Erlend 0 Posted January 27, 2021 Posted January 27, 2021 Hi anyone else encountered this being reported as infected? triggered during windows update. Time;Scanner;Object type;Object;Detection;Action;User;Information;Hash;First seen here 26.01.2021 14.53.10;Real-time file system protection;file;C:\Program Files\dotnet\packs\Microsoft.NETCore.App.Host.win-x64\5.0.2\runtimes\win-x64\native\apphost.exe;Win64/Patched.U trojan;deleted;NT AUTHORITY\SYSTEM;Event occurred on a new file created by the application: C:\Windows\System32\msiexec.exe (9D336636A328D5B3F315093D86E4199A0FD7A5FC).;0DBB86B65FBBB41660DF36ABA0CED8FA4048FD7F;12.12.2020 03.44.18 26.01.2021 14.53.20;Real-time file system protection;file;C:\Program Files\dotnet\sdk\5.0.102\AppHostTemplate\apphost.exe;Win64/Patched.U trojan;deleted;NT AUTHORITY\SYSTEM;Event occurred on a new file created by the application: C:\Windows\System32\msiexec.exe (9D336636A328D5B3F315093D86E4199A0FD7A5FC).;0DBB86B65FBBB41660DF36ABA0CED8FA4048FD7F;12.12.2020 03.44.18
Administrators Marcos 5,730 Posted January 27, 2021 Administrators Posted January 27, 2021 Yes, it was a false positive (https://forum.eset.com/topic/27157-anti-virus-delete-my-own-exe). Feel free to restore detected files from quarantine.
Erlend 0 Posted January 27, 2021 Author Posted January 27, 2021 ok, thanks, is this fixed in new definition's ?
Administrators Solution Marcos 5,730 Posted January 27, 2021 Administrators Solution Posted January 27, 2021 It was fixed yesterday, approx. at 15:00 CET.
Recommended Posts