HELP Malwarebytes scan shows every .exe as virus

edzusbalodis · February 21, 2020

Good day.

I started to run into problems where time to time i was not able to open any .exe files Windows asking what to use to open them. So i decided to scan computer with malwarebytes full scan found arround 1000 infections but scary thing is that those exe files are known to me and i know they should be save as Chrome, Nvidia drivers, VCD ect . malwarebytes are asking to remove those if i will do so it will couse system failure so i am asking you what should i do now.

I will attach screenshot of fast scan results and logfile results of full scan.

--------------------------------------------------------------------------------------------------------------------------

327664A8A00736664F2DC150F5A6D1DA1ED801142274045AC01F66E1A0630B1A
{
"applicationVersion" : "4.0.4.49",
"clientID" : "MbamUI",
"clientType" : "fullUIScan",
"componentsUpdatePackageVersion" : "1.0.764",
"cpu" : "x64",
"dbSDKUpdatePackageVersion" : "1.0.19544",
"detectionDateTime" : "2020-02-21T09:55:54Z",
"fileSystem" : "NTFS",
"id" : "59697f10-5490-11ea-8bc1-e0d55ee1d14f",
"isUserAdmin" : true,
"licenseState" : "trial",
"linkagePhaseComplete" : true,
"loggedOnUserName" : "DESKTOP-8Q3PUCE\\Balozi",
"machineID" : "",
"os" : "Windows 10 (Build 17763.864)",
"schemaVersion" : 12,
"sourceDetails" : {
"aggressiveMode" : false,
"clientMetadata" : {
"jobId" : "",
"scheduleId" : "",
"scheduleTag" : ""
},
"filesScannedByIG" : 11,
"objectsScanned" : 296841,
"scanEndTime" : "2020-02-21T09:57:02Z",
"scanOnlineStatus" : "online",
"scanOptions" : {
"pumHandling" : "detect",
"pupHandling" : "detect",
"scanArchives" : true,
"scanFileSystem" : true,
"scanMemoryObjects" : true,
"scanPUMs" : true,
"scanPUPs" : true,
"scanRookits" : false,
"scanStartupAndRegistry" : true,
"scanType" : "threat",
"useHeuristics" : true
},
"scanResult" : "completed",
"scanStartTime" : "2020-02-21T09:55:54Z",
"scanState" : "completed",
"shurikenEnabled" : true,
"type" : "scan"
},
"threats" : [
{
"ddsSigFileVersion" : "",
"linkedTraces" : [
{
"archiveMember" : "",
"archiveMemberMD5" : "",
"cleanAction" : "quarantine",
"cleanContext" : {
"regValueDeleteData" : {
"valueData" : "C:\\PenTabletDriver\\TabletDriver.exe -hide",
"valueType" : 1
}
},
"cleanResult" : "notStarted",
"cleanResultErrorCode" : 0,
"cleanTime" : "",
"generatedByPostCleanupAction" : false,
"id" : "671372f6-5490-11ea-94f3-e0d55ee1d14f",
"isPEFile" : false,
"linkType" : "linkedTrace",
"objectMD5" : "",
"objectPath" : "HKLM\\SOFTWARE\\MICROSOFT\\WINDOWS\\CURRENTVERSION\\RUN|TabletDriver",
"objectSha256" : "",
"objectType" : "regValue",
"suggestedAction" : {
"archiveDir" : false,
"chromeExtensionOther" : false,
"chromeExtensionPreferences" : false,
"chromeExtensionSecurePreferences" : false,
"chromeExtensionSyncData" : false,
"chromeUrlOther" : false,
"chromeUrlSecurePreferences" : false,
"chromeUrlSyncData" : false,
"chromeUrlWebData" : false,
"disableHubbleWhiteListing" : false,
"disableSignatureWhiteListing" : false,
"fileDelete" : false,
"fileReplace" : false,
"fileTxtReplace" : false,
"folderDelete" : false,
"isChromeObject" : false,
"isDDS" : false,
"isDoppleganging" : false,
"isExternalDetection" : false,
"isPUP" : false,
"isShuriken" : false,
"isWMIEventConsumer" : false,
"killProcess" : false,
"minimalWhiteListing" : false,
"moduleUnload" : false,
"noLinking" : false,
"physicalSectorReplace" : false,
"priorityHigh" : false,
"priorityNormal" : false,
"priorityUrgent" : false,
"processUnload" : false,
"regKeyDelete" : false,
"regValueDelete" : true,
"regValueReplace" : false,
"shortcutReplace" : false,
"silentMode" : false,
"treatAsRootkit" : false,
"useDDA" : false
}
},
{
"archiveMember" : "",
"archiveMemberMD5" : "",
"cleanAction" : "quarantine",
"cleanResult" : "notStarted",
"cleanResultErrorCode" : 0,
"cleanTime" : "",
"generatedByPostCleanupAction" : false,
"id" : "67917610-5490-11ea-8d2f-e0d55ee1d14f",
"isPEFile" : false,
"linkType" : "linkedTrace",
"objectMD5" : "18031B24AA313C6571A458D0296A2115",
"objectPath" : "C:\\DOCUMENTS AND SETTINGS\\PUBLIC\\Desktop\\PenTabletDriver.lnk",
"objectSha256" : "676AB4E90DDEF6058DEB9BD1E27575BD95987E993B0A27EB6A72078B1DD4A190",
"objectType" : "file",
"suggestedAction" : {
"archiveDir" : false,
"chromeExtensionOther" : false,
"chromeExtensionPreferences" : false,
"chromeExtensionSecurePreferences" : false,
"chromeExtensionSyncData" : false,
"chromeUrlOther" : false,
"chromeUrlSecurePreferences" : false,
"chromeUrlSyncData" : false,
"chromeUrlWebData" : false,
"disableHubbleWhiteListing" : false,
"disableSignatureWhiteListing" : false,
"fileDelete" : true,
"fileReplace" : false,
"fileTxtReplace" : false,
"folderDelete" : false,
"isChromeObject" : false,
"isDDS" : false,
"isDoppleganging" : false,
"isExternalDetection" : false,
"isPUP" : false,
"isShuriken" : false,
"isWMIEventConsumer" : false,
"killProcess" : false,
"minimalWhiteListing" : false,
"moduleUnload" : false,
"noLinking" : false,
"physicalSectorReplace" : false,
"priorityHigh" : false,
"priorityNormal" : false,
"priorityUrgent" : false,
"processUnload" : false,
"regKeyDelete" : false,
"regValueDelete" : false,
"regValueReplace" : false,
"shortcutReplace" : false,
"silentMode" : false,
"treatAsRootkit" : false,
"useDDA" : false
}
},
{
"archiveMember" : "",
"archiveMemberMD5" : "",
"cleanAction" : "quarantine",
"cleanResult" : "notStarted",
"cleanResultErrorCode" : 0,
"cleanTime" : "",
"generatedByPostCleanupAction" : false,
"id" : "679ac530-5490-11ea-a89d-e0d55ee1d14f",
"isPEFile" : false,
"linkType" : "linkedTrace",
"objectMD5" : "18031B24AA313C6571A458D0296A2115",
"objectPath" : "C:\\USERS\\PUBLIC\\Desktop\\PenTabletDriver.lnk",
"objectSha256" : "676AB4E90DDEF6058DEB9BD1E27575BD95987E993B0A27EB6A72078B1DD4A190",
"objectType" : "file",
"suggestedAction" : {
"archiveDir" : false,
"chromeExtensionOther" : false,
"chromeExtensionPreferences" : false,
"chromeExtensionSecurePreferences" : false,
"chromeExtensionSyncData" : false,
"chromeUrlOther" : false,
"chromeUrlSecurePreferences" : false,
"chromeUrlSyncData" : false,
"chromeUrlWebData" : false,
"disableHubbleWhiteListing" : false,
"disableSignatureWhiteListing" : false,
"fileDelete" : true,
"fileReplace" : false,
"fileTxtReplace" : false,
"folderDelete" : false,
"isChromeObject" : false,
"isDDS" : false,
"isDoppleganging" : false,
"isExternalDetection" : false,
"isPUP" : false,
"isShuriken" : false,
"isWMIEventConsumer" : false,
"killProcess" : false,
"minimalWhiteListing" : false,
"moduleUnload" : false,
"noLinking" : false,
"physicalSectorReplace" : false,
"priorityHigh" : false,
"priorityNormal" : false,
"priorityUrgent" : false,
"processUnload" : false,
"regKeyDelete" : false,
"regValueDelete" : false,
"regValueReplace" : false,
"shortcutReplace" : false,
"silentMode" : false,
"treatAsRootkit" : false,
"useDDA" : false
}
}
],
"mainTrace" : {
"archiveMember" : "",
"archiveMemberMD5" : "",
"cleanAction" : "quarantine",
"cleanContext" : {
},
"cleanResult" : "notStarted",
"cleanResultErrorCode" : 0,
"cleanTime" : "",
"generatedByPostCleanupAction" : false,
"id" : "62ec2eb6-5490-11ea-b878-e0d55ee1d14f",
"isPEFile" : true,
"linkType" : "none",
"objectMD5" : "EC58F44AAE12495DAFF9A9A84F3D1A85",
"objectPath" : "C:\\PENTABLETDRIVER\\TABLETDRIVER.EXE",
"objectSha256" : "11A03F022181C2D3FDA006717F1D67778E2689C872C92A323C181B3E938DAF34",
"objectType" : "file",
"suggestedAction" : {
"archiveDir" : false,
"chromeExtensionOther" : false,
"chromeExtensionPreferences" : false,
"chromeExtensionSecurePreferences" : false,
"chromeExtensionSyncData" : false,
"chromeUrlOther" : false,
"chromeUrlSecurePreferences" : false,
"chromeUrlSyncData" : false,
"chromeUrlWebData" : false,
"disableHubbleWhiteListing" : true,
"disableSignatureWhiteListing" : true,
"fileDelete" : true,
"fileReplace" : false,
"fileTxtReplace" : false,
"folderDelete" : false,
"isChromeObject" : false,
"isDDS" : false,
"isDoppleganging" : false,
"isExternalDetection" : false,
"isPUP" : false,
"isShuriken" : false,
"isWMIEventConsumer" : false,
"killProcess" : false,
"minimalWhiteListing" : false,
"moduleUnload" : false,
"noLinking" : false,
"physicalSectorReplace" : false,
"priorityHigh" : false,
"priorityNormal" : false,
"priorityUrgent" : false,
"processUnload" : false,
"regKeyDelete" : false,
"regValueDelete" : false,
"regValueReplace" : false,
"shortcutReplace" : false,
"silentMode" : false,
"treatAsRootkit" : false,
"useDDA" : false
}
},
"ruleID" : 645219,
"ruleString" : "",
"rulesVersion" : "1.0.19544",
"srcEngineComponent" : "ame",
"srcEngineThreatNames" : [