Update sharepoint-malware-false-positive-guide.md

chrisda · chrisda · commit 106da7b710e4 · 2025-08-04T12:12:26.000-07:00
diff --git a/SharePoint/SharePointOnline/security/sharepoint-malware-false-positive-guide.md b/SharePoint/SharePointOnline/security/sharepoint-malware-false-positive-guide.md
@@ -131,7 +131,7 @@ Use any of the following methods:
 
 - Admins can release files from [quarantine](https://security.microsoft.com/quarantine) **within 30 days**. For more information, see [Release quarantined files from quarantine](/defender-office-365/quarantine-admin-manage-messages-files#release-quarantined-files-from-quarantine).
 
-- For Safe Attachments malware detections, admins can use the **Email attachments** tab (which also applies to Sharepoint files) on the **Submissions** page in the Defender portal at <https://security.microsoft.com/reportsubmission?viewid=emailAttachment> to submit a blocked file. When the admin selects, **I've confirmed it's clean**, they can then choose **Allow this file** to create an allow entry for the file on the **Files** tab of the **Tenant Allow/Block List**. For instructions, see [Submit good email attachments to Microsoft](/defender-office-365/submissions-admin#report-good-email-attachments-to-microsoft).
+- For Safe Attachments malware detections, admins can use the **Email attachments** tab (which also applies to Sharepoint files) on the **Submissions** page in the Defender portal at <https://security.microsoft.com/reportsubmission?viewid=emailAttachment> to submit a blocked file. When the admin selects, **I've confirmed it's clean**, they can then choose **Allow this file** to create an allow entry for the file on the **Files** tab of the **Tenant Allow/Block List**. For instructions, see [Submit good email attachments to Microsoft](/defender-office-365/submissions-admin#report-good-email-attachments-to-microsoft).
 
 > [!TIP]
 >

Original file line number	Diff line number	Diff line change
`@@ -131,7 +131,7 @@ Use any of the following methods:`
`131`	`131`
`132`	`132`	`- Admins can release files from [quarantine](https://security.microsoft.com/quarantine) within 30 days. For more information, see [Release quarantined files from quarantine](/defender-office-365/quarantine-admin-manage-messages-files#release-quarantined-files-from-quarantine).`
`133`	`133`
`134`		-- For Safe Attachments malware detections, admins can use the Email attachments tab (which also applies to Sharepoint files) on the Submissions page in the Defender portal at <https://security.microsoft.com/reportsubmission?viewid=emailAttachment> to submit a blocked file. When the admin selects, I've confirmed it's clean, they can then choose Allow this file to create an allow entry for the file on the Files tab of the Tenant Allow/Block List. For instructions, see [Submit good email attachments to Microsoft](/defender-office-365/submissions-admin#report-good-email-attachments-to-microsoft).
	`134`	+- For Safe Attachments malware detections, admins can use the Email attachments tab (which also applies to Sharepoint files) on the Submissions page in the Defender portal at <https://security.microsoft.com/reportsubmission?viewid=emailAttachment> to submit a blocked file. When the admin selects, I've confirmed it's clean, they can then choose Allow this file to create an allow entry for the file on the Files tab of the Tenant Allow/Block List. For instructions, see [Submit good email attachments to Microsoft](/defender-office-365/submissions-admin#report-good-email-attachments-to-microsoft).
`135`	`135`
`136`	`136`	`> [!TIP]`
`137`	`137`	`>`