API tools faq
paste
Advertisement
Betapyth

Untitled

Betapyth
Sep 14th, 2015
128
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 21.38 KB | None | 0 0
raw download clone embed print report
  1. 1034.ea8: Log file opened: 5.0.4r102546 g_hStartupLog=0000000000000010 g_uNtVerCombined=0x63258000
  2. 1034.ea8: \SystemRoot\System32\ntdll.dll:
  3. 1034.ea8: CreationTime: 2015-08-25T19:15:47.535470700Z
  4. 1034.ea8: LastWriteTime: 2015-07-16T00:29:35.716166500Z
  5. 1034.ea8: ChangeTime: 2015-08-26T01:06:25.329641300Z
  6. 1034.ea8: FileAttributes: 0x820
  7. 1034.ea8: Size: 0x1a7958
  8. 1034.ea8: NT Headers: 0xd8
  9. 1034.ea8: Timestamp: 0x55a68e0c
  10. 1034.ea8: Machine: 0x8664 - amd64
  11. 1034.ea8: Timestamp: 0x55a68e0c
  12. 1034.ea8: Image Version: 6.3
  13. 1034.ea8: SizeOfImage: 0x1ac000 (1753088)
  14. 1034.ea8: Resource Dir: 0x148000 LB 0x62450
  15. 1034.ea8: ProductName: Microsoft® Windows® Operating System
  16. 1034.ea8: ProductVersion: 6.3.9600.17936
  17. 1034.ea8: FileVersion: 6.3.9600.17936 (winblue_ltsb.150715-0840)
  18. 1034.ea8: FileDescription: NT Layer DLL
  19. 1034.ea8: \SystemRoot\System32\kernel32.dll:
  20. 1034.ea8: CreationTime: 2015-03-04T17:36:28.209424800Z
  21. 1034.ea8: LastWriteTime: 2014-10-29T04:09:24.572407200Z
  22. 1034.ea8: ChangeTime: 2015-08-26T04:23:07.562677600Z
  23. 1034.ea8: FileAttributes: 0x820
  24. 1034.ea8: Size: 0x13fc30
  25. 1034.ea8: NT Headers: 0xf8
  26. 1034.ea8: Timestamp: 0x545054ca
  27. 1034.ea8: Machine: 0x8664 - amd64
  28. 1034.ea8: Timestamp: 0x545054ca
  29. 1034.ea8: Image Version: 6.3
  30. 1034.ea8: SizeOfImage: 0x13e000 (1302528)
  31. 1034.ea8: Resource Dir: 0x12e000 LB 0x518
  32. 1034.ea8: ProductName: Microsoft® Windows® Operating System
  33. 1034.ea8: ProductVersion: 6.3.9600.17415
  34. 1034.ea8: FileVersion: 6.3.9600.17415 (winblue_r4.141028-1500)
  35. 1034.ea8: FileDescription: Windows NT BASE API Client DLL
  36. 1034.ea8: \SystemRoot\System32\KernelBase.dll:
  37. 1034.ea8: CreationTime: 2015-03-04T17:37:08.940920100Z
  38. 1034.ea8: LastWriteTime: 2014-10-29T03:55:08.402989600Z
  39. 1034.ea8: ChangeTime: 2015-08-26T04:23:07.765805400Z
  40. 1034.ea8: FileAttributes: 0x820
  41. 1034.ea8: Size: 0x114a90
  42. 1034.ea8: NT Headers: 0xf0
  43. 1034.ea8: Timestamp: 0x54505737
  44. 1034.ea8: Machine: 0x8664 - amd64
  45. 1034.ea8: Timestamp: 0x54505737
  46. 1034.ea8: Image Version: 6.3
  47. 1034.ea8: SizeOfImage: 0x115000 (1134592)
  48. 1034.ea8: Resource Dir: 0x110000 LB 0x3528
  49. 1034.ea8: ProductName: Microsoft® Windows® Operating System
  50. 1034.ea8: ProductVersion: 6.3.9600.17415
  51. 1034.ea8: FileVersion: 6.3.9600.17415 (winblue_r4.141028-1500)
  52. 1034.ea8: FileDescription: Windows NT BASE API Client DLL
  53. 1034.ea8: \SystemRoot\System32\apisetschema.dll:
  54. 1034.ea8: CreationTime: 2013-08-22T12:13:09.745625900Z
  55. 1034.ea8: LastWriteTime: 2013-08-22T12:35:12.091034400Z
  56. 1034.ea8: ChangeTime: 2013-12-04T23:48:35.929394200Z
  57. 1034.ea8: FileAttributes: 0x20
  58. 1034.ea8: Size: 0x11360
  59. 1034.ea8: NT Headers: 0xd0
  60. 1034.ea8: Timestamp: 0x52160049
  61. 1034.ea8: Machine: 0x8664 - amd64
  62. 1034.ea8: Timestamp: 0x52160049
  63. 1034.ea8: Image Version: 6.3
  64. 1034.ea8: SizeOfImage: 0x13000 (77824)
  65. 1034.ea8: Resource Dir: 0x11000 LB 0x3f8
  66. 1034.ea8: ProductName: Microsoft® Windows® Operating System
  67. 1034.ea8: ProductVersion: 6.3.9600.16384
  68. 1034.ea8: FileVersion: 6.3.9600.16384 (winblue_rtm.130821-1623)
  69. 1034.ea8: FileDescription: ApiSet Schema DLL
  70. 1034.ea8: NtOpenDirectoryObject failed on \Driver: 0xc0000022
  71. 1034.ea8: supR3HardenedWinFindAdversaries: 0x0
  72. 1034.ea8: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Data\Virtual Box'
  73. 1034.ea8: Calling main()
  74. 1034.ea8: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
  75. 1034.ea8: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume2\Data\Virtual Box'
  76. 1034.ea8: SUPR3HardenedMain: Respawn #1
  77. 1034.ea8: System32: \Device\HarddiskVolume1\Windows\System32
  78. 1034.ea8: WinSxS: \Device\HarddiskVolume1\Windows\WinSxS
  79. 1034.ea8: KnownDllPath: C:\Windows\system32
  80. 1034.ea8: '\Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe' has no imports
  81. 1034.ea8: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe)
  82. 1034.ea8: supR3HardNtEnableThreadCreation:
  83. 1034.ea8: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ffe78508ec0 pvNtTerminateThread=00007ffe78581700
  84. 1034.ea8: supR3HardenedWinDoReSpawn(1): New child c94.4f8 [kernel32].
  85. 1034.ea8: supR3HardNtChildGatherData: PebBaseAddress=00007ff6f70fe000 cbPeb=0x388
  86. 1034.ea8: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00007ffe784f0000 uNtDllChildAddr=00007ffe784f0000
  87. 1034.ea8: supR3HardenedWinSetupChildInit: uLdrInitThunk=00007ffe78508ec0
  88. 1034.ea8: supR3HardenedWinSetupChildInit: Start child.
  89. 1034.ea8: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 0 ms.
  90. 1034.ea8: supR3HardNtChildPurify: Startup delay kludge #1/0: 264 ms, 31 sleeps
  91. 1034.ea8: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
  92. 1034.ea8: *0000000000000000-ffffffffffcbffff 0x0001/0x0000 0x0000000
  93. 1034.ea8: *0000000000340000-000000000031ffff 0x0004/0x0004 0x0020000
  94. 1034.ea8: *0000000000360000-0000000000350fff 0x0002/0x0002 0x0040000
  95. 1034.ea8: 000000000036f000-000000000036dfff 0x0001/0x0000 0x0000000
  96. 1034.ea8: *0000000000370000-0000000000273fff 0x0000/0x0004 0x0020000
  97. 1034.ea8: 000000000046c000-0000000000468fff 0x0104/0x0004 0x0020000
  98. 1034.ea8: 000000000046f000-000000000046dfff 0x0004/0x0004 0x0020000
  99. 1034.ea8: *0000000000470000-0000000000468fff 0x0040/0x0040 0x0020000 !!
  100. 1034.ea8: supHardNtVpFreeOrReplacePrivateExecMemory: Freeing exec mem at 0000000000470000 (LB 0x7000, 0000000000470000 LB 0x7000)
  101. 1034.ea8: supHardNtVpFreeOrReplacePrivateExecMemory: Free attempt #1 succeeded: 0x0 [0000000000470000/0000000000470000 LB 0/0x7000]
  102. 1034.ea8: supHardNtVpFreeOrReplacePrivateExecMemory: QVM after free 0: [0000000000000000]/0000000000470000 LB 0x10000 s=0x10000 ap=0x0 rp=0x00000000000001
  103. 1034.ea8: 0000000000477000-000000000046dfff 0x0001/0x0000 0x0000000
  104. 1034.ea8: *0000000000480000-000000000047efff 0x0002/0x0002 0x0040000
  105. 1034.ea8: 0000000000481000-0000000000471fff 0x0001/0x0000 0x0000000
  106. 1034.ea8: *0000000000490000-000000000048bfff 0x0002/0x0002 0x0040000
  107. 1034.ea8: 0000000000494000-0000000000487fff 0x0001/0x0000 0x0000000
  108. 1034.ea8: *00000000004a0000-000000000049dfff 0x0004/0x0004 0x0020000
  109. 1034.ea8: 00000000004a2000-ffffffff80963fff 0x0001/0x0000 0x0000000
  110. 1034.ea8: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000
  111. 1034.ea8: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000
  112. 1034.ea8: 000000007fff0000-ffff800a08f0ffff 0x0001/0x0000 0x0000000
  113. 1034.ea8: *00007ff6f70d0000-00007ff6f70acfff 0x0002/0x0002 0x0040000
  114. 1034.ea8: 00007ff6f70f3000-00007ff6f70e9fff 0x0001/0x0000 0x0000000
  115. 1034.ea8: *00007ff6f70fc000-00007ff6f70f9fff 0x0004/0x0004 0x0020000
  116. 1034.ea8: *00007ff6f70fe000-00007ff6f70fcfff 0x0004/0x0004 0x0020000
  117. 1034.ea8: 00007ff6f70ff000-00007ff6f6a1dfff 0x0001/0x0000 0x0000000
  118. 1034.ea8: *00007ff6f77e0000-00007ff6f77e0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  119. 1034.ea8: 00007ff6f77e1000-00007ff6f7867fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  120. 1034.ea8: 00007ff6f7868000-00007ff6f7868fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  121. 1034.ea8: 00007ff6f7869000-00007ff6f78b3fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  122. 1034.ea8: 00007ff6f78b4000-00007ff6f78b4fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  123. 1034.ea8: 00007ff6f78b5000-00007ff6f78b5fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  124. 1034.ea8: 00007ff6f78b6000-00007ff6f78bafff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  125. 1034.ea8: 00007ff6f78bb000-00007ff6f78bbfff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  126. 1034.ea8: 00007ff6f78bc000-00007ff6f78bcfff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  127. 1034.ea8: 00007ff6f78bd000-00007ff6f78c0fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  128. 1034.ea8: 00007ff6f78c1000-00007ff6f790bfff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  129. 1034.ea8: 00007ff6f790c000-00007fef76d27fff 0x0001/0x0000 0x0000000
  130. 1034.ea8: *00007ffe784f0000-00007ffe784f0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
  131. 1034.ea8: 00007ffe784f1000-00007ffe7861cfff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
  132. 1034.ea8: 00007ffe7861d000-00007ffe78622fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
  133. 1034.ea8: 00007ffe78623000-00007ffe7862ffff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
  134. 1034.ea8: 00007ffe78630000-00007ffe78630fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
  135. 1034.ea8: 00007ffe78631000-00007ffe78633fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
  136. 1034.ea8: 00007ffe78634000-00007ffe78634fff 0x0010/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
  137. 1034.ea8: 00007ffe78635000-00007ffe7869bfff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
  138. 1034.ea8: 00007ffe7869c000-00007ffcf0d57fff 0x0001/0x0000 0x0000000
  139. 1034.ea8: *00007ffffffe0000-00007ffffffcffff 0x0001/0x0002 0x0020000
  140. 1034.ea8: VirtualBox.exe: timestamp 0x55eeaed7 (rc=VINF_SUCCESS)
  141. 1034.ea8: '\Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe' has no imports
  142. 1034.ea8: '\Device\HarddiskVolume1\Windows\System32\ntdll.dll' has no imports
  143. 1034.ea8: ntdll.dll: Differences in section #1 (.text) between file and memory:
  144. 1034.ea8: 00007ffe785812a0 / 0x00912a0: 4c != b8
  145. 1034.ea8: 00007ffe785812a1 / 0x00912a1: 8b != da
  146. 1034.ea8: 00007ffe785812a2 / 0x00912a2: d1 != 37
  147. 1034.ea8: 00007ffe785812a3 / 0x00912a3: b8 != 47
  148. 1034.ea8: 00007ffe785812a4 / 0x00912a4: 0c != 00
  149. 1034.ea8: 00007ffe785812a5 / 0x00912a5: 00 != 48
  150. 1034.ea8: 00007ffe785812a6 / 0x00912a6: 00 != 63
  151. 1034.ea8: 00007ffe785812a7 / 0x00912a7: 00 != c0
  152. 1034.ea8: 00007ffe785812a8 / 0x00912a8: 0f != ff
  153. 1034.ea8: 00007ffe785812a9 / 0x00912a9: 05 != e0
  154. 1034.ea8: 00007ffe78581470 / 0x0091470: 4c != b8
  155. 1034.ea8: 00007ffe78581471 / 0x0091471: 8b != 06
  156. 1034.ea8: 00007ffe78581472 / 0x0091472: d1 != 38
  157. 1034.ea8: 00007ffe78581473 / 0x0091473: b8 != 47
  158. 1034.ea8: 00007ffe78581474 / 0x0091474: 29 != 00
  159. 1034.ea8: 00007ffe78581475 / 0x0091475: 00 != 48
  160. 1034.ea8: 00007ffe78581476 / 0x0091476: 00 != 63
  161. 1034.ea8: 00007ffe78581477 / 0x0091477: 00 != c0
  162. 1034.ea8: 00007ffe78581478 / 0x0091478: 0f != ff
  163. 1034.ea8: 00007ffe78581479 / 0x0091479: 05 != e0
  164. 1034.ea8: 00007ffe78581570 / 0x0091570: 4c != b8
  165. 1034.ea8: 00007ffe78581571 / 0x0091571: 8b != 2f
  166. 1034.ea8: 00007ffe78581572 / 0x0091572: d1 != 36
  167. 1034.ea8: 00007ffe78581573 / 0x0091573: b8 != 47
  168. 1034.ea8: 00007ffe78581574 / 0x0091574: 39 != 00
  169. 1034.ea8: 00007ffe78581575 / 0x0091575: 00 != 48
  170. 1034.ea8: 00007ffe78581576 / 0x0091576: 00 != 63
  171. 1034.ea8: 00007ffe78581577 / 0x0091577: 00 != c0
  172. 1034.ea8: 00007ffe78581578 / 0x0091578: 0f != ff
  173. 1034.ea8: 00007ffe78581579 / 0x0091579: 05 != e0
  174. 1034.ea8: 00007ffe78581620 / 0x0091620: 4c != b8
  175. 1034.ea8: 00007ffe78581621 / 0x0091621: 8b != 16
  176. 1034.ea8: 00007ffe78581622 / 0x0091622: d1 != 37
  177. 1034.ea8: 00007ffe78581623 / 0x0091623: b8 != 47
  178. 1034.ea8: 00007ffe78581624 / 0x0091624: 44 != 00
  179. 1034.ea8: 00007ffe78581625 / 0x0091625: 00 != 48
  180. 1034.ea8: 00007ffe78581626 / 0x0091626: 00 != 63
  181. 1034.ea8: 00007ffe78581627 / 0x0091627: 00 != c0
  182. 1034.ea8: 00007ffe78581628 / 0x0091628: 0f != ff
  183. 1034.ea8: 00007ffe78581629 / 0x0091629: 05 != e0
  184. 1034.ea8: 00007ffe78581670 / 0x0091670: 4c != b8
  185. 1034.ea8: 00007ffe78581671 / 0x0091671: 8b != 32
  186. 1034.ea8: 00007ffe78581672 / 0x0091672: d1 != 38
  187. 1034.ea8: 00007ffe78581673 / 0x0091673: b8 != 47
  188. 1034.ea8: 00007ffe78581674 / 0x0091674: 49 != 00
  189. 1034.ea8: 00007ffe78581675 / 0x0091675: 00 != 48
  190. 1034.ea8: 00007ffe78581676 / 0x0091676: 00 != 63
  191. 1034.ea8: 00007ffe78581677 / 0x0091677: 00 != c0
  192. 1034.ea8: 00007ffe78581678 / 0x0091678: 0f != ff
  193. 1034.ea8: 00007ffe78581679 / 0x0091679: 05 != e0
  194. 1034.ea8: 00007ffe785816b0 / 0x00916b0: 4c != b8
  195. 1034.ea8: 00007ffe785816b1 / 0x00916b1: 8b != 7b
  196. 1034.ea8: 00007ffe785816b2 / 0x00916b2: d1 != 36
  197. 1034.ea8: 00007ffe785816b3 / 0x00916b3: b8 != 47
  198. 1034.ea8: 00007ffe785816b4 / 0x00916b4: 4d != 00
  199. 1034.ea8: 00007ffe785816b5 / 0x00916b5: 00 != 48
  200. 1034.ea8: 00007ffe785816b6 / 0x00916b6: 00 != 63
  201. 1034.ea8: 00007ffe785816b7 / 0x00916b7: 00 != c0
  202. 1034.ea8: 00007ffe785816b8 / 0x00916b8: 0f != ff
  203. 1034.ea8: 00007ffe785816b9 / 0x00916b9: 05 != e0
  204. 1034.ea8: 00007ffe78581ce0 / 0x0091ce0: 4c != b8
  205. 1034.ea8: 00007ffe78581ce1 / 0x0091ce1: 8b != c7
  206. 1034.ea8: 00007ffe78581ce2 / 0x0091ce2: d1 != 36
  207. 1034.ea8: 00007ffe78581ce3 / 0x0091ce3: b8 != 47
  208. 1034.ea8: 00007ffe78581ce4 / 0x0091ce4: b0 != 00
  209. 1034.ea8: 00007ffe78581ce5 / 0x0091ce5: 00 != 48
  210. 1034.ea8: 00007ffe78581ce6 / 0x0091ce6: 00 != 63
  211. 1034.ea8: 00007ffe78581ce7 / 0x0091ce7: 00 != c0
  212. 1034.ea8: 00007ffe78581ce8 / 0x0091ce8: 0f != ff
  213. 1034.ea8: 00007ffe78581ce9 / 0x0091ce9: 05 != e0
  214. 1034.ea8: 00007ffe78582180 / 0x0092180: 4c != b8
  215. 1034.ea8: 00007ffe78582181 / 0x0092181: 8b != 7e
  216. 1034.ea8: 00007ffe78582182 / 0x0092182: d1 != 38
  217. 1034.ea8: 00007ffe78582183 / 0x0092183: b8 != 47
  218. 1034.ea8: 00007ffe78582184 / 0x0092184: fa != 00
  219. 1034.ea8: 00007ffe78582185 / 0x0092185: 00 != 48
  220. 1034.ea8: 00007ffe78582186 / 0x0092186: 00 != 63
  221. 1034.ea8: 00007ffe78582187 / 0x0092187: 00 != c0
  222. 1034.ea8: 00007ffe78582188 / 0x0092188: 0f != ff
  223. 1034.ea8: 00007ffe78582189 / 0x0092189: 05 != e0
  224. 1034.ea8: 00007ffe78582630 / 0x0092630: 4c != b8
  225. 1034.ea8: 00007ffe78582631 / 0x0092631: 8b != 62
  226. 1034.ea8: 00007ffe78582632 / 0x0092632: d1 != 37
  227. 1034.ea8: 00007ffe78582633 / 0x0092633: b8 != 47
  228. 1034.ea8: 00007ffe78582634 / 0x0092634: 45 != 00
  229. 1034.ea8: 00007ffe78582635 / 0x0092635: 01 != 48
  230. 1034.ea8: 00007ffe78582636 / 0x0092636: 00 != 63
  231. 1034.ea8: 00007ffe78582637 / 0x0092637: 00 != c0
  232. 1034.ea8: 00007ffe78582638 / 0x0092638: 0f != ff
  233. 1034.ea8: 00007ffe78582639 / 0x0092639: 05 != e0
  234. 1034.ea8: 00007ffe78582860 / 0x0092860: 4c != b8
  235. 1034.ea8: 00007ffe78582861 / 0x0092861: 8b != ae
  236. 1034.ea8: 00007ffe78582862 / 0x0092862: d1 != 37
  237. 1034.ea8: 00007ffe78582863 / 0x0092863: b8 != 47
  238. 1034.ea8: 00007ffe78582864 / 0x0092864: 68 != 00
  239. 1034.ea8: 00007ffe78582865 / 0x0092865: 01 != 48
  240. 1034.ea8: 00007ffe78582866 / 0x0092866: 00 != 63
  241. 1034.ea8: 00007ffe78582867 / 0x0092867: 00 != c0
  242. 1034.ea8: 00007ffe78582868 / 0x0092868: 0f != ff
  243. 1034.ea8: 00007ffe78582869 / 0x0092869: 05 != e0
  244. 1034.ea8: 00007ffe78582a40 / 0x0092a40: 4c != b8
  245. 1034.ea8: 00007ffe78582a41 / 0x0092a41: 8b != d6
  246. 1034.ea8: 00007ffe78582a42 / 0x0092a42: d1 != 38
  247. 1034.ea8: 00007ffe78582a43 / 0x0092a43: b8 != 47
  248. 1034.ea8: 00007ffe78582a44 / 0x0092a44: 86 != 00
  249. 1034.ea8: 00007ffe78582a45 / 0x0092a45: 01 != 48
  250. 1034.ea8: 00007ffe78582a46 / 0x0092a46: 00 != 63
  251. 1034.ea8: 00007ffe78582a47 / 0x0092a47: 00 != c0
  252. 1034.ea8: 00007ffe78582a48 / 0x0092a48: 0f != ff
  253. 1034.ea8: 00007ffe78582a49 / 0x0092a49: 05 != e0
  254. 1034.ea8: 00007ffe78582a60 / 0x0092a60: 4c != b8
  255. 1034.ea8: 00007ffe78582a61 / 0x0092a61: 8b != aa
  256. 1034.ea8: 00007ffe78582a62 / 0x0092a62: d1 != 38
  257. 1034.ea8: 00007ffe78582a63 / 0x0092a63: b8 != 47
  258. 1034.ea8: 00007ffe78582a64 / 0x0092a64: 88 != 00
  259. 1034.ea8: 00007ffe78582a65 / 0x0092a65: 01 != 48
  260. 1034.ea8: 00007ffe78582a66 / 0x0092a66: 00 != 63
  261. 1034.ea8: 00007ffe78582a67 / 0x0092a67: 00 != c0
  262. 1034.ea8: 00007ffe78582a68 / 0x0092a68: 0f != ff
  263. 1034.ea8: 00007ffe78582a69 / 0x0092a69: 05 != e0
  264. 1034.ea8: Restored 0x2000 bytes of original file content at 00007ffe78580ece
  265. 1034.ea8: supR3HardNtChildPurify: cFixes=2 g_fSupAdversaries=0x80000000
  266. 1034.ea8: supR3HardNtChildPurify: Startup delay kludge #1/1: 513 ms, 61 sleeps
  267. 1034.ea8: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
  268. 1034.ea8: *0000000000000000-ffffffffffcbffff 0x0001/0x0000 0x0000000
  269. 1034.ea8: *0000000000340000-000000000031ffff 0x0004/0x0004 0x0020000
  270. 1034.ea8: *0000000000360000-0000000000350fff 0x0002/0x0002 0x0040000
  271. 1034.ea8: 000000000036f000-000000000036dfff 0x0001/0x0000 0x0000000
  272. 1034.ea8: *0000000000370000-0000000000273fff 0x0000/0x0004 0x0020000
  273. 1034.ea8: 000000000046c000-0000000000468fff 0x0104/0x0004 0x0020000
  274. 1034.ea8: 000000000046f000-000000000046dfff 0x0004/0x0004 0x0020000
  275. 1034.ea8: 0000000000470000-000000000045ffff 0x0001/0x0000 0x0000000
  276. 1034.ea8: *0000000000480000-000000000047efff 0x0002/0x0002 0x0040000
  277. 1034.ea8: 0000000000481000-0000000000471fff 0x0001/0x0000 0x0000000
  278. 1034.ea8: *0000000000490000-000000000048bfff 0x0002/0x0002 0x0040000
  279. 1034.ea8: 0000000000494000-0000000000487fff 0x0001/0x0000 0x0000000
  280. 1034.ea8: *00000000004a0000-000000000049dfff 0x0004/0x0004 0x0020000
  281. 1034.ea8: 00000000004a2000-ffffffff80963fff 0x0001/0x0000 0x0000000
  282. 1034.ea8: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000
  283. 1034.ea8: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000
  284. 1034.ea8: 000000007fff0000-ffff800a08f0ffff 0x0001/0x0000 0x0000000
  285. 1034.ea8: *00007ff6f70d0000-00007ff6f70acfff 0x0002/0x0002 0x0040000
  286. 1034.ea8: 00007ff6f70f3000-00007ff6f70e9fff 0x0001/0x0000 0x0000000
  287. 1034.ea8: *00007ff6f70fc000-00007ff6f70f9fff 0x0004/0x0004 0x0020000
  288. 1034.ea8: *00007ff6f70fe000-00007ff6f70fcfff 0x0004/0x0004 0x0020000
  289. 1034.ea8: 00007ff6f70ff000-00007ff6f6a1dfff 0x0001/0x0000 0x0000000
  290. 1034.ea8: *00007ff6f77e0000-00007ff6f77e0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  291. 1034.ea8: 00007ff6f77e1000-00007ff6f7867fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  292. 1034.ea8: 00007ff6f7868000-00007ff6f7868fff 0x0040/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  293. 1034.ea8: 00007ff6f7869000-00007ff6f78b3fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  294. 1034.ea8: 00007ff6f78b4000-00007ff6f78c0fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  295. 1034.ea8: 00007ff6f78c1000-00007ff6f790bfff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Data\Virtual Box\VirtualBox.exe
  296. 1034.ea8: 00007ff6f790c000-00007fef76d27fff 0x0001/0x0000 0x0000000
  297. 1034.ea8: *00007ffe784f0000-00007ffe784f0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
  298. 1034.ea8: 00007ffe784f1000-00007ffe7861cfff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
  299. 1034.ea8: 00007ffe7861d000-00007ffe78622fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
  300. 1034.ea8: 00007ffe78623000-00007ffe7862ffff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
  301. 1034.ea8: 00007ffe78630000-00007ffe78633fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
  302. 1034.ea8: 00007ffe78634000-00007ffe78634fff 0x0010/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
  303. 1034.ea8: 00007ffe78635000-00007ffe7869bfff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
  304. 1034.ea8: 00007ffe7869c000-00007ffcf0d57fff 0x0001/0x0000 0x0000000
  305. 1034.ea8: *00007ffffffe0000-00007ffffffcffff 0x0001/0x0002 0x0020000
  306. 1034.ea8: supR3HardNtChildPurify: Done after 809 ms and 2 fixes (loop #1).
  307. c94.4f8: Log file opened: 5.0.4r102546 g_hStartupLog=0000000000000004 g_uNtVerCombined=0x63258000
  308. c94.4f8: supR3HardenedVmProcessInit: uNtDllAddr=00007ffe784f0000
  309. c94.4f8: ntdll.dll: timestamp 0x55a68e0c (rc=VINF_SUCCESS)
  310. c94.4f8: New simple heap: #1 00000000005b0000 LB 0x400000 (for 1753088 allocation)
  311. 1034.ea8: supR3HardNtEnableThreadCreation:
  312. c94.4f8: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Data\Virtual Box'
  313. c94.4f8: System32: \Device\HarddiskVolume1\Windows\System32
  314. c94.4f8: WinSxS: \Device\HarddiskVolume1\Windows\WinSxS
  315. c94.4f8: KnownDllPath: C:\Windows\system32
  316. c94.4f8: supR3HardenedVmProcessInit: Opening vboxdrv stub...
  317. c94.4f8: Error opening VBoxDrvStub: STATUS_OBJECT_NAME_NOT_FOUND
  318. c94.4f8: supR3HardenedWinReadErrorInfoDevice: NtCreateFile -> 0xc0000034
  319. c94.4f8: Error -101 in supR3HardenedWinReSpawn! (enmWhat=3)
  320. c94.4f8: NtCreateFile(\Device\VBoxDrvStub) failed: 0xc0000034 STATUS_OBJECT_NAME_NOT_FOUND (0 retries)
  321.  
  322. Driver is probably stuck stopping/starting. Try 'sc.exe query vboxdrv' to get more information about its state. Rebooting may actually help.
  323. 1034.ea8: supR3HardenedWinCheckChild: enmRequest=2 rc=-101 enmWhat=3 supR3HardenedWinReSpawn: NtCreateFile(\Device\VBoxDrvStub) failed: 0xc0000034 STATUS_OBJECT_NAME_NOT_FOUND (0 retries)
  324.  
  325. Driver is probably stuck stopping/starting. Try 'sc.exe query vboxdrv' to get more information about its state. Rebooting may actually help.
  326. 1034.ea8: Error -101 in supR3HardenedWinReSpawn! (enmWhat=3)
  327. 1034.ea8: NtCreateFile(\Device\VBoxDrvStub) failed: 0xc0000034 STATUS_OBJECT_NAME_NOT_FOUND (0 retries)
  328.  
  329. Driver is probably stuck stopping/starting. Try 'sc.exe query vboxdrv' to get more information about its state. Rebooting may actually help.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!