1. Clamwin continues to quarantine Bitdefender and software tools, etc. Other (better rated) antivirus give options to add exception for known files. Clamwin repeatedly deletes (quarantines) files that imply low level system access like Bitdefender and havtool.exe (Microsoft hardware assited virtualization checker).
2. The files it trashes are digitally signed and a simple test of the hash and root cert authority should help Clam determine the file non-malignancy.
3. I've even "run as Admin" on Clamwin but it seems unable to open most Windows directories or files. Certainly these folders can be scanned from a ZPE or Linux boot CD (or boot USB) however the utility of Clamwin is that it runs in "Safe Mode". Downside is it runs many times slower than AVG command line scan (which does open many of the folders Clamwin cannot).
4. As in the title, there should be a way of a.) whitelisting a file and b.) a way of providing feedback through the scan program on whether it should be whitelisted or blacklisted. I'd note that blacklisting because we know what's good for the user is a Microsoft thing to do.
5. Perhaps my odious habit of running multiple anti-malware software is to blame, but Clamwin has missed several viruses and every file automatically quarantined by Clamwin has been (except one installer, from Cnet, with opt-in adware; "almost malware").
6. Everytime I reinstall Yahoo Messenger or Yahoo tools Clamwin detects "Win.Trojan.Ramnit". Are y'all Googleheads or something? Sure Yahoo only has a 20% market share but one would think that by now the Devs would have gotten a clue.

This forum is as good as any place to inform the ClamWin developers about problems/concerns. ClamWin is not a paid, commercial application, however, so they only monitor it when time allows. There are usually knowledgeable users who can help with advice on problems with ClamWin, however. You can also search the forum and the Web for answers to problems/concerns.

ClamWin uses the scanning engine and virus/malware database provided by the Clam AV project from Sourcefire (recently acquired by Cisco). All falsely-detected files (false positives)--and undetected virus/malware files should be uploaded to Clam AV via the submit files option on their web page. When you get to the submission page, there is one form/link for reporting false positives and another form/link for reporting undetected viruses. Before submitting files to Clam AV, however, you should verify all files with one of these online scanning services: Jotti, Virus Total, or Virus Scan. I do not trust anything else, and I do not trust just one AV to detect something--especially if it is new malware.

You can whitelist "good" files that are falsely detected in ClamWin's Configure, Filters, Exclude matching filenames menu selections, but you should report them to Clam AV so the false signature will be corrected for all users.

ClamWin has its own protection for false positives on important Microsoft/system files that are digitally signed, but other digitally signed files can have a false positive now and then. Also, malware has adopted the tactic of stealing/buying valid digital signatures, so be careful. You will also sometimes see malware allied with spam/adware.

Thanks for using ClamWin!

Regards,