← All drivers
vulnerable
Driver

chinese_cheat_driver.sys

Driver listed in the public blocklist under a game-cheating name

From Unknown
Status
On a known-vulnerable list
Known variants
1 distinct hashes
Field notes

chinese_cheat_driver.sys is catalogued in the public LOLDrivers vulnerable-driver list, which is where its entry in this guide comes from. The filename indicates a driver associated with game cheating.

Beyond its presence on that list, the public record is thin. No vendor, signer, CVE, or detailed researcher writeup for this exact filename was available at the time of writing, and this guide does not fill that gap with guesses. What can be said honestly is that it is tracked as a known-abusable driver, detectable by name when it loads.

A driver named for cheating has no innocent explanation on an ordinary system. If you find it, the practical step is to treat it like any unexpected kernel driver flagged by a public blocklist and look into how it got there.

What the record shows

chinese_cheat_driver.sys is listed as a known-vulnerable driver on the public LOLDrivers project. One distinct binary hash matching this filename is on record.

What this means, plainly
Presence is not proof of misuse. Driver files on the LOLDrivers list commonly ship with legitimate hardware tools, gaming software, or vendor utilities. Their presence is recorded as evidence on a record. It is never treated as a verdict about a person.
Source

Status data comes from the public LOLDrivers project, a community-curated registry of drivers known to be vulnerable or malicious. The snapshot Vera uses was refreshed July 10, 2026. CVE links go to the NIST National Vulnerability Database.

Cite this entry

Vera Project. “chinese_cheat_driver.sys.” Vera Field Guide (Driver). The Vera Project. https://www.veraproject.xyz/field-guide/drivers/chinese-cheat-driver-sys