I've never seen anything like this before. This morning, after I booted up, Malwarebytes came up saying it had detected two threats, one being the uninstall.exe file in the Reaper program folder, and the other being a related registry entry.
Here is the report generated:
Quote:
Malwarebytes
www.malwarebytes.com
-Log Details-
Scan Date: 7/11/20
Scan Time: 8:27 AM
Log File: 9695d210-c382-11ea-ab5b-005056c00001.json
-Software Information-
Version: 4.1.2.73
Components Version: 1.0.972
Update Package Version: 1.0.26699
License: Premium
-System Information-
OS: Windows 10 (Build 18362.900)
CPU: x64
File System: NTFS
User: System
-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Scheduler
Result: Completed
Objects Scanned: 395347
Threats Detected: 2
Threats Quarantined: 0
Time Elapsed: 3 min, 19 sec
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect
-Scan Details-
Process: 0
(No malicious items detected)
Module: 0
(No malicious items detected)
Registry Key: 1
Malware.AI.3931757008, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNI NSTALL\REAPER, No Action By User, 1000000, 0, , , ,
Registry Value: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Data Stream: 0
(No malicious items detected)
Folder: 0
(No malicious items detected)
File: 1
Malware.AI.3931757008, C:\PROGRAM FILES\REAPER (X64)\UNINSTALL.EXE, No Action By User, 1000000, 0, 1.0.26699, 094D537DB59988F4EA59D9D0, dds, 00802870
Physical Sector: 0
(No malicious items detected)
WMI: 0
(No malicious items detected)
(end)
|
I am guessing that this is some kind of false alarm. For one thing, it was detected by Malware.AI. The Malwarebytes website has this to say about Malware.AI:
Quote:
Malware.AI.(id-nr) are detection names produced by the Artificial Intelligence module in Malwarebytes 4 and Malwarebytes business products. These detections are created by using Artificial Intelligence and Machine Learning to determin the behavior of the scanned item. This technique was developed by Malwarebytes for signatureless detection of zero-day (0-day) threats.
The id-nr is usually 9 digits.
|
Should I be at all concerned about this detection? Could some sort of Malware have infected that file?
Also, it has been at least a week since I last installed a new version of Reaper. And Malwarebytes hasn't "detected" anything until now.