locked
Virus found by AVG not by OneCare RRS feed

  • Question

  • My computer was acting strange so I did a full scan from Onecare. It found one virus and dealt with it. But the strange problems still remained. I installed AVG and ran a full scan and it found 5 infected files. One file was VidMorph.exe which was infected with "Trojan horse backdoor.Hupigon3.ARCW". Why did OneCare not find this? The other four were infected by "Win32/Heur".

     

    I am concerned that I rely on OneCare for my protection, yet tehre are very dangerous viruses that it did not detect.

    Friday, April 11, 2008 6:24 PM

Answers

All replies

  • I'm concerned that this was missed, too, but keep in mind that no scanner/protection is 100% effective.

    The best way to report a missed infection - 

    Follow the instructions in this post, http://forums.microsoft.com/WindowsOneCare/ShowPost.aspx?PostID=662566&SiteID=2, to report a virus that is not cleaned by OneCare and to get help in removal.

     

    -steve

     

    Friday, April 11, 2008 7:04 PM
    Moderator
  • TK, did you happen to get VidMorph from Give-Away-of-the-Day?  I seen it posted there not too long ago.  This site has been red flagged by SiteAdvisor with reports from people complaining that it install trojans, particularly BackDoor AWQ AKA Graybird AKA Hupigon.  Be careful when downloading programs from this site.

    Saturday, April 12, 2008 7:11 PM
  • Actually no. I have visited that site before, but I picked this up from thier main site. :-(

     

    Sunday, April 13, 2008 2:05 PM
  • were you able to get rid of the heur virus? my avg 8 also detected it and many others but i cant get rid of them

    Wednesday, June 4, 2008 10:02 PM
  • Lisa;

     

    A heur detection by AVG  is a heuristics detection, these often turn out to be false positives since they are not based on signature detections but instead on rules of thumb.  See this post on the AVG forums before you delete anything:

    http://freeforum.avg.com/read.php?4,100014,100026 

    Wednesday, June 4, 2008 11:06 PM
  • I have the same problem, did you find a solution to your question?  Is there anyway to get rid of Win32/Heur beside reimaging the computer?

     

    Sunday, August 10, 2008 11:39 PM
  • If you are using Windows Live OneCare and you have been infected, but OneCare did not detect or cannot remove the malware, please contact support to report this and for help with removal.

    How to reach support (FAQ) - http://forums.microsoft.com/WindowsOneCare/ShowPost.aspx?PostID=2421771&SiteID=2

     

    If you are in North America, you can call 866-727-2338 for help with virus and spyware infections. See http://www.microsoft.com/protect/support/default.mspx  for details.  For international information, see your local subsidiary Support site.

     

    -steve

    Monday, August 11, 2008 4:17 PM
    Moderator