Help Desk

University Technology

New

SmartPhones and Mobile Devices

Live@Edu Student E-mail and Services

Computer Security

University Tech. Services

Acceptable Use Policy

Buying a Computer?

Computer Labs

Software/Computer Discounts

E-mail Policy

E-mail via the Web

GullNet

Helpful Hints & Guides

Online Ticketing

Personal Web Pages

Resnet

Campus Phone Services

Wireless

Contact Us

Organizational Chart

Technology Information

Pages of Interest

SU WebCam

Creating GullNet

Web Development Office

Instructional Design

Office Information

TETC 113
Salisbury University
Salisbury, MD 21801
410-677-5454
helpdesk@salisbury.edu

 

 
Holloway Hall

Virus Alert: RJump.worm
There have been a few isolated reports of a trojan dubbed RJump.worm by McAfee showing up on campus. This trojan is spread through jump drives, mapped network drives, and other removable media (such as iPods, where it was first discovered). Once infected, the trojan dumps the following files on the root of the drive:
  • autorun.inf    --> used to autorun the worm when the drive is accessed
  • msvcr71.dll  --> Clean Microsoft Visual Studio dll file
  • ravmon.exe  --> copy of the worm

It then attempts to open a port in the built-in Windows XP firewall and alert the virus author of the new proxy.

The virus was discovered on campus by McAfee alerting the few users that an infected file was found, but was not able to be cleaned.

To prevent infection, please update McAfee Anti-Virus to the latest DAT files. To do this, right-click on the Vshield logo in your System Tray (located in the lower right hand corner) and choose Update Now.

Again, this is a very low-profile worm (less than 10 computers on campus affected) so updating your McAfee at this time should protect you from this and other virus threats.