Ramnit.H Virus

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by Congyz, Nov 11, 2011.

  1. Congyz

    Congyz Private E-2

    Hi I have done the Malware Removal Guide. And my problem still persists.

    On top of that, I have also done an Eset Online Scan.

    Enclosed is all the logs.
     

    Attached Files:

  2. Congyz

    Congyz Private E-2

    Further logs can be found in the attachment.

    I would really appreciate if someone can help me out please.

    Some information you might need :-

    1. I am using Avira AntiVir Personal
    2. It still keeps detecting virus after all the scans.
    3. Google Chrome does not work anymore as well. IE works though.
     

    Attached Files:

  3. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Ramnit infections have really become quit nasty and dangerous. We could attempt to remove it, and we have had some success in the past, but recently it has become even more trouble to remove. It is really safer to just bite the bullet and do a clean reinstall.

    The problem is that the damage caused by this infection really makes a PC unreliable/untrustworthy. PE file infectors like Ramnit, Virut,.... etc can infect all executable files (DLL, EXE, SCR....and many more and also HTML). These infections can open back doors that truly may compromise your computer and your security. These backdoors could allow a remote attacker to access and instruct the infected computer to download and execute more malicious files.

    In many cases the infected files (which could number in the thousands) cannot be disinfected properly by your anti-virus or by other scanning tools. Also when disinfection is attempted, the files often become corrupted and the system may become unstable or irrepairable. The longer Ramnit remains on a computer, the more files it may infect and/or corrupt so the degree of infection can vary.

    Ramnit is commonly spread via a flash drive (usb, pen, thumb, jump) infection where it copies the Ramnit worm using a random file name. The infection is often contracted by visiting remote, crack and keygen sites. These type of sites are a major source of system infection.

    So all the above being said, and please do take serious note of the warnings, do you really wish to attempt cleaning even though the stability and security of your be cannot be guaranteed? And also note that we could spend a lot of time trying to fix it and still fail due to the number of files that have been infected. What would you like to do?

    I suggest you start re-running the online eSet scans back to back and attach each log when they are done. Do it at least 3 times. You may be too far gone at this point to be able to fix this. :(
     
  4. Congyz

    Congyz Private E-2

    Thanks for your prompt reply mate.

    I guess I would advise my friend to reformat the whole godamn thing. lol.

    Cheers
     
  5. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You are welcome, but sorry for the bad news. :major
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds