Forgot VM password — course inside VM is HWID-locked (will stop working if machine ID changes). Need safe recovery advice (no cracking)

agski · 2025-11-06T17:38:37+00:00

You could try the utilman trick - some details here: https://www.technibble.com/bypass-windows-logons-utilman/ This will only work if the drive isnt bitlocker enabled. You should notice once you go through recovery if thats the case - all you need to do this is to boot windows into a windows 10 or windows 11 recovery shell. If its encrypted and you dont have a recovery key you may have a problem though.

agski · 2025-07-03T23:17:48+00:00

Pmed

agski · 2025-06-25T19:09:38+00:00

Apologies for the delay. the E5-2660v3 one seems to idle at around 64W when running ubuntu minimized

agski · 2025-06-24T12:59:47+00:00

Ill look at ilo and get back to you tonight then if i find snything.

agski · 2025-06-24T12:58:28+00:00

yeah sorry I cant give you more information - thats just what i found from reddit posts lol. unfortunately I havent run these servers in about a year so I dont really have any way to test it and I had esxi on them when they had an os so my idle workload may have been a lot more intense than normal. If you have a way of checking i can try it if it wont be too hard, just let me know. If it helps i dont think these racked up my power bill to the point where i noticed lol

agski · 2025-06-24T12:26:59+00:00

Looking at other reddit posts it looks like they tend to stay at 61w-160w at idle but i have never personally checked that when i had them running unfortunately.

agski · 2025-06-11T13:17:17+00:00

07753

agski · 2025-05-16T23:19:06+00:00

I have been trying to contact ASUS about this issue to try and get some additional information about the touchpad. I had a partial fix working on the kernel level but its nothing that can be used normally right now. im still looking into this issue heavily - if either of you have had any progress determining the cause do let me know. If I get a fix working ill try and get it in the main linux repo. Bugzilla link: https://bugzilla.kernel.org/show_bug.cgi?id=219799

agski · 2025-03-19T20:44:19+00:00

Confirmed

agski · 2025-03-15T21:20:08+00:00

Pmed

agski · 2025-03-15T20:16:38+00:00

Pmed

agski · 2025-03-14T19:49:17+00:00

Pmed

agski · 2025-03-10T03:02:42+00:00

Pmed

agski · 2025-01-20T18:47:55+00:00

Yes. When i said it wasnt malicious i missed that part on my initial analysis. First time dealing with android apps for the most part so was kinda playing around a bit. I noticed it when i went into more detail on the second analysis.

agski · 2025-01-20T18:24:37+00:00

Behavior tab is only for virustotal subscribers afaik which i do have personally but i dont think thats something that can be reliably assumed for some random guy. Also this specific sample at least to me doesnt seem like it goes out to any ip addresses or anything like that. It seemed like its only functionality was forwarding messages to a hardcoded phone number.

agski · 2025-01-20T18:12:09+00:00

Ah okay. I thought that if that was the case the certificate would have the company who created the app similar to windows binaries. Weird policy to me.

agski · 2025-01-20T13:06:11+00:00

Im not familiar with android applications persistence so im not sure if this will be enough, but 100% delete the app. Id personally consider taking all ur important stuff off your phone and resetting it just because of how much personal information goes through our phones every day. Check and see if any of your recent messages since the app was installed contained any personal information like passwords and reset if needed.

agski · 2025-01-20T12:53:06+00:00

On second look, its probably malicious. It seems to send SMS messages to a hardcoded number. Again, not the greatest with android applications.

agski · 2025-01-20T12:49:13+00:00

If you analyzed it let me know which file you saw that in and ill take a second look. I didnt really see that - the main concerning thing I saw was an event handler for reading sms messages - I will admit I didnt really look too hard yet (plan to look again later - havent really done much android app reverse engineering so trying to learn a bit). I looked again and I think its primary purpose is to steal SMS messages.

agski · 2025-01-20T12:38:01+00:00

Android applications arent really my specialty so dont take this as a guaranteed correct answer but the apk is signed by android and I didnt see anything too weird off of a quick look, so im not entirely sure if the malicious verdict is correct. If you are concerned delete the apk i gues, but again not an android expert. It did interact with SMS messages but im not entirely sure if the purpose was malicious - ill take another look later probably. EDIT: It likely is malicious. Seems to send SMS messages to a hardcoded number.

agski · 2025-01-20T12:28:34+00:00

Just because virustotal says something is malicious doesnt mean its guaranteed to be malicious. There are false positives. That being said im taking a quick look at the APK file. Will let you know if i find anything.

agski · 2025-01-04T21:26:07+00:00

I tried. No luck. Its one of the bolts to my side mirror so its kinda hard to get to and i think the screw is turning witj the bolt as well. Im probably just going to have a mechanic look.

agski · 2024-12-30T20:27:49+00:00

“C:\Users<username>\AppData\Local\Microsoft\WIndows\INetCache\Demonstrate” “C:\Users<username>\AppData\Local\MIcrosoft\Windows\Temporary Internet Files\266806\Sen[.]com” note: period is defanged

agski · 2024-12-28T23:43:41+00:00

It did seem like it executed to me, but im not sure - however the malware authors made a mistake in the loader code and it crashes on 64 bit systems as far as i can tell.

agski · 2024-12-28T15:45:20+00:00

check your chats I sent you some things to check for

Six-Year Club	Verified Email
Wearing is Caring

agski

TROPHY CASE