Rootkit Entries
| Name | Filename | Status | Description |
|---|---|---|---|
| OPENGL technology access | flashdrv3.sys | X | Added by a variant of the Troj/Haxdor-Gen rootkit. |
| Rege memory mapper | flashsmt.sys | X | Added by a variant of the Goldun.Fam rootkit. |
| fnhoje | fnhoje | X | Identified as a variant of the Backdoor:Win32/Rustock.gen rootkit. |
| FT StarForce Protector | fprot.sys | X | A variant of the Haxdoor rootkit. |
| fpuext.sys | X | Added by a variant of the Goldun rootkit. | |
| XD FileSystemDriver | fsxxd.sys | X | A variant of the Haxdoor rootkit. |
| fvelwow | fvelwow.sys | X | Identified as a variant of the Backdoor:Win32/Rustock.gen rootkit. |
| GDI kernel srvc | gdiw2k.sys | X | Added by a variant of the Troj/Haxdor-Gen rootkit. |
| gdow2k.sys | X | Variant of the Troj/Haxdor-Fam rootkit. | |
| glaide32 | glaide32.sys | X | Added by the Backdoor.Rustock backdoor rootkit. |
| VANTI | God.sys | X | A variant of the Troj/Hackvan-A rootkit. |
| grande48 | grande48.sys | X | Added by the Troj/RKAgen-E rootkit Trojan. |
| gsbgqpwwfw | gsbgqpwwfw.sys | X | Added by the Backdoor.Rustock backdoor rootkit. |
| guntest | guntest.chm | X | Added by the Backdoor.Rustock backdoor rootkit. |
| hcnwg4u | hcnwg4u.sys | X | Added by the Backdoor.Rustock backdoor rootkit. |
| hdport | hdport.sys | X | Identified as a variant of the Trojan.Rootkit.GEP rootkit. |
| helps.dll | X | Added by the Hacktool.Rootkit rootkit. | |
| hhlmken | hhlmken.scp | X | Added by the Backdoor.Rustock backdoor rootkit. |
| !!!! | hide_evr2.sys | X | Added by the Troj/PWS-ABD rootkit Trojan. |
| hipsrv | hipsrv.mm | X | Added by the Backdoor.Rustock backdoor rootkit. |
| hpdriver | hpdriver.sys | X | A variant of the Troj/Rootkit-AA kernel-mode rootkit family. |
| HP32X Printer driver | hpprintdrv.sys | X | Added by the Troj/Haxdoor-AU rootkit Trojan. |
| hqaply | hqaply.chm | X | Added by the Backdoor.Rustock backdoor rootkit. |
| hqiopa | hqiopa.sys | X | Added by the Backdoor.Rustock backdoor rootkit. |
| HWRegProt | HWRegProt.sys | X | Added by the Hacktool.Rootkit rootkit. |
| ROME ROTYUS | hxdefdrv.sys | X | Added by the Troj/HacDef-DR rootkit. |
| idersrvc.sys | X | A variant of the Troj/Haxdor-Gen rootkit. | |
| ieqazhew | ieqazhew.dll | X | Added by the Backdoor.Rustock backdoor rootkit. |
| LOGON suport service | ies4service.sys | X | Added by a variant of the Troj/Haxdor-Gen rootkit. |
| iesdl4l | iesdl4l.dll | X | Added by the Troj/Haxdoor-AQ backdoor Trojan. This infection utilizes the C:\Windows\System32\iesservice4.sys rootkit. |
Search Startups
Startup Database Navigation