Ouch Virus!

Problems with the Windows version of XAMPP, questions, comments, and anything related.

Ouch Virus!

Postby bwall » 18. September 2008 17:43

I had a windows XP pro box up and running xampp. I got a virus that infested the box and took down all my sites. Do to time issues I went and opened a hostgator account. 2 years later now and time more free, i need to try to clean up the box and get my server back up.

I ran a antivirus and found these issues.

Begin scan in 'C:\'
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\apachefriends\xampp\phpMyAdmin\network.exe
[DETECTION] Contains a signature of the (dangerous) backdoor program BDS/ServU-based.798720 Backdoor server programs
[INFO] The file was deleted!
C:\apachefriends\xampp\phpMyAdmin\tsk.exe
[0] Archive type: RAR SFX (self extracting)
--> TskMrg.exe
[DETECTION] Contains a signature of the (dangerous) backdoor program BDS/ServU-based.U Backdoor server programs
[INFO] The file was deleted!
C:\apachefriends\xampp\phpMyAdmin\TskMrg.exe
[DETECTION] Contains a signature of the (dangerous) backdoor program BDS/ServU-based.U Backdoor server programs
[INFO] The file was deleted!
C:\Documents and Settings\Bob\My Documents\Downloads3\spywarestopsgn.exe
[0] Archive type: RAR SFX (self extracting)
--> virus_scanner_-vlnrk2.exe
[DETECTION] Is the Trojan horse TR/eAnth.5
[INFO] The file was deleted!

--------------------------------------------------------------------------------------

I'm thinking that the above listed files are important to apachefriends xampp. I'm rerunning the antivirus software to see if they still exist presently. If they do what can be done to save the apachefriends xampp installation? Is there an easy way around the listed files or is this gonna be an reinstall....

Any thoughts on getting it back up? Or help on how i could piece the program back together w/o a full install.

Thanks
B
Thanks
Bob W.
bwall
 
Posts: 7
Joined: 19. August 2005 06:59

Postby Wiedmann » 18. September 2008 19:04

I'm thinking that the above listed files are important to apachefriends xampp
.
These (three) files are not part of the XAMPP package. So it's safe to delete them.
Wiedmann
AF Moderator
 
Posts: 17102
Joined: 01. February 2004 12:38
Location: Stuttgart / Germany

Postby glitzi85 » 18. September 2008 19:56

In Case of an Virus-Infection you should ALWAYS reinstall your Machine. Backup your XAMPP-Data (and just the data, NOT the executables!) and reinstall everything.

glitzi
User avatar
glitzi85
 
Posts: 1920
Joined: 05. March 2004 23:26
Location: Dahoim

Postby bwall » 19. September 2008 17:09

Thanks for the info. I deleted the files and I'm now up and running again!

Bob
Thanks
Bob W.
bwall
 
Posts: 7
Joined: 19. August 2005 06:59

Re: Ouch Virus!

Postby ragortue » 09. March 2015 16:24

Sorry to bump this up but what are the chances that the virus could infect the XAMPP-Data?
Centos 5.6 Image
ragortue
 
Posts: 10
Joined: 09. March 2015 16:21
Operating System: Centos 5.6

Re: Ouch Virus!

Postby Nobbie » 09. March 2015 18:10

Approx. the same chance to infect a bottle of budweiser beer.
Nobbie
 
Posts: 13170
Joined: 09. March 2008 13:04


Return to XAMPP for Windows

Who is online

Users browsing this forum: No registered users and 120 guests