Jump to content
schuetzdentalCB

False Positive? XML/Runner.M

Recommended Posts

Today ESET marked the same File which looks like something as an microsoft update as a trojan on 3 PC's. - Maybe someone can tell me something about this? Looks Like False Positive to me.

Threatname:
XML/Runner.M
Hash: B885CB1F1F93D57B56F07EF5789AECA4CA170336
 
 
file:///C:/Windows/servicing/LCU/Package_for_RollupFix~31bf3856ad364e35~amd64~~18362.535.1.6/amd64_microsoft-onecore d..ectxdatabaseupdater_31bf3856ad364e35_10.0.18362.387_none_8b2d87237c70998c.manifest
 
THX

screenshot1.PNG

Share this post


Link to post
Share on other sites

We received the same alert for "Windows10.0-KB4528760-x64.cab" with SHA256:

DF04023D99202BAAAC3B3464FFCFBA674B6A31F1D94E9CFABB55FEBBA39F8438

Along with one other Windows updated file that I don't currently have a filename or hash. Same false positive issue?

Share this post


Link to post
Share on other sites

As I wrote above, the FP was fixed about 9 hours ago. The file should not be detected any more.

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...