Xax.exe Does Anyone Know What It Is?

Hello,

does anyone know what "XAX.EXE" is or what its for or anything about it?

It is on one of the machines am i repairing and the machine is fine just wondering if anyone knows what it is i did do a little search around for it but there was nothing easy to find.

So wondering if anyone here knows?

Thanks for any help you give guys/girls/whatever! lol

JubeiTigeruk

 

Your right there isn't a lot of information on this file so before we do anything I need some more information about it! What is the path to the file? Are there startup entries ?


Paste the full filename and path into the program given in this procedure: Using GetDetails then post the log here as an ATTATCHMENT

 

Well Well,

right i only found out about this file when i was going into MSConfig. I seen it there disabled it and so on but seemed not to do anything which i could see.

So anyway, i have just tried to use that program you told me to use to find out more information about it.

I cannot seem to find the file where its coming from or whatever. I done a Windows Search trying to find it with all the Hidden Files filters off. But still can't find it.

The only information i have about it in MSConfig is that its coming from somewhere in the Reg.

I done a search for it in Regedit and it is only in there 2 times.

HKLM/SOFTWARE/Microsoft/Windows/CurrentVersion/Run is what it gives me in MSConfig.

Even inthe command part of MSConfig it does not give a path.

Anymore ideas?

 

The file will more than likely be in one of the following folders.

C:\windows
c:\windows\system32
c:\

After a little more research I think this may be part of a virus, specifically an IRC worm. you should follow the below instructions and post in the malware forum for more support.

Please follow our standard cleaning procedures which are necessary for us to provide you support. Also there are steps included for installing, renaming, running, and posting HijackThis logs as attachments.

• Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support
• Make sure you check version numbers and get all updates.
• Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.

• After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis and attach a log:

Downloading, Installing, and Running HijackThis​

Make sure you also rename HijackThis.exe as suggested in the procedures. Use analyse.exe for the new name. This is very important due to some new infections going around.​

• When you return to make your next post, make sure you attach the following logs and that you have run these scans in the following order too:
  • CounterSpy - only for Windows XP, 2K, & NT users
  • AVG Antispyware log - ONLY IF NEEDED you were not able to run CounterSpy. - only for Windows XP, 2K, & NT users
  • Bitdefender - from step 6
  • Panda Scan - from step 6
  • runkeys.txt - the log from GetRunKey.bat
  • newfiles.txt - the log from ShowNew.bat
  • HijackThis

NOTE: You can only attach 3 files in a single message so it will require that you use two messages to attach all of these logs!

 

Edit: Deleted inline Hijackthis log


I think its nothing to worrie about to be honest. I have checked the system out and it seems fine. I think what has happened that Spybot and some of the other tools i used to clean up the system before i came accross it cleaned it out and left it in the MSConfig tray. No where on the PC to be found. I just checked the HiJackThis Log for it but i have posted it to see if anyone else noticed anything else odd.

Thanks for your help. Let me know if you wish to have anything else.

JubeiTigeruk

 

I done it now thanks. I worked it out. Thank you for the help!

JubeiTigeruk