Sorry if this is in the wrong section.

First time using this antivirus program and I'm only a little bit into the scan process. I am getting hits on some of my steam_api.dll files though. I'm assuming this is a false positive as it's in multiple locations.

It seems to be picking up the files with the description:

'File description: Steam Client API
(buildbot_winslave01_steam_rel_client_win32@winslave01)
(buildbot)_winslave01_steam_rel_clien

File version: 1.14.66.23'
(The missing 't' isn't a typo on my part)

There's other steam_api files but they aren't detected. Only the version above.

I've scanned with both MBAM and Microsoft Security Essentials. This is the first time I've seen this. I'm hoping this isn't a problem but would just like to double check. Anyone else finding this problem?

Thanks for using ClamWin!

The file(s) are probably okay if Security Essentials doesn't detect anything--it has a very low false positive rate. You should probably upload one or two of the files to Virus Total or Jotti to see what multiple AVs say. I like to see 2 of these AVs verify a detection: Avira AntiVir, Bitdefender, Kaspersky, Nod32, and Sophos. Virus Total will also tell you the first time it saw the file (Additional Information). If the file is more than a couple of weeks old, lots of AVs should detect it if it is infected.

Clam AV furnishes the scanning engine and signature database used by ClamWin. If a file turns out to be a false positive, upload it to Clam AV at https://www.clamav.net/lang/en/sendvirus/ on the web so they can "fix" their signature.. Also "whitelist" the file(s) in ClamWin (Configure, Filters, Exclude Matching Filenames) until Clam corrects the signature. Give them 3 or 4 days to correct the signature.

If you use ClamWin with a real-time AV such as Security Essentials, exclude ClamWin's program and data folders from Security Essentials' scans so Security Essentials will not scan when ClamWin scans. Security Essentials will let you exclude processes--so you can exclude all the .exe files in the ClamWin bin folder instead of excluding the entire program folder. Be sure to exclude the ClamWin data folder, however, so Security Essentials will not pick up any quarantined files.

Regards,

Thank you for the quick reply! I did as you said and excluded clamwin from MSE's scans. It is located on a flash drive so if I plug it into another drive it might not work.

Results:
https://virusscan.jotti.org/en/scanresult/8d928c58ab76eb293e87384c579b0962422bb10d/26f81b99342e516d9daa90f6bd34d0b5b0889c78 https://virusscan.jotti.org/en/scanresult/8d928c58ab76eb293e87384c579b0962422bb10d/26f81b99342e516d9daa90f6bd34d0b5b0889c78 wasn't detected here on clamAV?
https://vscan.novirusthanks.org/analysis/f9516209e964458e94168d50a4a0b33c/c3RlYW0tYXBpLWRsbA==/ https://vscan.novirusthanks.org/analysis/f9516209e964458e94168d50a4a0b33c/c3RlYW0tYXBpLWRsbA==/
https://www.virustotal.com/file/0905dab606589c0e9eaf569e978b6533ca2dde01d8c15468591aea8f489b828c/analysis/ https://www.virustotal.com/file/0905dab606589c0e9eaf569e978b6533ca2dde01d8c15468591aea8f489b828c/analysis/

It's only detected by clamAV so I guess I'll upload it to the link you gave me. Will the exception list(if my file is added) be automatically downloaded to my computer?

Yes--when Clam AV fixes a false positive signature, it will be included in their next signature database update, and ClamWin users will get it then. I suggest you set ClamWin for hourly automatic updates (configuration, internet updates, enable, set to hourly at desired start time). It may take 3 or 4 days to fix a signature. Each sigmaker is ordinarily responsible for fixing his own signatures, and they do not work on sigmaking all the time. If possible, keep the files in quarantine, scan them daily from the quarantine folder with ClamWin via right click in Windows Explorer, and restore them (via the ClamWin Quarantine Browser--start. all programs, ClamWin, quarantine browser) when they are no longer detected.

Clam AV is doing some maintenance on its submission interface right now, and there have not been any new signatures for a couple of days. They have not said when they will be finished, but I hope it will be by September 4th. Anyway, you should still be well-protected with Security Essentials. ClamWin makes a good backup scanner.

Regards,

Sounds good! The files are necessary to play the games they're associated with(which is why I believe they're false positives). I'll try to do as you say

Thanks for your help and information

I forgot to say that if you need to use those quarantined files before Clam AV can fix the signature, just exclude them from ClamWin scans as filename.extension, such as sample.exe, and then you can restore them.

Regards,

Good to know Thanks again!