1 Reply Latest reply on Mar 27, 2017 1:31 PM by Intel Corporation

    Intel 8 chipset locked spi writing;Warning: BIOS region SMM protection is enabled!;Warning: SPI Configuration Lockdown activated.

    Rubén

      Hello greetings.


      I am looking for information to get unlocked the chipset of an asus motherboard with intel series 8.

      I need to understand how to perform a platform reset, sending the pltrst reset signal to remove spi write protections from the chipset.

      Programs like typhon burner to do it fails me, like many tutorials and stories.



      I leave a part of the flashrom log, when I try to flash firmware, it is not possible, but with no program, even with the bios update program from the motherboard's original desktop gives error, it tells me to make sure mei is installed, But it does not let me urge it, it gives error.

      With the afuwingui program I can flasher from the desktop, it looks like it reads, erases, writes, in a drawing, and it looks like a region the bios can not access, I do not know what it is but maybe it could be mei region, Intel management, I do not know, of course, a curious thing happens, the bios image contains mei, but when I save it to the bios, then I look at it with uefi bios update, and it does not have mei.

      This is the log that tells me that I have region smm protection enabled, and the spi lockdown activated:

       

       

       

       

      ... Warning: BIOS region SMM protection is enabled!

        Warning: Setting Bios Control at 0xdc from 0x2a to 0x09 failed.

        New value is 0x2a.

        Warning: SPI Configuration Lockdown activated.

        PROBLEMS, continuing anyway

        Found Winbond flash chip "W25Q64.V" (8192 kB, SPI) mapped at physical address 0x00000000ff800000.

        Erasing and writing flash chip... Transaction error!

        spi_block_erase_20 failed during command execution at address 0x180000

        Reading current flash chip contents... done. Looking for another erase function.

        spi_block_erase_52 failed during command execution at address 0x180000

        Reading current flash chip contents... done. Looking for another erase function.

        spi_block_erase_d8 failed during command execution at address 0x180000

        Reading current flash chip contents... done. Looking for another erase function.

        spi_chip_erase_60 failed during command execution

        Reading current flash chip contents... done. Looking for another erase function.

        spi_chip_erase_c7 failed during command execution

        Looking for another erase function.

        No usable erase functions left.

        FAILED!

        Your flash chip is in an unknown state.

       

       

       

      Currently I have got an external programmer willem programer, and I can flasher the bios externally by removing the chip from the spi port, on an asus H81M-C board, I can correctly write the bios, but when I put it on the pc, But it stays with the black screen, then it restarts, then the bios is rewritten with bad code, I can compare the images with a hexadecimal editor, and change the code, because the motherboard upon reboot, modifies the bios with bad code .

      What I have done, has been to record the bios with willem programmer, put a block in region 2 of the chip, which is the only one that leaves (although in the pc, deactivates it), and change the chip in hot without turning off, then , Have the pc running a while, and then on reboot, has rebooted clean without modifying both code in the bios, only the header of the firmware.

      After doing this, I have been able to install chipset drivers, intel management, and all but the usb 3.0, the official bios update tool from the desktop, it works again, but the main problem persists, I have SMM protections and SPI block  on the motherboard.

      On the other hand, comment that I have a rootkit, backdoor, in the firmware of the motherboard, and I suffer, revoked host key, man in the middle atack, dns spoofing, among other attacks.
      I can not flash chip lan realtek, to clean, it is locked, and the official tools of the manufacturer do not work, nor any of free software.

      Of all this that I speak of the bios that modifies the code, you can see it in quite detail in this post, if you read in detail, you will see that it is spoken of this, later:

      Http://www.mcumall.com/forum/topic.asp?TOPIC_ID=8026