MFT - Drivers Information Table - memdump.mem
| Creation Date | Creation Time | Creation TimeZone | Modified Date | Modified Time | Modified TimeZone | Altered Date | Altered Time | Altered TimeZone | Access Date | Access Time | Access TimeZone | Type/Name/Path | Entry Atrribute | Extension |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2015-08-24 | 07:46:48 | UTC+0000 | 2015-08-24 | 07:46:48 | UTC+0000 | 2015-08-24 | 07:46:48 | UTC+0000 | 2015-08-24 | 07:46:48 | UTC+0000 | WUDFRd.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:48 | UTC+0000 | 2015-08-24 | 07:46:48 | UTC+0000 | 2015-08-24 | 07:46:48 | UTC+0000 | 2015-08-24 | 07:46:48 | UTC+0000 | Windows\System32\drivers\WUDFRd.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | Windows\System32\drivers\mup.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | ndis.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | Windows\winsxs\Backup\X81FA8~1.SYS | $FILE_NAME | sys |
| 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | Windows\System32\drivers\ndis.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:25 | UTC+0000 | 2015-08-24 | 07:46:25 | UTC+0000 | 2015-08-24 | 07:46:25 | UTC+0000 | 2015-08-24 | 07:46:25 | UTC+0000 | win32k.sys | $FILE_NAME | sys |
| 2008-01-19 | 09:09:36 | UTC+0000 | 2008-01-19 | 09:08:57 | UTC+0000 | 2015-08-24 | 07:46:25 | UTC+0000 | 2008-01-19 | 09:08:56 | UTC+0000 | Windows\winsxs\Backup\X85CCB~1.SYS | $FILE_NAME | sys |
| 2015-08-24 | 07:46:25 | UTC+0000 | 2015-08-24 | 07:46:25 | UTC+0000 | 2015-08-24 | 07:46:25 | UTC+0000 | 2015-08-24 | 07:46:25 | UTC+0000 | Windows\System32\win32k.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | Windows\System32\drivers\hidclass.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | hidir.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | Windows\System32\drivers\hidir.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | hidparse.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | Windows\System32\drivers\mouclass.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | mouhid.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | Windows\System32\drivers\mouhid.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | 2015-08-24 | 07:46:39 | UTC+0000 | mountmgr.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | Windows\System32\drivers\hidparse.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | hidusb.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | Windows\System32\drivers\hidusb.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | 2015-08-24 | 07:46:38 | UTC+0000 | HpCISSs.sys | $FILE_NAME | sys |
| 2015-09-03 | 10:04:05 | UTC+0000 | 2015-09-03 | 10:04:05 | UTC+0000 | 2015-09-03 | 10:04:05 | UTC+0000 | 2015-09-03 | 10:04:05 | UTC+0000 | Users\ADMINI~1\AppData\Local\Temp\AD_DRI~1.SYS | $FILE_NAME | sys |
| 2015-09-03 | 10:04:05 | UTC+0000 | 2015-09-03 | 10:04:05 | UTC+0000 | 2015-09-03 | 10:04:05 | UTC+0000 | 2015-09-03 | 10:04:05 | UTC+0000 | Users\ADMINI~1\AppData\Local\Temp\ad_driver.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:54 | UTC+0000 | 2015-08-24 | 07:46:54 | UTC+0000 | 2015-08-24 | 07:46:54 | UTC+0000 | 2015-08-24 | 07:46:54 | UTC+0000 | MODEMCSA.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:55 | UTC+0000 | 2015-08-24 | 07:46:55 | UTC+0000 | 2015-08-24 | 07:46:55 | UTC+0000 | 2015-08-24 | 07:46:55 | UTC+0000 | sisnic.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:45 | UTC+0000 | 2015-08-24 | 07:46:45 | UTC+0000 | 2015-08-24 | 07:46:45 | UTC+0000 | 2015-08-24 | 07:46:45 | UTC+0000 | Windows\System32\drivers\tunnel.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:45 | UTC+0000 | 2015-08-24 | 07:46:45 | UTC+0000 | 2015-08-24 | 07:46:45 | UTC+0000 | 2015-08-24 | 07:46:45 | UTC+0000 | UAGP35.SYS | $FILE_NAME | sys |
| 2015-08-24 | 07:46:45 | UTC+0000 | 2015-08-24 | 07:46:45 | UTC+0000 | 2015-08-24 | 07:46:45 | UTC+0000 | 2015-08-24 | 07:46:45 | UTC+0000 | Windows\System32\drivers\UAGP35.SYS | $FILE_NAME | sys |
| 2015-08-24 | 07:46:45 | UTC+0000 | 2015-08-24 | 07:46:45 | UTC+0000 | 2015-08-24 | 07:46:45 | UTC+0000 | 2015-08-24 | 07:46:45 | UTC+0000 | udfs.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:46 | UTC+0000 | 2015-08-24 | 07:46:46 | UTC+0000 | 2015-08-24 | 07:46:46 | UTC+0000 | 2015-08-24 | 07:46:46 | UTC+0000 | usbd.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:46 | UTC+0000 | 2015-08-24 | 07:46:46 | UTC+0000 | 2015-08-24 | 07:46:46 | UTC+0000 | 2015-08-24 | 07:46:46 | UTC+0000 | Windows\System32\drivers\usbd.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:46 | UTC+0000 | 2015-08-24 | 07:46:46 | UTC+0000 | 2015-08-24 | 07:46:46 | UTC+0000 | 2015-08-24 | 07:46:46 | UTC+0000 | usbehci.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:46:46 | UTC+0000 | 2015-08-24 | 07:46:46 | UTC+0000 | 2015-08-24 | 07:46:46 | UTC+0000 | 2015-08-24 | 07:46:46 | UTC+0000 | Windows\System32\drivers\usbehci.sys | $FILE_NAME | sys |
| 2015-07-10 | 11:11:56 | UTC+0000 | 2015-07-10 | 11:11:56 | UTC+0000 | 2015-08-24 | 07:14:11 | UTC+0000 | 2015-08-24 | 07:13:50 | UTC+0000 | Windows\System32\drivers\VBOXGU~1.SYS | $FILE_NAME | sys |
| 2015-07-10 | 11:11:56 | UTC+0000 | 2015-07-10 | 11:11:56 | UTC+0000 | 2015-08-24 | 07:14:11 | UTC+0000 | 2015-08-24 | 07:13:50 | UTC+0000 | Windows\System32\drivers\VBoxGuest.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:43:04 | UTC+0000 | 2015-08-24 | 07:43:04 | UTC+0000 | 2015-08-24 | 07:43:04 | UTC+0000 | 2015-08-24 | 07:43:04 | UTC+0000 | config.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:13:50 | UTC+0000 | 2015-08-24 | 07:13:50 | UTC+0000 | 2015-08-24 | 07:13:50 | UTC+0000 | 2015-08-24 | 07:13:50 | UTC+0000 | Program Files\Oracle\VirtualBox Guest Additions\VBOXVI~1.SYS | $FILE_NAME | sys |
| 2015-08-24 | 07:13:50 | UTC+0000 | 2015-08-24 | 07:13:50 | UTC+0000 | 2015-08-24 | 07:13:50 | UTC+0000 | 2015-08-24 | 07:13:50 | UTC+0000 | Program Files\Oracle\VirtualBox Guest Additions\VBoxVideo.sys | $FILE_NAME | sys |
| 2015-08-23 | 21:42:09 | UTC+0000 | 2015-08-23 | 21:42:09 | UTC+0000 | 2015-08-23 | 21:42:09 | UTC+0000 | 2015-08-23 | 21:42:09 | UTC+0000 | xampp\mysql\share\french\errmsg.sys | $FILE_NAME | sys |
| 2015-08-23 | 21:42:09 | UTC+0000 | 2015-08-23 | 21:42:09 | UTC+0000 | 2015-08-23 | 21:42:09 | UTC+0000 | 2015-08-23 | 21:42:09 | UTC+0000 | xampp\mysql\share\portuguese\errmsg.sys | $FILE_NAME | sys |
| 2015-08-23 | 21:42:09 | UTC+0000 | 2015-08-23 | 21:42:09 | UTC+0000 | 2015-08-23 | 21:42:09 | UTC+0000 | 2015-08-23 | 21:42:09 | UTC+0000 | xampp\mysql\share\german\errmsg.sys | $FILE_NAME | sys |
| 2015-08-23 | 21:42:09 | UTC+0000 | 2015-08-23 | 21:42:09 | UTC+0000 | 2015-08-23 | 21:42:09 | UTC+0000 | 2015-08-23 | 21:42:09 | UTC+0000 | xampp\mysql\share\english\errmsg.sys | $FILE_NAME | sys |
| 2015-08-23 | 21:42:09 | UTC+0000 | 2015-08-23 | 21:42:09 | UTC+0000 | 2015-08-23 | 21:42:09 | UTC+0000 | 2015-08-23 | 21:42:09 | UTC+0000 | xampp\mysql\share\UKRAIN~1\errmsg.sys | $FILE_NAME | sys |
| 2015-08-24 | 07:13:50 | UTC+0000 | 2015-08-24 | 07:13:50 | UTC+0000 | 2015-08-24 | 07:13:50 | UTC+0000 | 2015-08-24 | 07:13:50 | UTC+0000 | Windows\System32\drivers\VBoxSF.sys | $FILE_NAME | sys |
| 2008-01-19 | 08:48:05 | UTC+0000 | 2008-01-19 | 05:32:47 | UTC+0000 | 2015-08-24 | 06:52:12 | UTC+0000 | 2008-01-19 | 08:48:05 | UTC+0000 | Windows\System32\drivers\CmBatt.sys | $FILE_NAME | sys |
| 2015-07-10 | 11:11:54 | UTC+0000 | 2015-07-10 | 11:11:54 | UTC+0000 | 2015-08-24 | 07:14:13 | UTC+0000 | 2015-08-24 | 07:13:50 | UTC+0000 | Windows\System32\drivers\VBOXVI~1.SYS | $FILE_NAME | sys |
| 2015-07-10 | 11:11:54 | UTC+0000 | 2015-07-10 | 11:11:54 | UTC+0000 | 2015-08-24 | 07:14:13 | UTC+0000 | 2015-08-24 | 07:13:50 | UTC+0000 | Windows\System32\drivers\VBoxVideo.sys | $FILE_NAME | sys |
| 2015-07-10 | 11:11:54 | UTC+0000 | 2015-07-10 | 11:11:54 | UTC+0000 | 2015-08-24 | 07:14:14 | UTC+0000 | 2015-08-24 | 07:13:50 | UTC+0000 | Windows\System32\drivers\VBOXMO~1.SYS | $FILE_NAME | sys |
| 2015-07-10 | 11:11:54 | UTC+0000 | 2015-07-10 | 11:11:54 | UTC+0000 | 2015-08-24 | 07:14:14 | UTC+0000 | 2015-08-24 | 07:13:50 | UTC+0000 | Windows\System32\drivers\VBoxMouse.sys | $FILE_NAME | sys |
| 2015-08-23 | 21:44:03 | UTC+0000 | 2015-08-23 | 21:44:03 | UTC+0000 | 2015-08-23 | 21:44:03 | UTC+0000 | 2015-08-23 | 21:44:03 | UTC+0000 | xampp\install\install.sys | $FILE_NAME | sys |
| 2015-08-24 | 06:50:36 | UTC+0000 | 2015-08-24 | 06:50:36 | UTC+0000 | 2015-08-24 | 06:50:36 | UTC+0000 | 2015-08-24 | 06:50:36 | UTC+0000 | pagefile.sys | $FILE_NAME | sys |
| 2008-01-19 | 08:49:15 | UTC+0000 | 2008-01-19 | 05:53:16 | UTC+0000 | 2015-08-24 | 06:52:31 | UTC+0000 | 2008-01-19 | 08:49:15 | UTC+0000 | Windows\System32\drivers\drmkaud.sys | $FILE_NAME | sys |
Xavier Memory Analysis Framework vrs2.114 by Solomon Sonya @Carpenter1010 - 2022-02-08-17:36.40