ntvdm.exe is process associated with Microsoft Windows NT. Windows NT DOS Virtual Machine provides an enviromnment for 16-bit process to execute on 32-bit Windows platform.
Operating System's Processes > Processes beginning with letter n > ntvdm.exe

ntvdm.exe

Windows NT DOS Virtual Machine

There are 2 processes with name “ntvdm.exe”

ntvdm.exe – NTVDM

ntvdm.exe – Windows NT DOS Virtual Machine

process status • safe • malicious • unknown

Brief description of process ntvdm.exe

Process ntvdm.exe named “Windows NT DOS Virtual Machine” is an application of Microsoft Windows software, produced by Microsoft. This version of ntvdm.exe seems to be safe. However some processes have more variants and one of them may be malicious. To be sure we recommend you to do a spyware and a virus scan.

ntvdm.exe

Additional information about ntvdm.exe

ntvdm.exe is process associated with Microsoft Windows NT. Windows NT DOS Virtual Machine provides an enviromnment for 16-bit process to execute on 32-bit Windows platform.

Reported as a virus

No

Reported as a trojan horse

No

Reported as a spyware

No

Safe to end the process

Information isn't available

Safe to disable the process

Information isn't available

Safe to remove the process

Information isn't available

Developer

Microsoft

Part of

Microsoft Windows

Share |
 

Previous process
ntutil.dll

Next process
ntvdm.exe

 
 
 

Related news

Showing news related to process “ntvdm.exe”

April 13, 2004 2:00:00 AM CEST

Microsoft Virtual DOS Machine Local Privilege Escalation Vulnerability – Type: Vulnerability. Local attackers may elevate their privileges due to a vulnerability in the Virtual DOS Machine.

 

October 12, 2004 2:00:00 AM CEST

Microsoft Windows Kernel Virtual DOS Machine Privilege Escalation Vulnerability – Type: Vulnerability. Microsoft Windows Kernel Virtual DOS Machine is reported prone to a local privilege-escalation vulnerability.

 

September 19, 2002 2:00:00 AM CEST

Microsoft Virtual Machine Multiple JDBC Vulnerabilities – Type: Vulnerability. Microsoft Virtual Machine may allow remote code execution allowing full system compromise.

 

January 6, 2010 5:54:26 PM CET

Windows 7 – XP Mode – In my last blog, we have discussed the kernel API refactoring in Windows 7, today we are going to look at a new feature of Windows 7 – XP Mode, which is a combined solution of Virtualization and RemoteApp technologies. For quick understanding on Windows XP Mode, let’s look at an excerpt from Wikipedia about its [...]

 

November 21, 2002 1:00:00 AM CET

Microsoft Java Virtual Machine Bytecode Verifier Vulnerability – Type: Vulnerability. The Microsoft Java Virtual Machine implementation may allow the execution of arbitrary code outside of the Java applet sandbox.

 

January 21, 2010 1:48:09 AM CET

Security Advisory 979682 Released – Today we released Security Advisory 979682 to address an Elevation of Privilege (EoP) vulnerability in the Windows kernel, affecting all currently supported versions of 32-bit Windows. 64-bit versions of Windows, including Windows Server 2008 R2, are not affected. The advisory provides customers with actionable guidance to help with protections against exploit of this vulnerability. To exploit this vulnerability, an attacker must already have valid logon credentials and be able to log on to a system locally, meaning they must already have an account on the system. An attacker could then elevate their privileges to the administrative level and run programs of their choice on the system. To help mitigate exploit of this vulnerability, customers who do not require NT Virtual DOS Mode (NTVDM) or support for 16-bit applications, can disable the NTVDM subsystem. Information on this workaround can be found in the Advisory. We are not currently aware of any active attacks against this vulnerability and believe risk to customers, at this time, is limited. We continue to recommend customers review the mitigations and workarounds detailed in the Security Advisory. We are also working with our Microsoft Active Protections Program (MAPP) partners to help provide broader protections for customers. Our teams are continuing to work on an update and we will take appropriate action to protect customers when the update has met the quality bar for broad distribution. That may include releasing the update out-of-band. The Security Advisory will be updated with any new developments so if you are not already subscribed to our comprehensive alerts, please do so in order to be alerted by email when new information is added. We will also keep customers apprised of any additional details and updates through the MSRC Blog. Thanks, Jerry Bryant *This posting is provided "AS IS" with no warranties, and confers no rights.*

 

January 27, 2009 9:01:00 AM CET

Trojan-Downloader.Win32.QQHelper.aoc – This Trojan downloads other programs via the Internet and launches them for execution on the victim machine without the user’s knowledge or consent. It is a Windows PE EXE file. It is 20480...

 

February 24, 2009 9:45:00 AM CET

Trojan-Downloader.Win32.Small.ydh – This Trojan downloads other files via the Internet and launches them for execution on the victim machine without the user’s knowledge or consent. It is a Windows PE EXE file. It is 34816 bytes...

 

February 24, 2009 9:32:00 AM CET

Trojan-Downloader.Win32.Agent.ahoe – This Trojan downloads another malicious program via the Internet and launches it on the victim machine without the user’s knowledge or consent. It is a Windows PE EXE file. It is 9216 bytes in...

 

September 25, 2009 1:51:00 PM CEST

Backdoor.Win32.Clampi.a – This Trojan spy program is designed to steal confidential user data and remotely manage the victim machine. It is a Windows PE EXE file. It is 470 bytes in size. Installation When launched, the Trojan creates the following file: %AppData%\.exe

 

» The Latest Computer Security News

 
 

Navigate through library of processes alphabeticaly by first letter:

abcdefghijklmnopqrstuvwxyzother