Request for Review – False Positive Flag on MyCleanPC by Elastic (VirusTotal)

Elastic Observability
1

Hello Elastic team,

I’m the Reputation Manager at RealDefense, the company behind MyCleanPC, a legitimate PC optimization tool. I’m reaching out regarding a persistent false positive detection by Elastic’s engine on VirusTotal for our installer file.

Details:

  • Product: MyCleanPC
  • SHA-256: 70beae2ce365e66e5b8114c59de844a376f79c9e9c149b658d58771daa98170e
  • VirusTotal link: VirusTotal
  • Detection label: Malicious (moderate Confidence)

We've already submitted multiple false positive forms through the recommended Elastic channels, including the current submission portal. However, we haven’t received any resolution or acknowledgment so far, and the file continues to be flagged.

We’re committed to ensuring our software is safe and compliant. The file in question is signed, verified, and distributed only through official RealDefense channels.

I’m posting here to ask:

  1. Could someone from the Elastic Security team kindly review this detection?
  2. Is there a way to prevent repeat false positives across new versions (e.g., via publisher or cert whitelisting)?
  3. Is there a better channel to ensure false positive submissions are seen and reviewed?

We fully respect the work Elastic does to protect users, and our goal is to resolve this in a professional and proactive manner.

Thank you for your time, and I appreciate any assistance you can provide.


Logan
Reputation Manager
RealDefense (MyCleanPC)

1 Like
2

Hello Elastic team,

Just following up on this thread regarding a false positive detection affecting our product, MyCleanPC. We haven’t received a response yet, and the detection is still live on VirusTotal under the label “Malicious (moderate Confidence).”

I completely understand these things take time, but I’d appreciate any update on whether this has been reviewed or queued for further investigation. Our team remains committed to full transparency and compliance, and we’re happy to provide any additional information or context needed to help resolve this.

Thanks again for your time — I know your team is busy, and we appreciate the important work you do.

Best regards,
Logan
Reputation Manager
RealDefense (MyCleanPC)

3

Hello Logan,

We have addressed this false positive. The submission portal is the right first step, but it takes time for us to review and address. If you don't see a resolution in 30 days, a discussion post or community slack message is the right place to raise further. However, please file under the "Elastic Security" category so the right team gets notified.

Thank you!
Joe

4

Hi Joe,

Thank you for your response. I noticed the detection has been cleared on VirusTotal.

Hopefully I won't have to go through this process again, but if I do, I'm glad I know the proper steps. I appreciate your help.

Best,
Logan
Reputation Manager
RealDefense, LLC