xxxdefdrv.sys - Dangerous
%sysdir%\xxxdefdrv.sys
Manual removal instructions:
Antivirus Report of %sysdir%\xxxdefdrv.sys:
%sysdir%\xxxdefdrv.sys
xxxdefdrv.sys is rootkit Trojan.HacDef-AB.
xxxdefdrv.sys is used to hide files, processes and registry.
xxxdefdrv.sys is a kernel mode rootkit.
xxxdefdrv.sys created new system drivers:
service name: "Microsoft Information Driver"
Related files:
%SysDir%\wdl.exe
%SysDir%\wdl.dll
%SysDir%\xxxdefdrv.sys
%SysDir%\windows.exe
%SysDir%\xmlsvc.exe
%SysDir%\xmldata.dll
%SysDir%\xmlsvc.dll
%SysDir%\.tmp
%SysDir%\rpcsvc.exe
%SysDir%\ioservice.exe
%SysDir%\ioservice.ini
%SysDir%\rpcsvr.exe
%SysDir%\smap.exe
%SysDir%\sv.exe
%SysDir%\diketraffic.conf
%SysDir%\dikeentry.conf
%SysDir%\bitsm.exe
%SysDir%\kern32.dll
%SysDir%\bitsm.exe -start
%SysDir%\iobanana.exe
%SysDir%\ioA.exe
%sysdir%\xxxdefdrv.sys | Malware |
%sysdir%\xxxdefdrv.sys | Dangerous |
%sysdir%\xxxdefdrv.sys | High Risk |
xxxdefdrv.sys is used to hide files, processes and registry.
xxxdefdrv.sys is a kernel mode rootkit.
xxxdefdrv.sys created new system drivers:
service name: "Microsoft Information Driver"
Related files:
%SysDir%\wdl.exe
%SysDir%\wdl.dll
%SysDir%\xxxdefdrv.sys
%SysDir%\windows.exe
%SysDir%\xmlsvc.exe
%SysDir%\xmldata.dll
%SysDir%\xmlsvc.dll
%SysDir%\.tmp
%SysDir%\rpcsvc.exe
%SysDir%\ioservice.exe
%SysDir%\ioservice.ini
%SysDir%\rpcsvr.exe
%SysDir%\smap.exe
%SysDir%\sv.exe
%SysDir%\diketraffic.conf
%SysDir%\dikeentry.conf
%SysDir%\bitsm.exe
%SysDir%\kern32.dll
%SysDir%\bitsm.exe -start
%SysDir%\iobanana.exe
%SysDir%\ioA.exe
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.