Jump to content

nvlddmkm.sys, Nvidia Graphic Card File, FP


turtledove

Recommended Posts

I have Nvidia Graphic Card, this file belongs to it: nvlddmkm.sys and was detected this a.m. durring reg nightly scan.

Here is the log:

 

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 4/29/2014
Scan Time: 8:37:21 AM
Logfile: nvlddmkm_sys_FP_To MB.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.29.02
Rootkit Database: v2014.03.27.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Edited out by Me

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 274691
Time Elapsed: 5 hr, 34 min, 8 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)
Unknown.Rootkit.Driver, C:\WINDOWS\SYSTEM32\drivers\nvlddmkm.sys, , [757ace4d4c9ff0571f86aa5d586b45e8],

Physical Sectors: 0
(No malicious items detected)


(end)

More information on the MD5:

http://systemexplorer.net/file-database/file/nvlddmkm-sys/

Can't find the file now. Told MBAM to ignore once, will see if found again.

The file has been on my system a few weeks since software update was done for the card.

 

Kind Regards,

turtledove

Link to post
Share on other sites

  • 2 months later...
  • 3 weeks later...

Hello,

I'm rebuilding a box from scratch, W764 ULT.

As I have been installing SW and drivers I have been rebooting and doing a hyper scan between each reboot.

I was fine until I installed "28ce7629b9ffce5c8b20a957ff74a3a0 *337.88-desktop-win8-win7-winvista-64bit-english-whql.exe"
which is seeing nvlddmkm.sys as an Unknown.Rootkit.Driver.

0ac797f70f2f3e5b69a34ff2f63496f3 *nvlddmkm.sys
nvlddmkm.rar

Perhaps I need some Mbam education here but what is strange is that when I right click on the file and scan with mbam it comes up clean.

Also if I copy the same file to my desktop dir and then do a custom scan of my desktop dir the file comes up clean. Only a hyper scan or  threat scan will detect as a root kit and only if I don't scan the file directly.
 



Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 8/2/2014
Scan Time: 6:30:15 PM
Logfile:
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.08.02.06
Rootkit Database: v2014.08.01.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Enabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User:

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 279102
Time Elapsed: 0 min, 58 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)
Unknown.Rootkit.Driver, C:\WINDOWS\SYSTEM32\drivers\nvlddmkm.sys, No Action By User, [dd81fbc57ab9134cddc5ce90880bfd80],

Physical Sectors: 0
(No malicious items detected)


(end)

Link to post
Share on other sites

RBlake:
 
Please reference: Please read before reporting a false positive
 
Post #2

 

If you are not a member of Staff or Experts group please do not reply to other users posts in either the File or Web Blocking forums.

 
 
This is  turtledove's  thread and its old. A False Positive in April will not be the same as one exhibited in August.  Please start your own thread if you feel you have a False Positive issue in accordance to the above referenced link.

 

Thank you for understanding.

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.