CONVERGENCE ZONE

Creating a Bigger and Better Network Through FRIENDSHIP
 
HomeHome  PortalPortal  GalleryGallery  SearchSearch  RegisterRegister  Log inLog in  

Share
 

 Rampant on USB, Ravmonlog Virus (2007)

Go down 
AuthorMessage
dzypherus
RAdmin
RAdmin
dzypherus

Male Number of posts : 376
Age : 35
Location : Philippines(Iligan)
Registration date : 2007-08-20

Rampant on USB, Ravmonlog Virus (2007) Empty
PostSubject: Rampant on USB, Ravmonlog Virus (2007)   Rampant on USB, Ravmonlog Virus (2007) EmptyThu Aug 21, 2008 11:44 am

HOW TO REMOVE RAVMONLOG VIRUS:

THREAT NAME
Worm.RJump.A

CLEAN INSTRUCTION

* Right click on an empty space from the taskbar (or right click on the clock from the right corner) and select Task Manager
* Select the Processes tab, locate ravmon.exe, right click on it and select End Process
* Delete the following file:C:\Windows\ravmon.exe

* To clean the removable storage device (USB stick, PEN drive, etc...
)right click on your USB stick/PEN drive icon and select Explore
NB: Be carefull not to double click on the icon because the malware will be reactivated.
* Locate and delete the autorun.inf and ravmon.exe files.
* Click on Start, Run, type regedit and click on OK.
NB: Before you edit the registry, export the keys that you plan to edit, or create a backup of the system
* Navigate to: HKEY_LOCAL_MACHINE\Software\Microsoft\
Windows\CurrentVersion\Run
* Delete the "RavAV" = "C:\windows\ravmon.exe"

SYMPTOMS

* Presence of the autorun.inf, ravmon.exe in the root of the storage device
* Presence of a copy of the virus (ravmon.exe) in the windows system folder
* Presence of the RavMonLog file that contains the port number for the backdoor component

DESCRIPTION

* Worm.RJump.A spreads by creating a copy on removable storage devices or mapped drives
* It drops the following malicious files:autorun.inf and ravmon.exe
* Also it drops a clean msvcr71.dll file that is a part of Microsoft Visual Studio
* It opens a port for the backdoor component

-- d

_________________
Dream as if you'll live FOREVER,
Live as if you'll die TODAY.
Back to top Go down
View user profile http://profiles.friendster.com/steelryx
 
Rampant on USB, Ravmonlog Virus (2007)
Back to top 
Page 1 of 1
 Similar topics
-
» CONTRACT EXTENSION PENDING BIDDING
» Query POs and NGOs
» Application of multi-year contracts
» BAC HONORARIUM EMBEDDED IN THE ANNUAL BUDGET
» BAC Honoraria

Permissions in this forum:You cannot reply to topics in this forum
CONVERGENCE ZONE :: Computer Applications ( DOWNLOADS) :: Antivirus/Security-
Jump to: