In some cases, F-Secure's security products can disinfect the MBR without further action from the user.
If a suspicious hidden file is detected and the F-Secure security product does not immediately remove the file, there are several actions you can perform by manually selecting one of the displayed options:
In certain cases, more complex malware (e.g., rootkits) may have sufficiently altered the MBR so that regular automatic disinfection is not possible, or not fully effective.
If you suspect this is the case, you may wish to submit a sample of the suspect MBR to our Labs for further analysis.
For detailed instructions on how to obtain a sample of the suspect MBR for submission, please see the following Support KB Article: How to collect an MBR rootkit sample
Windows includes tools to replace an infected MBR with a copy of the original, clean MBR. To do so: