https://live.paloaltonetworks.com/t5/virustotal/false-positive-submission-generic-ml/m-p/209014#M427 <P>This sample was manually evaluated and determined to be Greyware and the verdict has been changed.&nbsp; It no longer shows as malware on Virus Total.&nbsp; If you wonder what our classification for Greyware is see the below link and description.</P><P>&nbsp;</P><P><A href="https://www.paloaltonetworks.com/documentation/translated/70/newfeaturesguide/wildfire-features/wildfire-grayware-verdict" target="_blank">https://www.paloaltonetworks.com/documentation/translated/70/newfeaturesguide/wildfire-features/wildfire-grayware-verdict</A></P><P>&nbsp;</P><P><SPAN>The WildFire grayware verdict classifies files that behave similarly to malware, but are not malicious in nature or intent. A grayware verdict might be assigned to files that do not pose a direct security threat, but display otherwise obtrusive behavior (for example, installing unwanted software, changing various system settings, or reducing system performance). Examples of grayware software can typically include adware, spyware, and Browser Helper Objects (BHOs). The grayware verdict allows you to quickly distinguish malicious files on the network from grayware, and to prioritize accordingly.</SPAN></P><P>&nbsp;</P><P><SPAN>Antivirus signatures are not generated for grayware and security policies cannot be enforced based on the grayware verdict. However, logs and reports can continue to alert to endpoints downloading grayware, enabling you to take any necessary action.</SPAN></P> Fri, 06 Apr 2018 10:47:02 GMT tsullivan7 2018-04-06T10:47:02Z https://live.paloaltonetworks.com/t5/virustotal/false-positive-submission-generic-ml/m-p/208736#M419 <P class="lia-message-dates lia-message-post-date lia-component-post-date-last-edited">&nbsp;</P><P class="lia-message-dates lia-message-post-date lia-component-post-date-last-edited"><SPAN class="DateTime lia-message-posted-on lia-component-common-widget-date"><SPAN class="local-friendly-date">Kindly check IE New Tab Installer from SpringTech</SPAN></SPAN></P><P class="lia-message-dates lia-message-post-date lia-component-post-date-last-edited">&nbsp;</P><P class="lia-message-dates lia-message-post-date lia-component-post-date-last-edited"><SPAN class="DateTime lia-message-posted-on lia-component-common-widget-date"><SPAN class="local-friendly-date">VirusTotal links:</SPAN></SPAN></P><P class="lia-message-dates lia-message-post-date lia-component-post-date-last-edited"><SPAN class="DateTime lia-message-posted-on lia-component-common-widget-date"><SPAN class="local-friendly-date"><A href="https://www.virustotal.com/#/file/a02a23cb14cbec75700a9c4af1c497a25ddb9b52fd0e0cfe5f91e0be7f30a232/detection&nbsp;" target="_blank">https://www.virustotal.com/#/file/a02a23cb14cbec75700a9c4af1c497a25ddb9b52fd0e0cfe5f91e0be7f30a232/detection&nbsp;</A></SPAN></SPAN></P><P class="lia-message-dates lia-message-post-date lia-component-post-date-last-edited"><SPAN class="DateTime lia-message-posted-on lia-component-common-widget-date"><SPAN class="local-friendly-date"><A href="https://www.virustotal.com/#/file/604ee5d72f162ba2ab80a2b236dfdf601d0ef6b0a3ffd733bc47255992993535/detection" target="_blank">https://www.virustotal.com/#/file/604ee5d72f162ba2ab80a2b236dfdf601d0ef6b0a3ffd733bc47255992993535/detection</A></SPAN></SPAN></P><P class="lia-message-dates lia-message-post-date lia-component-post-date-last-edited">&nbsp;</P><DIV class="lia-message-body"><DIV class="lia-message-body-content"><DIV class="lia-message-body"><DIV class="lia-message-body-content"><P><SPAN class="individual_detection style-scope vt-detections">Current VT Verdict: generic.ml</SPAN></P><P>&nbsp;</P><P>&nbsp;</P>Thank you.</DIV></DIV></DIV></DIV> Wed, 04 Apr 2018 08:21:10 GMT https://live.paloaltonetworks.com/t5/virustotal/false-positive-submission-generic-ml/m-p/208736#M419 kns123 2018-04-04T08:21:10Z https://live.paloaltonetworks.com/t5/virustotal/false-positive-submission-generic-ml/m-p/208791#M420 <P>This will be processed for a manual review if it does appear to be a false positive a verdict change will be made.</P> Wed, 04 Apr 2018 17:43:48 GMT https://live.paloaltonetworks.com/t5/virustotal/false-positive-submission-generic-ml/m-p/208791#M420 tsullivan7 2018-04-04T17:43:48Z https://live.paloaltonetworks.com/t5/virustotal/false-positive-submission-generic-ml/m-p/208793#M421 <P>This file was processed for a manual evaluation:</P><P><A href="https://www.virustotal.com/#/file/604ee5d72f162ba2ab80a2b236dfdf601d0ef6b0a3ffd733bc47255992993535/detection" target="_blank">https://www.virustotal.com/#/file/604ee5d72f162ba2ab80a2b236dfdf601d0ef6b0a3ffd733bc47255992993535/detection</A></P><P>&nbsp;</P><P>but this one was not, as we don't have it labled as malicious:</P><P><A href="https://www.virustotal.com/#/file/a02a23cb14cbec75700a9c4af1c497a25ddb9b52fd0e0cfe5f91e0be7f30a232/detection" target="_blank">https://www.virustotal.com/#/file/a02a23cb14cbec75700a9c4af1c497a25ddb9b52fd0e0cfe5f91e0be7f30a232/detection</A></P> Wed, 04 Apr 2018 17:53:44 GMT https://live.paloaltonetworks.com/t5/virustotal/false-positive-submission-generic-ml/m-p/208793#M421 tsullivan7 2018-04-04T17:53:44Z https://live.paloaltonetworks.com/t5/virustotal/false-positive-submission-generic-ml/m-p/209014#M427 <P>This sample was manually evaluated and determined to be Greyware and the verdict has been changed.&nbsp; It no longer shows as malware on Virus Total.&nbsp; If you wonder what our classification for Greyware is see the below link and description.</P><P>&nbsp;</P><P><A href="https://www.paloaltonetworks.com/documentation/translated/70/newfeaturesguide/wildfire-features/wildfire-grayware-verdict" target="_blank">https://www.paloaltonetworks.com/documentation/translated/70/newfeaturesguide/wildfire-features/wildfire-grayware-verdict</A></P><P>&nbsp;</P><P><SPAN>The WildFire grayware verdict classifies files that behave similarly to malware, but are not malicious in nature or intent. A grayware verdict might be assigned to files that do not pose a direct security threat, but display otherwise obtrusive behavior (for example, installing unwanted software, changing various system settings, or reducing system performance). Examples of grayware software can typically include adware, spyware, and Browser Helper Objects (BHOs). The grayware verdict allows you to quickly distinguish malicious files on the network from grayware, and to prioritize accordingly.</SPAN></P><P>&nbsp;</P><P><SPAN>Antivirus signatures are not generated for grayware and security policies cannot be enforced based on the grayware verdict. However, logs and reports can continue to alert to endpoints downloading grayware, enabling you to take any necessary action.</SPAN></P> Fri, 06 Apr 2018 10:47:02 GMT https://live.paloaltonetworks.com/t5/virustotal/false-positive-submission-generic-ml/m-p/209014#M427 tsullivan7 2018-04-06T10:47:02Z https://live.paloaltonetworks.com/t5/virustotal/false-positive-submission-generic-ml/m-p/209104#M430 <P>&nbsp;</P><P>Noted on this, thank you!</P> Fri, 06 Apr 2018 23:16:18 GMT https://live.paloaltonetworks.com/t5/virustotal/false-positive-submission-generic-ml/m-p/209104#M430 kns123 2018-04-06T23:16:18Z