Jump to content

Archived

This topic is now archived and is closed to further replies.

schuetzdentalCB

False Positive? XML/Runner.M

Recommended Posts

Today ESET marked the same File which looks like something as an microsoft update as a trojan on 3 PC's. - Maybe someone can tell me something about this? Looks Like False Positive to me.

Threatname:
XML/Runner.M
Hash: B885CB1F1F93D57B56F07EF5789AECA4CA170336
 
 
file:///C:/Windows/servicing/LCU/Package_for_RollupFix~31bf3856ad364e35~amd64~~18362.535.1.6/amd64_microsoft-onecore d..ectxdatabaseupdater_31bf3856ad364e35_10.0.18362.387_none_8b2d87237c70998c.manifest
 
THX

screenshot1.PNG

Share this post


Link to post
Share on other sites

Yes, this was a false positive, fixed at approx. 7:45 CET.

Share this post


Link to post
Share on other sites

We received the same alert for "Windows10.0-KB4528760-x64.cab" with SHA256:

DF04023D99202BAAAC3B3464FFCFBA674B6A31F1D94E9CFABB55FEBBA39F8438

Along with one other Windows updated file that I don't currently have a filename or hash. Same false positive issue?

Share this post


Link to post
Share on other sites

As I wrote above, the FP was fixed about 9 hours ago. The file should not be detected any more.

Share this post


Link to post
Share on other sites

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...