cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Who Me Too'd this topic

FalsePositive on Silverlight.exe (Virus/Win32.slugin.ozi ID: 2044771)

L2 Linker

Hello Community!

 

I wonder if anyone else is getting a FalsPositive-Hit in AntiVirus-Protection on downloading Silverlight.exe?

 

When we use the following Link: http://go.microsoft.com/fwlink/?LinkID=623682

the page is blocked do to AntiVirus-Profile. In our ThreatLog we can see that the file Silverlight.exe is beeing blocked because it is identified as Virus/Win32.slugin.ozi ID: 2044771.

 

We are running a PA-3020 in an HA-Pair with the follwing SW-Version:

sw-version: 6.1.6

app-version: 546-3064
app-release-date: 2015/12/17  13:57:30
av-version: 1724-2202
av-release-date: 2015/12/20  04:00:02
threat-version: 546-3064
threat-release-date: 2015/12/17  13:57:30

wildfire-version: 83278-90094
wildfire-release-date: 2015/12/21  04:16:02

 

I downloaded the file an run a scan on VirusTotal with the following result:

SHA256: bd7ec2cd5d5e31d39a183854c587681f49d1fc0de47ef79ab0ea6d509de64938
Dateiname: Silverlight.exe
Erkennungsrate: 0 / 53
Analyse-Datum: 2015-12-21 13:18:55 UTC ( vor 1 Minute )
 
0
 
Probably harmless! There are strong indicators suggesting that this file is safe to use.

 

To me it seems to be a FalsePositive.

Is anyone seeing the same issue?

 

Thanks,

Alex.

Who Me Too'd this topic