Jump to content

KD21

Members
  • Posts

    11
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Okay I reinstalled the driver and there was a new folder made in the same area where the other 3 folders are. Would it be safe to delete the files in the quarantine now?
  2. Thanks for your help If you mean to look in the folders then they are not in the folders. My MFG is Hewlett-Packard My Model is a Presario CQ62-225NR Notebook
  3. Hi A couple days ago I ran a scan with MBAM which said that I had 8 Trojan.Dorkbot.ED which I left in the quarantine. C:\Program Files\Synaptics\SynTP\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully. C:\SwSetup\Drivers\Touchpad\WinWDF\x64\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully. C:\SwSetup\Drivers\Touchpad\WinWDF\x86\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully. C:\SwSetup\sp49522\WinWDF\x64\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully. C:\SwSetup\sp49522\WinWDF\x86\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully. c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_70364bb2f0f827e0\synzmetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully. c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_703ad70e03ca80ab\synzmetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully. c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_c7be43ec68176fed\synzmetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully. After finding out that it was a false positive I was able to restore 5 of the files. However I was unable to restore these 3 files c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_70364bb2f0f827e0\synzmetr.exe c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_703ad70e03ca80ab\synzmetr.exe c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_c7be43ec68176fed\synzmetr.exe I looked at this thread for a reference but it did not help me. Is there anything I can do?
  4. KD21

    Possilbe FP

    Oh I forgot to mention that before I did a rescan of the first 5 files I did do a definition update
  5. KD21

    Possilbe FP

    Sorry about the misspelled thread title.
  6. Hi I ran a MBAM scan and it said that 8 files were detected as Trojan.Dorkbot.ED C:\Program Files\Synaptics\SynTP\SynZMetr.exeC:\SwSetup\Drivers\Touchpad\WinWDF\x64\SynZMetr.exeC:\SwSetup\Drivers\Touchpad\WinWDF\x86\SynZMetr.exeC:\SwSetup\sp49522\WinWDF\x64\SynZMetr.exeC:\SwSetup\sp49522\WinWDF\x86\SynZMetr.exec:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_70364bb2f0f827e0\synzmetr.exec:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_703ad70e03ca80ab\synzmetr.exec:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_c7be43ec68176fed\synzmetr.exe I restored and re scanned the first 5 files on the list after updating MBAM and there was nothing wrong with the files.However I can't restore the last 3 files so that I can rescan them again.
  7. So I have re-scanned 5 of the files and they came back with nothing. So they were legit. I just can't restore 3 of the files c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_70364bb2f0f827e0\synzmetr.exe c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_703ad70e03ca80ab\synzmetr.exec:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_c7be43ec68176fed\synzmetr.exe Should I post about it in another section of the forum?
  8. Here is the log file Malwarebytes Anti-Malware 1.75.0.1300www.malwarebytes.org Database version: v2013.12.18.08 Windows 7 Service Pack 1 x64 NTFSInternet Explorer 11.0.9600.16476Chocomuffins :: CHOCOMUFFINS-PC [administrator] 12/18/2013 11:35:42 AMmbam-log-2013-12-18 (11-35-42).txt Scan type: Full scan (C:\|D:\|E:\|)Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2PScan options disabled: Objects scanned: 508481Time elapsed: 2 hour(s), 36 minute(s), 24 second(s) Memory Processes Detected: 0(No malicious items detected) Memory Modules Detected: 0(No malicious items detected) Registry Keys Detected: 0(No malicious items detected) Registry Values Detected: 0(No malicious items detected) Registry Data Items Detected: 0(No malicious items detected) Folders Detected: 0(No malicious items detected) Files Detected: 8C:\Program Files\Synaptics\SynTP\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.C:\SwSetup\Drivers\Touchpad\WinWDF\x64\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.C:\SwSetup\Drivers\Touchpad\WinWDF\x86\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.C:\SwSetup\sp49522\WinWDF\x64\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.C:\SwSetup\sp49522\WinWDF\x86\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_70364bb2f0f827e0\synzmetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_703ad70e03ca80ab\synzmetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_c7be43ec68176fed\synzmetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully. (end)
  9. Hi I did a scan with MBAM and it detected 8 files as a Trojan.Dorkbot.ED Files Detected: 8C:\Program Files\Synaptics\SynTP\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.C:\SwSetup\Drivers\Touchpad\WinWDF\x64\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.C:\SwSetup\Drivers\Touchpad\WinWDF\x86\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.C:\SwSetup\sp49522\WinWDF\x64\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.C:\SwSetup\sp49522\WinWDF\x86\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_70364bb2f0f827e0\synzmetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_703ad70e03ca80ab\synzmetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_c7be43ec68176fed\synzmetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully. The files are in quarantine right now and I'm not sure if they are bad or not
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.