Windows 7, Windows 8 and Windows 10 is related with the Windivert.dll (Windows Packet Divert). Windivert.dll is a dynamic link library file, which is used for capture/sniffing/alteration/blocking/re-injection package for Windows operating system, specifically for Windows 7, Windows 8 as well as Windows 10. The user-mode packet filters, packet sniffers, firewall, NAT, VPN and tunneling program are use without any kernel-mode coding.
A significant features are related with Windivert.dll are:
- User-mode packet capture, sniffing, embedding, filtering, alteration, re-injection, and more.
- Simple, high-level, programming API.
- Fully documented along with sample programs.
- Full IPv6 support.
- Full loopback (localhost) support.
- A modern WDF/WFP driver implementation.
- Open source; Licensed under GNU Lesser General Public License (LGPL) version 3. See the License for more information.
How To Uninstall Windivert.dll?
To uninstall, simply delete the WinDivert.dll, WinDivert32.sys, and WinDivert64.sys files. If already running, the WinDivert driver will be automatically uninstalled during the next machine reboot. The WinDivert driver can also be manually removed by (1) terminating all processes that are using WinDivert, and (2) issuing the following commands at the command prompt:
sc stop WinDivert
sc delete WinDivert
Alternatively, the WinDivert driver can be removed by using the windivertctl.exe sample program by issuing the following command:
After restart, everything is working fine, but I noticed through my security software, that a program called windivert.exe made an entry in the registry. I did not recognize this program, so I checked the event viewer and it seems a few minutes before the freeze, it was installed.