Virus KALBA\MAAFENA\LAXOURY.exe
Solved/Closed
dumbcomp
Posts
5
Registration date
Friday November 13, 2009
Status
Member
Last seen
December 3, 2009
-
Dec 2, 2009 at 03:10 PM
Ambucias Posts 47310 Registration date Monday February 1, 2010 Status Moderator Last seen February 15, 2023 - Feb 16, 2010 at 12:30 PM
Ambucias Posts 47310 Registration date Monday February 1, 2010 Status Moderator Last seen February 15, 2023 - Feb 16, 2010 at 12:30 PM
Related:
- Dxate
- Goose virus - Download - Other
- Ntuser.dat virus - Guide
- Can jpg have virus - Guide
- How to get rid of trojan virus ✓ - Viruses & Security Forum
- Attrib - r-h-s /s /d *.* virus - Viruses & Security Forum
3 responses
Ambucias
Posts
47310
Registration date
Monday February 1, 2010
Status
Moderator
Last seen
February 15, 2023
11,164
Feb 16, 2010 at 12:30 PM
Feb 16, 2010 at 12:30 PM
Hello,
It is my strong impression that you have been infected by virus dxate.exe, lax.exe which copies itself over and over again, among other things C:/lopna/aziz lax.exe, C:/kalba/maafena laxoury.exe
C:/Documents and Settings/User dxaxte.exe or dxate, dxaxste.exe. Its filename changes as well.
Please check to see if I am correct.
The only that I have found to eradicate this beast is to use ComboFix. ComboFix is a deep cleaner, hence it is very important to follow the instructions to the letter.
First, download ComboFix and save it to your desktop
https://www.bleepingcomputer.com/combofix/how-to-use-combofix
A user guide is also provided at the above site
Disable your AntiVirus and AntiSpyware applications, usually via a right-click on the System Tray icon. They may otherwise interfere with our tools. More help on your specific AV here: How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs
Hence, to avoid beeing attacked while your protection is disabled, I suggest you turn off your modem.
Also, beware for if you have external memory devices, they may also have got the bug.
When finished, it shall produce a log for you. Please include the ComboFix.txt in your reply.
Caution.....
Never use this program to remove files.Only use it with help from an experienced user.Wrongful use can damage your computer.
Also, with the ComboFix log, I would much appreciate, for a final examination a Hyjackthis log:
http://free.antivirus.com/hijackthis/
Good luck
It is my strong impression that you have been infected by virus dxate.exe, lax.exe which copies itself over and over again, among other things C:/lopna/aziz lax.exe, C:/kalba/maafena laxoury.exe
C:/Documents and Settings/User dxaxte.exe or dxate, dxaxste.exe. Its filename changes as well.
Please check to see if I am correct.
The only that I have found to eradicate this beast is to use ComboFix. ComboFix is a deep cleaner, hence it is very important to follow the instructions to the letter.
First, download ComboFix and save it to your desktop
https://www.bleepingcomputer.com/combofix/how-to-use-combofix
A user guide is also provided at the above site
Disable your AntiVirus and AntiSpyware applications, usually via a right-click on the System Tray icon. They may otherwise interfere with our tools. More help on your specific AV here: How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs
Hence, to avoid beeing attacked while your protection is disabled, I suggest you turn off your modem.
Also, beware for if you have external memory devices, they may also have got the bug.
When finished, it shall produce a log for you. Please include the ComboFix.txt in your reply.
Caution.....
Never use this program to remove files.Only use it with help from an experienced user.Wrongful use can damage your computer.
Also, with the ComboFix log, I would much appreciate, for a final examination a Hyjackthis log:
http://free.antivirus.com/hijackthis/
Good luck
dancedhall
Posts
3053
Registration date
Wednesday May 13, 2009
Status
Member
Last seen
March 12, 2010
656
Dec 3, 2009 at 10:28 AM
Dec 3, 2009 at 10:28 AM
hi there,
avoid using your pen drive on infected pc
which will definitely infect yours also
search for any new folder.exe or KALBA\MAAFENA\LAXOURY.exe then delete
Thanks
avoid using your pen drive on infected pc
which will definitely infect yours also
search for any new folder.exe or KALBA\MAAFENA\LAXOURY.exe then delete
Thanks
dumbcomp
Posts
5
Registration date
Friday November 13, 2009
Status
Member
Last seen
December 3, 2009
Dec 3, 2009 at 05:58 PM
Dec 3, 2009 at 05:58 PM
Hello,
Yes after that i had formatted the USB
but no the issue is that I cannot locate the new folder.exe or KALBA\MAAFENA\LAXOURY.exe.
I even tried the RUN option in the start menu
Is there any other way that i can track it down?
what possible harm can be done to my sys???
Thanks
Yes after that i had formatted the USB
but no the issue is that I cannot locate the new folder.exe or KALBA\MAAFENA\LAXOURY.exe.
I even tried the RUN option in the start menu
Is there any other way that i can track it down?
what possible harm can be done to my sys???
Thanks