Hi all, I recently bought a new ASUS laptop back in July and it has been working great with no sign of being bogged down by anything. After my McAfee free trial expired I turned to Malwarebytes, Windows Defender, and Windows Malicious Software removal tool.
Shockingly, a Windows Defender & the software removal tool found cases of vbs/ramnit.gen c on about 50 files. I quickly had this removed on both products but ever since have been incredibly concerned. After studying up on Ramnit it sounded like a truly terrifying virus/malware. I've heard it can reinfect itself on a computer and I really want to know if these were false positives or if I am actually infected.
I have since run full scans 3 times on Windows Defender, Windows Malicious Software Removal Tool - all 3 times finding nothing. I used Symantec's Ramnit Removal tool but it told me I do not have Ramnit on my computer - I do not know if this is because the previous programs successfully deleted it or if I never had it at all and something was false positive. I have also scanned using Norton Power Eraser, MalwareBytes (Scan for Rootkits included), ESET Online scanner, and all of these came up 100 percent clean with no signs of Ramnit.
If anyone could give me some advice on the current 2016 climate of Ramnit and how dangerous it is, I would appreciate it. I can provide any logs needed - I feel like I do not have any forms of Ramnit on my laptop but I am scared that it is simply going undetected or will re-infect later. Is there any surefire way to make certain that I am safe? Please help.
I am also not sure how the Ramnit.C variant differs from Ramnit.A or Ramnit.B - Every single infected file flagged on my PC by WD was for the C variant. Like I said, a copious amount of other full virus scans on these other platforms showed no signs of infection. But WD was the first one I did post Mcafee (which never found anything either). So I'm really not sure if Windows Defender was simply erroneously flagging a virus or if it was a legitimate virus that was properly disposed of resulting in all scans now being clean. It's a bit of a frustrating dilemma because I will never know for certain (if I was always clean and got false positives or if I was infected and got it resolved).
All I can really do now is search for it and get your guidance on how to make sure I am 100 percent clean. Again the programs I used were as follows:
MalwareBytes Premium Trial Version - Full scan (rootkits included) 3 times - 100 percent clean.
Windows Defender Original Scan found 50 cases of Ramnit.C - Three full scans after yielded clean results. Date this happened 10/15/2016
Windows Malicious Software Removal Tool found Ramnit as well. - Three full scans after yielded clean results.
Norton Power Eraser- 3 scans - all clean
Symantec Ramnit Removal Tool - 3 scans - all said no Ramnit found on PC
ESET Online Scanner - 3 scans - all clean.
Should I scan using anything else? Any tips would be greatly appreciated. Not sure how to achieve peace of mind on this but it hasn't yet been attained.
Edit: I would also like to note that my computer has shown no symptoms or signs of being impacted by anything. It runs perfectly and has had no other problems besides a few BSOD's which were attributed to an ASUS bloatware product that once removed rectified that problem. None of my sensitive information has been compromised, at least not obviously compromised or to my knowledge. But ever since this potential Ramnit infection I've been incredibly scared to use my laptop. I have installed virtually nothing on the computer - just Google Chrome and a few games. I am very in tune with safe downloading practices and to always get products from the official website(s) they are on. I truly have no idea where I could have been infected, if it was/is legitimate.
Edit 2: I'm on Windows 10, by the way.
Edited by MSUProduct, 19 October 2016 - 08:11 PM.