Our pastebin, paste.c-net.org, is listed as "suspicious" on VirusTotal. ArcSight is the only engine that thinks this, while the rest agree we are clean.
How can we figure out what ArcSight is reacting to so we can regain an all "Clean" status?
All uploads to the pastebin are scanned using multiple AV engines, and re-scanned whenever updates are released for those engines.
That said, something can slip through the cracks, just as on DropBox, pastebin.com, or MegaUpload.
How can we fix this? How do we get in touch with the ArcSight Threat Intelligence team?
OpenText support close our cases without comment as we're not a customer.