Aliases: W32.Cleevix
Variants: N/A

Classification: Malware
Category: Computer Virus

Status: active
Spreading: Low
Geographical info: Low
Removal: Easy
Platform: W32
Discovered: 02 Jan 2006
Damage: low

Characteristics: Win32/Cleevix is also known as W32.Cleevix. This was discovered on January 2, 2006. Since then, the virus has been continuously infecting computer laptops and or computers running on Windows systems.

More details about W32.Cleevix

The virus is in the form of an .exe file or files that contain .exe extension at the end. If a user clicks on this file, it will automatically take effect and thus your computer will be infected. This virus infects .exe extensions files in you computer located in Windows Installed folder, System folder and Current folder of infected system. The message “Author:l[REMOVED]e_vx and caption is F-13 Labs” may also be seen when this program is installed in the computer. This message box payload means that this virus is easily known and is unlikely to become common. File infectors and its propagation on the computer files are generally slow. These infectors append encrypted copy of its code to the targeted executable file. This virus has variable encryption features. These features continuously changed after each generation.

Other reports state that the file components generated by this malware are mostly used random filenames. It normally makes use of the System32 folder of the Windows directory as its default installation location. These component files are believed to be created via the Delphi programming language. It is also packed to compress it file size without affecting its payload delivery system.