chinese_cheat_driver.sys
Driver listed in the public blocklist under a game-cheating name
chinese_cheat_driver.sys is catalogued in the public LOLDrivers vulnerable-driver list, which is where its entry in this guide comes from. The filename indicates a driver associated with game cheating.
Beyond its presence on that list, the public record is thin. No vendor, signer, CVE, or detailed researcher writeup for this exact filename was available at the time of writing, and this guide does not fill that gap with guesses. What can be said honestly is that it is tracked as a known-abusable driver, detectable by name when it loads.
A driver named for cheating has no innocent explanation on an ordinary system. If you find it, the practical step is to treat it like any unexpected kernel driver flagged by a public blocklist and look into how it got there.
chinese_cheat_driver.sys is listed as a known-vulnerable driver on the public LOLDrivers project. One distinct binary hash matching this filename is on record.
Status data comes from the public LOLDrivers project, a community-curated registry of drivers known to be vulnerable or malicious. The snapshot Vera uses was refreshed July 10, 2026. CVE links go to the NIST National Vulnerability Database.
Vera Project. “chinese_cheat_driver.sys.” Vera Field Guide (Driver). The Vera Project. https://www.veraproject.xyz/field-guide/drivers/chinese-cheat-driver-sys
