Win32:Kavos

Win32:Kavos is a stealing trojan horse

Summary
Type Virus/Worm
Aliases Packed.Win32.Krap.b, Packer.Malware.NSAnti
Platform Windows
Known locations *:\, %WINDIR%\system32

Description:

Win32:Kavos is a trojan horse intended to steal on-line game passwords etc. It comes along with the rootkit klif.sys (notice the similarity to the name used by the Kaspersky driver). Once infected, Kavos drops itself into the root folder of all drives (under randomly generated names) and adds an autorun.inf to ensure the loading of the malicious files. It simultaneously creates some libraries in the \system32 folder with names such as kavo0.dll, amvo0.dll etc. Older variants of this malware are detected as Win32:Oliga, Win32:Monga and Win32:Gamona

Detection/Removal

Update your VPS to the latest version and schedule a boot-time scan. Move all related files to the virus chest.

Virus
Virus dans la Nature Les virus de Windows Anciens virus de Win 2002 Anciens virus de Win 2001 Anciens virus de Win 2000 Virus de Script Macro-virus Résumé de rapport de Virus Fichier de test Eicar Historique de VPS
Services d'inscription
Service d'inscr. de VPS (iAVS)
avast! Virus Cleaner
Enregistrement d'avast Familial
avast! 4 Home for free non-commercial use free - link to registration page
Home pageWeb site mapPrint this pagePrivacy policy
Copyright © 1988 - 2009 ALWIL Software a.s.
Home page
Virus  Les virus de Windows  Win32:Kavos