This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
VirusTotal
Have you encountered a false positive verdict for Palo Alto Networks (Known Signatures) on VirusTotal? Use this forum to submit a verdict change request. Change requests should include the File Hash, Link to VirusTotal report, current VirusTotal verdict, and description.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VirusTotal
Have you encountered a false positive verdict for Palo Alto Networks (Known Signatures) on VirusTotal? Use this forum to submit a verdict change request. Change requests should include the File Hash, Link to VirusTotal report, current VirusTotal verdict, and description.
About VirusTotal

Welcome to the VirusTotal discussion forum. This forum exists as a place to submit verdict review requests for False Positive verdicts for Palo Alto Networks (Known Signatures) seen on VirusTotal. All posts to this forum must be properly structured in order to be reviewed by our team.

For an introduction to the forum, please see the sticky!

Disclaimer:
This forum is not a customer support venue. Palo Alto Networks staff will not engage in active discussions on this forum. Our staff will ingest properly formatted submissions for review and update Palo Alto Networks (Known Signatures) verdicts when appropriate. For information on contacting Palo Alto Networks support, click here.

Discussions

Start a conversation

VirusTotal Verdict Change Request for False Positive

Sticky post for VirusTotal Discussion Forum. This forum is here to enable those who are not Palo Alto Networks customers to submit a false positive verdict change request for a Palo Alto Networks verdict on VirusTotal. (i.e. malware or malicious verdict for a file that is demonstrably benign). Please submit the following information in the...

brcook by L2 Linker
  • 13869 Views
  • 0 replies
  • 7 Likes

VirusTotal reports false positive for open source Python software (Generic.ml)

Hi all, VirusTotal states that Palo Alto Networks is flagging Syncplay v.1.70 as Generic.ml, which is a false positive. Syncplay a free Python-based open source media synchronisation tool built using GitHub Actions. GitHub release: I've uploaded the exectable as a .zip with the password infected, but you can also access it via the GirtHub ...

Syncplay by L0 Member
  • 3440 Views
  • 3 replies
  • 0 Likes

False positive virustotal new2

I'm not an antivirus client, send for a new analysis. Thank you. False positive virustotal: File Hash: 738029a4f974128180fa2cd239e873b01e456e8bf53bfdbf34b8ba8b57897be4 Link to Virustotal report for the file: https://www.virustotal.com/gui/file/738029a4f974128180fa2cd239e873b01e456e8bf53bfdbf34b8ba8b57897be4 Current VirustTotal Verdict: Generi...

False positive detection (Generic.ml)

File Hash: 26eafe88472e5fef31a60f0c943742e97309d618d11e046eed3e52717cd39111 Link to Virustotal report for the file:https://www.virustotal.com/gui/file/26eafe88472e5fef31a60f0c943742e97309d618d11e046eed3e52717cd39111?nocache=1 Current VirustTotal Verdict: Generic.ml Description: Program for a Diskless system Official website of the product: https...

VirusTotal flase positive incorrect detection

Please whitelist our internal tool software. Name: madbas.exe Detection name: generic.ml SHA256: cc526c14bbacc1fb9f4dcb10ef837a606a231cb9a437cb32a71ea1007a9e620b VirusTotal link: https://www.virustotal.com/gui/file/cc526c14bbacc1fb9f4dcb10ef837a606a231cb9a437cb32a71ea1007a9e620b/detection

mike1313 by L0 Member
  • 1890 Views
  • 1 replies
  • 0 Likes

Generic.ml

Please whitelist our software. Name: AirMyPC.exe Detection name: generic.ml SHA256: 9c0850790ca9afb7c5659f633caaebf777eb8bb29f5346901da962d871205422 VirusTotal link: https://www.virustotal.com/gui/file/9c0850790ca9afb7c5659f633caaebf777eb8bb29f5346901da962d871205422?nocache=1 Thank you.

beniam by L2 Linker
  • 2865 Views
  • 3 replies
  • 0 Likes

Resolved! False positive virustotal

False positive virustotal: File Hash: 2c4d8b48344ae221e349e525ac16eb364ffb5ab8deae80c7caa28dd5967cabdb Link to Virustotal report for the file: https://www.virustotal.com/gui/file/2c4d8b48344ae221e349e525ac16eb364ffb5ab8deae80c7caa28dd5967cabdb Current VirustTotal Verdict: Generic.ml Description: game launcher

Virustotal False positive:

Please investigate and whitelist the product: CCBoot Cloud Official website: https://www.ccboot.com/ Detection name: Generic.ml The sample is in a password protected zip file The password for the attachment is infected

Resolved! Medlexo False positive in v9.7 update

Dear PaloAlto,I updated the app on 31/Jan for fixing converting gif to mp4 bugYour detection engine is flagging my app as detected.My website is https://medlexo.is-an.app/ 32bit: https://www.virustotal.com/gui/file/88a6121ac43af9a64f99d22ee37ad8f02f66376306d2e2e4b6482a3ac5bd490b 64bit: https://www.virustotal.com/gui/file/7c1061d40a1c6f5249fea2...

ericsia by L2 Linker
  • 4809 Views
  • 4 replies
  • 0 Likes

VirusTotal False Positive

The sample is in a password protected zip file The password for the attachment is infected Please investigate and whitelist the product “CCBootCloud”. Official website: “https://www.ccboot.com/” https://www.virustotal.com/gui/file/26eafe88472e5fef31a60f0c943742e97309d618d11e046eed3e52717cd39111?nocache=1Please note you are posting a public messa...

Resolved! VirusTotal False Positive: ccml.io domain

Hi there - Content Camel (https://www.contentcamel.io/) is a b2b provider of marketing and sales software. We manage the ccml.io domain for our customers for use in b2b communication with their end users and customers. The short domain is designed as a low volume, direct communication domain/app, so it won't show up with a lot of volume or in...

Adobe Reader DC install being treated as a virus

Hi We have recently increased the level of security for wildfire and since then the firewall is blocking the installer for Adobe Reader DC and saying it has a virus Win32.WGeneric.lsaqu on it. This is happening on different machines and we when we try and go to the official Adobe website using either IE or Chrome! Anyone having this issue as we...

VirusTotal Verdict Confirmation

The following signature has been flagged for us recently by WildFire. Could someone please confirm if this is a legitimate threat or false positive? Name: Virus/Win32.WGeneric.dugvfd Unique Threat ID: 554886710 Create Time: 2022-10-26 18:25:06 (UTC) sha256: f5bbf093bbf2aaa6d7b460fc4f8850df23c6a36c54ef78da2c995bfc0519d136 https://www.virustot...

VirusTotal Verdict Change Request for False Positive

File Hash: 1bf278fe71e67145171bf9d6b44dcb4e76ec675adda15d923f8f2fba5120fad2 Link to Virustotal report for the file: <link> Current VirustTotal Verdict: <Undetected, not in database> Description: <Purple Knight is an Active Directory and Azure AD security assessment tool used by thousands of organizations to quickly identify vulner...

Resolved! False positive report

Hello, https://www.ampyazilim.com.tr Our site www.ampyazilim.com.tr on virustotal.com the autoshun engine (now closed, there is no such engine at the current state) is marked as Malicious, therefore It is also labeled as high risk on https://urlfiltering.paloaltonetworks.com/query/. This is a false positive. Our site is a site that has bee...

frkgns by L0 Member
  • 6799 Views
  • 2 replies
  • 0 Likes
  • 792 Posts
  • 67 Subscriptions
Top Solution Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks