[OPLINTECH] Potential Computer Vandalism

[Chad Neeper]

I'm 99% sure that won't work for password protected hard drives. It's a
combo hard drive firmware/"secret" storage area on the hard drive thing.
The area on the hard drive platters that stores the HD password is reserved
to the hard drive itself and isn't typically exposed to the operating
system. Ie. it isn't part of the storage area on the drive that gets
formatted.

But there's no harm in trying it since the drive can't be accessed anyway.
I'd be very happy to be be wrong!!!

______________________________
*Chad Neeper*
Senior Systems Engineer

*Level 9 Networks*
740-548-8070 (voice)
866-214-6607 (fax)

*Full LAN/WAN consulting services -- Specialized in libraries and schools*


On Wed, Nov 20, 2013 at 10:50 AM, Stephen Cram <steve at nbpubliclibrary.org>wrote:

>     All other issues aside, I believe you can salvage the hard drives by
> attaching to another PC and formatting them and then  re-installing it in
> the old PC and reloading Windows and beginning again.
>
> And if you identify the culprit, I can send you some toothpicks to shove
> under their fingernails if you'd like.  I recently found gum shoved into an
> SD card reader so I'm saving some of my toothpicks for use here.
>
>
>  Stephen Cram
> Facilities Coordinator
> North Baltimore Public Library
>
> 
>  I have been known to accomplish the impossible at times.
> However, accomplishing the impossible only means the boss will add it to
> your regular duties.
>
>
> *-------Original Message-------*
>
>  *From:* Mike Hensel <henselmi at oplin.org>
> *Date:* 11/20/2013 9:21:21 AM
> *To:* oplintech at lists.oplin.org
> *Subject:* [OPLINTECH] Potential Computer Vandalism
>
>
> OPLINTech Libraries:
>
>
>
> I’ve got a situation where one of my patron computers last week booted up
> with a Security Manager Screen that basically needed a password to boot
> from the hard drive.  We run DeepFreeze on all of the computers.  I
> eventually had to get another hard drive sent from Dell.  Last night 5 more
> computers displayed the same message.  We lock the computers down with
> policies as well.  I have not seen any virus alerts pop up in Symantec.  We
> run Symantec Endpoint.  I don’t believe we had the bios locked down so the
> only thing I can think of is someone logged into the bios and setup an
> password on access to the HD which is leaving our machines dead.
>
>
>
> Has anyone run across this scenario and is there any easy fixes besides
> getting a new hard drive and rebuilding the machine.   I’m trying to
> determine if it was a local hack (patron at each machine) or virus.
>
>
>
> Any help would be appreciated.
>
>
>
> Mike Hensel
>
> Director, MLIS
>
> London Public Library
>
> 20 E. First Street
>
> London, OH 43140
>
> www.mylondonlibrary.org
>
> 740-852-9543
>
> Mobile 614-325-1429
>
>
>
>            FREE Animations for your email - by IncrediMail
> <http://www.incredimail.com/?id=621131&did=10501&ppd=2812,201301281447,9,1,748381821347692543&rui=153799619&app_test_id=0&sd=20131120>     Click
> Here!
> <http://www.incredimail.com/?id=621131&did=10501&ppd=2812,201301281447,9,1,748381821347692543&rui=153799619&app_test_id=0&sd=20131120>   ►
>
> <http://www.incredimail.com/?id=620777&did=10501&ppd=2741,201201221253,9,1,748381821347692543&rui=153799619&app_test_id=0&sd=20131120>  <http://www.incredimail.com/?id=621131&did=10501&ppd=2812,201301281447,9,1,748381821347692543&rui=153799619&app_test_id=0&sd=20131120>
>
> _______________________________________________
> OPLINTECH mailing list
> OPLINTECH at lists.oplin.org
> http://lists.oplin.org/mailman/listinfo/oplintech
> Search: http://oplin.org/techsearch
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.oplin.org/pipermail/oplintech/attachments/20131120/a8be9a96/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ape.gif
Type: image/gif
Size: 34603 bytes
Desc: not available
URL: <http://lists.oplin.org/pipermail/oplintech/attachments/20131120/a8be9a96/attachment-0001.gif>