Rootkit problem

Avg Anti-virus 2011 with 1 year subscrip...
November 8, 2010 at 11:08:59
Specs: Windows XP
"";"C:\WINDOWS\system32\dla\tfsnifs.sys";"IRP hook, \FileSystem\Cdfs IRP_MJ_FILE_SYSTEM_CONTROL -> tfsnifs.sys GetSystemType+0xCA0A";"Object is hidden"

i am uncertain whether this is a harmful Rootkit problem, after i did an AVG Rootkit scan it came up with the above and below:

"";"C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\78S7IKI2\75_745107[1].jpg";"Hidden file";"Object is hidden"

i am not really sure what to do!


See More: Rootkit problem

Report •

November 9, 2010 at 10:45:29
It could be a false positive by AVG, but the only way to make sure that file is not malicious is to scan it, which you can do so by visiting this link here and uploading the file:

Have you tried scanning with MalwareBytes, and if so did it find anything?..:;1

Also, I would get rid of AVG, and switch to Avast!, Kaspersky, or NOD32, even though the choice is yours. AVG (in my opinion) isn't that great.

Helpful tips before getting started:

Report •

January 31, 2011 at 02:43:16
how do you 'upload the file'? I have the same thing on my computer and AVG is screaming it at me in big red letters.

Report •

January 31, 2011 at 03:53:11
"how do you 'upload the file'? I have the same thing on my computer and AVG is screaming it at me in big red letters"

Report •

Related Solutions

February 4, 2011 at 01:12:13
tfsnfs.sys files are installed by Sonic programmes and are used in writing to your DVD drive. There was a history, some years ago, of computer crashes occurring because of this file but these were sorted out over a period of time by upgrades. If you get rid of this file you may have problems with your Sonic programmes. If it really worries you, uninstall your Sonic programmes and delete the file (if the uninstall process does not) using your AVG software.
It seems to be felt, though, that this file can be safely ignored in your Rootkit scans.

Report •

February 7, 2011 at 08:54:31
Thanks guys. In the end we found that I had a Malware.Ramnit and it had been left too long, so what we did was we managed to copy across some of my files onto a disc, and then bought a new hard drive, and installed all the software again. Now the computer is back to normal, with additional space. Many thanks for the help and advice, but it you cannot see anyway out of the malware infection, then my advice (although it can be expensive) is to buy a new harddrive. :)

You can get them for around £20-30 if you look carefully! Thanks again.

Report •

Ask Question