================================================== Filename : ntoskrnl.exe Address In Stack : ntoskrnl.exe+731a9 From Address : fffff800`02419000 To Address : fffff800`02a05000 Size : 0x005ec000 Time Stamp : 0x5684191c Time String : 12/31/2015 1:49:16 AM Product Name : Microsoft® Windows® Operating System File Description : NT Kernel & System File Version : 6.1.7601.19110 (win7sp1_gdr.151230-0600) Company : Microsoft Corporation Full Path : C:\Windows\system32\ntoskrnl.exe ================================================== ================================================== Filename : hal.dll Address In Stack : From Address : fffff800`02a05000 To Address : fffff800`02a4e000 Size : 0x00049000 Time Stamp : 0x4ce7c669 Time String : 11/20/2010 9:00:25 PM Product Name : Microsoft® Windows® Operating System File Description : Hardware Abstraction Layer DLL File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\hal.dll ================================================== ================================================== Filename : kdcom.dll Address In Stack : From Address : fffff800`02290000 To Address : fffff800`0229a000 Size : 0x0000a000 Time Stamp : 0x4d4d8061 Time String : 2/6/2011 12:52:49 AM Product Name : Microsoft® Windows® Operating System File Description : Serial Kernel Debugger File Version : 6.1.7601.17556 (win7sp1_gdr.110204-2120) Company : Microsoft Corporation Full Path : C:\Windows\system32\kdcom.dll ================================================== ================================================== Filename : mcupdate.dll Address In Stack : From Address : fffff880`00c45000 To Address : fffff880`00c94000 Size : 0x0004f000 Time Stamp : 0x4ce7c737 Time String : 11/20/2010 9:03:51 PM Product Name : File Description : File Version : Company : Full Path : ================================================== ================================================== Filename : PSHED.dll Address In Stack : From Address : fffff880`00c94000 To Address : fffff880`00ca8000 Size : 0x00014000 Time Stamp : 0x4a5be027 Time String : 7/14/2009 9:32:23 AM Product Name : Microsoft® Windows® Operating System File Description : Platform Specific Hardware Error Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\PSHED.dll ================================================== ================================================== Filename : CLFS.SYS Address In Stack : From Address : fffff880`00ca8000 To Address : fffff880`00d06000 Size : 0x0005e000 Time Stamp : 0x54f67a28 Time String : 3/4/2015 11:21:12 AM Product Name : Microsoft® Windows® Operating System File Description : Common Log File System Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\CLFS.SYS ================================================== ================================================== Filename : CI.dll Address In Stack : From Address : fffff880`00d06000 To Address : fffff880`00d7b000 Size : 0x00075000 Time Stamp : 0x53acd125 Time String : 6/27/2014 10:04:21 AM Product Name : Microsoft® Windows® Operating System File Description : Code Integrity Module File Version : 6.1.7601.19021 (win7sp1_gdr.151001-0600) Company : Microsoft Corporation Full Path : C:\Windows\system32\CI.dll ================================================== ================================================== Filename : Wdf01000.sys Address In Stack : From Address : fffff880`00e36000 To Address : fffff880`00ef8000 Size : 0x000c2000 Time Stamp : 0x51c51641 Time String : 6/22/2013 11:13:05 AM Product Name : Microsoft® Windows® Operating System File Description : Kernel Mode Driver Framework Runtime File Version : 1.11.9200.16384 (win8_rtm.120725-1247) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Wdf01000.sys ================================================== ================================================== Filename : WDFLDR.SYS Address In Stack : From Address : fffff880`00ef8000 To Address : fffff880`00f08000 Size : 0x00010000 Time Stamp : 0x5010ab70 Time String : 7/26/2012 10:29:04 AM Product Name : Microsoft® Windows® Operating System File Description : Kernel Mode Driver Framework Loader File Version : 1.11.9200.16384 (win8_rtm.120725-1247) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\WDFLDR.SYS ================================================== ================================================== Filename : ACPI.sys Address In Stack : From Address : fffff880`00f08000 To Address : fffff880`00f5f000 Size : 0x00057000 Time Stamp : 0x4ce79294 Time String : 11/20/2010 5:19:16 PM Product Name : Microsoft® Windows® Operating System File Description : ACPI Driver for NT File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ACPI.sys ================================================== ================================================== Filename : WMILIB.SYS Address In Stack : From Address : fffff880`00f5f000 To Address : fffff880`00f68000 Size : 0x00009000 Time Stamp : 0x4a5bc117 Time String : 7/14/2009 7:19:51 AM Product Name : Microsoft® Windows® Operating System File Description : WMILIB WMI support library Dll File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\WMILIB.SYS ================================================== ================================================== Filename : msisadrv.sys Address In Stack : From Address : fffff880`00f68000 To Address : fffff880`00f72000 Size : 0x0000a000 Time Stamp : 0x4a5bc0fe Time String : 7/14/2009 7:19:26 AM Product Name : Microsoft® Windows® Operating System File Description : ISA Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\msisadrv.sys ================================================== ================================================== Filename : pci.sys Address In Stack : From Address : fffff880`00f72000 To Address : fffff880`00fa5000 Size : 0x00033000 Time Stamp : 0x4ce7928f Time String : 11/20/2010 5:19:11 PM Product Name : Microsoft® Windows® Operating System File Description : NT Plug and Play PCI Enumerator File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\pci.sys ================================================== ================================================== Filename : vdrvroot.sys Address In Stack : From Address : fffff880`00fa5000 To Address : fffff880`00fb2000 Size : 0x0000d000 Time Stamp : 0x4a5bcadb Time String : 7/14/2009 8:01:31 AM Product Name : Microsoft® Windows® Operating System File Description : Virtual Drive Root Enumerator File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\vdrvroot.sys ================================================== ================================================== Filename : partmgr.sys Address In Stack : From Address : fffff880`00fb2000 To Address : fffff880`00fc7000 Size : 0x00015000 Time Stamp : 0x4f641bc1 Time String : 3/17/2012 1:06:09 PM Product Name : Microsoft® Windows® Operating System File Description : Partition Management Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\partmgr.sys ================================================== ================================================== Filename : volmgr.sys Address In Stack : From Address : fffff880`00fc7000 To Address : fffff880`00fdc000 Size : 0x00015000 Time Stamp : 0x4ce792a0 Time String : 11/20/2010 5:19:28 PM Product Name : Microsoft® Windows® Operating System File Description : Volume Manager Driver File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\volmgr.sys ================================================== ================================================== Filename : volmgrx.sys Address In Stack : From Address : fffff880`00d7b000 To Address : fffff880`00dd7000 Size : 0x0005c000 Time Stamp : 0x4ce792eb Time String : 11/20/2010 5:20:43 PM Product Name : Microsoft® Windows® Operating System File Description : Volume Manager Extension Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\volmgrx.sys ================================================== ================================================== Filename : mountmgr.sys Address In Stack : From Address : fffff880`00fdc000 To Address : fffff880`00ff6000 Size : 0x0001a000 Time Stamp : 0x55a68df5 Time String : 7/16/2015 12:44:37 AM Product Name : Microsoft® Windows® Operating System File Description : Mount Point Manager File Version : 6.1.7601.18933 (win7sp1_gdr.150715-0600) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\mountmgr.sys ================================================== ================================================== Filename : vmbus.sys Address In Stack : From Address : fffff880`00c00000 To Address : fffff880`00c3c000 Size : 0x0003c000 Time Stamp : 0x4ce79b89 Time String : 11/20/2010 5:57:29 PM Product Name : Microsoft® Windows® Operating System File Description : Virtual Machine Bus File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\vmbus.sys ================================================== ================================================== Filename : winhv.sys Address In Stack : From Address : fffff880`00e00000 To Address : fffff880`00e14000 Size : 0x00014000 Time Stamp : 0x4ce792c2 Time String : 11/20/2010 5:20:02 PM Product Name : Microsoft® Windows® Operating System File Description : Windows Hypervisor Interface Driver File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\winhv.sys ================================================== ================================================== Filename : atapi.sys Address In Stack : From Address : fffff880`00e14000 To Address : fffff880`00e1d000 Size : 0x00009000 Time Stamp : 0x4a5bc113 Time String : 7/14/2009 7:19:47 AM Product Name : Microsoft® Windows® Operating System File Description : ATAPI IDE Miniport Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\atapi.sys ================================================== ================================================== Filename : ataport.SYS Address In Stack : From Address : fffff880`010d9000 To Address : fffff880`01103000 Size : 0x0002a000 Time Stamp : 0x51fef9b5 Time String : 8/5/2013 9:02:45 AM Product Name : Microsoft® Windows® Operating System File Description : ATAPI Driver Extension File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ataport.SYS ================================================== ================================================== Filename : msahci.sys Address In Stack : From Address : fffff880`01103000 To Address : fffff880`0110e000 Size : 0x0000b000 Time Stamp : 0x4ce7a416 Time String : 11/20/2010 6:33:58 PM Product Name : Microsoft® Windows® Operating System File Description : MS AHCI 1.0 Standard Driver File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\msahci.sys ================================================== ================================================== Filename : PCIIDEX.SYS Address In Stack : From Address : fffff880`0110e000 To Address : fffff880`0111e000 Size : 0x00010000 Time Stamp : 0x4a5bc114 Time String : 7/14/2009 7:19:48 AM Product Name : Microsoft® Windows® Operating System File Description : PCI IDE Bus Driver Extension File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\PCIIDEX.SYS ================================================== ================================================== Filename : iaStorA.sys Address In Stack : From Address : fffff880`012e1000 To Address : fffff880`015ac000 Size : 0x002cb000 Time Stamp : 0x5042afe4 Time String : 9/2/2012 9:01:24 AM Product Name : Intel Rapid Storage Technology driver File Description : Intel Rapid Storage Technology driver - x64 File Version : 11.6.0.1030 Company : Intel Corporation Full Path : C:\Windows\system32\drivers\iaStorA.sys ================================================== ================================================== Filename : storport.sys Address In Stack : From Address : fffff880`01200000 To Address : fffff880`01264000 Size : 0x00064000 Time Stamp : 0x52f04432 Time String : 2/4/2014 9:36:50 AM Product Name : Microsoft® Windows® Operating System File Description : Microsoft Storage Port Driver File Version : 6.1.7601.18386 (win7sp1_gdr.140203-1432) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\storport.sys ================================================== ================================================== Filename : amdxata.sys Address In Stack : From Address : fffff880`01264000 To Address : fffff880`0126f000 Size : 0x0000b000 Time Stamp : 0x4ba3a3ca Time String : 3/20/2010 12:18:18 AM Product Name : Storage Filter Driver File Description : Storage Filter Driver File Version : 1.1.2.5 (NT.091202-1659) Company : Advanced Micro Devices Full Path : C:\Windows\system32\drivers\amdxata.sys ================================================== ================================================== Filename : fltmgr.sys Address In Stack : From Address : fffff880`0126f000 To Address : fffff880`012bb000 Size : 0x0004c000 Time Stamp : 0x4ce7929c Time String : 11/20/2010 5:19:24 PM Product Name : Microsoft® Windows® Operating System File Description : Microsoft Filesystem Filter Manager File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\fltmgr.sys ================================================== ================================================== Filename : fileinfo.sys Address In Stack : From Address : fffff880`012bb000 To Address : fffff880`012cf000 Size : 0x00014000 Time Stamp : 0x4a5bc481 Time String : 7/14/2009 7:34:25 AM Product Name : Microsoft® Windows® Operating System File Description : FileInfo Filter Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\fileinfo.sys ================================================== ================================================== Filename : Ntfs.sys Address In Stack : From Address : fffff880`01603000 To Address : fffff880`017ac000 Size : 0x001a9000 Time Stamp : 0x52e1be8a Time String : 1/24/2014 9:14:50 AM Product Name : Microsoft® Windows® Operating System File Description : NT File System Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Ntfs.sys ================================================== ================================================== Filename : msrpc.sys Address In Stack : From Address : fffff880`0111e000 To Address : fffff880`0117c000 Size : 0x0005e000 Time Stamp : 0x4ce79334 Time String : 11/20/2010 5:21:56 PM Product Name : Microsoft® Windows® Operating System File Description : Kernel Remote Procedure Call Provider File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\msrpc.sys ================================================== ================================================== Filename : ksecdd.sys Address In Stack : From Address : fffff880`017ac000 To Address : fffff880`017c7000 Size : 0x0001b000 Time Stamp : 0x56841737 Time String : 12/31/2015 1:41:11 AM Product Name : Microsoft® Windows® Operating System File Description : Kernel Security Support Provider Interface File Version : 6.1.7601.19110 (win7sp1_gdr.151230-0600) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ksecdd.sys ================================================== ================================================== Filename : cng.sys Address In Stack : From Address : fffff880`0117c000 To Address : fffff880`011ee000 Size : 0x00072000 Time Stamp : 0x5600c3a5 Time String : 9/22/2015 10:57:41 AM Product Name : Microsoft® Windows® Operating System File Description : Kernel Cryptography, Next Generation File Version : 6.1.7601.19012 (win7sp1_gdr.150921-1559) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\cng.sys ================================================== ================================================== Filename : pcw.sys Address In Stack : From Address : fffff880`017c7000 To Address : fffff880`017d8000 Size : 0x00011000 Time Stamp : 0x4a5bc0ff Time String : 7/14/2009 7:19:27 AM Product Name : Microsoft® Windows® Operating System File Description : Performance Counters for Windows Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\pcw.sys ================================================== ================================================== Filename : Fs_Rec.sys Address In Stack : From Address : fffff880`017d8000 To Address : fffff880`017e2000 Size : 0x0000a000 Time Stamp : 0x4f4eefd2 Time String : 3/1/2012 11:41:06 AM Product Name : Microsoft® Windows® Operating System File Description : File System Recognizer Driver File Version : 6.1.7601.17787 (win7sp1_gdr.120229-1502) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Fs_Rec.sys ================================================== ================================================== Filename : ndis.sys Address In Stack : From Address : fffff880`01840000 To Address : fffff880`01933000 Size : 0x000f3000 Time Stamp : 0x561c7ad7 Time String : 10/13/2015 11:30:31 AM Product Name : Microsoft® Windows® Operating System File Description : NDIS 6.20 driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ndis.sys ================================================== ================================================== Filename : NETIO.SYS Address In Stack : From Address : fffff880`01933000 To Address : fffff880`01993000 Size : 0x00060000 Time Stamp : 0x5294760d Time String : 11/26/2013 6:21:01 PM Product Name : Microsoft® Windows® Operating System File Description : Network I/O Subsystem File Version : 6.1.7601.18327 (win7sp1_gdr.131125-2337) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\NETIO.SYS ================================================== ================================================== Filename : ksecpkg.sys Address In Stack : From Address : fffff880`01993000 To Address : fffff880`019be000 Size : 0x0002b000 Time Stamp : 0x56841b2b Time String : 12/31/2015 1:58:03 AM Product Name : Microsoft® Windows® Operating System File Description : Kernel Security Support Provider Interface Packages File Version : 6.1.7601.19110 (win7sp1_gdr.151230-0600) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ksecpkg.sys ================================================== ================================================== Filename : tcpip.sys Address In Stack : From Address : fffff880`01a00000 To Address : fffff880`01bff000 Size : 0x001ff000 Time Stamp : 0x533f5bd4 Time String : 4/5/2014 9:26:44 AM Product Name : Microsoft® Windows® Operating System File Description : TCP/IP Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\tcpip.sys ================================================== ================================================== Filename : fwpkclnt.sys Address In Stack : From Address : fffff880`015ac000 To Address : fffff880`015f5000 Size : 0x00049000 Time Stamp : 0x533f5b09 Time String : 4/5/2014 9:23:21 AM Product Name : Microsoft® Windows® Operating System File Description : FWP/IPsec Kernel-Mode API File Version : 6.1.7601.18438 (win7sp1_gdr.140404-1535) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\fwpkclnt.sys ================================================== ================================================== Filename : aswNdisFlt.sys Address In Stack : From Address : fffff880`01000000 To Address : fffff880`01074000 Size : 0x00074000 Time Stamp : 0x56b0c3ee Time String : 2/2/2016 10:57:50 PM Product Name : Avast Antivirus File Description : avast! Filtering NDIS driver File Version : 11.1.2253.1653 Company : AVAST Software Full Path : C:\Windows\system32\drivers\aswNdisFlt.sys ================================================== ================================================== Filename : aswRvrt.sys Address In Stack : From Address : fffff880`019be000 To Address : fffff880`019d1000 Size : 0x00013000 Time Stamp : 0x56b0c3fc Time String : 2/2/2016 10:58:04 PM Product Name : Avast Antivirus File Description : avast! Revert File Version : 11.1.2253.1653 Company : AVAST Software Full Path : C:\Windows\system32\drivers\aswRvrt.sys ================================================== ================================================== Filename : aswVmm.sys Address In Stack : From Address : fffff880`01074000 To Address : fffff880`010ba000 Size : 0x00046000 Time Stamp : 0x56ba489c Time String : 2/10/2016 4:14:20 AM Product Name : Avast Antivirus File Description : avast! VM Monitor File Version : 11.1.3151.1663 Company : AVAST Software Full Path : C:\Windows\system32\drivers\aswVmm.sys ================================================== ================================================== Filename : vmstorfl.sys Address In Stack : From Address : fffff880`019d1000 To Address : fffff880`019e1000 Size : 0x00010000 Time Stamp : 0x4ce79b8a Time String : 11/20/2010 5:57:30 PM Product Name : Microsoft® Windows® Operating System File Description : Virtual Storage Filter Driver File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\vmstorfl.sys ================================================== ================================================== Filename : volsnap.sys Address In Stack : From Address : fffff880`01cac000 To Address : fffff880`01cf8000 Size : 0x0004c000 Time Stamp : 0x4ce792c8 Time String : 11/20/2010 5:20:08 PM Product Name : Microsoft® Windows® Operating System File Description : Volume Shadow Copy Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\volsnap.sys ================================================== ================================================== Filename : spldr.sys Address In Stack : From Address : fffff880`01cf8000 To Address : fffff880`01d00000 Size : 0x00008000 Time Stamp : 0x4a0858bb Time String : 5/12/2009 12:56:27 AM Product Name : Microsoft® Windows® Operating System File Description : loader for security processor File Version : 6.1.7127.0 (fbl_security_bugfix(sepbld-s).090511-0943) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\spldr.sys ================================================== ================================================== Filename : rdyboost.sys Address In Stack : From Address : fffff880`01d00000 To Address : fffff880`01d3a000 Size : 0x0003a000 Time Stamp : 0x4ce7982e Time String : 11/20/2010 5:43:10 PM Product Name : Microsoft® Windows® Operating System File Description : ReadyBoost Driver File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\rdyboost.sys ================================================== ================================================== Filename : pwdrvio.sys Address In Stack : From Address : fffff880`01d3a000 To Address : fffff880`01d42000 Size : 0x00008000 Time Stamp : 0x4a36f8d1 Time String : 6/16/2009 9:43:45 AM Product Name : File Description : File Version : Company : Full Path : C:\Windows\system32\pwdrvio.sys ================================================== ================================================== Filename : mup.sys Address In Stack : From Address : fffff880`01d42000 To Address : fffff880`01d54000 Size : 0x00012000 Time Stamp : 0x4a5bc201 Time String : 7/14/2009 7:23:45 AM Product Name : Microsoft® Windows® Operating System File Description : Multiple UNC Provider Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\mup.sys ================================================== ================================================== Filename : iaStorF.sys Address In Stack : From Address : fffff880`01d54000 To Address : fffff880`01d5f000 Size : 0x0000b000 Time Stamp : 0x5042afe7 Time String : 9/2/2012 9:01:27 AM Product Name : Intel Rapid Storage Technology Filter driver File Description : Intel Rapid Storage Technology Filter driver - x64 File Version : 11.6.0.1030 Company : Intel Corporation Full Path : C:\Windows\system32\drivers\iaStorF.sys ================================================== ================================================== Filename : hwpolicy.sys Address In Stack : From Address : fffff880`01d5f000 To Address : fffff880`01d68000 Size : 0x00009000 Time Stamp : 0x4ce7927e Time String : 11/20/2010 5:18:54 PM Product Name : Microsoft® Windows® Operating System File Description : Hardware Policy Driver File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\hwpolicy.sys ================================================== ================================================== Filename : fvevol.sys Address In Stack : From Address : fffff880`01d68000 To Address : fffff880`01da2000 Size : 0x0003a000 Time Stamp : 0x5100a65c Time String : 1/24/2013 11:11:24 AM Product Name : Microsoft® Windows® Operating System File Description : BitLocker Drive Encryption Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\fvevol.sys ================================================== ================================================== Filename : disk.sys Address In Stack : From Address : fffff880`01da2000 To Address : fffff880`01db8000 Size : 0x00016000 Time Stamp : 0x4a5bc11d Time String : 7/14/2009 7:19:57 AM Product Name : Microsoft® Windows® Operating System File Description : PnP Disk Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\disk.sys ================================================== ================================================== Filename : CLASSPNP.SYS Address In Stack : From Address : fffff880`01db8000 To Address : fffff880`01de8000 Size : 0x00030000 Time Stamp : 0x4ce7929b Time String : 11/20/2010 5:19:23 PM Product Name : Microsoft® Windows® Operating System File Description : SCSI Class System Dll File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\CLASSPNP.SYS ================================================== ================================================== Filename : avgrkx64.sys Address In Stack : From Address : fffff880`01de8000 To Address : fffff880`01df2000 Size : 0x0000a000 Time Stamp : 0x55c8a651 Time String : 8/10/2015 9:25:37 PM Product Name : AVG Internet Security File Description : AVG Anti-Rootkit Driver File Version : 16.0.0.7018 Company : AVG Technologies CZ, s.r.o. Full Path : C:\Windows\system32\drivers\avgrkx64.sys ================================================== ================================================== Filename : avgmfx64.sys Address In Stack : From Address : fffff880`01c00000 To Address : fffff880`01c3f000 Size : 0x0003f000 Time Stamp : 0x5627abf4 Time String : 10/21/2015 11:15:00 PM Product Name : AVG Internet Security File Description : AVG Resident Shield Minifilter Driver File Version : 16.7.0.7225 Company : AVG Technologies CZ, s.r.o. Full Path : C:\Windows\system32\drivers\avgmfx64.sys ================================================== ================================================== Filename : avgidsha.sys Address In Stack : From Address : fffff880`01e81000 To Address : fffff880`01eca000 Size : 0x00049000 Time Stamp : 0x55d5c0c9 Time String : 8/20/2015 7:58:01 PM Product Name : AVG Internet Security File Description : AVG Application Activity Monitor Helper Driver File Version : 16.1.0.7028 Company : AVG Technologies CZ, s.r.o. Full Path : C:\Windows\system32\drivers\avgidsha.sys ================================================== ================================================== Filename : cdrom.sys Address In Stack : From Address : fffff880`03ae0000 To Address : fffff300`03b0a000 Size : 0xfffffa800002a000 Time Stamp : 0x4ce79298 Time String : 11/20/2010 5:19:20 PM Product Name : Microsoft® Windows® Operating System File Description : SCSI CD-ROM Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\cdrom.sys ================================================== ================================================== Filename : aswSP.sys Address In Stack : From Address : fffff880`03b0a000 To Address : fffff87f`03b80000 Size : 0xffffffff00076000 Time Stamp : 0x56b0c8c1 Time String : 2/2/2016 11:18:25 PM Product Name : Avast Antivirus File Description : avast! self protection module File Version : 11.1.2253.1653 Company : AVAST Software Full Path : C:\Windows\system32\drivers\aswSP.sys ================================================== ================================================== Filename : aswSnx.sys Address In Stack : From Address : fffff880`01ee2000 To Address : 644d65f3`01fe6000 Size : 0x644d6d7300104000 Time Stamp : 0x56b0c403 Time String : 2/2/2016 10:58:11 PM Product Name : Avast Antivirus File Description : avast! Virtualization Driver File Version : 11.1.2253.1653 Company : AVAST Software Full Path : C:\Windows\system32\drivers\aswSnx.sys ================================================== ================================================== Filename : Null.SYS Address In Stack : From Address : fffff880`03b80000 To Address : fffff880`03b89000 Size : 0x00009000 Time Stamp : 0x4a5bc109 Time String : 7/14/2009 7:19:37 AM Product Name : Microsoft® Windows® Operating System File Description : NULL Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Null.SYS ================================================== ================================================== Filename : Beep.SYS Address In Stack : From Address : fffff880`03b89000 To Address : fffff880`03b90000 Size : 0x00007000 Time Stamp : 0x4a5bca8d Time String : 7/14/2009 8:00:13 AM Product Name : Microsoft® Windows® Operating System File Description : BEEP Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Beep.SYS ================================================== ================================================== Filename : aswKbd.sys Address In Stack : From Address : fffff880`03b90000 To Address : fffff100`03b9a000 Size : 0xfffff8800000a000 Time Stamp : 0x56b0c3cb Time String : 2/2/2016 10:57:15 PM Product Name : Avast Antivirus File Description : avast! Keyboard Filter Driver File Version : 11.1.2253.1653 Company : AVAST Software Full Path : C:\Windows\system32\drivers\aswKbd.sys ================================================== ================================================== Filename : vga.sys Address In Stack : From Address : fffff880`03b9a000 To Address : fffff880`03ba8000 Size : 0x0000e000 Time Stamp : 0x4a5bc587 Time String : 7/14/2009 7:38:47 AM Product Name : Microsoft® Windows® Operating System File Description : VGA/Super VGA Video Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\vga.sys ================================================== ================================================== Filename : VIDEOPRT.SYS Address In Stack : From Address : fffff880`03ba8000 To Address : fffff880`03bcd000 Size : 0x00025000 Time Stamp : 0x4a5bc58b Time String : 7/14/2009 7:38:51 AM Product Name : Microsoft® Windows® Operating System File Description : Video Port Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\VIDEOPRT.SYS ================================================== ================================================== Filename : watchdog.sys Address In Stack : From Address : fffff880`03bcd000 To Address : fffff880`03bdd000 Size : 0x00010000 Time Stamp : 0x4a5bc53f Time String : 7/14/2009 7:37:35 AM Product Name : Microsoft® Windows® Operating System File Description : Watchdog Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\watchdog.sys ================================================== ================================================== Filename : RDPCDD.sys Address In Stack : From Address : fffff880`03bdd000 To Address : fffff880`03be6000 Size : 0x00009000 Time Stamp : 0x4a5bce62 Time String : 7/14/2009 8:16:34 AM Product Name : Microsoft® Windows® Operating System File Description : RDP Miniport File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\RDPCDD.sys ================================================== ================================================== Filename : rdpencdd.sys Address In Stack : From Address : fffff880`03be6000 To Address : fffff880`03bef000 Size : 0x00009000 Time Stamp : 0x4a5bce62 Time String : 7/14/2009 8:16:34 AM Product Name : Microsoft® Windows® Operating System File Description : RDP Encoder Miniport File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\rdpencdd.sys ================================================== ================================================== Filename : rdprefmp.sys Address In Stack : From Address : fffff880`03bef000 To Address : fffff880`03bf8000 Size : 0x00009000 Time Stamp : 0x4a5bce63 Time String : 7/14/2009 8:16:35 AM Product Name : Microsoft® Windows® Operating System File Description : RDP Reflector Driver Miniport File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\rdprefmp.sys ================================================== ================================================== Filename : Msfs.SYS Address In Stack : From Address : fffff880`01fe6000 To Address : fffff300`01ff1000 Size : 0xfffffa800000b000 Time Stamp : 0x4a5bc113 Time String : 7/14/2009 7:19:47 AM Product Name : Microsoft® Windows® Operating System File Description : Mailslot driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Msfs.SYS ================================================== ================================================== Filename : Npfs.SYS Address In Stack : From Address : fffff880`01e00000 To Address : fffff880`01e11000 Size : 0x00011000 Time Stamp : 0x4a5bc114 Time String : 7/14/2009 7:19:48 AM Product Name : Microsoft® Windows® Operating System File Description : NPFS Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Npfs.SYS ================================================== ================================================== Filename : tdx.sys Address In Stack : From Address : fffff880`01e11000 To Address : fffff300`01e33000 Size : 0xfffffa8000022000 Time Stamp : 0x561d3401 Time String : 10/14/2015 12:40:33 AM Product Name : Microsoft® Windows® Operating System File Description : TDI Translation Driver File Version : 6.1.7601.19031 (win7sp1_gdr.151013-0600) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\tdx.sys ================================================== ================================================== Filename : TDI.SYS Address In Stack : From Address : fffff880`01e33000 To Address : fffff300`01e40000 Size : 0xfffffa800000d000 Time Stamp : 0x4ce7933e Time String : 11/20/2010 5:22:06 PM Product Name : Microsoft® Windows® Operating System File Description : TDI Wrapper File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\TDI.SYS ================================================== ================================================== Filename : avgtdia.sys Address In Stack : From Address : fffff880`01c3f000 To Address : fffff880`01c8a000 Size : 0x0004b000 Time Stamp : 0x5616114f Time String : 10/8/2015 2:46:39 PM Product Name : AVG Internet Security File Description : AVG Network connection watcher File Version : 16.5.0.7188 Company : AVG Technologies CZ, s.r.o. Full Path : C:\Windows\system32\drivers\avgtdia.sys ================================================== ================================================== Filename : netbt.sys Address In Stack : From Address : fffff880`03c9e000 To Address : fffff080`03ce3000 Size : 0xfffff80000045000 Time Stamp : 0x4ce79386 Time String : 11/20/2010 5:23:18 PM Product Name : Microsoft® Windows® Operating System File Description : MBT Transport driver File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\netbt.sys ================================================== ================================================== Filename : afd.sys Address In Stack : From Address : fffff880`03ce3000 To Address : fffff300`03d6c000 Size : 0xfffffa8000089000 Time Stamp : 0x561d341d Time String : 10/14/2015 12:41:01 AM Product Name : Microsoft® Windows® Operating System File Description : Ancillary Function Driver for WinSock File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\afd.sys ================================================== ================================================== Filename : aswRdr2.sys Address In Stack : From Address : fffff880`03d6c000 To Address : fffff880`03d86000 Size : 0x0001a000 Time Stamp : 0x56b0c3df Time String : 2/2/2016 10:57:35 PM Product Name : Avast Antivirus File Description : avast! WFP Redirect Driver File Version : 11.1.2253.1653 built by: WinDDK Company : AVAST Software Full Path : C:\Windows\system32\drivers\aswRdr2.sys ================================================== ================================================== Filename : ws2ifsl.sys Address In Stack : From Address : fffff880`03d86000 To Address : fffff880`03d91000 Size : 0x0000b000 Time Stamp : 0x4a5bccf9 Time String : 7/14/2009 8:10:33 AM Product Name : Microsoft® Windows® Operating System File Description : Winsock2 IFS Layer File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ws2ifsl.sys ================================================== ================================================== Filename : wfplwf.sys Address In Stack : From Address : fffff880`03d91000 To Address : fffff300`03d9a000 Size : 0xfffffa8000009000 Time Stamp : 0x4a5bccb6 Time String : 7/14/2009 8:09:26 AM Product Name : Microsoft® Windows® Operating System File Description : WFP NDIS 6.20 Lightweight Filter Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\wfplwf.sys ================================================== ================================================== Filename : pacer.sys Address In Stack : From Address : fffff880`03d9a000 To Address : fffff300`03dc0000 Size : 0xfffffa8000026000 Time Stamp : 0x4ce7a862 Time String : 11/20/2010 6:52:18 PM Product Name : Microsoft® Windows® Operating System File Description : QoS Packet Scheduler File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\pacer.sys ================================================== ================================================== Filename : netbios.sys Address In Stack : From Address : fffff880`03c85000 To Address : fffff300`03c94000 Size : 0xfffffa800000f000 Time Stamp : 0x4a5bccb6 Time String : 7/14/2009 8:09:26 AM Product Name : Microsoft® Windows® Operating System File Description : NetBIOS interface driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\netbios.sys ================================================== ================================================== Filename : serial.sys Address In Stack : From Address : fffff880`03dc0000 To Address : fffff300`03ddd000 Size : 0xfffffa800001d000 Time Stamp : 0x4a5bcaa8 Time String : 7/14/2009 8:00:40 AM Product Name : Microsoft® Windows® Operating System File Description : Serial Device Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\serial.sys ================================================== ================================================== Filename : wanarp.sys Address In Stack : From Address : fffff880`03ddd000 To Address : fffff880`03df8000 Size : 0x0001b000 Time Stamp : 0x4ce7a874 Time String : 11/20/2010 6:52:36 PM Product Name : Microsoft® Windows® Operating System File Description : MS Remote Access and Routing ARP Driver File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\wanarp.sys ================================================== ================================================== Filename : VBoxUSBMon.sys Address In Stack : From Address : fffff880`03c00000 To Address : fffff300`03c26000 Size : 0xfffffa8000026000 Time Stamp : 0x5375fe0b Time String : 5/16/2014 8:01:15 PM Product Name : Oracle VM VirtualBox File Description : VirtualBox USB Monitor Driver File Version : 4.3.12.93733 Company : Oracle Corporation Full Path : C:\Windows\system32\drivers\VBoxUSBMon.sys ================================================== ================================================== Filename : VBoxDrv.sys Address In Stack : From Address : fffff880`03c26000 To Address : fffff300`03c69000 Size : 0xfffffa8000043000 Time Stamp : 0x5375fedb Time String : 5/16/2014 8:04:43 PM Product Name : Oracle VM VirtualBox File Description : VirtualBox Support Driver File Version : 4.3.12.93733 Company : Oracle Corporation Full Path : C:\Windows\system32\drivers\VBoxDrv.sys ================================================== ================================================== Filename : termdd.sys Address In Stack : From Address : fffff880`03c69000 To Address : fffff880`03c7d000 Size : 0x00014000 Time Stamp : 0x4ce7ab0c Time String : 11/20/2010 7:03:40 PM Product Name : Microsoft® Windows® Operating System File Description : Remote Desktop Server Driver File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\termdd.sys ================================================== ================================================== Filename : rdbss.sys Address In Stack : From Address : fffff880`03452000 To Address : fffff300`034a3000 Size : 0xfffffa8000051000 Time Stamp : 0x4ce79497 Time String : 11/20/2010 5:27:51 PM Product Name : Microsoft® Windows® Operating System File Description : Redirected Drive Buffering SubSystem Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\rdbss.sys ================================================== ================================================== Filename : nsiproxy.sys Address In Stack : From Address : fffff880`034a3000 To Address : fffff880`034af000 Size : 0x0000c000 Time Stamp : 0x4a5bc15e Time String : 7/14/2009 7:21:02 AM Product Name : Microsoft® Windows® Operating System File Description : NSI Proxy File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\nsiproxy.sys ================================================== ================================================== Filename : mssmbios.sys Address In Stack : From Address : fffff880`034af000 To Address : fffff300`034ba000 Size : 0xfffffa800000b000 Time Stamp : 0x4a5bc3be Time String : 7/14/2009 7:31:10 AM Product Name : Microsoft® Windows® Operating System File Description : System Management BIOS Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\mssmbios.sys ================================================== ================================================== Filename : ElbyCDIO.sys Address In Stack : From Address : fffff880`034ba000 To Address : fffff880`034c6000 Size : 0x0000c000 Time Stamp : 0x513467af Time String : 3/4/2013 5:21:51 PM Product Name : CDRTools File Description : ElbyCD Windows x64 I/O driver File Version : 6.1.1.1 Company : Elaborate Bytes AG Full Path : C:\Windows\system32\drivers\ElbyCDIO.sys ================================================== ================================================== Filename : discache.sys Address In Stack : From Address : fffff880`034c6000 To Address : fffff880`034d5000 Size : 0x0000f000 Time Stamp : 0x4a5bc52e Time String : 7/14/2009 7:37:18 AM Product Name : Microsoft® Windows® Operating System File Description : System Indexer/Cache Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\discache.sys ================================================== ================================================== Filename : csc.sys Address In Stack : From Address : fffff880`034d5000 To Address : fffff080`03558000 Size : 0xfffff80000083000 Time Stamp : 0x4ce79470 Time String : 11/20/2010 5:27:12 PM Product Name : Microsoft® Windows® Operating System File Description : Windows Client Side Caching Driver File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\csc.sys ================================================== ================================================== Filename : dfsc.sys Address In Stack : From Address : fffff880`03558000 To Address : fffff880`03576000 Size : 0x0001e000 Time Stamp : 0x4ce79447 Time String : 11/20/2010 5:26:31 PM Product Name : Microsoft® Windows® Operating System File Description : DFS Namespace Client Driver File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\dfsc.sys ================================================== ================================================== Filename : blbdrive.sys Address In Stack : From Address : fffff880`03576000 To Address : fffff880`03587000 Size : 0x00011000 Time Stamp : 0x4a5bc4df Time String : 7/14/2009 7:35:59 AM Product Name : Microsoft® Windows® Operating System File Description : BLB Drive Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\blbdrive.sys ================================================== ================================================== Filename : avgdiska.sys Address In Stack : From Address : fffff880`035cd000 To Address : fffff300`035fe000 Size : 0xfffffa8000031000 Time Stamp : 0x55c8a7d5 Time String : 8/10/2015 9:32:05 PM Product Name : AVG Internet Security File Description : AVG File Vault Driver File Version : 16.0.0.7018 Company : AVG Technologies CZ, s.r.o. Full Path : C:\Windows\system32\drivers\avgdiska.sys ================================================== ================================================== Filename : tunnel.sys Address In Stack : From Address : fffff880`03400000 To Address : fffff300`03426000 Size : 0xfffffa8000026000 Time Stamp : 0x4ce7a846 Time String : 11/20/2010 6:51:50 PM Product Name : Microsoft® Windows® Operating System File Description : Microsoft Tunnel Interface Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\tunnel.sys ================================================== ================================================== Filename : nvlddmkm.sys Address In Stack : From Address : fffff880`04497000 To Address : fffff880`050ab000 Size : 0x00c14000 Time Stamp : 0x56b970a7 Time String : 2/9/2016 12:52:55 PM Product Name : NVIDIA Windows Kernel Mode Driver, Version 361.91 File Description : NVIDIA Windows Kernel Mode Driver, Version 361.91 File Version : 10.18.13.6191 Company : NVIDIA Corporation Full Path : C:\Windows\system32\drivers\nvlddmkm.sys ================================================== ================================================== Filename : dxgkrnl.sys Address In Stack : From Address : fffff880`050ab000 To Address : 644d65f3`051a0000 Size : 0x644d6d73000f5000 Time Stamp : 0x539e411c Time String : 6/16/2014 8:58:04 AM Product Name : Microsoft® Windows® Operating System File Description : DirectX Graphics Kernel File Version : 6.1.7601.18510 (win7sp1_gdr.140615-1511) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\dxgkrnl.sys ================================================== ================================================== Filename : dxgmms1.sys Address In Stack : From Address : fffff880`051a0000 To Address : fffff880`051e6000 Size : 0x00046000 Time Stamp : 0x5164dc13 Time String : 4/10/2013 11:27:15 AM Product Name : Microsoft® Windows® Operating System File Description : DirectX Graphics MMS File Version : 6.1.7601.18126 (win7sp1_gdr.130409-1534) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\dxgmms1.sys ================================================== ================================================== Filename : HDAudBus.sys Address In Stack : From Address : fffff880`04400000 To Address : fffff880`04424000 Size : 0x00024000 Time Stamp : 0x4ce7a65e Time String : 11/20/2010 6:43:42 PM Product Name : Microsoft® Windows® Operating System File Description : High Definition Audio Bus Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\HDAudBus.sys ================================================== ================================================== Filename : iusb3xhc.sys Address In Stack : From Address : fffff880`03e42000 To Address : 644d65f3`03f08000 Size : 0x644d6d73000c6000 Time Stamp : 0x52386ac5 Time String : 9/17/2013 10:44:21 PM Product Name : USB 3.0 Device Driver File Description : Intel(R) USB 3.0 eXtensible Host Controller Driver File Version : 1.0.10.255 (iusb3drv.20130917-0742) Company : Intel Corporation Full Path : C:\Windows\system32\drivers\iusb3xhc.sys ================================================== ================================================== Filename : USBD.SYS Address In Stack : From Address : fffff880`03f08000 To Address : fffff880`03f09e80 Size : 0x00001e80 Time Stamp : 0x52954daf Time String : 11/27/2013 9:41:03 AM Product Name : Microsoft® Windows® Operating System File Description : Universal Serial Bus Driver File Version : 6.1.7601.18328 (win7sp1_gdr.131126-1436) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\USBD.SYS ================================================== ================================================== Filename : TeeDriverx64.sys Address In Stack : From Address : fffff880`03f0a000 To Address : fffff880`03f2d000 Size : 0x00023000 Time Stamp : 0x536d4397 Time String : 5/10/2014 5:07:35 AM Product Name : Intel(R) Management Engine Interface File Description : Intel(R) Management Engine Interface File Version : 10.0.20.1258 Company : Intel Corporation Full Path : C:\Windows\system32\drivers\TeeDriverx64.sys ================================================== ================================================== Filename : usbehci.sys Address In Stack : From Address : fffff880`03f2d000 To Address : fffff880`03f3f000 Size : 0x00012000 Time Stamp : 0x52954db7 Time String : 11/27/2013 9:41:11 AM Product Name : Microsoft® Windows® Operating System File Description : EHCI eUSB Miniport Driver File Version : 6.1.7601.18328 (win7sp1_gdr.131126-1436) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\usbehci.sys ================================================== ================================================== Filename : USBPORT.SYS Address In Stack : From Address : fffff880`03f3f000 To Address : fffff880`03f95000 Size : 0x00056000 Time Stamp : 0x52954db7 Time String : 11/27/2013 9:41:11 AM Product Name : Microsoft® Windows® Operating System File Description : USB 1.1 & 2.0 Port Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\USBPORT.SYS ================================================== ================================================== Filename : Rt64win7.sys Address In Stack : From Address : fffff880`04264000 To Address : fffff880`042f1000 Size : 0x0008d000 Time Stamp : 0x4e53b15d Time String : 8/23/2011 9:55:41 PM Product Name : Realtek 8136/8168/8169 PCI/PCIe Adapters File Description : Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver File Version : 7.048.0823.2011 built by: WinDDK Company : Realtek Full Path : C:\Windows\system32\drivers\Rt64win7.sys ================================================== ================================================== Filename : parport.sys Address In Stack : From Address : fffff880`042f1000 To Address : fffff880`0430e000 Size : 0x0001d000 Time Stamp : 0x4a5bcaa8 Time String : 7/14/2009 8:00:40 AM Product Name : Microsoft® Windows® Operating System File Description : Parallel Port Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\parport.sys ================================================== ================================================== Filename : i8042prt.sys Address In Stack : From Address : fffff880`0430e000 To Address : fffff880`0432c000 Size : 0x0001e000 Time Stamp : 0x4a5bc11d Time String : 7/14/2009 7:19:57 AM Product Name : Microsoft® Windows® Operating System File Description : i8042 Port Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\i8042prt.sys ================================================== ================================================== Filename : kbdclass.sys Address In Stack : From Address : fffff880`0432c000 To Address : fffff300`0433b000 Size : 0xfffffa800000f000 Time Stamp : 0x4a5bc116 Time String : 7/14/2009 7:19:50 AM Product Name : Microsoft® Windows® Operating System File Description : Keyboard Class Driver File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\kbdclass.sys ================================================== ================================================== Filename : serenum.sys Address In Stack : From Address : fffff880`0433b000 To Address : fffff300`04347000 Size : 0xfffffa800000c000 Time Stamp : 0x4a5bcaa1 Time String : 7/14/2009 8:00:33 AM Product Name : Microsoft® Windows® Operating System File Description : Serial Port Enumerator File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\serenum.sys ================================================== ================================================== Filename : intelppm.sys Address In Stack : From Address : fffff880`04347000 To Address : fffff300`0435d000 Size : 0xfffffa8000016000 Time Stamp : 0x4a5bc0fd Time String : 7/14/2009 7:19:25 AM Product Name : Microsoft® Windows® Operating System File Description : Processor Device Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\intelppm.sys ================================================== ================================================== Filename : ISCTD64.sys Address In Stack : From Address : fffff880`0435d000 To Address : fffff300`0436d000 Size : 0xfffffa8000010000 Time Stamp : 0x4e53e437 Time String : 8/24/2011 1:32:39 AM Product Name : ISCT Driver File Description : ISCT and IFFS Driver File Version : 1, 0, 0, 1002 Company : Full Path : C:\Windows\system32\drivers\ISCTD64.sys ================================================== ================================================== Filename : CompositeBus.sys Address In Stack : From Address : fffff880`0436d000 To Address : fffff880`0437d000 Size : 0x00010000 Time Stamp : 0x4ce7a3ed Time String : 11/20/2010 6:33:17 PM Product Name : Microsoft® Windows® Operating System File Description : Multi-Transport Composite Bus Enumerator File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\CompositeBus.sys ================================================== ================================================== Filename : AgileVpn.sys Address In Stack : From Address : fffff880`0437d000 To Address : fffff300`04393000 Size : 0xfffffa8000016000 Time Stamp : 0x4a5bccf0 Time String : 7/14/2009 8:10:24 AM Product Name : Microsoft® Windows® Operating System File Description : RAS Agile Vpn Miniport Call Manager File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\AgileVpn.sys ================================================== ================================================== Filename : rasl2tp.sys Address In Stack : From Address : fffff880`04393000 To Address : fffff880`043b7000 Size : 0x00024000 Time Stamp : 0x4ce7a872 Time String : 11/20/2010 6:52:34 PM Product Name : Microsoft® Windows® Operating System File Description : RAS L2TP mini-port/call-manager driver File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\rasl2tp.sys ================================================== ================================================== Filename : ndistapi.sys Address In Stack : From Address : fffff880`043b7000 To Address : fffff880`043c3000 Size : 0x0000c000 Time Stamp : 0x4a5bccd8 Time String : 7/14/2009 8:10:00 AM Product Name : Microsoft® Windows® Operating System File Description : NDIS 3.0 connection wrapper driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ndistapi.sys ================================================== ================================================== Filename : ndiswan.sys Address In Stack : From Address : fffff880`043c3000 To Address : 20706ac9`043f2000 Size : 0x207072490002f000 Time Stamp : 0x4ce7a870 Time String : 11/20/2010 6:52:32 PM Product Name : Microsoft® Windows® Operating System File Description : MS PPP Framing Driver (Strong Encryption) File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ndiswan.sys ================================================== ================================================== Filename : raspppoe.sys Address In Stack : From Address : fffff880`04200000 To Address : fffff880`0421b000 Size : 0x0001b000 Time Stamp : 0x4a5bcce9 Time String : 7/14/2009 8:10:17 AM Product Name : Microsoft® Windows® Operating System File Description : RAS PPPoE mini-port/call-manager driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\raspppoe.sys ================================================== ================================================== Filename : raspptp.sys Address In Stack : From Address : fffff880`0421b000 To Address : fffff300`0423c000 Size : 0xfffffa8000021000 Time Stamp : 0x4ce7a86f Time String : 11/20/2010 6:52:31 PM Product Name : Microsoft® Windows® Operating System File Description : Peer-to-Peer Tunneling Protocol File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\raspptp.sys ================================================== ================================================== Filename : rassstp.sys Address In Stack : From Address : fffff880`0423c000 To Address : fffff880`04256000 Size : 0x0001a000 Time Stamp : 0x4a5bccf1 Time String : 7/14/2009 8:10:25 AM Product Name : Microsoft® Windows® Operating System File Description : RAS SSTP Miniport Call Manager File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\rassstp.sys ================================================== ================================================== Filename : tap0901.sys Address In Stack : From Address : fffff880`04256000 To Address : fffff300`04263000 Size : 0xfffffa800000d000 Time Stamp : 0x521606a1 Time String : 8/22/2013 8:40:01 PM Product Name : TAP-Windows Virtual Network Driver File Description : TAP-Windows Virtual Network Driver File Version : 9.9.2 9/9 built by: WinDDK Company : The OpenVPN Project Full Path : C:\Windows\system32\drivers\tap0901.sys ================================================== ================================================== Filename : rdpbus.sys Address In Stack : From Address : fffff880`043f2000 To Address : fffff300`043fd000 Size : 0xfffffa800000b000 Time Stamp : 0x4a5bceaa Time String : 7/14/2009 8:17:46 AM Product Name : Microsoft® Windows® Operating System File Description : Microsoft RDP Bus Device driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\rdpbus.sys ================================================== ================================================== Filename : mouclass.sys Address In Stack : From Address : fffff880`03f95000 To Address : fffff080`03fa4000 Size : 0xfffff8000000f000 Time Stamp : 0x4a5bc116 Time String : 7/14/2009 7:19:50 AM Product Name : Microsoft® Windows® Operating System File Description : Mouse Class Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\mouclass.sys ================================================== ================================================== Filename : VClone.sys Address In Stack : From Address : fffff880`03fa4000 To Address : fffff300`03fb2000 Size : 0xfffffa800000e000 Time Stamp : 0x51efec9f Time String : 7/24/2013 11:02:55 PM Product Name : Virtual CloneDrive File Description : Virtual CloneDrive storage miniport File Version : 5.4.7.0 Company : Elaborate Bytes AG Full Path : C:\Windows\system32\drivers\VClone.sys ================================================== ================================================== Filename : swenum.sys Address In Stack : From Address : fffff880`043fd000 To Address : fffff880`043fe480 Size : 0x00001480 Time Stamp : 0x4a5bca92 Time String : 7/14/2009 8:00:18 AM Product Name : Microsoft® Windows® Operating System File Description : Plug and Play Software Device Enumerator File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\swenum.sys ================================================== ================================================== Filename : ks.sys Address In Stack : From Address : fffff880`03fb2000 To Address : fffff300`03ff5000 Size : 0xfffffa8000043000 Time Stamp : 0x4ce7a3f3 Time String : 11/20/2010 6:33:23 PM Product Name : Microsoft® Windows® Operating System File Description : Kernel CSA Library File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ks.sys ================================================== ================================================== Filename : umbus.sys Address In Stack : From Address : fffff880`03e00000 To Address : fffff880`03e12000 Size : 0x00012000 Time Stamp : 0x4ce7a695 Time String : 11/20/2010 6:44:37 PM Product Name : Microsoft® Windows® Operating System File Description : User-Mode Bus Enumerator File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\umbus.sys ================================================== ================================================== Filename : nvvad64v.sys Address In Stack : From Address : fffff880`03e12000 To Address : d875f0d1`03e1f000 Size : 0xd875f8510000d000 Time Stamp : 0x5672aed6 Time String : 12/17/2015 8:47:18 PM Product Name : NVIDIA Virtual Audio Driver File Description : NVIDIA Virtual Audio Driver File Version : 1.2.34 built by: WinDDK Company : NVIDIA Corporation Full Path : C:\Windows\system32\drivers\nvvad64v.sys ================================================== ================================================== Filename : portcls.sys Address In Stack : From Address : fffff880`04424000 To Address : fffff300`04461000 Size : 0xfffffa800003d000 Time Stamp : 0x56671d76 Time String : 12/9/2015 2:12:06 AM Product Name : Microsoft® Windows® Operating System File Description : Port Class (Class Driver for Port/Miniport Devices) File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\portcls.sys ================================================== ================================================== Filename : drmk.sys Address In Stack : From Address : fffff880`03e1f000 To Address : fffff300`03e41000 Size : 0xfffffa8000022000 Time Stamp : 0x5667276c Time String : 12/9/2015 2:54:36 AM Product Name : Microsoft® Windows® Operating System File Description : Microsoft Trusted Audio Drivers File Version : 6.1.7601.19091 (win7sp1_gdr.151208-0600) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\drmk.sys ================================================== ================================================== Filename : ksthunk.sys Address In Stack : From Address : fffff880`03ff5000 To Address : fffff880`03ffa200 Size : 0x00005200 Time Stamp : 0x4a5bca93 Time String : 7/14/2009 8:00:19 AM Product Name : Microsoft® Windows® Operating System File Description : Kernel Streaming WOW Thunk Service File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ksthunk.sys ================================================== ================================================== Filename : usbhub.sys Address In Stack : From Address : fffff880`05679000 To Address : fffff300`056d3000 Size : 0xfffffa800005a000 Time Stamp : 0x52954dd0 Time String : 11/27/2013 9:41:36 AM Product Name : Microsoft® Windows® Operating System File Description : Default Hub Driver for USB File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\usbhub.sys ================================================== ================================================== Filename : NDProxy.SYS Address In Stack : From Address : fffff880`056d3000 To Address : 004df8c1`056e8000 Size : 0x004e004100015000 Time Stamp : 0x4ce7a864 Time String : 11/20/2010 6:52:20 PM Product Name : Microsoft® Windows® Operating System File Description : NDIS Proxy File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\NDProxy.SYS ================================================== ================================================== Filename : nvhda64v.sys Address In Stack : From Address : fffff880`056e8000 To Address : fffff100`0571c000 Size : 0xfffff88000034000 Time Stamp : 0x55ffd171 Time String : 9/21/2015 5:44:17 PM Product Name : NVIDIA HDMI Audio Driver File Description : NVIDIA HDMI Audio Driver File Version : 1.3.34.4 Company : NVIDIA Corporation Full Path : C:\Windows\system32\drivers\nvhda64v.sys ================================================== ================================================== Filename : iusb3hub.sys Address In Stack : From Address : fffff880`0571c000 To Address : fffff880`05779000 Size : 0x0005d000 Time Stamp : 0x52386ac2 Time String : 9/17/2013 10:44:18 PM Product Name : USB 3.0 Device Driver File Description : Intel(R) USB 3.0 Hub Driver File Version : 1.0.10.255 (iusb3drv.20130917-0742) Company : Intel Corporation Full Path : C:\Windows\system32\drivers\iusb3hub.sys ================================================== ================================================== Filename : RTKVHD64.sys Address In Stack : From Address : fffff880`06492000 To Address : fffff300`06915000 Size : 0xfffffa8000483000 Time Stamp : 0x5582a131 Time String : 6/18/2015 6:45:05 PM Product Name : Realtek(r) High Definition Audio Function Driver File Description : Realtek(r) High Definition Audio Function Driver File Version : 6.0.1.7541 built by: WinDDK Company : Realtek Semiconductor Corp. Full Path : C:\Windows\system32\drivers\RTKVHD64.sys ================================================== ================================================== Filename : win32k.sys Address In Stack : From Address : fffff960`00060000 To Address : fffff3e0`00385000 Size : 0xfffffa8000325000 Time Stamp : 0x56671a14 Time String : 12/9/2015 1:57:40 AM Product Name : Microsoft® Windows® Operating System File Description : Multi-User Win32 Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\win32k.sys ================================================== ================================================== Filename : Dxapi.sys Address In Stack : From Address : fffff880`06915000 To Address : fffff300`06921000 Size : 0xfffffa800000c000 Time Stamp : 0x4a5bc574 Time String : 7/14/2009 7:38:28 AM Product Name : Microsoft® Windows® Operating System File Description : DirectX API Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Dxapi.sys ================================================== ================================================== Filename : crashdmp.sys Address In Stack : From Address : fffff880`06921000 To Address : fffff880`0692f000 Size : 0x0000e000 Time Stamp : 0x4a5bcabd Time String : 7/14/2009 8:01:01 AM Product Name : Microsoft® Windows® Operating System File Description : Crash Dump Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\crashdmp.sys ================================================== ================================================== Filename : dump_storport.sys Address In Stack : From Address : fffff880`0692f000 To Address : fffff880`06939000 Size : 0x0000a000 Time Stamp : 0x52f04419 Time String : 2/4/2014 9:36:25 AM Product Name : File Description : File Version : Company : Full Path : ================================================== ================================================== Filename : dump_iaStorA.sys Address In Stack : From Address : fffff880`03800000 To Address : 65723cce`03acb000 Size : 0x6572444e002cb000 Time Stamp : 0x5042afe4 Time String : 9/2/2012 9:01:24 AM Product Name : File Description : File Version : Company : Full Path : ================================================== ================================================== Filename : dump_dumpfve.sys Address In Stack : From Address : fffff880`06939000 To Address : fffff880`0694c000 Size : 0x00013000 Time Stamp : 0x4a5bc18f Time String : 7/14/2009 7:21:51 AM Product Name : File Description : File Version : Company : Full Path : ================================================== ================================================== Filename : monitor.sys Address In Stack : From Address : fffff880`0694c000 To Address : 4d705bc1`0695a000 Size : 0x4d7063410000e000 Time Stamp : 0x4a5bc58c Time String : 7/14/2009 7:38:52 AM Product Name : Microsoft® Windows® Operating System File Description : Monitor Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\monitor.sys ================================================== ================================================== Filename : hidusb.sys Address In Stack : From Address : fffff880`0695a000 To Address : fffff880`06968000 Size : 0x0000e000 Time Stamp : 0x4ce7a665 Time String : 11/20/2010 6:43:49 PM Product Name : Microsoft® Windows® Operating System File Description : USB Miniport Driver for Input Devices File Version : 6.1.7601.17514 (win7sp1_rtm.101119-1850) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\hidusb.sys ================================================== ================================================== Filename : HIDCLASS.SYS Address In Stack : From Address : fffff880`06968000 To Address : fffff880`06981000 Size : 0x00019000 Time Stamp : 0x51d3a2f1 Time String : 7/3/2013 12:05:05 PM Product Name : Microsoft® Windows® Operating System File Description : Hid Class Library File Version : 6.1.7601.18199 (win7sp1_gdr.130702-1534) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\HIDCLASS.SYS ================================================== ================================================== Filename : HIDPARSE.SYS Address In Stack : From Address : fffff880`06981000 To Address : fffff880`06989080 Size : 0x00008080 Time Stamp : 0x51d3a2f0 Time String : 7/3/2013 12:05:04 PM Product Name : Microsoft® Windows® Operating System File Description : Hid Parsing Library File Version : 6.1.7601.18199 (win7sp1_gdr.130702-1534) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\HIDPARSE.SYS ================================================== ================================================== Filename : mouhid.sys Address In Stack : From Address : fffff880`0698a000 To Address : fffff880`06997000 Size : 0x0000d000 Time Stamp : 0x4a5bca94 Time String : 7/14/2009 8:00:20 AM Product Name : Microsoft® Windows® Operating System File Description : HID Mouse Filter Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\mouhid.sys ================================================== ================================================== Filename : TSDDD.dll Address In Stack : From Address : fffff960`005c0000 To Address : fffff960`005ca000 Size : 0x0000a000 Time Stamp : 0x4a5bce62 Time String : 7/14/2009 8:16:34 AM Product Name : Microsoft® Windows® Operating System File Description : Framebuffer Display Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\TSDDD.dll ================================================== ================================================== Filename : cdd.dll Address In Stack : From Address : fffff960`00650000 To Address : fffff960`00677000 Size : 0x00027000 Time Stamp : 0x4d4a90a5 Time String : 2/3/2011 7:25:25 PM Product Name : Microsoft® Windows® Operating System File Description : Canonical Display Driver File Version : 6.1.7601.17554 (win7sp1_gdr.110202-1504) Company : Microsoft Corporation Full Path : C:\Windows\system32\cdd.dll ================================================== ================================================== Filename : luafv.sys Address In Stack : From Address : fffff880`06997000 To Address : fffff880`069ba000 Size : 0x00023000 Time Stamp : 0x4a5bc295 Time String : 7/14/2009 7:26:13 AM Product Name : Microsoft® Windows® Operating System File Description : LUA File Virtualization Filter Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\luafv.sys ================================================== ================================================== Filename : aswMonFlt.sys Address In Stack : From Address : fffff880`069ba000 To Address : fffff880`069e0000 Size : 0x00026000 Time Stamp : 0x56b0c395 Time String : 2/2/2016 10:56:21 PM Product Name : Avast Antivirus File Description : avast! File System Minifilter for Windows 2003/Vista File Version : 11.1.2253.1653 Company : AVAST Software Full Path : C:\Windows\system32\drivers\aswMonFlt.sys ================================================== ================================================== Filename : aswStm.sys Address In Stack : From Address : fffff880`06400000 To Address : fffff880`06428000 Size : 0x00028000 Time Stamp : 0x56b0ca9b Time String : 2/2/2016 11:26:19 PM Product Name : Avast Antivirus File Description : Stream Filter File Version : 11.1.2253.1653 Company : AVAST Software Full Path : C:\Windows\system32\drivers\aswStm.sys ================================================== ================================================== Filename : lltdio.sys Address In Stack : From Address : fffff880`06428000 To Address : fffff300`0643d000 Size : 0xfffffa8000015000 Time Stamp : 0x4a5bcc92 Time String : 7/14/2009 8:08:50 AM Product Name : Microsoft® Windows® Operating System File Description : Link-Layer Topology Mapper I/O Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\lltdio.sys ================================================== ================================================== Filename : rspndr.sys Address In Stack : From Address : fffff880`0643d000 To Address : 644d65f3`06455000 Size : 0x644d6d7300018000 Time Stamp : 0x4a5bcc92 Time String : 7/14/2009 8:08:50 AM Product Name : Microsoft® Windows® Operating System File Description : Link-Layer Topology Responder Driver for NDIS 6 File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\rspndr.sys ================================================== ================================================== Filename : HTTP.sys Address In Stack : From Address : fffff880`0aa17000 To Address : fffff880`0aae0000 Size : 0x000c9000 Time Stamp : 0x54ed3ee3 Time String : 2/25/2015 11:17:55 AM Product Name : Microsoft® Windows® Operating System File Description : HTTP Protocol Stack File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\HTTP.sys ================================================== ================================================== Filename : bowser.sys Address In Stack : From Address : fffff880`0aae0000 To Address : fffff880`0aafe000 Size : 0x0001e000 Time Stamp : 0x4d649328 Time String : 2/23/2011 12:55:04 PM Product Name : Microsoft® Windows® Operating System File Description : NT Lan Manager Datagram Receiver Driver File Version : 6.1.7601.17565 (win7sp1_gdr.110222-1630) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\bowser.sys ================================================== ================================================== Filename : mpsdrv.sys Address In Stack : From Address : fffff880`0aafe000 To Address : fffff880`0ab16000 Size : 0x00018000 Time Stamp : 0x4a5bcc79 Time String : 7/14/2009 8:08:25 AM Product Name : Microsoft® Windows® Operating System File Description : Microsoft Protection Service Driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\mpsdrv.sys ================================================== ================================================== Filename : mrxsmb.sys Address In Stack : From Address : fffff880`0ab16000 To Address : fffff880`0ab43000 Size : 0x0002d000 Time Stamp : 0x568417ca Time String : 12/31/2015 1:43:38 AM Product Name : Microsoft® Windows® Operating System File Description : Windows NT SMB Minirdr File Version : 6.1.7601.19110 (win7sp1_gdr.151230-0600) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\mrxsmb.sys ================================================== ================================================== Filename : mrxsmb10.sys Address In Stack : From Address : fffff880`0ab43000 To Address : fffff880`0ab91000 Size : 0x0004e000 Time Stamp : 0x56841798 Time String : 12/31/2015 1:42:48 AM Product Name : Microsoft® Windows® Operating System File Description : Longhorn SMB Downlevel SubRdr File Version : 6.1.7601.19110 (win7sp1_gdr.151230-0600) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\mrxsmb10.sys ================================================== ================================================== Filename : mrxsmb20.sys Address In Stack : From Address : fffff880`0ab91000 To Address : fffff300`0abb5000 Size : 0xfffffa8000024000 Time Stamp : 0x56841791 Time String : 12/31/2015 1:42:41 AM Product Name : Microsoft® Windows® Operating System File Description : Longhorn SMB 2.0 Redirector File Version : 6.1.7601.19110 (win7sp1_gdr.151230-0600) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\mrxsmb20.sys ================================================== ================================================== Filename : aswHwid.sys Address In Stack : From Address : fffff880`0abb5000 To Address : fffff880`0abbf000 Size : 0x0000a000 Time Stamp : 0x56b0c437 Time String : 2/2/2016 10:59:03 PM Product Name : Avast Antivirus File Description : avast! HWID File Version : 11.1.2253.1653 Company : AVAST Software Full Path : C:\Windows\system32\drivers\aswHwid.sys ================================================== ================================================== Filename : HD-Hypervisor-amd64.sys Address In Stack : From Address : fffff880`0abbf000 To Address : fffff880`0abe9000 Size : 0x0002a000 Time Stamp : 0x56165dc8 Time String : 10/8/2015 8:12:56 PM Product Name : File Description : File Version : Company : Full Path : ================================================== ================================================== Filename : npf.sys Address In Stack : From Address : fffff880`0abe9000 To Address : fffff300`0abf5000 Size : 0xfffffa800000c000 Time Stamp : 0x4c24de72 Time String : 6/26/2010 12:50:58 AM Product Name : WinPcap File Description : npf.sys (NT5/6 AMD64) Kernel Driver File Version : 4.1.0.2001 Company : CACE Technologies, Inc. Full Path : C:\Windows\system32\drivers\npf.sys ================================================== ================================================== Filename : peauth.sys Address In Stack : From Address : fffff880`0b4a1000 To Address : fffff880`0b54b000 Size : 0x000aa000 Time Stamp : 0x54d03e30 Time String : 2/3/2015 11:19:12 AM Product Name : Microsoft® Windows® Operating System File Description : Protected Environment Authentication and Authorization Export Driver File Version : 6.1.7601.18741 (win7sp1_gdr.150202-1526) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\peauth.sys ================================================== ================================================== Filename : srvnet.sys Address In Stack : From Address : fffff880`0b54b000 To Address : fffff300`0b57c000 Size : 0xfffffa8000031000 Time Stamp : 0x4dba2aff Time String : 4/29/2011 11:05:35 AM Product Name : Microsoft® Windows® Operating System File Description : Server Network driver File Version : 6.1.7601.17608 (win7sp1_gdr.110428-1525) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\srvnet.sys ================================================== ================================================== Filename : tcpipreg.sys Address In Stack : From Address : fffff880`0b57c000 To Address : fffff300`0b58e000 Size : 0xfffffa8000012000 Time Stamp : 0x506c62be Time String : 10/4/2012 12:07:26 AM Product Name : Microsoft® Windows® Operating System File Description : TCP/IP Registry Compatibility Driver File Version : 6.1.7601.17964 (win7sp1_gdr.121003-0333) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\tcpipreg.sys ================================================== ================================================== Filename : srv2.sys Address In Stack : From Address : fffff880`0b58e000 To Address : fffff880`0b5f7000 Size : 0x00069000 Time Stamp : 0x4dba2b0a Time String : 4/29/2011 11:05:46 AM Product Name : Microsoft® Windows® Operating System File Description : Smb 2.0 Server driver File Version : 6.1.7601.17608 (win7sp1_gdr.110428-1525) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\srv2.sys ================================================== ================================================== Filename : srv.sys Address In Stack : From Address : fffff880`0b400000 To Address : fffff880`0b498000 Size : 0x00098000 Time Stamp : 0x4dba2b1e Time String : 4/29/2011 11:06:06 AM Product Name : Microsoft® Windows® Operating System File Description : Server driver File Version : 6.1.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\srv.sys ================================================== ================================================== Filename : TuneUpUtilitiesDriver64.sys Address In Stack : From Address : fffff880`0b498000 To Address : fffff880`0b4a0000 Size : 0x00008000 Time Stamp : 0x55508d6f Time String : 5/11/2015 7:07:27 PM Product Name : File Description : File Version : Company : Full Path : ================================================== ================================================== Filename : NvStreamKms.sys Address In Stack : From Address : fffff880`0abf5000 To Address : fffff300`0abff000 Size : 0xfffffa800000a000 Time Stamp : 0x5679b846 Time String : 12/23/2015 4:53:26 AM Product Name : File Description : File Version : Company : Full Path : ================================================== ================================================== Filename : ALSysIO64.sys Address In Stack : From Address : fffff880`0aa00000 To Address : fffff880`0aa0a000 Size : 0x0000a000 Time Stamp : 0x513668aa Time String : 3/6/2013 5:50:34 AM Product Name : File Description : File Version : Company : Full Path : ================================================== ================================================== Filename : gkernel.sys Address In Stack : From Address : fffff880`0b5f7000 To Address : fffff880`0b600000 Size : 0x00009000 Time Stamp : 0x569db091 Time String : 1/19/2016 11:42:09 AM Product Name : File Description : File Version : Company : Full Path : ================================================== ================================================== Filename : tmpBD2.tmp Address In Stack : From Address : fffff880`0aa0a000 To Address : fffff300`0aa11000 Size : 0xfffffa8000007000 Time Stamp : 0x488b26c1 Time String : 7/26/2008 9:29:37 PM Product Name : File Description : File Version : Company : Full Path : ==================================================