11-07-2011, 05:23 PM
(11-07-2011, 04:17 PM)RTM Wrote: Resetting the router to factory specs isn't really an option since it's a custom-configured corporate-class Netscreen as opposed to a Linksys you'd pick up at Staples. Neither one of the laptops we tried are "unprotected", although the corporate version of McAfee is probably as close to unprotected as you're going to get. Don't even get me started...I would suspect something like hardwired routing tables. He was probably infected at home, so to the hijacked it would appear to be business as usual. At work, with the firewalls in place, the Trojan is revealed.
If it were malware in the network stack (something I wouldn't rule out), why do searches work fine on his home network?
The nastiest crap I've had to deal with worms itself into eproms, where the only solution is to reflash the BIOS and all programmable firmware. A consultant working for me once had a drive firmware virus that forced itself to wipe the drive on boot. Frustrating, until you take it down to the hardware level.
I've seen some components (NIC's, drives) messed up enough where it's cheaper, in terms of time, to just buy a new one.
”There are more things in heaven and earth, Horatio, Than are dreamt of in your philosophy." - Hamlet (1.5.167-8), Hamlet to Horatio.
![[Image: yVR5oE.png]](http://imagizer.imageshack.com/img924/329/yVR5oE.png)
![[Image: VKQ0KLG.png]](http://i.imgur.com/VKQ0KLG.png)