On Tue, 2006-02-21 at 13:07 -0500, Tom Metro wrote: > C. Bensend wrote: > > ...my Samba server did its weekly scan this morning, and imagine my > > surprise when it tagged Google's video player installer as > > "Trojan.Clicker.Small-100". > > > > Is this a false positive? > > I think so. See my posting to the clamav-win32 list: > > http://lists.clamav.net/message/20060218.155648.78c50bd3.en.html > > It appears the open source Nullsoft installer, often used for open > source Windows apps., is triggering this. > > I'd recommend filing it as a false positive: > http://cgi.clamav.net/sendvirus.cgi
I think that's already been done in update 1293: Submission: 233376 Sender: Riksoft Submission notes: Signature removed to avoid FP. Removed: Trojan.Clicker.Small-100 -- Daniel J McDonald, CCIE # 2495, CNX, CISSP # 78281 Austin Energy [EMAIL PROTECTED] gpg Key: http://austinnetworkdesign.com/pgp.key Key fingerprint = B527 F53D 0C8C D38B DCC7 901D 2F19 A13A 22E8 A76A _______________________________________________ http://lurker.clamav.net/list/clamav-users.html
