Jump to content

nvlddmkm.sys, Nvidia Graphic Card File, FP


turtledove
 Share

Recommended Posts

I have Nvidia Graphic Card, this file belongs to it: nvlddmkm.sys and was detected this a.m. durring reg nightly scan.

Here is the log:

 

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 4/29/2014
Scan Time: 8:37:21 AM
Logfile: nvlddmkm_sys_FP_To MB.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.29.02
Rootkit Database: v2014.03.27.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Edited out by Me

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 274691
Time Elapsed: 5 hr, 34 min, 8 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)
Unknown.Rootkit.Driver, C:\WINDOWS\SYSTEM32\drivers\nvlddmkm.sys, , [757ace4d4c9ff0571f86aa5d586b45e8],

Physical Sectors: 0
(No malicious items detected)


(end)

More information on the MD5:

http://systemexplorer.net/file-database/file/nvlddmkm-sys/

Can't find the file now. Told MBAM to ignore once, will see if found again.

The file has been on my system a few weeks since software update was done for the card.

 

Kind Regards,

turtledove

Link to post
Share on other sites

  • 2 months later...
  • 3 weeks later...

Hello,

I'm rebuilding a box from scratch, W764 ULT.

As I have been installing SW and drivers I have been rebooting and doing a hyper scan between each reboot.

I was fine until I installed "28ce7629b9ffce5c8b20a957ff74a3a0 *337.88-desktop-win8-win7-winvista-64bit-english-whql.exe"
which is seeing nvlddmkm.sys as an Unknown.Rootkit.Driver.

0ac797f70f2f3e5b69a34ff2f63496f3 *nvlddmkm.sys
nvlddmkm.rar

Perhaps I need some Mbam education here but what is strange is that when I right click on the file and scan with mbam it comes up clean.

Also if I copy the same file to my desktop dir and then do a custom scan of my desktop dir the file comes up clean. Only a hyper scan or  threat scan will detect as a root kit and only if I don't scan the file directly.
 



Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 8/2/2014
Scan Time: 6:30:15 PM
Logfile:
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.08.02.06
Rootkit Database: v2014.08.01.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Enabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User:

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 279102
Time Elapsed: 0 min, 58 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)
Unknown.Rootkit.Driver, C:\WINDOWS\SYSTEM32\drivers\nvlddmkm.sys, No Action By User, [dd81fbc57ab9134cddc5ce90880bfd80],

Physical Sectors: 0
(No malicious items detected)


(end)

Link to post
Share on other sites

RBlake:
 
Please reference: Please read before reporting a false positive
 
Post #2

 

If you are not a member of Staff or Experts group please do not reply to other users posts in either the File or Web Blocking forums.

 
 
This is  turtledove's  thread and its old. A False Positive in April will not be the same as one exhibited in August.  Please start your own thread if you feel you have a False Positive issue in accordance to the above referenced link.

 

Thank you for understanding.

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.