Results 1 to 6 of 6

Thread: Pe_hantaner.a

  1. #1
    er0k
    Guest

    Pe_hantaner.a

    Well, as for my research via simple scans, this virus is windows based and infects via p2p apps. My question to you all is what kinda damage can it do? Search your computer for .RDO files and see if you have it, its apparently very common amongst all doze platforms. I would just like to know the reprocussions of the virus, i have noticed that it spreads very rapidly, but haven't seen any reg harm or anything..

  2. #2
    Senior Member
    Join Date
    Nov 2002
    Posts
    339
    This is the only virus ive ever had on my comp, and when I got it read up on it. First off, its nothing to worry about, it stays within your shared folder and does not leave. It infects .exe files making them unable to opean.It is kept in a system restore reg key, the easiest way of cleaning the virus is to goto my comp, properties and goin to the system reastore option. disable the system restore function, restart and then turn it back on, and your clean.BTW if you try and clean it with a AV you will be unable to since it is in use at all times, it will nto clean it, but as soon as you do the above instructions you should be fine.
    Don\'t be a bitch! Use Slackware.

  3. #3
    er0k
    Guest
    cool dude thanks.

  4. #4
    Senior Member
    Join Date
    Aug 2001
    Posts
    485
    Originally posted here by hatebreed2000
    This is the only virus ive ever had on my comp, and when I got it read up on it. First off, its nothing to worry about, it stays within your shared folder and does not leave. It infects .exe files making them unable to opean.It is kept in a system restore reg key, the easiest way of cleaning the virus is to goto my comp, properties and goin to the system reastore option. disable the system restore function, restart and then turn it back on, and your clean.BTW if you try and clean it with a AV you will be unable to since it is in use at all times, it will nto clean it, but as soon as you do the above instructions you should be fine.
    AV scanners can remove this, and any other known virus, if booted from the 'recovery/rescue disk'.
    This is a DOS floppy created by your AV scanner that can read FAT or NTFS systems.
    It loads the current AV signature file, and scans your HDD, squashing viruses as it finds them. As it is a DOS boot, the files are no longer in use.
    System restore will potentially undo this, so as hatebreed2000 says, turn it off first!

  5. #5
    The Doctor Und3ertak3r's Avatar
    Join Date
    Apr 2002
    Posts
    2,744
    W32.HLLP.Handy is a virus that prepends itself to the files in the KaZaA download folder and the Internet Explorer default download folder. It is written in the Borland Delphi programming language and is compressed with UPX.

    Also Known As: W32/HLLP.Hantaner [McAfee], Win32.HLLP.Hantaner [KAV], PE_HANTANER.A [Trend], Win32.HLLP.Handy [CA], W32/Hantaner-A [Sophos]
    Type: Virus
    Infection Length: 24,064 bytes
    Systems Affected: Windows 95, Windows 98, Windows NT, Windows 2000, Windows XP, Windows Me
    Systems Not Affected: Macintosh, OS/2, UNIX, Linux
    this extra info from Symantec .. http://securityresponse.symantec.com...llp.handy.html

    Cheers..
    "Consumer technology now exceeds the average persons ability to comprehend how to use it..give up hope of them being able to understand how it works." - Me http://www.cybercrypt.co.nr

  6. #6
    Dead Man Walking
    Join Date
    Jan 2003
    Posts
    810
    norton auto protect catches this one on the fly. Its poped up in a couple .dat files from kazaa lite. it wont delete it because of the d/l in progress but if you stop the d/l and erase the file you should be fine. its just like everything else on the internet... gota watch what your doing

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •