Virus KALBA\MAAFENA\LAXOURY.exe

Solved/Closed
dumbcomp Posts 5 Registration date Friday November 13, 2009 Status Member Last seen December 3, 2009 - Dec 2, 2009 at 03:10 PM
Ambucias Posts 47310 Registration date Monday February 1, 2010 Status Moderator Last seen February 15, 2023 - Feb 16, 2010 at 12:30 PM
Hello,
I am having a strange problem out here.
I have Mcafee 8.5i with latest dat file updated and also superspy antispy ware.
I have scanned my entire sys with both and have not shown any virus.
but, If i plug a USb from my comp to another comp with AVG there is a strange virus called
KALBA\MAAFENA\LAXOURY.exe that gets detected and deleted.
What exactly is this virus & how is that I can get rid of this virus permamently
Kindly let me know

3 responses

Ambucias Posts 47310 Registration date Monday February 1, 2010 Status Moderator Last seen February 15, 2023 11,164
Feb 16, 2010 at 12:30 PM
Hello,

It is my strong impression that you have been infected by virus dxate.exe, lax.exe which copies itself over and over again, among other things C:/lopna/aziz lax.exe, C:/kalba/maafena laxoury.exe
C:/Documents and Settings/User dxaxte.exe or dxate, dxaxste.exe. Its filename changes as well.

Please check to see if I am correct.

The only that I have found to eradicate this beast is to use ComboFix. ComboFix is a deep cleaner, hence it is very important to follow the instructions to the letter.

First, download ComboFix and save it to your desktop

https://www.bleepingcomputer.com/combofix/how-to-use-combofix

A user guide is also provided at the above site

Disable your AntiVirus and AntiSpyware applications, usually via a right-click on the System Tray icon. They may otherwise interfere with our tools. More help on your specific AV here: How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs

Hence, to avoid beeing attacked while your protection is disabled, I suggest you turn off your modem.

Also, beware for if you have external memory devices, they may also have got the bug.

When finished, it shall produce a log for you. Please include the ComboFix.txt in your reply.

Caution.....
Never use this program to remove files.Only use it with help from an experienced user.Wrongful use can damage your computer.

Also, with the ComboFix log, I would much appreciate, for a final examination a Hyjackthis log:

http://free.antivirus.com/hijackthis/

Good luck
2
dancedhall Posts 3053 Registration date Wednesday May 13, 2009 Status Member Last seen March 12, 2010 656
Dec 3, 2009 at 10:28 AM
hi there,

avoid using your pen drive on infected pc

which will definitely infect yours also

search for any new folder.exe or KALBA\MAAFENA\LAXOURY.exe then delete

Thanks
1
dumbcomp Posts 5 Registration date Friday November 13, 2009 Status Member Last seen December 3, 2009
Dec 3, 2009 at 05:58 PM
Hello,
Yes after that i had formatted the USB
but no the issue is that I cannot locate the new folder.exe or KALBA\MAAFENA\LAXOURY.exe.
I even tried the RUN option in the start menu
Is there any other way that i can track it down?
what possible harm can be done to my sys???
Thanks
0
you need to show hidden folders.
0