My Event Log has been filling up on a daily basis with the same 2 error/warning messages, all of which seem to be related to Windows Server Update Services (3.0 SP1) downloading updates.
The error and warning follow:
Event Type: Error
Event Source: avast!
Event Category: (10)
Event ID: 26115
Date: 15/01/2009
Time: 18:35:59
User: N/A
Computer: XXXX-XXX-xxx
Description:
The object http://download.windowsupdate.com/msdownload/update/software/uprl/2009/01/windows-kb890830-v2.6_78f4a8980f89edffffc1fb2ab609dba42b8d3411.exe could not be scanned. Error code is 0x0000A48F.
Event Type: Warning
Event Source: avast!
Event Category: (10)
Event ID: 26121
Date: 15/01/2009
Time: 18:35:59
User: N/A
Computer: XXXX-XXX-XXX
Description:
Allowing untested object http://download.windowsupdate.com/msdownload/update/software/uprl/2009/01/windows-kb890830-v2.6_78f4a8980f89edffffc1fb2ab609dba42b8d3411.exe requested by 192.168.128.1 to pass thru (according to the provider configuration).
I’m interested to know why these downloads cannot be scanned. I’m also wondering if I need to add an exclusion but, to what? I believe these downloads are stored in a SQL database. Do I exclude the database? Are these error/warning messages in response to an exclusion? What provider is actually scanning them, the Standard Shield, the Network Shield, the Web Shield or the MS Proxy/ISA Shield?
Ultimately, I’d like for these files to be scanned and if that’s not possible I’d like to either create an exclusion or stop logging these error/warning messages.
Any ideas on how to deal with this? Thanks.