i went to rootkit.com and downloaded a file called nt rootkit. then i ran a scan with threat fire it detected nothing but my mcafee dectected it and it wont let me remove it.the detection name is vobj8. its in c:\user\user\appdata\local\mozilla\firefox\profiles\pde9ck8p.default\cache\2373eeb4d01 ....i was thinking it was from my firefox so i uninstalled it and runing a scan now . if someone can help me get rid of it tell me how. but a program would be better i dont know how to remove manually.also mcafee says it cannot be completly remove. and everytime i scan with mcafee it comes up.also can someone tell me what this thing is in my computer
Your screwed, you need to re-format your hard drive, seriosuly. When a virus gets onto a PC these days thats it, game over, they bury in deep then proceed to load loads of other viruses onto your machine. The onyl fix is to re-install the operating system.
You can sometime load a linux live cd that will remove them http://www.knoppix-std.org/ http://www.knoppix-std.org/tools.html but you need to be able to work from the command line. Depends how much you want to save the info on the disk.
Have you tried running the scans from safe mode. Often services on your computer lock files up so they cannot be altered. With viruses I am almost always having to fix them with another pc. Remove the HDD from one PC and put it into another, that way no files are being used by the OS, and can be scanned and removed. I always use a Linux machine for this as a) no virus is written for linux, b) linus is better at it. I is risky using another Windows PC as there is a chence the virus will spread onto that PC. Also, as soon as you see a virus on you PC unplug your network card. 1 virus quickly turns into 50. I have even seen one that dialed out to germany and gave the person a $400 phone bill (they where still on dial up, but that changed soon after).
If you find out what the exact infection is called, and google search it, if you can. Some people are nice enough to make specialist programs for free that work perfectly in safe mode
Viruses are written for Linux. In fact there's even a few botnet trojans out there that even detect the distro you're using and write an appropriate init script. But removing the hard drive and using another PC to scan and clean it is the option I'd take. It makes no difference if you scan with Linux or Windows. A virus can only do something when it's code is activated. Run several scanners several times! Sometimes I even run two scanners at once. Seems to help flush things out. If you can't fix it that way you need to burn your data to CD/DVD and reformat the hard drive and reinstall the OS and all your software. I'd recommend you always keep a Linux distro installed for occasions like this. Or just move to Linux period. At the very least keep a live CD handy. This isn't going to be a quick fix. You're looking at hours of work. Buy in the munchies!
