Usual stuff - AV scan in safe mode (with respectable AV software) - if that's clean,
chkdsk c: /f (to make sure that the FS isn't corrupt)
sfc /scannow (to make sure the OS isn't corrupt)
Out of interest, what does avg pick this up as? I saw something very similar on a pc yesterday, i thought i'd cleared it but avg keeps picking up a NTrootkit.ac on the file Mfo54.sys.
Wont let me heal it or vault it, only happens at startup.
If it is a rootkit like the name suggests, then it will have replaced core system files in order to hide other viruses from the operating system's APIs. Furthermore, if it has changed a system file, he likely can't clean it or "vault it" (I assume that is a quarantine), because the OS is protecting it. Rootkit, instant grounds for a format IMO .
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.