Hello all - I'm in trouble with a new virus called RAMNIT.I

Please go here and start running back to back scans. Attach the first three so we can see how bad the infection is.
eSet Online Scan.

 

You should be able to, but let me give you this warning after looking at your other logs:

Ramnit infections have really become quit nasty and dangerous. We could attempt to remove it, and we have had some success in the past, but recently it has become even more trouble to remove. It is really safer to just bite the bullet and do a clean reinstall.

The problem is that the damage caused by this infection really makes a PC unreliable/untrustworthy. PE file infectors like Ramnit, Virut,.... etc can infect all executable files (DLL, EXE, SCR....and many more and also HTML). These infections can open back doors that truly may compromise your computer and your security. These backdoors could allow a remote attacker to access and instruct the infected computer to download and execute more malicious files.

In many cases the infected files (which could number in the thousands) cannot be disinfected properly by your anti-virus or by other scanning tools. Also when disinfection is attempted, the files often become corrupted and the system may become unstable or irrepairable. The longer Ramnit remains on a computer, the more files it may infect and/or corrupt so the degree of infection can vary.

Ramnit is commonly spread via a flash drive (usb, pen, thumb, jump) infection where it copies the Ramnit worm using a random file name. The infection is often contracted by visiting remote, crack and keygen sites. These type of sites are a major source of system infection.

So all the above being said, and please do take serious note of the warnings, do you really wish to attempt cleaning even though the stability and security of your be cannot be guaranteed? And also note that we could spend a lot of time trying to fix it and still fail due to the number of files that have been infected. What would you like to do?

 

Yes, that would be the best procedure. I think we are probably too late in trying to fix this infection and a reformat and clean install would be the best avenue to take.

 

What are you meaning by "clean up"? Do you want to just reformat them so they can be used for doing the backups? If so, you can just right click on each drive and choose reformat.

 

Yes, you can transfer to the external, reformat your hard drive and do the clean install. Then once you have all your protection software installed and updated, re-run eSet scan with the external plugged in. Also run your AV software as well as SAS and MBAM on the external before replacing the files.

 

You are most welcome. Hope it all works out for you.