No announcement yet.

can't remove virus

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • can't remove virus

    well i picked up some unwanted stuff and having a hard time removing it using AVG virus. i e-mailed avg for there support but i'll probably not here back from until monday or so,so i thought i would make a post and see what your people think.I'm getting tired of having the avg pop up window popping up saying i have virus you must run avg,i'm using there free version 6.0.459.Here is what the pop up window is saying.

    virus identified Win32/hantaner
    is found in file
    C:\\System Volume
    Information\\_restore{910d7d9b-24a4-420c-9ae9-99620447448c2}\\rp20\\a0022949.exe

  • #2
    This is the result of usin' KaZaa but it's fairly harmless though annoyin'.
    Win32.HLLP.Hantaner

    It is a harmless nonmemory resident parasitic Win32 virus. The virus itself is PE EXE file (Win32 executable file), it is written in Delphi and has the length about 47K (not compressed) or 24K (compressed by UPX).

    It searches for *.EXE files (any files with .EXE filename extension) in the KaZaa download directory and writes itself to the beginning of the files. As a result the virus is able to spread through KaZaa files sharing network (being downloaded from infected machine).

    The virus does not manifest itself in any way.

    The virus also contains the text strings:

    HANTA-Vjoiner ,si que lo hice yo, ErGrone/GEDZAC...
    eso va para los seÓoritos de PER, en especial a Machado, que no tiene la educaciÕn necesaria para responder un E-Mail.
    y para los que se enojaron con CPL, jeje, pa que ocupan Hotmail!!!, teniendo miles de mailbox gratis y con mas espacio.
    FallÕ la Heuristica y contra una tÊcnica antigua JoJOjOO-Escrito en Delphi 6!-
    Also (according to who you talk to) it affects your windows xp system restore points too (as it has with your's). :(

    Comment


    • #3
      very very good wiggo,that's exactly were i picked it up,and what would suggest on the removal of it and keep this from happing again,besides not visiting kazaa

      Comment


      • #4
        Myself, I'd just nuke the lot and reinstall but this maybe of help, http://vil.nai.com/vil/content/v_99881.htm ;)

        Comment


        • #5
          and once again very very good,i'll give it a try

          thanks :cheers:

          Comment


          • #6
            i don't understand that how could you have faced a problem...:?:
            the error window that you are getting clearly suggests that you had the virus file backed up by the system restore utility of winXP.
            if you ever visited www.grisoft.com i.e. the home page for AVG anti-virus, it suggests to turn off the system restore feature everytime you clean up a virus. this way all the previous restore points are deleted and your PC is cleaned off without backing up the file effected by virus.
            anyways i hope that you got your PC cleared till now.
            for a future reference i would say, visit kazaa if you want to but do follow the necessary precautions. the most effective one could be scanning your "My Shared Folder" regularly (even while downloading from kazaa). it helps in the way that kazaa saves all the ongoing downloads in this folder as .dat files and cos the virus writes itself as the header of the file, virus part is the first one to be downloaded.
            when you scan the .dat files you will be able to know that whether a particular download is effected by virus. if it is, simply stop the download and delete that particular .dat file. this deletion will not be backed up by system restore feature and you won't be seeing that pop-up window ever again.
            Latest Microsoft Security Updates.
            Last Updated:
            10th MARCH


            If you are a security freak: Use Microsoft Baseline Security Analyzer (NT/2000/XP/2003)
            ======================
            icq : 203189004
            jabber : [email protected]
            =======================
            Linux user since: April 24, 2003 312478
            yabaa dabaa doo...
            Customized for 1024x768

            Comment


            • #7
              update!

              i went and turned off system restore,deleted kazaa and any files that i moved out off my kazaa folder,then rebooted my pc,well so far everything is working ok,and yes i went back and unchecked the system restore box so it's back on and rebooted my pc.

              asklepios-- thanks for the info i didn't know about turning off the system restore feature every-time you clean up a virus. that could of probably been an easier fix . thanks

              would you guys suggest a different virus program than avg anti-virus? it seems to of worked good so far until know or was that my mistake?

              once again it still seems to be working ok and a big thumb's up you that helped :thumb:

              Comment


              • #8
                It seems to me that it found the problem just fine:thumb:

                I don't think anyone has a 100% virus solution - well, not a software solution anyway:laugh:
                If there were, we wouldn't ever hear about any other:?:
                The reason a diamond shines so brightly is because it has many facets which reflect light.

                Comment


                • #9
                  I'm quite happy with AVG myself and what happened to you then could've happened with another AV program bein' run. This is why I stay away from p2p programs as they are an infection just waitin' to happen. : peace2:

                  Comment


                  • #10
                    i would not curse AVG for those error windows you were getting rather you should appreciate the program that it informed you that you have a corrupt file in your system restore.
                    just think that what if you had to restore your PC back to that specific date where the virus was there in the restore. what would have happened? you got an infected machine...isn't it?
                    its good for you that it was just a harmless Hanataner but what if it was something more dangerous and you got it in restore?
                    i would say stay with AVG, its a good AV software. Just cos something is free doesn't mean its not good. Trust the thing...you would not feel down...:thumb:
                    Latest Microsoft Security Updates.
                    Last Updated:
                    10th MARCH


                    If you are a security freak: Use Microsoft Baseline Security Analyzer (NT/2000/XP/2003)
                    ======================
                    icq : 203189004
                    jabber : [email protected]
                    =======================
                    Linux user since: April 24, 2003 312478
                    yabaa dabaa doo...
                    Customized for 1024x768

                    Comment


                    • #11
                      I had the same problem bout 3 months back. I had thye crapiest virus software. Then i got Norton antivirus 2002, solved all my problems. I think u can download it from kazaa.:D

                      Comment


                      • #12
                        Well, I'll back AVG 99% after today's effort. It alerted me of a trojon that was contained in a link that I entered and it was quick to react and tell me that.
                        I'm not saying it dectects everything, but it sure as hell helped having it installed. Besides something is definitely better than nothing at all don't you think?

                        Comment


                        • #13
                          There for about 2 minutes Sunday night I wished I had software:laugh:

                          Picked up not 1, but 2 backdoors off a P2P network --- greedy *******, 1 ownage utility wasn't enough for the hack!

                          Took me about 25 minutes to track down everything in the registry, win.ini, system folder, etc. etc.

                          2 reboots and finally deleted the scumware.

                          Who's kung-fu's the best now

                          My Gosh! That's the most exciting weekend I've had in quite some time
                          Some call it a pain, but I must confess - I kind'a like this game___provided that I win
                          The reason a diamond shines so brightly is because it has many facets which reflect light.

                          Comment


                          • #14
                            i would never want to play games with viruses and trojans.
                            yikes...its scary or may be i m just a lazy duck to do a reformat-reinstall if something goes wrong.
                            btw i m looking at alternatives to AVG as a free anti-virus. seems to me that there are better alternatives available out there which don't cost you anything and most importantly are light on sys resources.

                            not saying that they will be lighter than AVG but compared to some of the old hoggy ones like NAV, they sure are better.
                            Latest Microsoft Security Updates.
                            Last Updated:
                            10th MARCH


                            If you are a security freak: Use Microsoft Baseline Security Analyzer (NT/2000/XP/2003)
                            ======================
                            icq : 203189004
                            jabber : [email protected]
                            =======================
                            Linux user since: April 24, 2003 312478
                            yabaa dabaa doo...
                            Customized for 1024x768

                            Comment


                            • #15
                              I guess I just got sick 'n' tired of software solutions while I was on dial-up.
                              Constantly checking for updates, downloading that took forever. The 25 minutes I spent fixing things the old fashioned way was quicker than the software method ever was. And of course, there was no guarantee that the software would work.

                              Hands on works!

                              Of course, now that I have a bit of bandwidth a software solution might be a good thing to look into_________but, where's the sport in that???

                              Old habits are so hard to break, as long as I get to win:thumb:

                              Who's Kung-Fu's the best? - Ringo Langley_XFiles, Lone Gunman Origin Episode
                              The reason a diamond shines so brightly is because it has many facets which reflect light.

                              Comment

                              Working...
                              X