home

synaptics pointing device driver.exe

Stepan Rybin

The is the installer for the WebPick InstalleRex download manager which bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed without consent. The application synaptics pointing device driver.exe by Stepan Rybin has been detected as adware by 25 anti-malware scanners.
Publisher:
Stepan Rybin  (signed and verified)

MD5:
767734fe1d4396a39521d739f9a7b6e3

SHA-1:
1b02bde50a8ef48455ee01fd86637906cddd3928

SHA-256:
938f26e3db12c804546053fffc5a09596d335dd8b4fc7dc3b35c55ad87e2a61b

Scanner detections:
25 / 68

Status:
Adware

Analysis date:
4/26/2024 6:43:42 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Adware.Mikey.8516
6561816

AhnLab V3 Security
PUP/Win32.MultiPlug
2015.02.28

Avira AntiVirus
PUA/MultiPlug.11245
7.11.212.228

avast!
Win32:MultiPlug-TP [PUP]
150129-1

AVG
Generic
2016.0.3185

Bitdefender
Gen:Variant.Adware.Mikey.8516
1.0.20.290

Bkav FE
W32.HfsAdware
1.3.0.6379

Comodo Security
Application.Win32.AdWare.MultiPlug.VA
21235

Dr.Web
Trojan.DownLoader12.30773
9.0.1.060

Emsisoft Anti-Malware
Gen:Variant.Adware.Mikey.8516
9.0.0.4799

ESET NOD32
Win32/Adware.MultiPlug.FC application
7.0.302.0

F-Prot
W32/S-c684d5f4
v6.4.7.1.166

F-Secure
Gen:Variant.Adware.Mikey.8516
5.13.68

G Data
Gen:Variant.Adware.Mikey.8516
15.2.25

K7 AntiVirus
Unwanted-Program
13.1915113

Kaspersky
not-a-virus:AdWare.Win32.MultiPlug
15.0.0.543

Malwarebytes
PUP.Optional.Unizeto
v2015.02.27.09

McAfee
Program.MultiPlug-FWG
16.8.708.2

MicroWorld eScan
Gen:Variant.Adware.Mikey.8516
16.0.0.174

NANO AntiVirus
Riskware.Win32.MultiPlug.dojkve
0.30.0.296

nProtect
Adware.MultiPlug.FW
15.02.27.01

Reason Heuristics
PUP.WebPick
15.2.27.21

Rising Antivirus
PE:Malware.XPACK-HIE/Heur!1.9C48
23.00.65.15225

Sophos
PUA 'MultiPlug' (of type Adware)
5.11

Vba32 AntiVirus
SScope.Adware.MultiPlug
3.12.26.3

File size:
1 MB (1,066,184 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\ProgramData\{8a85280e-84eb-5629-8a85-5280e84ea03a}\synaptics pointing device driver.exe

Digital Signature
Signed by:
Stepan Rybin

Authority:
Unizeto Technologies S.A.

Valid from:
6/27/2014 4:37:40 AM

Valid to:
6/27/2015 4:37:40 AM

Subject:
E=rybin.step@yandex.ru, CN=Stepan Rybin, O=Stepan Rybin, C=UA

Issuer:
CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:
47154C2151E9EB8DFA42C2C9E45BFC6C

File PE Metadata
Compilation timestamp:
11/2/2012 3:31:52 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
24576:vhXLG9lqu3Oaei56sRdsS6+psugICb92R5aVa2z57m/:vhqyuFp5QS6jXI69+UI2z5e

Entry address:
0xDCAE2

Entry point:
E8, DF, 14, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, E0, FE, 4E, 00, E8, E8, 19, 00, 00, E8, AC, 16, 00, 00, 0F, B7, F0, 6A, 02, E8, 72, 14, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, E8, 02, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8...
 
[+]

Entropy:
7.3693

Code size:
901.5 KB (923,136 bytes)

Remove synaptics pointing device driver.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.