False Positives for Adobe files: REDDecoder-x86.dll and REDDecoder-x64.dll as PUA:Win32/CoinMiner


  • Hello,

    Sequence of events:

        • I used Creative Cloud Packager to create Adobe CC Applications on 1/10/18.
        • AV signatures update -at least- three times a day.
        • AV scans daily.
        • AV signature is updated to version 1.261.1303.0 on 2/17/18 @ 9:33am
        • AV daily scan triggers on 2/17/18 @ 1:02pm
      • AV flags both REDDecoder-x86.dll and REDDecoder-x64.dll as PUA:Win32/CoinMiner.
    • AV did not flag them during all of the previous daily scans from 1/10/18 to 2/16/18.

    Context: Windows 10 1703 with Windows Defender Security Center as the only active Antimalware software.

    My requests:

    • Confirm this is a false positive.
    • When and how will it be resolved?

    Sunday, February 25, 2018 7:32 PM

All replies