The attached file is being targetted by AVG7 with the latest definitions.

It is removing the file - which is a major part of a filter system used by my church computers - as such unless I kill AVG7 and resore that file we lose internet access.

It is obviously a false positive.

The software it is targetting is FilterPak from www.familyguardian.net

The file sporder.dll which is a MS file from the c:\windows\system folder (not system32)

Description : WinSock2 reorder service providers

version : 5.0.1641.1

Can someone let grisoft know please.

sporder.zip
Description:	Zipped copy of file c:windowssystemsprder.dll (NOT system32)	Download
Filename:	sporder.zip
Filesize:	2.3 KB
Downloaded:	82 Time(s)

False positive reported .

I will check in again tonight and tomorrow if need be .

Thanks

At my church I am without most of my tools and email accounts - so needed your help

You might even have got others with the same problem turning up - if they are able to work out HOW to get internet active again - needed all my knowledge to do that.

Regards.

This is a bummer.

With AVG installed I have no internet access - so I cannot even update the def files when they are updated tp fix this

If I remove the filter software then the computers are wide open as they are used like those at a library - by all and sundry - but we can then use the internet to get the updates.

Think I have no choice - I remove the filter software till AVG have its update done.

Picked it up tonight aswell. MIne was found in the system 32 folder in the panda active scan files. Im guessing I should jsut leave it in quarantine for now although it doesnt mean anythign being a FP.

Tib

And surley this can't be a positive due to its loaction in the active scan folder? BTW being picked up on AVG free 7.5 incase you didnt know.

Tib

The only time I know it to be a problem is if you are running a net filtering program such as FilterPak which uses that MS program.

If you do - the best way out I have found so far is to :-

1. uninstall AVG7 - (yep that bad)
2. put back the removed file
3. then uninstall filterpak (FamilyGardian).
4. re-install AVG7

The reason is while AVG is active that file is killed every time it is called - and you need that file for the filterpak to allow you to get to the internet.
You need to get to the internet to uninstall filterpak - so AVG has to go first for that reason.

It is still being flagged as malware .

I just gave them another poke .

This time I also linked directly to this topic .

STATUS: SCANNINGFile "sporder.dll" received on 11.01.2006 at 16:16:05 (CET) is being scanned by VirusTotal in this moment. Results will be shown as they're generated.


AVG 386 11.01.2006 no virus found

You are good to go .

good news - I can now try to put the systems back together - will probably still need to reinstall avg and filterpak - pains.