False Positive

[Antbates1991]

Here is a false positive from avast on Virtual box hard disc files, you get this with all Windows Based Operating Systems in a Virtual Box Hard Disc File.
VPS 090604-0/ 04/06

I have reported this false positive many times before using the link on the virus alert but it hasn't been removed.
See Screen Shot
*I cant send you the files as they are both 20GB


Program Website: http://www.virtualbox.org/

[Antbates1991]

2nd Screen Shot

[John2009]

Scan the file at www.virustotal.com and post the results.

[jsejtko]

Hello,

unfortunatly it is impossible to scan those files at virustotal, because they are 20GB. I'll try to check signature for this alert, but you can add both files into exclusion lists in avast before we release the fix.

Regards

[igor]

My guess is that there are uncrypted virus signatures inside of the image (e.g. from MS Defender) - and possibly many more.
So, I don't think this can be fixed; I suggest to add the file into the list of exclusions.

[jsejtko]

Igor is right -> the signature looks to be good and there is known issue with MS Defender and its unencrypted virus database file. Please add full path of those files (system images) into exlusion lists, there will not be any other fix.

Regards

[igor]

Well, I think the virus database file is encrypted - but when loaded, it's decrypted into memory. And since the virtual image contains the memory of the virtual machine...

[Antbates1991]

Thanks for the help