Infected SL plugin

[Valerie Volare]

I have receive the following message from my antivirus scan the last few times after I log out of SL:

The application slplugin.exe accesses a web resource http://lecs-viewer-web-components.s3.amazonaws.com/v3.0/agni/avatars.html that has been detected as infected. The web resource has been successfully blocked and your PC is now safe.

What is this web resource that is infecting my computer?

[Freya Mokusei]

To answer your question, that URI links to the "Select an Avatar" page that new users are often presented.

It's probable that this is a false-positive since it runs on Amazon AWS - a cloud-hosting company that LL use. It's also a frequent place to find malicious software, botnets, and all kinds of other nasty stuff. It is not infected.

In this case however, the resource is legitimate, and your anti-virus has it wrong. You don't provide information about which anti-virus you're using, but you should report this as a false-postive to the manufacturer.

[Rolig Loon]

Please read this article by the support staff for the Firestorm viewer >>> http://wiki.phoenixviewer.com/antivirus_whitelisting  .  It is very common for antivirus routines to mistakenly flag SL or its component plugins as malicious software.  Norton antivirus is particularly aggressive.  All you have to do it whitelist SLPlugin.exe on your computer.