We have detected a potential False Positive - Trojan.Agent - 165377 (files: alrsvc.dll - creation date: Aug 17, 2001, asferror.dll - creation date: June 17, 2003). These are Windows OS files that are included on the OEM disks.

Questions:
1. Do you have any updates or information on this?
2. When will you update your virus definitions to fix this issue?
3. Is anybody else seeing this?

FYI - We did not see this yesterday, we updated the virus definitions this morning.

ClamWin uses the scanning engine and signature database provided by Clam AV. All false positives and all undetected viruses should be submitted to the Clam AV site at https://www.clamav.net/lang/en/sendvirus/ on the web. When you get to the actual submission page, if it is a false positive, be sure to check the false positive block and tell them the actual name of the virus that is falsely detected in the comments section. This is the only way to correct a false positive and/or get a signature for an undetected virus. False positives are usually corrected in a day or two but sometimes it may take a little longer, depending upon sigmaker workload/availability.

By the way, what Windows OS are you using? ClamWin has now minimized false positives on Windows files. This is the first I have heard about in a while. I think there are still some problems on older computers though--like Win 98 and XP.

Regards,