VirusTotal
Have you encountered a false positive verdict for Palo Alto Networks (Known Signatures) on VirusTotal? Use this forum to submit a verdict change request. Change requests should include the File Hash, Link to VirusTotal report, current VirusTotal verdict, and description.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VirusTotal
Have you encountered a false positive verdict for Palo Alto Networks (Known Signatures) on VirusTotal? Use this forum to submit a verdict change request. Change requests should include the File Hash, Link to VirusTotal report, current VirusTotal verdict, and description.
About VirusTotal

Welcome to the VirusTotal discussion forum. This forum exists as a place to submit verdict review requests for False Positive verdicts for Palo Alto Networks (Known Signatures) seen on VirusTotal. All posts to this forum must be properly structured in order to be reviewed by our team.

For an introduction to the forum, please see the sticky!

Disclaimer:
This forum is not a customer support venue. Palo Alto Networks staff will not engage in active discussions on this forum. Our staff will ingest properly formatted submissions for review and update Palo Alto Networks (Known Signatures) verdicts when appropriate. For information on contacting Palo Alto Networks support, click here.

Discussions

VirusTotal Verdict Change Request for False Positive

Sticky post for VirusTotal Discussion Forum. This forum is here to enable those who are not Palo Alto Networks customers to submit a false positive verdict change request for a Palo Alto Networks verdict on VirusTotal. (i.e. malware or malicious verdict for a file that is demonstrably benign). Please submit the following information in the...

brcook by L2 Linker
  • 14014 Views
  • 0 replies
  • 7 Likes

filtering by action_process_image_name

Hello, I'm building an XQL query to flag machines actively using Java — basically, looking for recent execution of java.exe or javaw.exe over the last 30 days. I’m leaning towards filtering by action_process_image_name (since that’s the actual process being executed), but I noticed some examples use actor_process_image_name. Just wanted to...

False Positive: Adobe Download Manager  flashcenter

False Positive: Adobe Download Manager flashcenter A false positive has been detected for flashcenter.exe. Please resolve this. File Hash: <fb298f4fe228f060e9ef73c29a269902> Link to Virustotal report for the file: <VirusTotal - File - ec45f58dc204a5d3693bc881ca277b47a2a46be12cd161d59809c933312b3b36

help by L0 Member
  • 1291 Views
  • 0 replies
  • 0 Likes

False Positive: HelpDesk Viewer.

A false positive has been detected for HelpDeskViewer.exe. Please resolve this. File Hash: <930c1015432e568f00a8c9b68c71d015510be57a6dc1d8d76a08c8ddf22ac1c4> Link to Virustotal report for the file: <https://www.virustotal.com/gui/file/ec9eebf141d9f9a6bfc29b7de82f39a94286f05dcc85088d1c0d6e022fd76290...> Current VirustTotal Verdict:...

Resolved! Submit False Positive

Nagios client agent: ncpa-latest.exe is currently marked as malware. hash: 97877ecf7ae93ebc6a38bb333ba1aacc Virus total link: VirusTotal - File - 5244b30a6fd3a4fe3df0ef6e0a878fe8dd63a6f23ec36695c7dd8e52b1d9336a

False positive audioplugin_fluxer.dll

Hearthstone\Hearthstone_Data\Plugins\x86\audioplugin_fluxer.dll fileHash: 9fb10e6ac7333dad407353f79c1f967aef6ba462cef6c0714c929b602b39b38a Link to Virustotal report for the file: https://www.virustotal.com/gui/file/9fb10e6ac7333dad407353f79c1f967aef6ba462cef6c0714c929b602b39b38a/detection

False Positive : hsla-1.3.0-x64.dll

File Hash: f29af84cfa209e749eccce37c0e0bc4527a74ebdc7ef5d26aea4afc5db39e60b Link to Virustotal report for the file: https://www.virustotal.com/gui/file/f29af84cfa209e749eccce37c0e0bc4527a74ebdc7ef5d26aea4afc5db39e60b Current VirustTotal Verdict: Generic.ml Description: Internal license verification for Hanshow software We kindly request a re...

False Positive: Reflexive Arcade

File Hash: d0755a98fa60e8a12f7029ad8dde9ec9a1d1b48f7b68bb7d752d9af59c60d0e7 Link to Virustotal report for the file: https://www.virustotal.com/gui/file/d0755a98fa60e8a12f7029ad8dde9ec9a1d1b48f7b68bb7d752d9af59c60d0e7?nocache=1 Current VirustTotal Verdict: Generic.ml Description:I’m contacting you on behalf of Margarite Entertainment, the develop...

False Positive: HelpDesk Viewer.

A false positive has been detected for HelpDeskViewer.exe. File Hash: <ec9eebf141d9f9a6bfc29b7de82f39a94286f05dcc85088d1c0d6e022fd76290> Link to Virustotal report for the file: <https://www.virustotal.com/gui/file/ec9eebf141d9f9a6bfc29b7de82f39a94286f05dcc85088d1c0d6e022fd76290/details> Current VirustTotal Verdict: <Generic.ml&...

Resolved! Fals Positive: HelpDesk Viewer.

A false positive has been detected for HelpDeskViewer.exe. File Hash: <960174182b583970c00a7948ffd2a1237dfd98699a8200a780490783d1ae5c1e> Link to Virustotal report for the file: <https://www.virustotal.com/gui/file/960174182b583970c00a7948ffd2a1237dfd98699a8200a780490783d1ae5c1e/detection> Current VirustTotal Verdict: <Generic.m...

FP

File Hash: 9a3fbfc0c1eef91b91b19f3c3976d5d8265a151628a301a08d309f44378d2ae0 Link to Virustotal report for the file:https://www.virustotal.com/gui/file/9a3fbfc0c1eef91b91b19f3c3976d5d8265a151628a301a08d309f44378d2ae0?nocache=1 Current VirustTotal Verdict: Generic.ml Description: False Positive of AirMyPC software

beniam by L2 Linker
  • 3197 Views
  • 2 replies
  • 0 Likes

VLC False positive

Hi all. File Hash: 9742689a50e96ddc04d80ceff046b28da2beefd617be18166f8c5e715ec60c59Link to Virustotal report for the file: https://www.virustotal.com/gui/file/9742689a50e96ddc04d80ceff046b28da2beefd617be18166f8c5e715ec60c59 Current VirustTotal Verdict: Benign Description: VLC Media Player https://www.videolan.org/vlc/index.es.html Its being...

false positive

File Hash: a7a6ad3776336e39a9fbdbbf59f5a32aca7e5fa9a73b141a1f2db9e3d167c239 https://www.virustotal.com/gui/file/a7a6ad3776336e39a9fbdbbf59f5a32aca7e5fa9a73b141a1f2db9e3d167c239Current VirustTotal Verdict: Generic.mlThis is the one-click setup client software for the well-known public DNS service OneDNS. It has been mistakenly detected as Generic...

bobopu by L0 Member
  • 2625 Views
  • 2 replies
  • 0 Likes

Palo EDL list - some malicious IPs not included

Hi, Just want to make sure I understand Palo's EDL's correctly: a client has a query about 3 IP addresses that are not included in Palo's EDL, but is picked up as malicious via Virus Total and MXToolbox 138.199.15.177 179.43.149.114 45.148.10.237 The client wants to know why these specific IPs are not present in the EDLs and want's Palo to i...

R.Bester by L0 Member
  • 2931 Views
  • 2 replies
  • 0 Likes

Apple Relay Blocked

Hi All I have suddenly started seeing a lot of Blocks for icloud.net and .com addresses, after checking them on Virustotal, they are all rated benign, the logs are HIGH and the action is Sinkhole which is fine because that is the policy that is configured, my question is why suddenly now? is there any reason anybody knows why this configuratio...

Report false positive 2

File Hash: 3008e28f2e50ca89e0b24b4eaa2a43caea6f45eea1d819ae4ed8dd45a83b657e Link to Virustotal report for the file: https://www.virustotal.com/gui/file/3008e28f2e50ca89e0b24b4eaa2a43caea6f45eea1d819ae4ed8dd45a83b657e Current VirustTotal Verdict: Generic.ml Description: This application is used to run some Softexpert applications using the URI vi...

  • 799 Posts
  • 67 Subscriptions
Top Solution Authors
Top Liked Authors