I am trying to install the latest distro of the Beta Grid client, and my anti-virus software shuts the installation down telling me there is a W32/Starware.A adware infection in the temporary file UserInfo.dll - is this a maldetection or has the change of distribution compromised the client files somehow?
EDIT
-------
Just for reference, my concern has been answered on blog.secondlife.com:
Joshua Linden Says:
November 29th, 2006 at 9:43 AM UTC-8
@Ey Ren:
Thanks for being concerned!
I’ve verified that the md5sum on the Win32 installer downloaded from S3 matches the one we uploaded (27db2995ddbd2dd80ad13f5c2866957c if you’re interested) - that is, nothing has been altered about the file on S3. I’ve re-run our anti-virus software (Kaspersky) with signatures updated this morning against the Win32 installer, the installed binaries, the build files, and UserInfo.dll file itself.
The UserInfo.dll file itself is not part of Second Life but part of a 3rd party installer we use (NSIS). Based on an (admittedly quick) investigation, we believe that the file is used to query the system about user information - it reports account type and name to verify that the user has permissions to install. It is possible that some actual malware relies on the same DLL or a DLL with the same name as part of its install, and thus your malware signature provider has started flagging this file. (FWIW, we’ve compared md5sums on that file itself - 419d642fe3436fda8bb22eea9c37a6ca)
If you’d like further information, contact me at [email]josh@lindenlab.com[/email]. I’d be interested in hearing about what scanner software you’re using that reported this.