My screen saver scan (mem and startup) picked up Win32:SQLSlammer and just had OK button available, it was a memory resident worm, so I guess it just dumped it. I dont think it was false alarm as the Sygate traffic log had an attempted connection on the port it comes in (at the same time), although it said it was blocked, odd.
Well if it wasnt a false alert, Avast was COOL. ;D ;D ;D
I’m sorry to say that but it’s not very likely that avast would actually pick it in a file (it doesn’t infect any files) – or it detected it in a memory block?
Well if you had MS SQL installed and running… otherwise hardly.
But another thing is that remote sites infected by SQLSlammer may still be scanning your machine for the vulnerability.
Think it was in memory block. I dont think I even have SQL installed, how would I know, theres nothing in add/remove programs or start button…called SQL or anything. I have MS Visual Studio 6.0 installed and MSDN disks.
I have the latest windows updates (from IE6 update option). If it was a false alert why, I dont see how it could be a false positive.