MSIL/Cxover.A is a prooof-of-concept virus written in Microsoft .NET's Microsoft Intermediate Language (MSIL) that can affect both PCs using Windows OS with .NET runtime installed and Windows Mobile handheld devices supporting .NET.
Depending on the settings of your F-Secure security product, it will either automatically delete, quarantine or rename the suspect file, or ask you for a desired action.
More information on the scanning and removal options available in your F-Secure product can be found in the Help Center.
You may also refer to the Knowledge Base on the F-Secure Community site for more information.
Cxover.A infects devices over Microsoft's ActiveSync protocol. If the Cxover.A binary is executed on a Windows Mobile device, it looks for the PC over the ActiveSync connection and copies itself to the PC so that it will start automatically at next boot.
If Cxover.A is executed on a Windows PC it will search for any handled devices connected over ActiveSync and copy itself there.
F-Secure Anti-Virus detects this malware with the following updates:
Detection Type: PC
F-Secure Mobile Anti-Virus for Windows Mobile detects this malware starting from
Database: update build number 16