Hey guys.
I had a computer come into my shop about a week ago. I've been thinking about this computer non stop for the entirety of it, just because it wont connect to any network. When I haven't manually configured an IP, it keeps trying to pull an ip from a network range that we don't have. I know that our router here at work advertises a certain range of IP's for DHCP.
I've done everything I know of to flush out this IP, but it's just stuck in his DHCP cache. I've tried turning off and back on various services that could effect his TCP/IP Stack. I've issued ipconfig release and renew and flushdns. I've issued netsh commands to clear out all settings. The customer had told us that his problem connecting to the internet only started happening on the 12th, the day before he brought it in to us. So after trying everything before a restore, we obtained his permission to do a restore to a previous backup point. Notified him that his programs wouldn't go away, none of his personal files would be lost. Alas, a restore didn't work either, we restored to a restore point made a year ago.
I tested to see if there was anything wrong with the TCP/IP stack, and pinged the local loop back. That came back with a general failure. So I'm thinking he has a program installed or some sort of virus that has weaved itself into his system files and corrupted the stack on his OS.
I took further troubleshooting steps to make sure that his onboard ethernet connection wasn't bad by booting into a live distro, Knoppix. All network connections worked just fine with a different operating system. I'm absolutely dumbfounded by how puzzled this computer has me. This customer is adamant on keeping webroot firewall and norton on his computer. I can see why he wants to keep webroot, solely so he can restrict his childrens activity on the internet (good parenting). But I have this gut wrenching feeling that webroot is the cause of his problem.
Any advice or insight on webroot and what I might be able to do?
I had a computer come into my shop about a week ago. I've been thinking about this computer non stop for the entirety of it, just because it wont connect to any network. When I haven't manually configured an IP, it keeps trying to pull an ip from a network range that we don't have. I know that our router here at work advertises a certain range of IP's for DHCP.
I've done everything I know of to flush out this IP, but it's just stuck in his DHCP cache. I've tried turning off and back on various services that could effect his TCP/IP Stack. I've issued ipconfig release and renew and flushdns. I've issued netsh commands to clear out all settings. The customer had told us that his problem connecting to the internet only started happening on the 12th, the day before he brought it in to us. So after trying everything before a restore, we obtained his permission to do a restore to a previous backup point. Notified him that his programs wouldn't go away, none of his personal files would be lost. Alas, a restore didn't work either, we restored to a restore point made a year ago.
I tested to see if there was anything wrong with the TCP/IP stack, and pinged the local loop back. That came back with a general failure. So I'm thinking he has a program installed or some sort of virus that has weaved itself into his system files and corrupted the stack on his OS.
I took further troubleshooting steps to make sure that his onboard ethernet connection wasn't bad by booting into a live distro, Knoppix. All network connections worked just fine with a different operating system. I'm absolutely dumbfounded by how puzzled this computer has me. This customer is adamant on keeping webroot firewall and norton on his computer. I can see why he wants to keep webroot, solely so he can restrict his childrens activity on the internet (good parenting). But I have this gut wrenching feeling that webroot is the cause of his problem.
Any advice or insight on webroot and what I might be able to do?