Threat Database Trojans Virus.Ramnit.I

Virus.Ramnit.I

By Sumo3000 in Trojans

Threat Scorecard

Ranking: 4,565
Threat Level: 80 % (High)
Infected Computers: 12,619
First Seen: March 28, 2011
Last Seen: September 18, 2023
OS(es) Affected: Windows

Virus.Ramnit.I is a very serious intrusion into your computer's security. This virus combines the backdoor capabilities of a Trojan with the self-replication typical of worms. Virus.Ramnit.I can allow hackers to take complete control of your computer. This may let them infect your computer with other malicious programs to steal your money, or use your computer for their own purposes. Virus.Ramnit.I is known to spread through USB devices and external storage. Virus.Ramnit.I can also proliferate freely in file sharing networks. If you guess that your machine is contaminated with Virus.Ramnit.I, use a legitimate anti-virus application to remove Virus.Ramnit.I immediately.

How to Recognize a Virus.Ramnit.I Infection?

The Virus.Ramnit.I virus does its best to remain hidden from sight. However, if you pay attention, there are some things that will allow you to recognize Virus.Ramnit.I before the infection becomes too widespread.

- Virus.Ramnit.I is specifically engineered to attack 32-bit Windows operating systems, rather than the 64-bit version. Therefore, if you are noticing the effects of a virus on your system and you are running the 32-bit version of this operating system, chances are high that your virus is Virus.Ramnit.I. While 64-bit versions can also be infected, chances are high that your 64-bit operating system is being attacked by something else.
- Virus.Ramnit.I can create copies of itself. These copies remain hidden, but can be viewed if you set your file viewing preferences to make hidden files visible.

- Virus.Ramnit.I will specifically target shared folders and removable USB drives. If you suspect that Virus.Ramnit.I is infecting your system, check these places first for any hidden files. Any computer networking with your shared folder is in danger of being infected. Virus.Ramnit.I could have easily spread from a USB device to a computer's hard drive.

- Pay attention to any changes in your system. Virus.Ramnit.I has been known to change your firewall settings. Virus.Ramnit.I has also been known to make changes in the Windows Registry. Also, pay attention to your usage of system resources. Virus.Ramnit.I will often cause very high spikes in this parameter, causing your computer to become stuck.

What Happens if Virus.Ramnit.I Is Left Unchecked?

Letting Virus.Ramnit.I run rampant in your computer can have catastrophic effects. The main danger is that Virus.Ramnit.I acts as a back door through which hackers can gain access to your computer. The danger in this is immediately obvious. An unscrupulous individual can use Virus.Ramnit.I to gain access to your computer and then use it to download malicious software to damage your system and steal your private information. However, the most dangerous effect of having something like Virus.Ramnit.I on your computer, is that your computer may be used as part of a botnet.

Virus.Ramnit.I and Botnets

Botnets are groups of computers that have been compromised and then used for criminal purposes. Virus.Ramnit.I is precisely the kind of virus that hackers use to plant bots into compromised computers. A computer that has had a bot installed on it by a hacker, can be used for any number of criminal activities. These activities include sending spam emails and performing coordinated denial of service attacks on a target.

Aliases

15 security vendors flagged this file as malicious.

Anti-Virus Software Detection
AhnLab-V3 nProtect
Microsoft Virus:Win32/Ramnit.I
eTrust-Vet Win32/Ramnit.C
AntiVir W32/Ramnit.C
DrWeb Win32.Siggen.7
Comodo Virus.Win32.Ramnit.H
Sophos W32/Ramnit-A
BitDefender Win32.Ramnit.N
Kaspersky Virus.Win32.Nimnul.a
ClamAV W32.Ramnit-1
Avast Win32:Ramnit-G
Symantec W32.Ramnit.B!inf
F-Prot W32/Ramnit.D
NOD32 Win32/Ramnit.H
K7AntiVirus Virus

File System Details

Virus.Ramnit.I may create the following file(s):
# File Name Detections
1. AEADISRV.EXE
2. %PROGRAM_FILES%\ Backdoor.Beastdoor.DL\ Backdoor.Beastdoor.DL

Registry Details

Virus.Ramnit.I may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\Software\ Backdoor.Beastdoor.DL

Trending

Most Viewed

Loading...