[OPLINTECH] Potential Computer Vandalism

Mike Hensel henselmi at oplin.org
Wed Nov 20 10:16:56 EST 2013 

Ron:

 

I cleared the CMOS jumpers on the motherboard which allows me to at least
get to the Bios but once I'm there I cannot change or turnoff the HD
password because I don't know it - it has been set by the individuals that
locked up the machines - at least that's my guess.  I tried my admin
passwords but they don't seem to work.

 

I read online that Dell may have a backdoor password so I may give them a
call. 

 

Mike Hensel

Director, MLIS

London Public Library

20 E. First Street

London, OH 43140

www.mylondonlibrary.org

740-852-9543

Mobile 614-325-1429

 

From: Ron Woods [mailto:woodsro at oplin.org] 
Sent: Wednesday, November 20, 2013 10:09 AM
To: 'Mike Hensel'; oplintech at oplin.org
Subject: RE: [OPLINTECH] Potential Computer Vandalism

 

Hi,

 

is this a boot password that's stored in the BIOS? Or some kind of
encryption on the hard drive?

 

Does clearing the CMOS jumper on the motherboard remove the password? I
wouldn't think you have to replace the hard drive to clear a BIOS boot
password, all that should be required is clearing the CMOS jumper pins on
the motherboard.unless were talking about some kind of hard drive boot
encryption set with a password? 

 

 

Ron Woods

Computer Services Manager

St. Clairsville Public Library

(740)-695-2062

http://www.stclibrary.org

 

 

 

From: oplintech-bounces at lists.oplin.org
<mailto:oplintech-bounces at lists.oplin.org>
[mailto:oplintech-bounces at lists.oplin.org] On Behalf Of Mike Hensel
Sent: Wednesday, November 20, 2013 9:21 AM
To: oplintech at lists.oplin.org <mailto:oplintech at lists.oplin.org> 
Subject: [OPLINTECH] Potential Computer Vandalism

 

OPLINTech Libraries:

 

I've got a situation where one of my patron computers last week booted up
with a Security Manager Screen that basically needed a password to boot from
the hard drive.  We run DeepFreeze on all of the computers.  I eventually
had to get another hard drive sent from Dell.  Last night 5 more computers
displayed the same message.  We lock the computers down with policies as
well.  I have not seen any virus alerts pop up in Symantec.  We run Symantec
Endpoint.  I don't believe we had the bios locked down so the only thing I
can think of is someone logged into the bios and setup an password on access
to the HD which is leaving our machines dead. 

 

Has anyone run across this scenario and is there any easy fixes besides
getting a new hard drive and rebuilding the machine.   I'm trying to
determine if it was a local hack (patron at each machine) or virus.

 

Any help would be appreciated.

 

Mike Hensel

Director, MLIS

London Public Library

20 E. First Street

London, OH 43140

www.mylondonlibrary.org

740-852-9543

Mobile 614-325-1429

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.oplin.org/pipermail/oplintech/attachments/20131120/6c77196c/attachment-0001.html>

More information about the OPLINTECH mailing list