Probably a false positive

Hi all,

while trying to download the SQLSlammer fix, i’ve got an alert from avast : the file is infected by worm Win32:SQLSlammer… how is it possible? ;D

here is a link to the file http://securityresponse.symantec.com/avcenter/FixSQLex.exe

thanx

Avast! put it in the virus chest or it have interrupted your connection? (it depends from your settings)

Probably a false positive… Are you using the last VPS file (0516-0)?

Hi,

thanx for your reply,

i’ve the latest definitions 0516-0 and avast interrupted the connection (WebShield ON)

is it the same for you?

Well, it doesn’t sound like a real false alarm, I’d rather guess on incorrectly encrypted virus sample.

please, 1 minute of patience: now I try to download the same file and see the Avast! response…

Yes! Avast! says the same alarm… but it don’t lock the connection (using firefox and webshiel enabled). Technical he’s right. ;D

firefox for me too… but fc barcelona is the best :wink:

;D

Oups! i missed this one!!

what will be the solution? a VPS update?

thanx

No, if Igor is correct (and he used to be ;D) it’s a problem of Symantec wrong encryting a virus sample… Like Panda antivirus :stuck_out_tongue: :frowning: >:(

:smiley: thanx Technical and Igor too