Where to report/submit false positives of antivirus software

As a software developer, do you know which feature of your software your users appreciate the most?

We developed SofMeter, the free in-app analytics tool, to answer questions like that.

With SoftMeter you will see how the users are using your software, discover which features are used the most or least, and understand where you should focus your development efforts to maximize your sales.

As a desktop software developer, you might find that one of the many antivirus software flags your perfectly clean software as suspicious.

This can happen for a variety of reasons, including:

  • Your software is not code-signed.
  • Your software is not very popular so the antivirus engines do not have enough knowledge about it.
  • New scan engines that scan the files using artificial intelligence (AI) find resemblance of your software with known computer threats.
  • Your software is a small command-line utility, developed in low-level languages, e.g. C/C++.

Usually, you get an email from a user saying that their AV software caught your program as suspicious and blocked it or discourages the user from running it.

Should this happen,

  1. Scan your computer and the file with as many antivirus engines as you can, including the one mentioned by your user.
  2. If indeed the file is clean, submit your false-positive* sample to the antivirus software that reported it as a virus.

*False positive: a test result which wrongly (falsely) indicates (positive) that a particular condition (virus body) was detected.

Below we started a list of the URLs where you can submit your software for further analysis. After the analysis is complete the antivirus software makers update their engines.


360 Total Security

If you think the file intercepted by 360 Total Security is not a Trojan horse or virus files, please send it to us for analysis

Submit via form.


AhnLab

Report a suspected false positive. (Requires login)


Avast antivirus

Report a suspected false positive.


AVG antivirus

Report a suspected false positive.


Avira antivirus

Submit a suspicious files and URLs, false positives.


BitDefender antivirus

Submit a sample file or URL.


Check Point

Sometimes the Check Point Spyware Scanner inappropriately detects an application as Spyware. If you have come across what seems to be identified as malicious Spyware, but in fact it is not, you can report such detection to the Check Point Security Team. Report a false positive (by email).


Eset antivirus

You have a suspicious file, suspicious website, potential false positive or potential miscategorization by Parental Control (or Web control)that you would like to submit to ESET for analysis.

Submit a virus, website or potential false positive sample to the ESET lab.


F-secure antivirus

Think a file is harmful? Or that a file or website was incorrectly detected or rated? Submit it for analysis.

Submit via form or via FTP.


Malwarebytes antivirus

Is Malwarebytes incorrectly flagging a program or website? Report it in the Malwarebytes forum.


Microsoft defender

Report your false-positive to Microsoft.


VirusTotal

You can upload your software to VirusTotal to be scanned by 70+ antivirus engines. If one or more of the engines detect your software as a false-positive threat, you can find here the details of each engine and contact them with your false-positive sample. List of virus scan engines.


SecureAPlus

Report false positive files if you think that a detection made by one of the cloud engines of the Universal AV scanner is not actually a virus or malware. Report False Positive.


Add new comment

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.

plain text with line breaks

  • Allowed HTML tags: <em> <strong> <cite> <blockquote> <code> <ul> <ol> <li> <dl> <dt> <dd> <p> <br>
  • No HTML tags allowed.
  • Lines and paragraphs break automatically.