Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3559
Views
0
Helpful
0
Replies

Win.Dropper.Generic::1201

Rblundon
Level 1
Level 1

‎11-06-2019 05:19 AM

Hello all,

 

Over the past week we have been having this detection on AMP and I can not for the life of me figure out how to remediate it. It feels like this may be a false positive, but I can't confirm, and we get countless notifications per day on this. Does anyone have any info on this, or had seen it before in their own environment.

  • Detection:Dropper.Generic::1201
  • File:tmp
  • File path: \\?\C:\Windows\Installer\MSIE21C.tmp
  • Detection SHA-256: 6b01db091507022acfd121cc5d1f6ff0db8103f46a1940a6779dc36cca090854
  • Application SHA-256: 199b3890d28a1f5906f4014e73615a268b3c4414f1f71697bf13e0d464258d54

TIA to anyone that can shed some light on how to handle this.

 

 

5 people had this problem
Labels:
Preview file
96 KB
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card