Excel spreadsheets reporting "MX97:CVE-2009-3127 [Expl]" suspect false +

We have had a lot of XL spreadsheets deleted today after AVast reported the “MX97:CVE-2009-3127 [Expl]” virus. We have checked the particular files on virustotal.com and only Avast and gdata report them as having a virus. We suspect that the offending files have a pivot table in them. could you acknowledge this is a false psoitive please

What do you mean deleted, avast doesn’t take autonomous action, but alerts and asks the user what action to take. Presumably you chose delete ?

GData also uses avast as one of its two scanners, so effectively one detection and most likely an FP.

Send a copy of the sample (with any personal data stripped out) to virus@avast.com zipped and password protected with the password in email body, a link to this topic might help and false positive in the subject.

Or you can also add the file to the User Files (File, Add) section of the avast chest (if it isn’t already in the chest) where it can do no harm and send it from there. A copy of the file/s will remain in the original location, so you will need to take further action and can remove/rename that.

Send it from the User Files section of the chest (select the file, right click, email to Alwil Software). It will be uploaded (not actually emailed) to avast when the next avast auto (or manual) update is done.

What i mean’t by deleted is put in the CHEST. this in itself is a problem as the files are accessed by numerous people and therefore in multiple CHESTS… I have emailed as suggested

Thanks for the response

It was false positive, removed from yesterday’s update. Today, the fixed update will be out.

It caught all files with pivot tables and pwd protection at the same moment.