Jump to content

False positive in Windows Driver Kit 8.1?


Recommended Posts

Hello to all,


I think I have found a false positive in the Windows Driver Kit 8.1. I used the official downloader to get the files for the offline installation.

Anyway, yesterday I started a full scan of the system. It took only about 10 minutes for Malwarebytes to find two infections. However, I am sure an official Microsoft installer will not download a Trojan.Dropper.


The following files were reported as Trojan.Droppers:

C:\Downloads\Windows Kits\8.1\WDK\Installers\e10ccfe7dc7b8820c41c82442baf06a5.cab
C:\Downloads\Windows Kits\8.1\WDK\Installers\f9976a73f62f4a8e2a372960dbcbd52b.cab

C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\f9976a73f62f4a8e2a372960dbcbd52b.cab
C:\ProgramData\Package Cache\{D35D0DC1-AEED-BE3C-C187-F2C42582EE49}v8.100.25984\Installers\e10ccfe7dc7b8820c41c82442baf06a5.cab
C:\ProgramData\Package Cache\{D35D0DC1-AEED-BE3C-C187-F2C42582EE49}v8.100.25984\Installers\f9976a73f62f4a8e2a372960dbcbd52b.cab


As the others look like duplicates, I checked the first two ones with an online scanner: Only malwarbytes detected them as a virus. They were downloaded by a Microsoft tool as well, so I am quite sure it is a false positive.


If you need the files to analyze them, they can be downloaded with the official installer of the Windows Driver Kit 8.1, but I can also attach them, if you want.


Thanks in advice



P.S.: Sorry for my poor English

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.