Description
IE PassView is a small utility that reveals the passwords stored by Internet Explorer browser. It supports the new version of Internet Explorer 7.0, the Beta version of Internet Explorer 8.0, as well as older versions of Internet Explorer, v4.0 - v6.0
Using IE PassView
IE PassView doesn't require any installation process or additional DLLs. In order to start using it, just copy the executable file (iepv.exe) to any folder like, and run it. After running iepv.exe, IE PassView scans all Internet Explorer passwords in your system, and display them on the main window.
Types Of Passwords
IE PassView utility can recover 3 types of passwords:
* AutoComplete Passwords: When you enter a Web page that contains a form with user/password fields and a login button, Internet Explorer may ask you if you want to save the password, after pressing the login button. If you choose to save the password, the password is saved as AutoComplete password.
Be aware that some Web sites (like Yahoo login page) deliberately disable the AutoComplete feature, in order to avoid password stealing by other users.
* HTTP Authentication Passwords: Some Web sites allow the user to enter only after typing user and password in a separated dialog-box. If you choose to save the password in this login dialog-box, the password is saved as HTTP authentication password.
* FTP Passwords: Simply the passwords of FTP addresses (ftp://...)
Known Issues With Internet Explorer 7.0
Starting from version 7.0 of Internet Explorer, Microsoft completely changed the way that passwords are saved. In previous versions (4.0 - 6.0), all passwords were saved in a special location in the Registry known as the "Protected Storage".
In version 7.0 of Internet Explorer, passwords are saved in different locations, depending on the type of password. Each type of passwords has some limitations in password recovery:
* AutoComplete Passwords: These passwords are saved in the following location in the Registry: HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IntelliForms\Storage2
The passwords are encrypted with the URL of the Web sites that asked for the passwords, and thus they can only be recovered if the URLs are stored in the history file. If you clear the history file, IE PassView won't be able to recover the passwords until you visit again the Web sites the asked for the passwords. Alternatively, you can add a list of URLs of Web sites that requires user name/password into the Web sites file (see below).
* HTTP Authentication Passwords: These passwords are stored in the Credentials file under Documents and Settings\Application Data\Microsoft\Credentials , together with login passwords of LAN computers and other passwords.
Due to security limitations, IE PassView can recover these passwords only if you have administrator rights.
Known Issue With Delete Items
Be aware that when you have a Web site that has multiple stored passwords, deleting the one of the passwords also remove all the other passwords for the same Web site. The reason for that is that all the passwords of a Web site are stored in the same entry.
Using The Web Sites File (iepv_sites.txt)
As explained earlier, IE PassView won't be able to retrieve the AutoComplete passwords of Internet Explorer 7.0 if the history of Internet Explorer is cleared.
If you know the exact URLs of Web sites that store user name and passowrd, you can add them into the Web Sites File - iepv_sites.txt, and then IE PassView will retrieve the passwords even if the URL cannot be found in the history file of Internet Explorer.
iepv_sites.txt is a simple text file that must be located in the same folder of iepv.exe. The URLs in the file should be separated by CRLF characters. A sample iepv_sites.txt file with a few URLs is already provided with IE PassView.
Reading IE7 passwords from external drive
Starting from version 1.15, you can also read the passwords stored by IE7 from an external profile in your current operating system or from another external drive (For example: from a dead system that cannot boot anymore). In order to use this feature, you must know the last logged-on password used for this profile, because the passwords are encrypted with the SHA hash of the log-on password, and without that hash, the passwords cannot be decrypted.
You can use this feature from the UI, by selecting the 'Advanced Options' in the Options menu, or from command-line, by using /external parameter. The user profile path should be something like "C:\Documents and Settings\admin" in Windows XP/2003 or "C:\users\myuser" in Windows Vista/2008.
Be aware that you must run iepv.exe as administrator in order to use this feature.