We have over the years had a problem with remediation tickets not being closed despite vulnerabilities no longer being detected, and was wondering if anyone else has experienced this behavior. A current example is that I have tickets opened for QID 90393 where the vulnerability was only detected once on 6/18/2013, and has not been detected in subsequent daily scans....yet the ticket remains open. We use the same scan profile daily, and authentication is successful each day. We have been ignoring such tickets as false positives (especially in this case, as it is a zero-day), but our auditors continually ask what the cause is....and nobody has been able to answer. In the past, I had Qualys support investigate such problems and never got a satisfactory answer. Any ideas?