Just returned to work today and it looks like one of our accounting PCs has some kind of infection. The user started getting the Just in Time debugger popups yesterday and it also appears that there is some kind of browser redirect going on Please let me know where to start or what I should do.
I am thinking of backing up the users data and wiping the PC, but I would like to know what happened to see if there is a better way to prevent this from re-occurring.
I ran a scan with malwarebytes but it was in safe mode with networking.
This PC has windows XP with SP3, and looks to be up to date with updates.
I am going to try using system restore, but I am worried about root kits or malware that might slip through detection.
Edited by agilulf, 12 January 2011 - 10:15 AM.