home

SynTPEnh.exe

Synaptics Pointing Device Driver

Synaptics Incorporated

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘SynTPEnh’.
Publisher:
Synaptics Incorporated  (signed and verified)

Product:
Synaptics Pointing Device Driver

Description:
Synaptics TouchPad 64-bit Enhancements

Version:
17.0.6.2 26Jul13

MD5:
c7f40e2207f417c8f75c38879140537f

SHA-1:
8eb656732357e4d6c3cb5fdc6cd02986d6c9adfc

SHA-256:
5b6c1251a08f12767e047e2a0423dae34303a2b5e747634f6d075d8f44367611

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 1:02:12 PM UTC  (today)

File size:
2.6 MB (2,771,184 bytes)

Product version:
17.0.6.2 26Jul13

Copyright:
Copyright (C) Synaptics Incorporated 1996-2013

Original file name:
SynTPEnh.exe

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\Program Files\synaptics\syntp\syntpenh.exe

Digital Signature
Signed by:
Synaptics Incorporated

Authority:
VeriSign, Inc.

Valid from:
11/11/2011 1:00:00 AM

Valid to:
12/9/2014 12:59:59 AM

Subject:
CN=Synaptics Incorporated, OU=Technical Marketing, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Synaptics Incorporated, L=San Jose, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7666F889BF442CD3165CD667993B5D8F

File PE Metadata
Compilation timestamp:
7/26/2013 9:13:06 PM

OS version:
6.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
11.0

Entry address:
0xD3310

Entry point:
48, 83, EC, 28, E8, BF, 08, 01, 00, 48, 83, C4, 28, E9, 36, FE, FF, FF, CC, CC, 4C, 89, 44, 24, 18, 4C, 89, 4C, 24, 20, 55, 53, 56, 57, 48, 8B, EC, 48, 83, EC, 58, 48, 83, 65, C8, 00, 48, 8B, FA, 33, D2, 49, 8B, F0, 48, 8B, D9, 44, 8D, 42, 28, 48, 8D, 4D, D0, E8, 8A, 66, FF, FF, 48, 85, F6, 75, 18, E8, C0, EB, FF, FF, C7, 00, 16, 00, 00, 00, E8, 01, 02, 00, 00, 83, C8, FF, E9, 8A, 00, 00, 00, 48, 85, FF, 74, 05, 48, 85, DB, 74, DE, 4C, 8D, 4D, 40, C7, 45, E0, 42, 00, 00, 00, 48, 89, 5D, D8, 48, 89, 5D, C8...
 
[+]

Code size:
1 MB (1,057,792 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
SynTPEnh

Command:
C:\Program Files\synaptics\syntp\syntpenh.exe


Scan SynTPEnh.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.