win32:Hupigon-ONX found in VirtualBox vdi image

Viruses and worms
1

Hello *,

I have the subjected thread found when the VirtualBox image is scanned by the host operating systems’ avast.
Can you help me what this excatly is? Is this infeciton within the VirtualBox guest operating system or in the host’s system?
Is it safe to boot up the guest OS? Should it be scanned from within the guest OS?
What kind of threat this is and how this is spreading?
Also I have seen in some forum that this may be a false positive? Can this be verified?

Thanks

2

follow this guide and attach (not copy and paste) logs from malwarebytes / OTL / aswMBR
http://forum.avast.com/index.php?topic=53253.0

3

Hello,

Attached you can find the Malwarebytes logs. The two infections found are most probably FPs - as checked by VT - under clarification with Malwarebyte team:
https://www.virustotal.com/file/de6401d581fdec01a643eef998aef81f52b97059fa49a93e8ab678490b147e41/analysis/1344276096/
I hope the Malwarebytes scan is sufficient.

Additional info: when I try to repair the vdi file, Avast cannot perform the operation.
I plan to boot up the virtual machine and scan from within.
Any objections/futher suggestions?

PS: can I update Avast defintions manually, as I do not want to allow network on the virtual machine?

Regards

4

Hello,

Any news if this is a false positive or a real threat?

Regards

5

Depends from where you downloaded it, see e.g. web rep of: http://www.mywot.com/en/scorecard/advancedpctweaker.com?utm_source=addon&utm_content=popup-donuts
Also consider these info: http://www.pcpitstop.com/libraries/process/i/ConsoleApplication1.exe.html

polonus

6

Hello,

Thanks for reply, but I meant the win32:Hupigon-ONX found in VirtualBox vdi image.
It is still there, but when I scan from within the Virtual guest, it cannot be found in the snapshot.

Regards