This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
VirusTotal
Have you encountered a false positive verdict for Palo Alto Networks (Known Signatures) on VirusTotal? Use this forum to submit a verdict change request. Change requests should include the File Hash, Link to VirusTotal report, current VirusTotal verdict, and description.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VirusTotal
Have you encountered a false positive verdict for Palo Alto Networks (Known Signatures) on VirusTotal? Use this forum to submit a verdict change request. Change requests should include the File Hash, Link to VirusTotal report, current VirusTotal verdict, and description.
About VirusTotal

Welcome to the VirusTotal discussion forum. This forum exists as a place to submit verdict review requests for False Positive verdicts for Palo Alto Networks (Known Signatures) seen on VirusTotal. All posts to this forum must be properly structured in order to be reviewed by our team.

For an introduction to the forum, please see the sticky!

Disclaimer:
This forum is not a customer support venue. Palo Alto Networks staff will not engage in active discussions on this forum. Our staff will ingest properly formatted submissions for review and update Palo Alto Networks (Known Signatures) verdicts when appropriate. For information on contacting Palo Alto Networks support, click here.

Discussions

Start a conversation

VirusTotal Verdict Change Request for False Positive

Sticky post for VirusTotal Discussion Forum. This forum is here to enable those who are not Palo Alto Networks customers to submit a false positive verdict change request for a Palo Alto Networks verdict on VirusTotal. (i.e. malware or malicious verdict for a file that is demonstrably benign). Please submit the following information in the...

brcook by L2 Linker
  • 13807 Views
  • 0 replies
  • 7 Likes

Resolved! False positive virustotal

False positive virustotal: File Hash: 2c4d8b48344ae221e349e525ac16eb364ffb5ab8deae80c7caa28dd5967cabdb Link to Virustotal report for the file: https://www.virustotal.com/gui/file/2c4d8b48344ae221e349e525ac16eb364ffb5ab8deae80c7caa28dd5967cabdb Current VirustTotal Verdict: Generic.ml Description: game launcher

Virustotal False positive:

Please investigate and whitelist the product: CCBoot Cloud Official website: https://www.ccboot.com/ Detection name: Generic.ml The sample is in a password protected zip file The password for the attachment is infected

Resolved! Medlexo False positive in v9.7 update

Dear PaloAlto,I updated the app on 31/Jan for fixing converting gif to mp4 bugYour detection engine is flagging my app as detected.My website is https://medlexo.is-an.app/ 32bit: https://www.virustotal.com/gui/file/88a6121ac43af9a64f99d22ee37ad8f02f66376306d2e2e4b6482a3ac5bd490b 64bit: https://www.virustotal.com/gui/file/7c1061d40a1c6f5249fea2...

ericsia by L2 Linker
  • 4753 Views
  • 4 replies
  • 0 Likes

VirusTotal False Positive

The sample is in a password protected zip file The password for the attachment is infected Please investigate and whitelist the product “CCBootCloud”. Official website: “https://www.ccboot.com/” https://www.virustotal.com/gui/file/26eafe88472e5fef31a60f0c943742e97309d618d11e046eed3e52717cd39111?nocache=1Please note you are posting a public messa...

Resolved! VirusTotal False Positive: ccml.io domain

Hi there - Content Camel (https://www.contentcamel.io/) is a b2b provider of marketing and sales software. We manage the ccml.io domain for our customers for use in b2b communication with their end users and customers. The short domain is designed as a low volume, direct communication domain/app, so it won't show up with a lot of volume or in...

Adobe Reader DC install being treated as a virus

Hi We have recently increased the level of security for wildfire and since then the firewall is blocking the installer for Adobe Reader DC and saying it has a virus Win32.WGeneric.lsaqu on it. This is happening on different machines and we when we try and go to the official Adobe website using either IE or Chrome! Anyone having this issue as we...

VirusTotal Verdict Confirmation

The following signature has been flagged for us recently by WildFire. Could someone please confirm if this is a legitimate threat or false positive? Name: Virus/Win32.WGeneric.dugvfd Unique Threat ID: 554886710 Create Time: 2022-10-26 18:25:06 (UTC) sha256: f5bbf093bbf2aaa6d7b460fc4f8850df23c6a36c54ef78da2c995bfc0519d136 https://www.virustot...

VirusTotal Verdict Change Request for False Positive

File Hash: 1bf278fe71e67145171bf9d6b44dcb4e76ec675adda15d923f8f2fba5120fad2 Link to Virustotal report for the file: <link> Current VirustTotal Verdict: <Undetected, not in database> Description: <Purple Knight is an Active Directory and Azure AD security assessment tool used by thousands of organizations to quickly identify vulner...

Resolved! False positive report

Hello, https://www.ampyazilim.com.tr Our site www.ampyazilim.com.tr on virustotal.com the autoshun engine (now closed, there is no such engine at the current state) is marked as Malicious, therefore It is also labeled as high risk on https://urlfiltering.paloaltonetworks.com/query/. This is a false positive. Our site is a site that has bee...

frkgns by L0 Member
  • 6682 Views
  • 2 replies
  • 0 Likes

Resolved! VirusTotal Verdict Change Request for False Positive

File Hash: 374a44b99c54c95314e75f19289bc94af2647bdce37dbf868c32261441b7a750 Link to Virustotal report for the file: <link> Current VirustTotal Verdict: <Generic.ml> Description: <airRohr-firmware-flasher-0.3.1-Windows_32bit.exe> File Hash: 517558b228e950e1032ef83a6fd0d00b8d00b6d498ca59ec5ee0fc62ad629ed7 Link to Virustotal rep...

False Positive Virustotal

File Hash: FEEF14A4977D2A91E18D82DF42FD2429FBA73679D29A2CE0A593E80F360B4F54 Link to Virustotal report for the file: https://www.virustotal.com/gui/file/feef14a4977d2a91e18d82df42fd2429fba73679d29a2ce0a593e80f360b4f54 Current VirustTotal Verdict: 19/70 Description: Anydesk auto download toolPlease note you are posting a public message where commu...

false positive report

hello , we found out that our setup program reported as virus as false positivethis is a simple setup program for antivirus program which is called trueep as known as trojancut Our products are delivered to almost all Korean public companies, and there are many problems due to false positives. we want to make an exception to all programs that ar...

False Positive (Generic.ml)

The following file is being flagged by Palo Alto Networks as Generic.ml. The file is an installer for the application: Restoro 2.0.3.5. For more information, you may visit their page: www.restoro.com Please help us investigate and resolve the detection. MD5: 087f195dae632e4384b681aad25f4f08 SHA1: de107def12b0e37988e7db96e9a896ad433dc082 SHA256:...

Resolved! VirusTotal Verdict Change Request for False Positive

File Hash: <008d78f81461a12e9a82b3be2ab75b5ffbedfa92e56d27a861e2f69276bf090c> Link to Virustotal report for the file: <link> Current VirustTotal Verdict: <Generic.ml> Description: <Autologger.exe> This is a log collector which we use very often to analyse logs and help users to clean systems from malware. It contains se...

Sandor by L1 Bithead
  • 3186 Views
  • 2 replies
  • 0 Likes
  • 787 Posts
  • 67 Subscriptions
Top Solution Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks