================================================== Filename : ecache.sys Address In Stack : ecache.sys+e8e660 From Address : 0x88967000 To Address : 0x8898e000 Size : 0x00027000 Time Stamp : 0x49e01f2c Time String : 11/4/2009 12:40:12 PM Product Name : Microsoft® Windows® Operating System File Description : Special Memory Device Cache File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ecache.sys ================================================== ================================================== Filename : ntkrnlpa.exe Address In Stack : ntkrnlpa.exe+ee7d5 From Address : 0x83245000 To Address : 0x835ff000 Size : 0x003ba000 Time Stamp : 0x4f79a9be Time String : 2/4/2012 9:29:34 PM Product Name : Microsoft® Windows® Operating System File Description : NT Kernel & System File Version : 6.0.6002.18607 (vistasp2_gdr.120402-0336) Company : Microsoft Corporation Full Path : C:\Windows\system32\ntkrnlpa.exe ================================================== ================================================== Filename : hal.dll Address In Stack : From Address : 0x83212000 To Address : 0x83245000 Size : 0x00033000 Time Stamp : 0x49e018d9 Time String : 11/4/2009 12:13:13 PM Product Name : Microsoft® Windows® Operating System File Description : Hardware Abstraction Layer DLL File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\hal.dll ================================================== ================================================== Filename : kdcom.dll Address In Stack : From Address : 0x8060e000 To Address : 0x80615000 Size : 0x00007000 Time Stamp : 0x49e037d9 Time String : 11/4/2009 2:25:29 PM Product Name : Microsoft® Windows® Operating System File Description : Kernel Debugger HW Extension DLL File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\kdcom.dll ================================================== ================================================== Filename : PSHED.dll Address In Stack : From Address : 0x80615000 To Address : 0x80626000 Size : 0x00011000 Time Stamp : 0x49e037dc Time String : 11/4/2009 2:25:32 PM Product Name : Microsoft® Windows® Operating System File Description : Platform Specific Hardware Error Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\PSHED.dll ================================================== ================================================== Filename : BOOTVID.dll Address In Stack : From Address : 0x80626000 To Address : 0x8062e000 Size : 0x00008000 Time Stamp : 0x4791a653 Time String : 19/1/2008 3:27:15 PM Product Name : Microsoft® Windows® Operating System File Description : VGA Boot Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\BOOTVID.dll ================================================== ================================================== Filename : CLFS.SYS Address In Stack : From Address : 0x8062e000 To Address : 0x8066f000 Size : 0x00041000 Time Stamp : 0x49e018ff Time String : 11/4/2009 12:13:51 PM Product Name : Microsoft® Windows® Operating System File Description : Common Log File System Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\CLFS.SYS ================================================== ================================================== Filename : CI.dll Address In Stack : From Address : 0x8066f000 To Address : 0x8074f000 Size : 0x000e0000 Time Stamp : 0x49e037d2 Time String : 11/4/2009 2:25:22 PM Product Name : Microsoft® Windows® Operating System File Description : Code Integrity Module File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\CI.dll ================================================== ================================================== Filename : Wdf01000.sys Address In Stack : From Address : 0x8074f000 To Address : 0x807c0000 Size : 0x00071000 Time Stamp : 0x4a5bbf28 Time String : 14/7/2009 7:11:36 AM Product Name : Microsoft® Windows® Operating System File Description : Kernel Mode Driver Framework Runtime File Version : 1.9.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Wdf01000.sys ================================================== ================================================== Filename : WDFLDR.SYS Address In Stack : From Address : 0x807c0000 To Address : 0x807ce000 Size : 0x0000e000 Time Stamp : 0x4a5bbf1d Time String : 14/7/2009 7:11:25 AM Product Name : Microsoft® Windows® Operating System File Description : Kernel Mode Driver Framework Loader File Version : 1.9.7600.16385 (win7_rtm.090713-1255) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\WDFLDR.SYS ================================================== ================================================== Filename : acpi.sys Address In Stack : From Address : 0x88209000 To Address : 0x8824f000 Size : 0x00046000 Time Stamp : 0x49e01a37 Time String : 11/4/2009 12:19:03 PM Product Name : Microsoft® Windows® Operating System File Description : ACPI Driver for NT File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\acpi.sys ================================================== ================================================== Filename : WMILIB.SYS Address In Stack : From Address : 0x8824f000 To Address : 0x88258000 Size : 0x00009000 Time Stamp : 0x47919044 Time String : 19/1/2008 1:53:08 PM Product Name : Microsoft® Windows® Operating System File Description : WMILIB WMI support library Dll File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\WMILIB.SYS ================================================== ================================================== Filename : msisadrv.sys Address In Stack : From Address : 0x88258000 To Address : 0x88260000 Size : 0x00008000 Time Stamp : 0x47918b83 Time String : 19/1/2008 1:32:51 PM Product Name : Microsoft® Windows® Operating System File Description : ISA Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\msisadrv.sys ================================================== ================================================== Filename : pci.sys Address In Stack : From Address : 0x88260000 To Address : 0x88287000 Size : 0x00027000 Time Stamp : 0x49e01a44 Time String : 11/4/2009 12:19:16 PM Product Name : Microsoft® Windows® Operating System File Description : NT Plug and Play PCI Enumerator File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\pci.sys ================================================== ================================================== Filename : partmgr.sys Address In Stack : From Address : 0x88287000 To Address : 0x88297000 Size : 0x00010000 Time Stamp : 0x4f68bbfc Time String : 21/3/2012 1:18:52 AM Product Name : Microsoft® Windows® Operating System File Description : Partition Management Driver File Version : 6.0.6002.18600 (vistasp2_gdr.120320-0702) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\partmgr.sys ================================================== ================================================== Filename : compbatt.sys Address In Stack : From Address : 0x88297000 To Address : 0x88299900 Size : 0x00002900 Time Stamp : 0x47918b7f Time String : 19/1/2008 1:32:47 PM Product Name : Microsoft® Windows® Operating System File Description : Composite Battery Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\compbatt.sys ================================================== ================================================== Filename : BATTC.SYS Address In Stack : From Address : 0x8829a000 To Address : 0x882a4000 Size : 0x0000a000 Time Stamp : 0x47918b7d Time String : 19/1/2008 1:32:45 PM Product Name : Microsoft® Windows® Operating System File Description : Battery Class Driver File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\BATTC.SYS ================================================== ================================================== Filename : volmgr.sys Address In Stack : From Address : 0x882a4000 To Address : 0x882b3000 Size : 0x0000f000 Time Stamp : 0x47918f7f Time String : 19/1/2008 1:49:51 PM Product Name : Microsoft® Windows® Operating System File Description : Volume Manager Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\volmgr.sys ================================================== ================================================== Filename : volmgrx.sys Address In Stack : From Address : 0x882b3000 To Address : 0x882fd000 Size : 0x0004a000 Time Stamp : 0x49e01efd Time String : 11/4/2009 12:39:25 PM Product Name : Microsoft® Windows® Operating System File Description : Volume Manager Extension Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\volmgrx.sys ================================================== ================================================== Filename : pciide.sys Address In Stack : From Address : 0x882fd000 To Address : 0x88304000 Size : 0x00007000 Time Stamp : 0x49e01eee Time String : 11/4/2009 12:39:10 PM Product Name : Microsoft® Windows® Operating System File Description : Generic PCI IDE Bus Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\pciide.sys ================================================== ================================================== Filename : PCIIDEX.SYS Address In Stack : From Address : 0x88304000 To Address : 0x88312000 Size : 0x0000e000 Time Stamp : 0x49e01eed Time String : 11/4/2009 12:39:09 PM Product Name : Microsoft® Windows® Operating System File Description : PCI IDE Bus Driver Extension File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\PCIIDEX.SYS ================================================== ================================================== Filename : mountmgr.sys Address In Stack : From Address : 0x88312000 To Address : 0x88322000 Size : 0x00010000 Time Stamp : 0x47918f59 Time String : 19/1/2008 1:49:13 PM Product Name : Microsoft® Windows® Operating System File Description : Mount Point Manager File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\mountmgr.sys ================================================== ================================================== Filename : atapi.sys Address In Stack : From Address : 0x88322000 To Address : 0x8832a000 Size : 0x00008000 Time Stamp : 0x49e01eed Time String : 11/4/2009 12:39:09 PM Product Name : Microsoft® Windows® Operating System File Description : ATAPI IDE Miniport Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\atapi.sys ================================================== ================================================== Filename : ataport.SYS Address In Stack : From Address : 0x8832a000 To Address : 0x88348000 Size : 0x0001e000 Time Stamp : 0x49e01eee Time String : 11/4/2009 12:39:10 PM Product Name : Microsoft® Windows® Operating System File Description : ATAPI Driver Extension File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ataport.SYS ================================================== ================================================== Filename : msahci.sys Address In Stack : From Address : 0x88348000 To Address : 0x88352000 Size : 0x0000a000 Time Stamp : 0x49e01eef Time String : 11/4/2009 12:39:11 PM Product Name : Microsoft® Windows® Operating System File Description : MS AHCI 1.0 Standard Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\msahci.sys ================================================== ================================================== Filename : fltmgr.sys Address In Stack : From Address : 0x88352000 To Address : 0x88384000 Size : 0x00032000 Time Stamp : 0x49e01907 Time String : 11/4/2009 12:13:59 PM Product Name : Microsoft® Windows® Operating System File Description : Microsoft Filesystem Filter Manager File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\fltmgr.sys ================================================== ================================================== Filename : fileinfo.sys Address In Stack : From Address : 0x88384000 To Address : 0x88394000 Size : 0x00010000 Time Stamp : 0x47918be3 Time String : 19/1/2008 1:34:27 PM Product Name : Microsoft® Windows® Operating System File Description : FileInfo Filter Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\fileinfo.sys ================================================== ================================================== Filename : ksecdd.sys Address In Stack : From Address : 0x8840c000 To Address : 0x8847e000 Size : 0x00072000 Time Stamp : 0x4fc93a77 Time String : 2/6/2012 5:56:07 AM Product Name : Microsoft® Windows® Operating System File Description : Kernel Security Support Provider Interface File Version : 6.0.6002.18643 (vistasp2_gdr.120601-1144) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ksecdd.sys ================================================== ================================================== Filename : ndis.sys Address In Stack : From Address : 0x8847e000 To Address : 0x88589000 Size : 0x0010b000 Time Stamp : 0x49e02080 Time String : 11/4/2009 12:45:52 PM Product Name : Microsoft® Windows® Operating System File Description : NDIS 6.0 wrapper driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ndis.sys ================================================== ================================================== Filename : msrpc.sys Address In Stack : From Address : 0x88589000 To Address : 0x885b4000 Size : 0x0002b000 Time Stamp : 0x49e01e8c Time String : 11/4/2009 12:37:32 PM Product Name : Microsoft® Windows® Operating System File Description : Kernel Remote Procedure Call Provider File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\msrpc.sys ================================================== ================================================== Filename : NETIO.SYS Address In Stack : From Address : 0x885b4000 To Address : 0x885ef000 Size : 0x0003b000 Time Stamp : 0x49e0209d Time String : 11/4/2009 12:46:21 PM Product Name : Microsoft® Windows® Operating System File Description : Network I/O Subsystem File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\NETIO.SYS ================================================== ================================================== Filename : tcpip.sys Address In Stack : From Address : 0x8860e000 To Address : 0x886f8000 Size : 0x000ea000 Time Stamp : 0x4f746a14 Time String : 29/3/2012 9:56:36 PM Product Name : Microsoft® Windows® Operating System File Description : TCP/IP Driver File Version : 6.0.6002.18604 (vistasp2_gdr.120329-0337) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\tcpip.sys ================================================== ================================================== Filename : fwpkclnt.sys Address In Stack : From Address : 0x886f8000 To Address : 0x88713000 Size : 0x0001b000 Time Stamp : 0x49e02076 Time String : 11/4/2009 12:45:42 PM Product Name : Microsoft® Windows® Operating System File Description : FWP/IPsec Kernel-Mode API File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\fwpkclnt.sys ================================================== ================================================== Filename : Ntfs.sys Address In Stack : From Address : 0x88801000 To Address : 0x88911000 Size : 0x00110000 Time Stamp : 0x49e0192a Time String : 11/4/2009 12:14:34 PM Product Name : Microsoft® Windows® Operating System File Description : NT File System Driver File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Ntfs.sys ================================================== ================================================== Filename : volsnap.sys Address In Stack : From Address : 0x88911000 To Address : 0x8894a000 Size : 0x00039000 Time Stamp : 0x49e01f09 Time String : 11/4/2009 12:39:37 PM Product Name : Microsoft® Windows® Operating System File Description : Volume Shadow Copy Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\volsnap.sys ================================================== ================================================== Filename : spldr.sys Address In Stack : From Address : 0x8894a000 To Address : 0x88952000 Size : 0x00008000 Time Stamp : 0x467b17dd Time String : 22/6/2007 8:29:17 AM Product Name : Microsoft® Windows® Operating System File Description : loader for security processor File Version : 6.0.6001.16606 (lh_security(sepbld-s).070621-1657) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\spldr.sys ================================================== ================================================== Filename : speedfan.sys Address In Stack : From Address : 0x88952000 To Address : 0x88956100 Size : 0x00004100 Time Stamp : 0x4d83838d Time String : 19/3/2011 12:08:45 AM Product Name : SpeedFan File Description : SpeedFan x32 Driver File Version : X2.01.07 Company : Almico Software Full Path : C:\Windows\system32\speedfan.sys ================================================== ================================================== Filename : mup.sys Address In Stack : From Address : 0x88957000 To Address : 0x88966000 Size : 0x0000f000 Time Stamp : 0x49e01914 Time String : 11/4/2009 12:14:12 PM Product Name : Microsoft® Windows® Operating System File Description : Multiple UNC Provider driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\mup.sys ================================================== ================================================== Filename : giveio.sys Address In Stack : From Address : 0x88966000 To Address : 0x88966680 Size : 0x00000680 Time Stamp : 0x316334f5 Time String : 4/4/1996 10:33:25 AM Product Name : File Description : File Version : Company : Full Path : C:\Windows\system32\giveio.sys ================================================== ================================================== Filename : fvevol.sys Address In Stack : From Address : 0x8898e000 To Address : 0x889b2000 Size : 0x00024000 Time Stamp : 0x49e018cf Time String : 11/4/2009 12:13:03 PM Product Name : Microsoft® Windows® Operating System File Description : BitLocker Drive Encryption Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\fvevol.sys ================================================== ================================================== Filename : disk.sys Address In Stack : From Address : 0x889b2000 To Address : 0x889c3000 Size : 0x00011000 Time Stamp : 0x49e01ef2 Time String : 11/4/2009 12:39:14 PM Product Name : Microsoft® Windows® Operating System File Description : PnP Disk Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\disk.sys ================================================== ================================================== Filename : CLASSPNP.SYS Address In Stack : From Address : 0x889c3000 To Address : 0x889e4000 Size : 0x00021000 Time Stamp : 0x49e01ee9 Time String : 11/4/2009 12:39:05 PM Product Name : Microsoft® Windows® Operating System File Description : SCSI Class System Dll File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\CLASSPNP.SYS ================================================== ================================================== Filename : AtiPcie.sys Address In Stack : From Address : 0x889e4000 To Address : 0x889ec000 Size : 0x00008000 Time Stamp : 0x4546430e Time String : 31/10/2006 2:23:10 AM Product Name : ATI PCIE Driver File Description : ATI PCIE Driver for ATI PCIE chipset File Version : 1.00.0000.2 built by: WinDDK Company : ATI Technologies Inc. Full Path : C:\Windows\system32\drivers\AtiPcie.sys ================================================== ================================================== Filename : crcdisk.sys Address In Stack : From Address : 0x889ec000 To Address : 0x889f5000 Size : 0x00009000 Time Stamp : 0x47918fa5 Time String : 19/1/2008 1:50:29 PM Product Name : Microsoft® Windows® Operating System File Description : Disk Block Verification Filter Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\crcdisk.sys ================================================== ================================================== Filename : tunnel.sys Address In Stack : From Address : 0x8873b000 To Address : 0x88746000 Size : 0x0000b000 Time Stamp : 0x4b7d244d Time String : 18/2/2010 7:28:13 PM Product Name : Microsoft® Windows® Operating System File Description : Microsoft Tunnel Interface Driver File Version : 6.0.6002.18209 (vistasp2_gdr.100218-0019) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\tunnel.sys ================================================== ================================================== Filename : tunmp.sys Address In Stack : From Address : 0x88746000 To Address : 0x8874f000 Size : 0x00009000 Time Stamp : 0x479190dc Time String : 19/1/2008 1:55:40 PM Product Name : Microsoft® Windows® Operating System File Description : Microsoft Tunnel Interface Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\tunmp.sys ================================================== ================================================== Filename : processr.sys Address In Stack : From Address : 0x8874f000 To Address : 0x8875e000 Size : 0x0000f000 Time Stamp : 0x47918a38 Time String : 19/1/2008 1:27:20 PM Product Name : Microsoft® Windows® Operating System File Description : Processor Device Driver File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\processr.sys ================================================== ================================================== Filename : atikmpag.sys Address In Stack : From Address : 0x8875e000 To Address : 0x887a0000 Size : 0x00042000 Time Stamp : 0x4e68f2c5 Time String : 9/9/2011 12:52:21 AM Product Name : AMD driver File Description : AMD multi-vendor Miniport Driver File Version : 8.14.01.6229 Company : Advanced Micro Devices, Inc. Full Path : C:\Windows\system32\drivers\atikmpag.sys ================================================== ================================================== Filename : atikmdag.sys Address In Stack : From Address : 0x9c807000 To Address : 0x9d08b000 Size : 0x00884000 Time Stamp : 0x4e68f95c Time String : 9/9/2011 1:20:28 AM Product Name : ATI Radeon Family File Description : ATI Radeon Kernel Mode Driver File Version : 8.01.01.1186 Company : ATI Technologies Inc. Full Path : C:\Windows\system32\drivers\atikmdag.sys ================================================== ================================================== Filename : dxgkrnl.sys Address In Stack : From Address : 0x9d08b000 To Address : 0x9d12b000 Size : 0x000a0000 Time Stamp : 0x4d383dc1 Time String : 20/1/2011 9:50:57 PM Product Name : Microsoft® Windows® Operating System File Description : DirectX Graphics Kernel File Version : 7.0.6002.18107 (vistasp2_gdr_win7ip_dgt(wmbla).090924-1550) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\dxgkrnl.sys ================================================== ================================================== Filename : watchdog.sys Address In Stack : From Address : 0x9d12b000 To Address : 0x9d137000 Size : 0x0000c000 Time Stamp : 0x49e01b13 Time String : 11/4/2009 12:22:43 PM Product Name : Microsoft® Windows® Operating System File Description : Watchdog Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\watchdog.sys ================================================== ================================================== Filename : HDAudBus.sys Address In Stack : From Address : 0x9d137000 To Address : 0x9d1c4000 Size : 0x0008d000 Time Stamp : 0x49e01fc1 Time String : 11/4/2009 12:42:41 PM Product Name : Microsoft® Windows® Operating System File Description : High Definition Audio Bus Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\HDAudBus.sys ================================================== ================================================== Filename : jmcr.sys Address In Stack : From Address : 0x9d1c4000 To Address : 0x9d1e2000 Size : 0x0001e000 Time Stamp : 0x4a35e509 Time String : 15/6/2009 2:07:05 PM Product Name : JMB38X Flash Media Controller Driver File Description : JMicron JMB38X Flash Media Controller Driver File Version : 1.0.30.4 built by: WinDDK Company : JMicron Technology Corporation Full Path : C:\Windows\system32\drivers\jmcr.sys ================================================== ================================================== Filename : SCSIPORT.SYS Address In Stack : From Address : 0x887a0000 To Address : 0x887c6000 Size : 0x00026000 Time Stamp : 0x47918f78 Time String : 19/1/2008 1:49:44 PM Product Name : Microsoft® Windows® Operating System File Description : SCSI Port Driver File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\SCSIPORT.SYS ================================================== ================================================== Filename : bcmwl6.sys Address In Stack : From Address : 0x9d209000 To Address : 0x9d351000 Size : 0x00148000 Time Stamp : 0x48ffc834 Time String : 23/10/2008 8:41:24 AM Product Name : Broadcom 802.11 Network Adapter wireless driver File Description : Broadcom 802.11 Network Adapter wireless driver File Version : 5.10.38.26 Company : Broadcom Corporation Full Path : C:\Windows\system32\drivers\bcmwl6.sys ================================================== ================================================== Filename : Rtlh86.sys Address In Stack : From Address : 0x9d351000 To Address : 0x9d372000 Size : 0x00021000 Time Stamp : 0x48040d52 Time String : 15/4/2008 10:05:06 AM Product Name : Realtek 8101E/8168/8169 PCI/PCIe Adapters File Description : Realtek 8101E/8168/8169 NDIS6 32-bit Driver File Version : 6.205.0403.2008 built by: WinDDK Company : Realtek Corporation Full Path : C:\Windows\system32\drivers\Rtlh86.sys ================================================== ================================================== Filename : cdrom.sys Address In Stack : From Address : 0x9d372000 To Address : 0x9d38a000 Size : 0x00018000 Time Stamp : 0x49e01ef5 Time String : 11/4/2009 12:39:17 PM Product Name : Microsoft® Windows® Operating System File Description : SCSI CD-ROM Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\cdrom.sys ================================================== ================================================== Filename : usbohci.sys Address In Stack : From Address : 0x9d38a000 To Address : 0x9d394000 Size : 0x0000a000 Time Stamp : 0x49e01fcc Time String : 11/4/2009 12:42:52 PM Product Name : Microsoft® Windows® Operating System File Description : OHCI USB Miniport Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\usbohci.sys ================================================== ================================================== Filename : USBPORT.SYS Address In Stack : From Address : 0x9d394000 To Address : 0x9d3d2000 Size : 0x0003e000 Time Stamp : 0x49e01fcf Time String : 11/4/2009 12:42:55 PM Product Name : Microsoft® Windows® Operating System File Description : USB 1.1 & 2.0 Port Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\USBPORT.SYS ================================================== ================================================== Filename : usbehci.sys Address In Stack : From Address : 0x9d3d2000 To Address : 0x9d3e1000 Size : 0x0000f000 Time Stamp : 0x49e01fcc Time String : 11/4/2009 12:42:52 PM Product Name : Microsoft® Windows® Operating System File Description : EHCI eUSB Miniport Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\usbehci.sys ================================================== ================================================== Filename : i8042prt.sys Address In Stack : From Address : 0x9d3e1000 To Address : 0x9d3f4000 Size : 0x00013000 Time Stamp : 0x47918f5d Time String : 19/1/2008 1:49:17 PM Product Name : Microsoft® Windows® Operating System File Description : i8042 Port Driver File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\i8042prt.sys ================================================== ================================================== Filename : kbdclass.sys Address In Stack : From Address : 0x9d3f4000 To Address : 0x9d3ff000 Size : 0x0000b000 Time Stamp : 0x47918f5a Time String : 19/1/2008 1:49:14 PM Product Name : Microsoft® Windows® Operating System File Description : Keyboard Class Driver File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\kbdclass.sys ================================================== ================================================== Filename : Apfiltr.sys Address In Stack : From Address : 0x887c6000 To Address : 0x887f2000 Size : 0x0002c000 Time Stamp : 0x47a1d7c7 Time String : 31/1/2008 10:14:31 PM Product Name : Alps Touch Pad Driver File Description : Alps Touch Pad Driver File Version : 5.7.0.102 built by: WinDDK Company : Alps Electric Co., Ltd. Full Path : C:\Windows\system32\drivers\Apfiltr.sys ================================================== ================================================== Filename : mouclass.sys Address In Stack : From Address : 0x9d1e2000 To Address : 0x9d1ed000 Size : 0x0000b000 Time Stamp : 0x47918f5a Time String : 19/1/2008 1:49:14 PM Product Name : Microsoft® Windows® Operating System File Description : Mouse Class Driver File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\mouclass.sys ================================================== ================================================== Filename : CmBatt.sys Address In Stack : From Address : 0x9d200000 To Address : 0x9d203780 Size : 0x00003780 Time Stamp : 0x47918b7f Time String : 19/1/2008 1:32:47 PM Product Name : Microsoft® Windows® Operating System File Description : Control Method Battery Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\CmBatt.sys ================================================== ================================================== Filename : enecir.sys Address In Stack : From Address : 0x88394000 To Address : 0x883ac000 Size : 0x00018000 Time Stamp : 0x479820bf Time String : 24/1/2008 1:23:11 PM Product Name : ENE Consumer IR Driver for eHome File Description : ENE CIR Driver for eHome File Version : 2.4.0.0 Company : ENE TECHNOLOGY INC. Full Path : C:\Windows\system32\drivers\enecir.sys ================================================== ================================================== Filename : wmiacpi.sys Address In Stack : From Address : 0x9d1ed000 To Address : 0x9d1f6000 Size : 0x00009000 Time Stamp : 0x47918b7f Time String : 19/1/2008 1:32:47 PM Product Name : Microsoft® Windows® Operating System File Description : Windows Management Interface for ACPI File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\wmiacpi.sys ================================================== ================================================== Filename : msiscsi.sys Address In Stack : From Address : 0x883ac000 To Address : 0x883db000 Size : 0x0002f000 Time Stamp : 0x49e01f27 Time String : 11/4/2009 12:40:07 PM Product Name : Microsoft® Windows® Operating System File Description : Microsoft iSCSI Initiator Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\msiscsi.sys ================================================== ================================================== Filename : storport.sys Address In Stack : From Address : 0x9d408000 To Address : 0x9d449000 Size : 0x00041000 Time Stamp : 0x49e01ef7 Time String : 11/4/2009 12:39:19 PM Product Name : Microsoft® Windows® Operating System File Description : Microsoft Storage Port Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\storport.sys ================================================== ================================================== Filename : TDI.SYS Address In Stack : From Address : 0x9d449000 To Address : 0x9d454000 Size : 0x0000b000 Time Stamp : 0x47919136 Time String : 19/1/2008 1:57:10 PM Product Name : Microsoft® Windows® Operating System File Description : TDI Wrapper File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\TDI.SYS ================================================== ================================================== Filename : RootMdm.sys Address In Stack : From Address : 0x9d454000 To Address : 0x9d45c000 Size : 0x00008000 Time Stamp : 0x4791913a Time String : 19/1/2008 1:57:14 PM Product Name : Microsoft® Windows® Operating System File Description : Legacy Non-Pnp Modem Device Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\RootMdm.sys ================================================== ================================================== Filename : modem.sys Address In Stack : From Address : 0x9d45c000 To Address : 0x9d469000 Size : 0x0000d000 Time Stamp : 0x4791913c Time String : 19/1/2008 1:57:16 PM Product Name : Microsoft® Windows® Operating System File Description : Modem Device Driver File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\modem.sys ================================================== ================================================== Filename : rasl2tp.sys Address In Stack : From Address : 0x9d469000 To Address : 0x9d480000 Size : 0x00017000 Time Stamp : 0x47919111 Time String : 19/1/2008 1:56:33 PM Product Name : Microsoft® Windows® Operating System File Description : RAS L2TP mini-port/call-manager driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\rasl2tp.sys ================================================== ================================================== Filename : ndistapi.sys Address In Stack : From Address : 0x9d480000 To Address : 0x9d48b000 Size : 0x0000b000 Time Stamp : 0x47919108 Time String : 19/1/2008 1:56:24 PM Product Name : Microsoft® Windows® Operating System File Description : NDIS 3.0 connection wrapper driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ndistapi.sys ================================================== ================================================== Filename : ndiswan.sys Address In Stack : From Address : 0x9d48b000 To Address : 0x9d4ae000 Size : 0x00023000 Time Stamp : 0x49e020a7 Time String : 11/4/2009 12:46:31 PM Product Name : Microsoft® Windows® Operating System File Description : MS PPP Framing Driver (Strong Encryption) File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ndiswan.sys ================================================== ================================================== Filename : raspppoe.sys Address In Stack : From Address : 0x9d4ae000 To Address : 0x9d4bd000 Size : 0x0000f000 Time Stamp : 0x49e020a6 Time String : 11/4/2009 12:46:30 PM Product Name : Microsoft® Windows® Operating System File Description : RAS PPPoE mini-port/call-manager driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\raspppoe.sys ================================================== ================================================== Filename : raspptp.sys Address In Stack : From Address : 0x9d4bd000 To Address : 0x9d4d1000 Size : 0x00014000 Time Stamp : 0x47919112 Time String : 19/1/2008 1:56:34 PM Product Name : Microsoft® Windows® Operating System File Description : Peer-to-Peer Tunneling Protocol File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\raspptp.sys ================================================== ================================================== Filename : rassstp.sys Address In Stack : From Address : 0x9d4d1000 To Address : 0x9d4e6000 Size : 0x00015000 Time Stamp : 0x49e020b0 Time String : 11/4/2009 12:46:40 PM Product Name : Microsoft® Windows® Operating System File Description : RAS SSTP Miniport Call Manager File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\rassstp.sys ================================================== ================================================== Filename : loop.sys Address In Stack : From Address : 0x9d4e6000 To Address : 0x9d4ed000 Size : 0x00007000 Time Stamp : 0x479190d4 Time String : 19/1/2008 1:55:32 PM Product Name : Microsoft® Windows® Operating System File Description : Loopback Network Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\loop.sys ================================================== ================================================== Filename : RimSerial.sys Address In Stack : From Address : 0x9d4ed000 To Address : 0x9d4fb000 Size : 0x0000e000 Time Stamp : 0x4e14ee47 Time String : 7/7/2011 7:22:47 AM Product Name : RIM Modem File Description : RIM Virtual Serial Driver File Version : 2.3.0.9 Company : Research in Motion Ltd Full Path : C:\Windows\system32\drivers\RimSerial.sys ================================================== ================================================== Filename : rdpdr.sys Address In Stack : From Address : 0x9d4fb000 To Address : 0x9d584000 Size : 0x00089000 Time Stamp : 0x49e02210 Time String : 11/4/2009 12:52:32 PM Product Name : Microsoft® Windows® Operating System File Description : Microsoft RDP Device redirector File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\rdpdr.sys ================================================== ================================================== Filename : termdd.sys Address In Stack : From Address : 0x9d584000 To Address : 0x9d594000 Size : 0x00010000 Time Stamp : 0x49e021c2 Time String : 11/4/2009 12:51:14 PM Product Name : Microsoft® Windows® Operating System File Description : Terminal Server Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\termdd.sys ================================================== ================================================== Filename : swenum.sys Address In Stack : From Address : 0x9d594000 To Address : 0x9d595380 Size : 0x00001380 Time Stamp : 0x47918f60 Time String : 19/1/2008 1:49:20 PM Product Name : Microsoft® Windows® Operating System File Description : Plug and Play Software Device Enumerator File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\swenum.sys ================================================== ================================================== Filename : ks.sys Address In Stack : From Address : 0x9d596000 To Address : 0x9d5c0000 Size : 0x0002a000 Time Stamp : 0x49e01ed7 Time String : 11/4/2009 12:38:47 PM Product Name : Microsoft® Windows® Operating System File Description : Kernel CSA Library File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\ks.sys ================================================== ================================================== Filename : circlass.sys Address In Stack : From Address : 0x9d5c0000 To Address : 0x9d5ce000 Size : 0x0000e000 Time Stamp : 0x47919054 Time String : 19/1/2008 1:53:24 PM Product Name : Microsoft® Windows® Operating System File Description : Consumer IR Class Driver for eHome File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\circlass.sys ================================================== ================================================== Filename : mssmbios.sys Address In Stack : From Address : 0x9d5ce000 To Address : 0x9d5d8000 Size : 0x0000a000 Time Stamp : 0x47918b87 Time String : 19/1/2008 1:32:55 PM Product Name : Microsoft® Windows® Operating System File Description : System Management BIOS Driver File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\mssmbios.sys ================================================== ================================================== Filename : amdiox86.sys Address In Stack : From Address : 0x9d5d8000 To Address : 0x9d5e8000 Size : 0x00010000 Time Stamp : 0x4b7d5a1d Time String : 18/2/2010 11:17:49 PM Product Name : AMD IO Driver File Description : AMD IO Driver File Version : 1.0.0.15 built by: WinDDK Company : Advanced Micro Devices Full Path : C:\Windows\system32\drivers\amdiox86.sys ================================================== ================================================== Filename : umbus.sys Address In Stack : From Address : 0x9d5e8000 To Address : 0x9d5f5000 Size : 0x0000d000 Time Stamp : 0x47919064 Time String : 19/1/2008 1:53:40 PM Product Name : Microsoft® Windows® Operating System File Description : User-Mode Bus Enumerator File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\umbus.sys ================================================== ================================================== Filename : usbhub.sys Address In Stack : From Address : 0x9d80e000 To Address : 0x9d843000 Size : 0x00035000 Time Stamp : 0x49e01fe2 Time String : 11/4/2009 12:43:14 PM Product Name : Microsoft® Windows® Operating System File Description : Default Hub Driver for USB File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\usbhub.sys ================================================== ================================================== Filename : NDProxy.SYS Address In Stack : From Address : 0x9d843000 To Address : 0x9d854000 Size : 0x00011000 Time Stamp : 0x4791910c Time String : 19/1/2008 1:56:28 PM Product Name : Microsoft® Windows® Operating System File Description : NDIS Proxy File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\NDProxy.SYS ================================================== ================================================== Filename : AtihdLH3.sys Address In Stack : From Address : 0x9d854000 To Address : 0x9d86c000 Size : 0x00018000 Time Stamp : 0x4f46313a Time String : 23/2/2012 8:29:46 PM Product Name : AMD HD Audio Driver File Description : AMD High Definition Audio Function Driver File Version : 6.58.0.6606 Company : Advanced Micro Devices Full Path : C:\Windows\system32\drivers\AtihdLH3.sys ================================================== ================================================== Filename : portcls.sys Address In Stack : From Address : 0x9d86c000 To Address : 0x9d899000 Size : 0x0002d000 Time Stamp : 0x49e01fc8 Time String : 11/4/2009 12:42:48 PM Product Name : Microsoft® Windows® Operating System File Description : Port Class (Class Driver for Port/Miniport Devices) File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\portcls.sys ================================================== ================================================== Filename : drmk.sys Address In Stack : From Address : 0x9d899000 To Address : 0x9d8be000 Size : 0x00025000 Time Stamp : 0x47919e4e Time String : 19/1/2008 2:53:02 PM Product Name : Microsoft® Windows® Operating System File Description : Microsoft Kernel DRM Descrambler Filter File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\drmk.sys ================================================== ================================================== Filename : stwrt.sys Address In Stack : From Address : 0x9d8be000 To Address : 0x9d91f000 Size : 0x00061000 Time Stamp : 0x48167f18 Time String : 29/4/2008 9:51:20 AM Product Name : IDT PC Audio File Description : IDT PC Audio File Version : 1.0.5934.0 Company : IDT, Inc. Full Path : C:\Windows\system32\drivers\stwrt.sys ================================================== ================================================== Filename : AGRSM.sys Address In Stack : From Address : 0x9da05000 To Address : 0x9db2ae40 Size : 0x00125e40 Time Stamp : 0x47e3de84 Time String : 22/3/2008 12:12:52 AM Product Name : Agere SoftModem Driver File Description : SoftModem Device Driver File Version : 2.1.88 03/21/2008 12:12:49 Company : Agere Systems Full Path : C:\Windows\system32\drivers\AGRSM.sys ================================================== ================================================== Filename : USBD.SYS Address In Stack : From Address : 0x9db2b000 To Address : 0x9db2c700 Size : 0x00001700 Time Stamp : 0x4791904d Time String : 19/1/2008 1:53:17 PM Product Name : Microsoft® Windows® Operating System File Description : Universal Serial Bus Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\USBD.SYS ================================================== ================================================== Filename : hidir.sys Address In Stack : From Address : 0x9db2d000 To Address : 0x9db38000 Size : 0x0000b000 Time Stamp : 0x4791904e Time String : 19/1/2008 1:53:18 PM Product Name : Microsoft® Windows® Operating System File Description : Infrared Miniport Driver for Input Devices File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\hidir.sys ================================================== ================================================== Filename : HIDCLASS.SYS Address In Stack : From Address : 0x9db38000 To Address : 0x9db48000 Size : 0x00010000 Time Stamp : 0x49e01fc7 Time String : 11/4/2009 12:42:47 PM Product Name : Microsoft® Windows® Operating System File Description : Hid Class Library File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\HIDCLASS.SYS ================================================== ================================================== Filename : HIDPARSE.SYS Address In Stack : From Address : 0x9db48000 To Address : 0x9db4e380 Size : 0x00006380 Time Stamp : 0x4791904c Time String : 19/1/2008 1:53:16 PM Product Name : Microsoft® Windows® Operating System File Description : Hid Parsing Library File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\HIDPARSE.SYS ================================================== ================================================== Filename : kbdhid.sys Address In Stack : From Address : 0x9db4f000 To Address : 0x9db58000 Size : 0x00009000 Time Stamp : 0x49e01ed0 Time String : 11/4/2009 12:38:40 PM Product Name : Microsoft® Windows® Operating System File Description : HID Keyboard Filter Driver File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\kbdhid.sys ================================================== ================================================== Filename : mouhid.sys Address In Stack : From Address : 0x9db58000 To Address : 0x9db60000 Size : 0x00008000 Time Stamp : 0x47918f5c Time String : 19/1/2008 1:49:16 PM Product Name : Microsoft® Windows® Operating System File Description : HID Mouse Filter Driver File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\mouhid.sys ================================================== ================================================== Filename : Fs_Rec.SYS Address In Stack : From Address : 0x9db60000 To Address : 0x9db69000 Size : 0x00009000 Time Stamp : 0x4f4e28f4 Time String : 29/2/2012 9:32:36 PM Product Name : Microsoft® Windows® Operating System File Description : File System Recognizer Driver File Version : 6.0.6002.18592 (vistasp2_gdr.120229-0238) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Fs_Rec.SYS ================================================== ================================================== Filename : Null.SYS Address In Stack : From Address : 0x9db69000 To Address : 0x9db70000 Size : 0x00007000 Time Stamp : 0x47918f58 Time String : 19/1/2008 1:49:12 PM Product Name : Microsoft® Windows® Operating System File Description : NULL Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Null.SYS ================================================== ================================================== Filename : Beep.SYS Address In Stack : From Address : 0x9db70000 To Address : 0x9db77000 Size : 0x00007000 Time Stamp : 0x47918f56 Time String : 19/1/2008 1:49:10 PM Product Name : Microsoft® Windows® Operating System File Description : BEEP Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Beep.SYS ================================================== ================================================== Filename : vga.sys Address In Stack : From Address : 0x9db77000 To Address : 0x9db83000 Size : 0x0000c000 Time Stamp : 0x47919006 Time String : 19/1/2008 1:52:06 PM Product Name : Microsoft® Windows® Operating System File Description : VGA/Super VGA Video Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\vga.sys ================================================== ================================================== Filename : VIDEOPRT.SYS Address In Stack : From Address : 0x9db83000 To Address : 0x9dba4000 Size : 0x00021000 Time Stamp : 0x4791900a Time String : 19/1/2008 1:52:10 PM Product Name : Microsoft® Windows® Operating System File Description : Video Port Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\VIDEOPRT.SYS ================================================== ================================================== Filename : RDPCDD.sys Address In Stack : From Address : 0x9dba4000 To Address : 0x9dbac000 Size : 0x00008000 Time Stamp : 0x47919224 Time String : 19/1/2008 2:01:08 PM Product Name : Microsoft® Windows® Operating System File Description : RDP Miniport File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\RDPCDD.sys ================================================== ================================================== Filename : hidusb.sys Address In Stack : From Address : 0x9dbac000 To Address : 0x9dbb5000 Size : 0x00009000 Time Stamp : 0x49e01fc8 Time String : 11/4/2009 12:42:48 PM Product Name : Microsoft® Windows® Operating System File Description : USB Miniport Driver for Input Devices File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\hidusb.sys ================================================== ================================================== Filename : rdpencdd.sys Address In Stack : From Address : 0x9dbb5000 To Address : 0x9dbbd000 Size : 0x00008000 Time Stamp : 0x47919225 Time String : 19/1/2008 2:01:09 PM Product Name : Microsoft® Windows® Operating System File Description : RDP Miniport File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\rdpencdd.sys ================================================== ================================================== Filename : usbccgp.sys Address In Stack : From Address : 0x9dbbd000 To Address : 0x9dbd4000 Size : 0x00017000 Time Stamp : 0x47919059 Time String : 19/1/2008 1:53:29 PM Product Name : Microsoft® Windows® Operating System File Description : USB Common Class Generic Parent Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\usbccgp.sys ================================================== ================================================== Filename : Msfs.SYS Address In Stack : From Address : 0x9dbd4000 To Address : 0x9dbdf000 Size : 0x0000b000 Time Stamp : 0x47918a68 Time String : 19/1/2008 1:28:08 PM Product Name : Microsoft® Windows® Operating System File Description : Mailslot driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Msfs.SYS ================================================== ================================================== Filename : Npfs.SYS Address In Stack : From Address : 0x9dbdf000 To Address : 0x9dbed000 Size : 0x0000e000 Time Stamp : 0x49e01909 Time String : 11/4/2009 12:14:01 PM Product Name : Microsoft® Windows® Operating System File Description : NPFS Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Npfs.SYS ================================================== ================================================== Filename : usbvideo.sys Address In Stack : From Address : 0x9d91f000 To Address : 0x9d93fb80 Size : 0x00020b80 Time Stamp : 0x47919062 Time String : 19/1/2008 1:53:38 PM Product Name : Microsoft® Windows® Operating System File Description : USB Video Class Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\usbvideo.sys ================================================== ================================================== Filename : rasacd.sys Address In Stack : From Address : 0x9dbed000 To Address : 0x9dbf6000 Size : 0x00009000 Time Stamp : 0x4791910f Time String : 19/1/2008 1:56:31 PM Product Name : Microsoft® Windows® Operating System File Description : RAS Automatic Connection Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\rasacd.sys ================================================== ================================================== Filename : tdx.sys Address In Stack : From Address : 0x9d940000 To Address : 0x9d956000 Size : 0x00016000 Time Stamp : 0x49e02084 Time String : 11/4/2009 12:45:56 PM Product Name : Microsoft® Windows® Operating System File Description : TDI Translation Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\tdx.sys ================================================== ================================================== Filename : netbt.sys Address In Stack : From Address : 0x9d956000 To Address : 0x9d988000 Size : 0x00032000 Time Stamp : 0x49e0206f Time String : 11/4/2009 12:45:35 PM Product Name : Microsoft® Windows® Operating System File Description : MBT Transport driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\netbt.sys ================================================== ================================================== Filename : smb.sys Address In Stack : From Address : 0x9d988000 To Address : 0x9d99c000 Size : 0x00014000 Time Stamp : 0x49e02062 Time String : 11/4/2009 12:45:22 PM Product Name : Microsoft® Windows® Operating System File Description : SMB Transport driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\smb.sys ================================================== ================================================== Filename : afd.sys Address In Stack : From Address : 0x9d99c000 To Address : 0x9d9e4000 Size : 0x00048000 Time Stamp : 0x4db03801 Time String : 21/4/2011 9:58:25 PM Product Name : Microsoft® Windows® Operating System File Description : Ancillary Function Driver for WinSock File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\afd.sys ================================================== ================================================== Filename : pacer.sys Address In Stack : From Address : 0x9d9e4000 To Address : 0x9d9fa000 Size : 0x00016000 Time Stamp : 0x49e0207f Time String : 11/4/2009 12:45:51 PM Product Name : Microsoft® Windows® Operating System File Description : QoS Packet Scheduler File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\pacer.sys ================================================== ================================================== Filename : netbios.sys Address In Stack : From Address : 0x9d800000 To Address : 0x9d80e000 Size : 0x0000e000 Time Stamp : 0x479190e1 Time String : 19/1/2008 1:55:45 PM Product Name : Microsoft® Windows® Operating System File Description : NetBIOS interface driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\netbios.sys ================================================== ================================================== Filename : wanarp.sys Address In Stack : From Address : 0x883db000 To Address : 0x883ee000 Size : 0x00013000 Time Stamp : 0x4791910f Time String : 19/1/2008 1:56:31 PM Product Name : Microsoft® Windows® Operating System File Description : MS Remote Access and Routing ARP Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\wanarp.sys ================================================== ================================================== Filename : rdbss.sys Address In Stack : From Address : 0x9de02000 To Address : 0x9de3e000 Size : 0x0003c000 Time Stamp : 0x49e01922 Time String : 11/4/2009 12:14:26 PM Product Name : Microsoft® Windows® Operating System File Description : Redirected Drive Buffering SubSystem Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\rdbss.sys ================================================== ================================================== Filename : nsiproxy.sys Address In Stack : From Address : 0x9de3e000 To Address : 0x9de48000 Size : 0x0000a000 Time Stamp : 0x479190e6 Time String : 19/1/2008 1:55:50 PM Product Name : Microsoft® Windows® Operating System File Description : NSI Proxy File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\nsiproxy.sys ================================================== ================================================== Filename : csc.sys Address In Stack : From Address : 0x9de48000 To Address : 0x9dea3000 Size : 0x0005b000 Time Stamp : 0x49e01939 Time String : 11/4/2009 12:14:49 PM Product Name : Microsoft® Windows® Operating System File Description : Windows Client Side Caching Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\csc.sys ================================================== ================================================== Filename : dfsc.sys Address In Stack : From Address : 0x9dea3000 To Address : 0x9deba000 Size : 0x00017000 Time Stamp : 0x4da70bb7 Time String : 14/4/2011 10:59:03 PM Product Name : Microsoft® Windows® Operating System File Description : DFS Namespace Client Driver File Version : 6.0.6002.18451 (vistasp2_gdr.110414-0338) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\dfsc.sys ================================================== ================================================== Filename : crashdmp.sys Address In Stack : From Address : 0x9deba000 To Address : 0x9dec7000 Size : 0x0000d000 Time Stamp : 0x49e01ef0 Time String : 11/4/2009 12:39:12 PM Product Name : Microsoft® Windows® Operating System File Description : Crash Dump Driver File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\crashdmp.sys ================================================== ================================================== Filename : dump_dumpata.sys Address In Stack : From Address : 0x9dec7000 To Address : 0x9ded2000 Size : 0x0000b000 Time Stamp : 0x49e01eed Time String : 11/4/2009 12:39:09 PM Product Name : File Description : File Version : Company : Full Path : ================================================== ================================================== Filename : dump_msahci.sys Address In Stack : From Address : 0x9ded2000 To Address : 0x9dedc000 Size : 0x0000a000 Time Stamp : 0x49e01eef Time String : 11/4/2009 12:39:11 PM Product Name : File Description : File Version : Company : Full Path : ================================================== ================================================== Filename : dump_dumpfve.sys Address In Stack : From Address : 0x9dedc000 To Address : 0x9deed000 Size : 0x00011000 Time Stamp : 0x47918a29 Time String : 19/1/2008 1:27:05 PM Product Name : File Description : File Version : Company : Full Path : ================================================== ================================================== Filename : win32k.sys Address In Stack : From Address : 0xa7850000 To Address : 0xa7a55000 Size : 0x00205000 Time Stamp : 0x00000000 Time String : Product Name : Microsoft® Windows® Operating System File Description : Multi-User Win32 Driver File Version : 6.0.6000.16386 (vista_rtm.061101-2205) Company : Microsoft Corporation Full Path : C:\Windows\system32\win32k.sys ================================================== ================================================== Filename : Dxapi.sys Address In Stack : From Address : 0x9deed000 To Address : 0x9def7000 Size : 0x0000a000 Time Stamp : 0x47918c4c Time String : 19/1/2008 1:36:12 PM Product Name : Microsoft® Windows® Operating System File Description : DirectX API Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\Dxapi.sys ================================================== ================================================== Filename : monitor.sys Address In Stack : From Address : 0x9def7000 To Address : 0x9df06000 Size : 0x0000f000 Time Stamp : 0x47919013 Time String : 19/1/2008 1:52:19 PM Product Name : Microsoft® Windows® Operating System File Description : Monitor Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\drivers\monitor.sys ================================================== ================================================== Filename : TSDDD.dll Address In Stack : From Address : 0xa7a70000 To Address : 0xa7a79000 Size : 0x00009000 Time Stamp : 0x00000000 Time String : Product Name : Microsoft® Windows® Operating System File Description : Framebuffer Display Driver File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840) Company : Microsoft Corporation Full Path : C:\Windows\system32\TSDDD.dll ================================================== ================================================== Filename : cdd.dll Address In Stack : From Address : 0xa7a90000 To Address : 0xa7a9e000 Size : 0x0000e000 Time Stamp : 0x00000000 Time String : Product Name : Microsoft® Windows® Operating System File Description : Canonical Display Driver File Version : 7.0.6002.22573 (vistasp2_ldr.110120-0254) Company : Microsoft Corporation Full Path : C:\Windows\system32\cdd.dll ================================================== ================================================== Filename : ATMFD.DLL Address In Stack : From Address : 0xa7aa0000 To Address : 0xa7aed000 Size : 0x0004d000 Time Stamp : 0x00000000 Time String : Product Name : Adobe Type Manager File Description : Windows NT OpenType/Type 1 Font Driver File Version : 5.1 Build 232 Company : Adobe Systems Incorporated Full Path : C:\Windows\system32\ATMFD.DLL ==================================================