I believe this to most definitely be a false detection.
Here is my reasoning
I posted a thread for a help tool
here and a user reported that a Trojan was contained in rockXP.exe - baffled by this since i use AVAST and trend online I too it for a false and thought nothing of it.
Moments ago AVAST updated itself and reported several files in My docs backups folder had the same Trojan as mentioned above. These files were self extracting archives which i made using winrar so I extracted the contents and scanned the contents separately to the self extracting archive. The contents were clean every time but the sfx archive exe file was reported to have the Trojan. so I re-compressed the contents to .rar format not .exe and no more problems.
Now, confused by this I scanned the winRAR installer as it is a self extracting installer too and the file Default.SFX was reported to be the Trojan (as mentioned above). winrar was downloaded fresh form rar labs too so could not have been infected locally by any chance
if thats not enough then NERO uninstaller also had the same alert - again, a self extracting uninstaller.
It seems that any file which has the default.sfx or anything similar is reported to have this Trojan which makes more and more sense that this is in fact a false detection is it not?
Finally I extracted RockXP.exe and scanned each file, all clean, the contained self extracting rockXP.exe obviously was created using winRAR or something as the same results as above.
Hopefully this issue will be fixed in the next update!