMOS設置了。如果你能使用計算機 ,但不能進入CMOS設置,可以這樣解決:在DOS狀態下啟動DEBUG ,然後輸入如下命令手工清除SETUP密碼:
  _ o 70 16
  _ o 71 16
  _ q
  你也可以 用CMOS密碼破解軟件來 顯示CMOS密碼,這樣的軟件有很多,例如Cmospwd,它支持Acer、AMI、AWARD、COMPAQ、DELL、IBM、 PACKARD BELL、PHOENIX、ZENITH AMI等多種BIOS),在DOS下啟動該程序,CMOS密碼就會顯示出來 。
  三、遺忘了Windows登錄密碼
  WinMe/98下對策:開機後按F8鍵選擇DOS啟動,然後刪除windows 安裝目錄下的*.PWL密碼文件、以及Profiles子目錄下的所有個人信息文件,重新啟動Windows後,系統會彈出一個不包含任何 用戶名的密碼設置框,此時無需輸入任何內容,直接單擊“確定”,登錄密碼即被刪除。
  另外,將注冊表數據庫HKEY_LOCAL_MACHINE、Network、Logon 分支下的UserProfiles修改為“0”,然後重新啟動Windows也 可達到同樣目的。
  WinXP/2000下對策:刪除系統安裝目錄\system32 \config下的SAM文件,重新啟動,此時管理員Administrator賬 號已經沒有密碼了,用Administrator帳戶登陸系統,不用輸入任何密碼,進入系統後再重新設置登陸帳戶密碼即可。
  四、遺忘了Windows屏保密碼
  解決方法:在開機後按F8鍵,選擇安全模式啟動,進入Windows 後,右擊桌面空白處,從彈出的快捷菜單中選擇“屬性”/屏幕 保護,取消“密碼保護”即可。
  五、遺忘了Windows電源管理密碼
  Windows的電源管理功能也可以設置密碼,啟用此功能後,當系 統從節能狀態返回時就會要求輸入密碼。
  如果你遺忘了該密碼,可以使用前面破解Windows登錄密碼的那 種方法去破解
六、遺忘了微軟Office密碼
  解決方法:使用破解Office系列文檔密碼的軟件,這樣的軟件有很多,例如AOPR,該軟 件可以同時對微軟Office系列Word、Excel及Access等軟件所生成的密碼進行破解,還可以對Word的*.DOT模板文件的密碼進行搜索。
  七、遺忘了WinZip壓縮包密碼
  解決方法:用軟件UZPC(Ultra Zip Password Cracker,找回丟失的密碼。使用該軟件時要先設置適當的解密 方式,例如“後門方式”、“窮舉方式”、“字典方式”和“ 模式匹配方式”等,一般采用“Brute Force窮舉方式”,然後軟件就會對所有可能的密碼進行測試, 直至找出最後的結果。
  八、遺忘了RAR壓縮包密碼
  遺忘了RAR壓縮包密碼後,你可下載一個CRARK軟件來對其進行破解,它主要通過命令行來實現對RAR壓縮包的密碼進行破解。使用時一般只需直接使 用“CRARK RAR壓縮包文件名”命令,利用缺省參數即可進行破解。
  九、遺忘了QQ/ICQ密碼
  為保護QQ密碼,你應該趕快到這裡 申請密碼保護。假如你忘記了QQ密碼、或者密碼被盜時 ,只需填寫正確的信息即可取回。
  如果你要找回 ICQ密碼,可以使用軟件ICQ Password Revealer,這是一個DOS下的命令 行實用軟件,你只需在ICQ安裝文件夾的NEWDB子文件夾下執行 該文件,然後按照屏幕提示輸入自己的UIN,系統即會找回“久 違”的ICQ密碼。
  十、遺忘了OE密碼
  如果你忘 了密碼,無法進入OutLook Express閱讀收到的郵件、使用通訊簿等,可以這樣破解:重啟 計算機並按F8,選擇“安全模式”,再啟動OE就不需要密碼了 ,然後你可以重建一個用戶(不能修改密碼),把信息導入新用 戶信箱即可。
  十一、遺忘了Foxmail帳戶密碼
  解決方法:消除忘記的Foxmail帳戶密碼。首先打開Foxmail,新 建一個帳戶(帳戶名任意,例如如lacl1),然後退出Foxmail;運 行Windows資源管理器,找到Foxmail\MAIL\lacl1文件夾,裡邊有個“account.stg”,把它復制到忘記密碼的帳戶(例如 “lacl”)目錄中,直接覆蓋原來的“account.stg”文件;再重 新運行Foxmail,打開忘記密碼的帳戶,呵呵,怎麼連“口令提 示框”也沒有?現在你就可以直接打開忘記密碼的帳戶,而且帳戶中原來的郵件一封都不會少!
  十二、查看“*”密碼
  許多密碼在屏幕上都是以“*”顯示的,因此我們無法直接看到 密碼的原始字符,如果你使用專門破解“*”密碼的軟件,即可 查出這些密碼的原始字符。
  這樣的軟件有很多,例如Win2000/Win98下你可用iOpus Password Recovery,WinXP下可用Password Spectator Pro 。使用時,只需先打開顯示“*”的窗口,啟動這類軟件,然後 按住Ctrl鍵、在密碼欄中按下鼠標左鍵,這些“*”密碼的原始 字符就會顯示出來了。
_________________
微笑----生命的活泉.享受人生,享受每一個由心的微笑


在生命中不管遇到任何困難,都不要失去臉上的笑容。
回頂端
檢視會員個人資料 發送私人訊息
PC-BOY
管理員
管理員


註冊時間: 2004-10-15
文章: 376

發表發表於: 星期三 七月 13, 2016 10:28 pm    文章主題: 引言回覆

=========================================================================
CmosPwd
Christophe GRENIER
grenier@cgsecurity.org
http://www.cgsecurity.org
=========================================================================

CmosPwd is a cmos/bios password recovery tool.
CmosPwd is under GNU Public License. You can freely distribute it.
It can be compiled under Dos, Windows, Linux, FreeBSD and NetBSD.

Platforms
- Dos-Windows version
Well, ... it works!

- Linux && BSD version
Users can work on cmos backup but they need root priviledge to
use ioperm function to have full access to cmos.

- Windows NT, 2000, XP, 2003
To work on cmos memory, ioperm need to be installed and running.
ioperm gives direct port I/O access for specified ports to user-mode process
(ring 3) using Ke386SetIoAccessMap and Ke386IoSetAccessProcess kernel functions.

1- You need administrator priviledges to install this driver
"ioperm.exe -i"
2- Start the service if needed with "net start ioperm"
3- Run "Cmospwd_win.exe"

WARNING: You should disable or uninstall ioperm
with "ioperm.exe -u" if you don't want to decrease
your security!

---------------------------------------------------
---------------------------------------------------
? Typical Usage for DOS and all Windows users ?
---------------------------------------------------
---------------------------------------------------

1) Identify your BIOS manufacturer (usually displayed at boot-up)

2) Start in DOS, or start a DOS session in Windows 95/98/ME.
For Windows NT or Windows 2000 boot from a DOS or Windows 95/98 boot
disk (you can find boot disks at www.AnswersThatWork.com), and run
CMOSPWD from your boot floppy (or another floppy).

3) C: [Enter]
cd \CMOSPWD [Enter]

4) Type CMOSPWD at the DOS prompt and press Enter.

5) CMOSPWD will display a list of possibilities. Use the possibilities
itemised against your BIOS manufacturer.
Remember :

a) For AWARD BIOSes, use the Numeric Keypad (with NumLock ON).
b) AWARD 4.50PG BIOS always accepts "AWARD_SW", or "d8on",
or "589589".
c) Old Phoenix BIOSes will accept "phoenix".

6) If the standard method does not work, then try to kill
the CMOS password with CMOSPWD /K (and press Enter),
and then see if you can get into the CMOS without a password.
If you can, you successfully "killed" the old CMOS password.
DO NOT KILL THE CMOS ON LAPTOPS!

---------------------------------------------------
---------------------------------------------------
|General Usage (List of commands) |
---------------------------------------------------
---------------------------------------------------

cmospwd [/d]
cmospwd [/d] /[wlr] cmos_backup_file write/load/restore
cmospwd /k kill cmos
cmospwd /m[01]* execute selected module

/d to dump cmos in ascii and scan code
/m0010011 to execute module 3,6 and 7

Keyboard:
/kfr French AZERTY
/kde German QWERTY
default is US QWERTY

---------------------------------------------------
---------------------------------------------------
|Laptops |
---------------------------------------------------
---------------------------------------------------


On laptops, the password is usually stored in an eeprom on the motherboard,
you need an eeprom programmer (electronic device) to retrieve it.

Acer 630: eeprom 93c56 ?
Compaq M700: eeprom 24C02
Dell Inspirion 5100: eeprom 93lc46, password in scan code at 0x310
Dell Inspirion 7500: eeprom 24c164
Dell Inspirion 8100: eeprom 24c02
Dell Latitude C600: eeprom 24c02, password in scan code at 0x00, 0x10 and 0x90
Dell Latitude C610: eeprom 24c02, password in scan code at 0x00, 0x10, 0x80 and 0x90
Dell Latitude CPI: eeprom 24c02, password in scan code at 0x00, 0x10, 0x80
Dell D600: eeprom 24c04, password in scan code at 0x110
IBM Thinkpad X20: eeprom 24RFC08CN, password in scan code at 0x338
IBM TP 240: eeprom ?, password in scan code at 0x338.
IBM TP 380Z: eeprom 24c01, password in scan code at 0x38 and 0x40
IBM TP 390: eeprom 24c03 (be carrefull, there are two eeprom)
IBM TP 560X: eeprom 24c01, password in scan code at 0x38 and 0x40
IBM TP 570: eeprom ?, password in scan code at 0x338 and 0x3B8.
IBM TP 750C,755CX,760C,765D: eeprom 93c46, password in scan code at 0x38 and 0x40
OKI M811b may be written on the chip. Search near pcmcia slot or
adjacent the floppy connector on the top side of the board
IBM TP 770: eeprom 24c01
IBM TP 600E, T21, T23: 14 PIN 24RF08
IBM TP T20,X20,X30: 24RF08, password in scan code at 0x338 and 0x340
HP Omnibook 900,2100,4150,7150: eeprom AT24c164, 0x6D-0x7F area, unknow algo
put a 00 at 0x7F to clear admin password
HP Omnibook 6000: eeprom 24c08 or 24c164 0x50-0xBF area
(maybe 0x50-0x6F only), unknow algo
HP Omnibook 6100: eeprom 24c08
HP Omnibook XE3: eeprom 24c16
HP Omnibook 770x: eeprom 24c01
HP Pavilion ze4455ea: eeprom 24c08
HP VECTRA VL18: http://h200001.www2.hp.com/bc/docs/support/SupportManual/lpv06673/lpv06673.pdf
Sony pcg-fx950: eeprom 93c46 ?
Toshiba 74600C: eeprom 93c56
VAIO 641: eeprom 24c02 write zero at 0x0
be carrefull, there are two eeprom you must unsolder one to the pci
controler it is in the down side of the bord

VAIO 8851
eeprom 24c02 (ic 903) write zero at adres 0x0
the down side of the board

VAIO srx 87: eeprom 2408 write zero at 0x0
the ic is behind the modem in the top side of the board

VAIO PCG-FX150, eeprom 24c04 near the reference IC1103
VAIO PCG-GRX560, eeprom 24c04 near the reference IC1001

You can get/buy eeprom programmer in electronic shops or labs, you need
another PC to use it.
You can desolder the eeprom with hot air or you can try to "clip" the
eeprom. With the eeprom programmer, backup your eeprom and run
"cmospwd /d /l eeprom_backup". If you don't see the password, you can try
to fill the eeprom with zero or FF, don't forget the reset the cmos.

---------------------------------------------------
---------------------------------------------------
|Toshiba |
---------------------------------------------------
---------------------------------------------------
Differents passwords give the same 32-bit CRC, so CmosPwd can only give one
of them.
To reset the password of an old Toshiba, you can use KeyDisk. (cf my web page)
If this doesn't work, you can try to build the Toshiba Parallell loopback.
To make a simple device that you connect to your parallell port, a lot of
Toshiba computers remove the password when you boot it up.
The device, named "loopback" by some, could be made out of any
parallell wire with 25pins connectors (db25). You should connect
these pins: 1-5-10, 2-11, 3-17, 4-12, 6-16, 7-13, 8-14, 9-15, 18-25.

A db25 looks like:
1 13
_______
\_____/
14 25

---------------------------------------------------

Divers
- Medion
Try the password "am8888egh".
- Award 4.50PG
There is an universal password AWARD_SW.
(d8on, 589589 ... works too)
- Award 4.5x using DFI motherboards
The universal password is "Y. C. Lu" (spaces and capitals as shown).
Information from David Walker.
- Award
Differents passwords give the same 32-bit CRC, so CmosPwd can only give one
of them. Use the numeric keypad.
- COMPAQ LTE 5300 notebook
Tolga Sinan Guney: there is a reset jumper on the motherboard
- DIGITAL PC300, Phoenix 4.0 Rel 6.0,0
Rene Pocisk: cmospwd /k works
- Fujitsu ICL
aksion: passwords are stored in EEPROM
- Fujitsu Point 1600
William Simcox: "I was able to clear the password and reset BIOS to
default values using CMOSPWD /K"
- Phoenix
There is a backdoor in old version of Phoenix BIOS, the universal
password is "phoenix".
- Siemens Nixdorf
PCD-4ND, Michael: You can clear the password of this phoenix 1.03 with "cmospwd /k"
Scenic Mobil 700, Josef Benda: "cmospwd /k" works! Phoenix Note BIOS v4.0
Scenic Mobile 510AGP, Bernd: "cmospwd /k" works! Phoenix 4.0 R6 Version 3F31 dated 9.2.2000
- Acer Travelmate 530
"cmospwd /k" removes the password.
- Acer travelmate 2450
"cmospwd /k" removes the password.
- Sony Vaio PCG505HS
Brad Frisbie: "cmospwd /k" works, Phoenix 6 R4
- Sony Vaio PCG-FR105
Andrea Michele Zoia: 'cmospwd_win /k' removes the password.
- IBM NetVista 8303-41G
Roel: CmosPwd /k works, Phoenix Bios 4.0 Release 6.0.
- Panasonic CF-25
Stefan Stevens: CmosPwd /k works
- Tulip Vision Line bn 100
CmosPwd /k works, PhoenixBios 4.0 Release 6.0 11/03/01
- LG GS50-5FY notebook
Angelika Jurkiewicz: CmosPwd /k can remove supervisor password.
- TI Extensa 600CD
Dathan Alley: CmosPwd /k works

What to do if you can't use cmospwd to clear your cmos ?
Under Dos/Win9x, you can use debug to reset cmos CRC stored at 0x2E-0x2F
debug
-o 70 2E
-o 71 0
-q



What to do if cmospwd don't work on your PC ?

Try to clear password with cmospwd /k.
If cmospwd /k doesn't work, password is stored in an EEPROM. Try to find a
reset jumper on your motherboard or contact your PC vendor.
If it works, I can try to discover how passwords are encrypted.
I need to know what Bios you used and
some cmos memory backup with their passwords. (cmospwd /w backupfile)
For passwords, choose
- some 1 and 2-letter passwords
- BBBBBBB
- BBBBBBC
- BBBBBCB
- BBBBCBB
- BBBCBBB
- BBCBBBB
- BCBBBBB
- CBBBBBB
_________________
回覆就是最佳的回報.
回頂端
檢視會員個人資料 發送私人訊息
從之前的文章開始顯示:   
發表新主題   回覆主題    八八論壇 Forum88 首頁 -> 電腦軟件 所有的時間均為 台北時間 (GMT + 8 小時)
1頁(共1頁)

 
前往:  
無法 在這個版面發表文章
無法 在這個版面回覆文章
無法 在這個版面編輯文章
無法 在這個版面刪除文章
無法 在這個版面進行投票


Powered by phpBB © 2001, 2009 phpBB Group
本論壇言論純屬發表者個人意見,與 八八論壇 立場無關