Symantec (Broadcom) False Positive & Blacklist Removal

By DrGlenn — USA-based WordPress security specialist· 290+ cleanups across 34 countries· Updated June 22, 2026

Is Symantec (Broadcom) flagging your website or file?

If Symantec (Broadcom) is flagging your site or a file — often showing up as WebPulse/Blue Coat URL category block, “Suspicious”/“Malicious Sources/Malnets” category, “Clean Software Incorrectly Detected” — it is either a real infection or a false positive from a past issue. Here is how to get it cleared.

Step 1 — Confirm it is really a false positive

Do not request removal while malware is still present, or the flag returns. Check first:

If anything turns up, get it fully cleaned first — deleting the visible malware is not enough if a backdoor remains.

Step 2 — Report the false positive to Symantec (Broadcom)

Dispute a URL category at Site Review; submit clean software at SymSubmit. Submit here: sitereview.symantec.com

  1. Go to sitereview.symantec.com, enter your URL and click Check Category.
  2. If you disagree, use “Do you agree with the current categorization?” to dispute and suggest the correct category.
  3. Add your contact email and justification, then submit.
  4. For a file/software false positive, use the “Clean Software Incorrectly Detected” tile at symsubmit.symantec.com.
  5. Await Security Response review.

Good to know: Symantec enterprise is owned by Broadcom; the legacy submit.symantec.com now routes to symsubmit.symantec.com, and the Blue Coat sitereview.symantec.com handles URL categorization.

Step 3 — If the warning keeps coming back

A detection that returns after you have been cleared almost always means the infection was never fully removed — usually a backdoor in a theme file, a rogue admin user, or malware in the database. That is exactly what I fix. I am a USA-based WordPress security specialist: I remove the infection completely, submit the delisting on your behalf, and harden the site so it stays clean.

Get my site cleaned · See how it works · read my client reviews.

Frequently asked questions

How long does Symantec (Broadcom) take to clear a false positive? Once the site/file is genuinely clean and you have submitted the request, most are resolved within a few days. Submitting while still infected only restarts the clock.

It keeps coming back — why? Because the real infection (a backdoor, rogue admin, or database payload) is still there. A full cleanup stops the loop.

More removal guides: Malwarebytes (Browser Guard), Trend Micro, ZoneAlarm (Check Point) · all vendor guides · full report-link directory.