• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

NVCleanstall error plus Windows Defender trojan warning

S

sickhead racing

New Member
Joined
Oct 13, 2022
Messages
8 (0.01/day)
Hi, tried updating drivers to the latest driver and I'm getting this error and warning:

1679651013228.png


1679650856471.png


I guess the error appears because of Windows blocking stuff...is this a false positive?
 
Shou Miko

Shou Miko

Joined
Aug 29, 2005
Messages
7,176 (1.04/day)
Location
Stuck somewhere in the 80's Jpop era....
System Specs
System Name Lynni PS \ Lenowo TwinkPad L14 G2
Processor AMD Ryzen 7 7700 Raphael \ i5-1135G7 Tiger Lake-U
Motherboard ASRock B650M PG Riptide Bios v. 2.02 AMD AGESA 1.1.0.0 \ Lenowo BDPLANAR Bios 1.68
Cooling Noctua NH-D15 Chromax.Black (Only middle fan) \ Lenowo C-267C-2
Memory G.Skill Flare X5 2x16GB DDR5 6000MHZ CL36-36-36-96 AMD EXPO \ Willk Elektronik 2x16GB 2666MHZ CL17
Video Card(s) Asus GeForce RTX™ 4070 Dual OC GPU: 2325-2355 MEM: 1462| Intel® Iris® Xe Graphics
Storage Gigabyte M30 1TB|Sabrent Rocket 2TB| HDD: 10TB|1TB \ WD RED SN700 1TB
Display(s) LG UltraGear 27GP850-B 1440p@165Hz | LG 48CX OLED 4K HDR | Innolux 14" 1080p
Case Asus Prime AP201 White Mesh | Lenowo L14 G2 chassis
Audio Device(s) Steelseries Arctis Pro Wireless
Power Supply Be Quiet! Pure Power 12 M 750W Goldie | 65W
Mouse Logitech G305 Lightspeedy Wireless | Lenowo TouchPad & Logitech G305
Keyboard Ducky One 3 Daybreak Fullsize | L14 G2 UK Lumi
Software Win11 Pro 23H2 UK | Arch (Fan)
Benchmark Scores 3DMARK: https://www.3dmark.com/3dm/89434432? GPU-Z: https://www.techpowerup.com/gpuz/details/v3zbr
sickhead racing said:
Hi, tried updating drivers to the latest driver and I'm getting this error and warning:

View attachment 289011

View attachment 289010

I guess the error appears because of Windows blocking stuff...is this a false positive?
Click to expand...

What version of Windows are you running? I used it just last week or so on my laptop with a Nvidia GeForce MX 150 2GB on Windows 11 Pro 22H2 without any problems.

I assume you also use the newest version of NVCleanInstall right?
 
O

overkongen

New Member
Joined
Mar 24, 2023
Messages
1 (0.00/day)
I just had the exact same error, when trying to upgrade to the lastest nvidia driver on a RTX 2080Ti. Win 10 Pro 22H2 and NVcleanstall v1.15.1. I had to disable windows real time virusprotection to get it to work.
 
F

fuzzyman

New Member
Joined
Mar 24, 2023
Messages
1 (0.00/day)
Exactly the same issue here. Windows 10 Home, latest NVCleanstall. Trying to update laptop 3060 drivers.
 
B

Blankedy

New Member
Joined
Mar 24, 2023
Messages
2 (0.00/day)
I also have this issue. Same file, Windows is flagging it as `Trojan:Script/Wacatac.H!ml`.

It would be great to get confirmation as to whether this is a false-positive, or if some malware has actually snuck itself inside NVCleanstall.
 
C

cbjake

New Member
Joined
Mar 24, 2023
Messages
1 (0.00/day)
Same error here, running 22H2 22624.1470. Had NV installed for about 2 months prior to this update notification. Windows Defender blocked but was not providing me the same info as you when I went to check the block history.
 
W1zzard

W1zzard

Administrator
Staff member
Joined
May 14, 2004
Messages
27,423 (3.70/day)
System Specs
Processor Ryzen 7 5700X
Memory 48 GB
Video Card(s) RTX 4080
Storage 2x HDD RAID 1, 3x M.2 NVMe
Display(s) 30" 2560x1600 + 19" 1280x1024
Software Windows 10 64-bit
i'm on holiday right now, so I can't double check.

the nvc files are actually zip files that contain the folders of the official nvidia installer separately, so you can download whats needed.

the files are generated by a script that downloads from nv, extracts, and repackages the folders, so i see no way how these got compromised
 
W1zzard

W1zzard

Administrator
Staff member
Joined
May 14, 2004
Messages
27,423 (3.70/day)
System Specs
Processor Ryzen 7 5700X
Memory 48 GB
Video Card(s) RTX 4080
Storage 2x HDD RAID 1, 3x M.2 NVMe
Display(s) 30" 2560x1600 + 19" 1280x1024
Software Windows 10 64-bit
Selaya said:
false positive.
download the entire driver installation archive here and install from disk w/ nvcleaninstall and it won't error out
Click to expand...
good workaround until i have time to submit to microsoft so they confirm false positive
 
V

VinceV

Joined
Mar 25, 2023
Messages
7 (0.01/day)
System Specs
Processor Intel Core i9-13900KS
Motherboard ASUS ROG Maximus Z790 Extreme
Cooling Lian Li Galahad 360
Memory G.Skill Trident Z5 RGB 64GB DDR5-6400
Video Card(s) ASUS ROG Strix GeForce RTX 4090 OC
Storage Samsung 990 PRO 2TB, Sabrent Rocket 4 Plus 2TB
Display(s) Samsung 32" Odyssey Neo G7
Case Lian Li O11 Dynamic EVO (White)
Audio Device(s) SteelSeries Arctis Pro Wireless
Power Supply Corsair AX1200i
Mouse Corsair M65 RGB Elite
Keyboard Corsair K95 RGB Platinum, Azeron Cyborg
Software Windows 11 Pro
Shou Miko

Shou Miko

Joined
Aug 29, 2005
Messages
7,176 (1.04/day)
Location
Stuck somewhere in the 80's Jpop era....
System Specs
System Name Lynni PS \ Lenowo TwinkPad L14 G2
Processor AMD Ryzen 7 7700 Raphael \ i5-1135G7 Tiger Lake-U
Motherboard ASRock B650M PG Riptide Bios v. 2.02 AMD AGESA 1.1.0.0 \ Lenowo BDPLANAR Bios 1.68
Cooling Noctua NH-D15 Chromax.Black (Only middle fan) \ Lenowo C-267C-2
Memory G.Skill Flare X5 2x16GB DDR5 6000MHZ CL36-36-36-96 AMD EXPO \ Willk Elektronik 2x16GB 2666MHZ CL17
Video Card(s) Asus GeForce RTX™ 4070 Dual OC GPU: 2325-2355 MEM: 1462| Intel® Iris® Xe Graphics
Storage Gigabyte M30 1TB|Sabrent Rocket 2TB| HDD: 10TB|1TB \ WD RED SN700 1TB
Display(s) LG UltraGear 27GP850-B 1440p@165Hz | LG 48CX OLED 4K HDR | Innolux 14" 1080p
Case Asus Prime AP201 White Mesh | Lenowo L14 G2 chassis
Audio Device(s) Steelseries Arctis Pro Wireless
Power Supply Be Quiet! Pure Power 12 M 750W Goldie | 65W
Mouse Logitech G305 Lightspeedy Wireless | Lenowo TouchPad & Logitech G305
Keyboard Ducky One 3 Daybreak Fullsize | L14 G2 UK Lumi
Software Win11 Pro 23H2 UK | Arch (Fan)
Benchmark Scores 3DMARK: https://www.3dmark.com/3dm/89434432? GPU-Z: https://www.techpowerup.com/gpuz/details/v3zbr
VinceV said:
As soon as I download "http://gpu.me/v1/files/531.41-deskt...national-dch-whql/.nvc/Display.Driver.nvz.001" using a browser, Defender quarantines it.

If I plug that URL into VirusTotal, no viruses are detected:

VirusTotal

VirusTotal
www.virustotal.com www.virustotal.com

Definitely seems like a Defender-specific false positive. I have submitted to MS for analysis.
Click to expand...

Hmm my the Security/Defender in my Windows 11 Pro 22H2 OS Build 22621.1413 doesn't find anything wrong with the file on the link it says clean....

Untitled-1.jpg
 
V

VinceV

Joined
Mar 25, 2023
Messages
7 (0.01/day)
System Specs
Processor Intel Core i9-13900KS
Motherboard ASUS ROG Maximus Z790 Extreme
Cooling Lian Li Galahad 360
Memory G.Skill Trident Z5 RGB 64GB DDR5-6400
Video Card(s) ASUS ROG Strix GeForce RTX 4090 OC
Storage Samsung 990 PRO 2TB, Sabrent Rocket 4 Plus 2TB
Display(s) Samsung 32" Odyssey Neo G7
Case Lian Li O11 Dynamic EVO (White)
Audio Device(s) SteelSeries Arctis Pro Wireless
Power Supply Corsair AX1200i
Mouse Corsair M65 RGB Elite
Keyboard Corsair K95 RGB Platinum, Azeron Cyborg
Software Windows 11 Pro
I just received notification from Microsoft that they've completed their analysis and removed the false positive. I updated my definitions to 1.385.1125.0 and everything seems to work fine now.
 
W1zzard

W1zzard

Administrator
Staff member
Joined
May 14, 2004
Messages
27,423 (3.70/day)
System Specs
Processor Ryzen 7 5700X
Memory 48 GB
Video Card(s) RTX 4080
Storage 2x HDD RAID 1, 3x M.2 NVMe
Display(s) 30" 2560x1600 + 19" 1280x1024
Software Windows 10 64-bit
Thank you so much! Just back from holidays and wanted to work on it. Glad to see it's resolved
 
A

AsadAlrafidain

New Member
Joined
Feb 27, 2022
Messages
11 (0.01/day)
I also got an error when tried to install a packaged driver on a fresh windows 11 install, with defender interfering and saying it blocked a trojan horse...all things are up to date.
IMG_20240819_063906.jpg
 
W1zzard

W1zzard

Administrator
Staff member
Joined
May 14, 2004
Messages
27,423 (3.70/day)
System Specs
Processor Ryzen 7 5700X
Memory 48 GB
Video Card(s) RTX 4080
Storage 2x HDD RAID 1, 3x M.2 NVMe
Display(s) 30" 2560x1600 + 19" 1280x1024
Software Windows 10 64-bit
AsadAlrafidain said:
I also got an error when tried to install a packaged driver on a fresh windows 11 install, with defender interfering and saying it blocked a trojan horse...all things are up to date.
View attachment 359640
Click to expand...

Just to confirm, you used NVCleanstall to create a driver package exe and named that NVIDIA.exe ? Any special settings? which driver version?
 
You must log in or register to reply here.
Top