Jump to content

Trojan.Dorkbot.ED Malware?


KD21
 Share

Recommended Posts

Hi

 

 

I did a scan with MBAM and it detected 8 files as a Trojan.Dorkbot.ED

 

 
Files Detected: 8
C:\Program Files\Synaptics\SynTP\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
C:\SwSetup\Drivers\Touchpad\WinWDF\x64\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
C:\SwSetup\Drivers\Touchpad\WinWDF\x86\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
C:\SwSetup\sp49522\WinWDF\x64\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
C:\SwSetup\sp49522\WinWDF\x86\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_70364bb2f0f827e0\synzmetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_703ad70e03ca80ab\synzmetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_c7be43ec68176fed\synzmetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
 
The files are in quarantine right now and I'm not sure if they are bad or not
Link to post
Share on other sites

Here is the log file

 

 
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.12.18.08
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Chocomuffins :: CHOCOMUFFINS-PC [administrator]
 
12/18/2013 11:35:42 AM
mbam-log-2013-12-18 (11-35-42).txt
 
Scan type: Full scan (C:\|D:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled: 
Objects scanned: 508481
Time elapsed: 2 hour(s), 36 minute(s), 24 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 8
C:\Program Files\Synaptics\SynTP\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
C:\SwSetup\Drivers\Touchpad\WinWDF\x64\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
C:\SwSetup\Drivers\Touchpad\WinWDF\x86\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
C:\SwSetup\sp49522\WinWDF\x64\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
C:\SwSetup\sp49522\WinWDF\x86\SynZMetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_70364bb2f0f827e0\synzmetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_703ad70e03ca80ab\synzmetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_c7be43ec68176fed\synzmetr.exe (Trojan.Dorkbot.ED) -> Quarantined and deleted successfully.
 
(end)
Link to post
Share on other sites

So I have re-scanned 5 of the files and they came back with nothing.  So they were legit.

I just can't restore 3 of the files

 

c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_70364bb2f0f827e0\synzmetr.exe

c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_703ad70e03ca80ab\synzmetr.exe
c:\windows\system32\driverstore\filerepository\synpd.inf_amd64_neutral_c7be43ec68176fed\synzmetr.exe
 
Should I post about it in another section of the forum?
Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.