A user recently traveled to Asia, and during his trip his laptop started behaving strangely with internet browsing issues and VPN issues. When he returned, I verifed that his computer was having issues. For example, the laptop could get onto the internet, but couldn't open any web pages. I could ping sites all over the Internet but his IE browser would simply not display anything. DNS was fine, but I noticed his Windows Firewall screen would not allow me to turn it off or on...the radio button options were greyed out and the firewall was set to "on". There were also a few services that I didn't recognize, which I shut down as well. His laptop has our Symantec Corporate AV installed on it, so I made sure the virus defs were up to date, and ran a full system scan in safe mode. Sure enough, it found various spyware and trojans. I ran two more safe mode scans and then a scan in normal windows and the third safe mode scan came back clean...as did the scan in normal windows. After Symantec AV cleaned the trojans and sypware, his computer started to operate normally...at least with browsing the Internet. However, he still has some strange servcies (which are disabled) and his windows firewall is STILL not changable...it's just stuck in the "on" position and I am not able to modify it. I clicked the advanced tab and requested that the firewall be set back to default, but that still didn't make a difference.
Any thoughts? Other than to wipe the hard disk and re-install? (which I am planning on doing here in the next day or two).