Windows 7 in Virtual Machine .vhd file reported as Virus

I am running Windows 7 RC in a virtual machine installed from the 7100.0.090421-1700_x86fre_client_en-us_retail_ultimate-grc1culfrer_en_dvd.iso that I downloaded directly from
Microsoft.
I have Avast antivirus on the Host machine.It flags the Win 7 Hard Disk.vhd as Win32:Adloader-AC [trj].I know its a false positive but I thought I would mention it here because
false or not I worry.
Avast is also up to date so I am kinda wondering what to do.I am currently scanning with other scanners just to be 100% sure.

I suggest you install avast in the client (virtual) machine also. And run it… maybe it’s not a false positive.
Anyway, you can exclude *.vhd files in the host machine avast installation.
Thanks for reporting.

Ok installed and updated Avast on my Windows 7 Virtual machine.Ran complete scan,its clean.Verified by another Virus scanner to.
The .vhd file when scanned with another virus scanner is clean.
I am gonna say False Positive.
Did not realize I could exclude .vhd files.May try that for now.

Funny I just ran another scan and its now saying its a Win32:Zbot-AVH [trj] instead of Win32:Adloader-AC [trj]

You need to use the Exclusion lists:

For the Standard Shield provider (on-access scanning):
Left click the ‘a’ blue icon, click on the provider icon at left and then Customize.
Go to Advanced tab and click on Add button…

For the other providers (on-demand scanning such as the screen-saver or the Simple User Interface):
Right click the ‘a’ blue icon, click Program Settings.
Go to Exclusions tab and click on Add button…

You can use wildcards like * and ?.
But be careful, you should ‘exclude’ that many files that let your system in danger.

Done…Thanks for the info.
I really like Avast,but seems sometimes to be a little over zealous with “false positives”.
I would rather it be that way then be less secure :slight_smile:
Also got a false positive from Avast about Clamwin when Clamwin updated.
I installed Clamwin beside Avast to double check the VM file.It was clean
with Clamwin.

After searching the web a bit and the forums here,I found several threads about “false positives”
in both the Virtual machine files .vmdk and .vhd files and Clamwin.

So I need not get all worried,now I can relax… :smiley:

http://forum.avast.com/index.php?topic=45231.msg379048#msg379048

Cool Thanks.I installed Clamwin just to check the VM file…after which I plan on uninstalling because 2 anti-viruses,
no matter the brand,just do not play well usually. :slight_smile:

Watch out for alerts on clamwin as it doesn’t encrypt its virus signatures (update files aren’t encrypted either), so guess what, avast will detect them.