Mmm yes, there were lots of ideas as to the problem. It was kind of left hanging.
Personally, I suspect the router was compromised to allow remote management.
I hope he got it sorted out though.
Printable View
Mmm yes, there were lots of ideas as to the problem. It was kind of left hanging.
Personally, I suspect the router was compromised to allow remote management.
I hope he got it sorted out though.
i personally thought it was upstream monitoring or rootkit or msmsgs.exe (i have personal hate against that program :mad: ) whether it was local or not was easy to tell, use another box on his network or a live cd. it was obviously an impressive (though wrong, it was still impressive) breach in ropestars security (not necessarily his box), though i do think it wouldnt have taken to much longer with some of the methods posted here to figure out what was going on. shame it trailed off/ended :(