My virusscan detects a Trojan Horse in my project when building

As of today, each time I build my project (which build to android btw), when the build is almost done, my virusscan pops up and says a trojan horse (RDN/Autoit.Dropper.gen.a) was detected in a dll and removed. (specifically in this dll: ...\Temp\StagingArea\Data\Managed\UnityEngine.CoreModule.dll)

The build then finishes and everything seems fine, but now I'm wondering if it's just a false positive,
or if my Unity is somehow infected by a virus which makes all my builds infected or something like that?

Does anyone have any clue or have something similar happened?

My virusscan is McAfee

I use Unity 2018.1.0f2

 

I'd start by passing it to VirusTotal and seeing how many of them generate a warning.

https://www.virustotal.com/

 

passing what? the builds?

edit: I did, VirusTotal says it's clean

But looking at the details, there are some strange (IMO) things in it, for one there is the section "Interesting Strings", where it lists "https://www.linkedin.com" and "https://www.paypal.com" amongst others, any idea why that is? (It seems to me like VirusTotal is saying I link to the sites from inside the apk, but I do no such thing)

 

Just the DLL in question.

 

Oh the dll, but that's the weird thing, the folder where my virusscan says it was doesn't exist. There is no temp folder

I'm looking for the dll in my project and in C:\Program Files\Unity, but I can't find it there

edit: nevermind , I was looking in the wrong unity program files (I have multiple versions of unity installed), there are a ton of UnityEngine.CoreModule.dlls in the unity I was using

Edit:
yep, VirusTotal says it's a "RDN/Autoit.Dropper.gen.a":
https://www.virustotal.com/#/file/7...c0bccd1196a9fab66544e2600fd75ebd6a2/detection


Do you think just reinstalling Unity will fix it?

On the other hand, only McAfee says it isn't clean, could McAfee just be wrong?

 

Can anyone else try scanning their Android UnityEngine.CoreModule.dll?
(specifically the one in the android folder, the other ones are clean)

if for everyone mcafee says it's a virus, then its probably a false positive,
otherwise it's probably my dll that's infected

 

I don't have Unity 2018.1.0f. I do have Unity 2018.2.7f and it's completely fine.

https://www.virustotal.com/#/file/8...d751556d045db8161a082a6098ad39726c3/detection

Wouldn't surprise me if it were just a false positive.

 

I'm using the same version in an Android project and McAffe just deleted this DLL after running a scheduled scan today and I was getting compile errors... Just to be sure I scanned the "UnityEngine.CoreModule.dll" only and it was deleted again so I can confirm it was McAfee... Should this be reported somewhere?

 

If McAfee is giving a false positive, then it is McAfee's fault and is who it should be reported to.

 

You are right, I will look were I can report to McAfee.

A quick solution was to directly put the DLL as an excluded file.