I'm hoping this is the right forum for this and also that I have enough information for you guys.
I work at a retail store that does computer repairs also. A customer brought in a laptop (Toshiba M105 with a Phoenix CMOS) that when started would load straight to the BIOS password prompt. She had no idea how it got a password on it (I doubt she even knew how to get to the BIOS options) and it was definitely her computer, she bought it brand new. It was running Windows XP SP 2. Could not access the CMOS battery without disassembling half the laptop and we weren't willing to do that. I thought I would throw a Ubuntu LiveCD in on a lark and when I started it, it sure enough booted right into Windows XP like nothing was wrong. No prompt to ask which OS. Reset the BIOS through cmd, rebooted to check if the password was gone and it was. Ran malwarebytes, which found 51 objects (mostly registry key PUP's) the worst of which was a Trojan.P2P.worm. Kaspersky Rootkit killer found nothing.
I am hoping someone can shed some light on how Windows booted just fine with the Ubuntu disk in after a few hours of trying to without it and without success. Also if anyone has heard of a Trojan hijacking the BIOS or if there is something else I should be looking for. I fixed this one on pure luck and am really curious if it is a trick I can use in the future on the off chance I ever see it again or if it was just some strange fluke.
Sorry in advance for the lack of screenshots and details.
I work at a retail store that does computer repairs also. A customer brought in a laptop (Toshiba M105 with a Phoenix CMOS) that when started would load straight to the BIOS password prompt. She had no idea how it got a password on it (I doubt she even knew how to get to the BIOS options) and it was definitely her computer, she bought it brand new. It was running Windows XP SP 2. Could not access the CMOS battery without disassembling half the laptop and we weren't willing to do that. I thought I would throw a Ubuntu LiveCD in on a lark and when I started it, it sure enough booted right into Windows XP like nothing was wrong. No prompt to ask which OS. Reset the BIOS through cmd, rebooted to check if the password was gone and it was. Ran malwarebytes, which found 51 objects (mostly registry key PUP's) the worst of which was a Trojan.P2P.worm. Kaspersky Rootkit killer found nothing.
I am hoping someone can shed some light on how Windows booted just fine with the Ubuntu disk in after a few hours of trying to without it and without success. Also if anyone has heard of a Trojan hijacking the BIOS or if there is something else I should be looking for. I fixed this one on pure luck and am really curious if it is a trick I can use in the future on the off chance I ever see it again or if it was just some strange fluke.
Sorry in advance for the lack of screenshots and details.
