Untitled

4988.2aa4: Log file opened: 5.2.16r123759 g_hStartupLog=0000000000000084 g_uNtVerCombined=0xa042ee00
4988.2aa4: \SystemRoot\System32\ntdll.dll:
4988.2aa4:     CreationTime:    2018-07-11T01:22:20.486818800Z
4988.2aa4:     LastWriteTime:   2018-07-06T07:25:51.438518000Z
4988.2aa4:     ChangeTime:      2018-07-26T18:08:11.660009400Z
4988.2aa4:     FileAttributes:  0x20
4988.2aa4:     Size:            0x1db0b8
4988.2aa4:     NT Headers:      0xe8
4988.2aa4:     Timestamp:       0xf4df6dc2
4988.2aa4:     Machine:         0x8664 - amd64
4988.2aa4:     Timestamp:       0xf4df6dc2
4988.2aa4:     Image Version:   10.0
4988.2aa4:     SizeOfImage:     0x1e1000 (1970176)
4988.2aa4:     Resource Dir:    0x174000 LB 0x6b338
4988.2aa4:     [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
4988.2aa4:     [Raw version resource data: 0x1740f0 LB 0x380, codepage 0x0 (reserved 0x0)]
4988.2aa4:     ProductName:     Microsoft® Windows® Operating System
4988.2aa4:     ProductVersion:  10.0.17134.165
4988.2aa4:     FileVersion:     10.0.17134.165 (WinBuild.160101.0800)
4988.2aa4:     FileDescription: NT Layer DLL
4988.2aa4: \SystemRoot\System32\kernel32.dll:
4988.2aa4:     CreationTime:    2018-04-11T23:34:40.510607900Z
4988.2aa4:     LastWriteTime:   2018-04-11T23:34:40.510607900Z
4988.2aa4:     ChangeTime:      2018-05-04T08:45:56.436435100Z
4988.2aa4:     FileAttributes:  0x20
4988.2aa4:     Size:            0xafef8
4988.2aa4:     NT Headers:      0xe8
4988.2aa4:     Timestamp:       0x5f488a51
4988.2aa4:     Machine:         0x8664 - amd64
4988.2aa4:     Timestamp:       0x5f488a51
4988.2aa4:     Image Version:   10.0
4988.2aa4:     SizeOfImage:     0xb2000 (729088)
4988.2aa4:     Resource Dir:    0xb0000 LB 0x520
4988.2aa4:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
4988.2aa4:     [Raw version resource data: 0xb00b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
4988.2aa4:     ProductName:     Microsoft® Windows® Operating System
4988.2aa4:     ProductVersion:  10.0.17134.1
4988.2aa4:     FileVersion:     10.0.17134.1 (WinBuild.160101.0800)
4988.2aa4:     FileDescription: Windows NT BASE API Client DLL
4988.2aa4: \SystemRoot\System32\KernelBase.dll:
4988.2aa4:     CreationTime:    2018-07-11T01:22:17.653886000Z
4988.2aa4:     LastWriteTime:   2018-07-06T07:25:54.438736600Z
4988.2aa4:     ChangeTime:      2018-07-26T18:08:11.655022700Z
4988.2aa4:     FileAttributes:  0x20
4988.2aa4:     Size:            0x273dd0
4988.2aa4:     NT Headers:      0xf8
4988.2aa4:     Timestamp:       0xb0bb231d
4988.2aa4:     Machine:         0x8664 - amd64
4988.2aa4:     Timestamp:       0xb0bb231d
4988.2aa4:     Image Version:   10.0
4988.2aa4:     SizeOfImage:     0x273000 (2568192)
4988.2aa4:     Resource Dir:    0x251000 LB 0x548
4988.2aa4:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
4988.2aa4:     [Raw version resource data: 0x2510b0 LB 0x3bc, codepage 0x0 (reserved 0x0)]
4988.2aa4:     ProductName:     Microsoft® Windows® Operating System
4988.2aa4:     ProductVersion:  10.0.17134.165
4988.2aa4:     FileVersion:     10.0.17134.165 (WinBuild.160101.0800)
4988.2aa4:     FileDescription: Windows NT BASE API Client DLL
4988.2aa4: \SystemRoot\System32\apisetschema.dll:
4988.2aa4:     CreationTime:    2018-04-11T23:34:44.042150700Z
4988.2aa4:     LastWriteTime:   2018-04-11T23:34:44.042150700Z
4988.2aa4:     ChangeTime:      2018-05-04T06:25:07.131292400Z
4988.2aa4:     FileAttributes:  0x20
4988.2aa4:     Size:            0x1bd98
4988.2aa4:     NT Headers:      0xd0
4988.2aa4:     Timestamp:       0xd02ff418
4988.2aa4:     Machine:         0x8664 - amd64
4988.2aa4:     Timestamp:       0xd02ff418
4988.2aa4:     Image Version:   10.0
4988.2aa4:     SizeOfImage:     0x1c000 (114688)
4988.2aa4:     Resource Dir:    0x1b000 LB 0x408
4988.2aa4:     [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
4988.2aa4:     [Raw version resource data: 0x1b060 LB 0x3a8, codepage 0x0 (reserved 0x0)]
4988.2aa4:     ProductName:     Microsoft® Windows® Operating System
4988.2aa4:     ProductVersion:  10.0.17134.1
4988.2aa4:     FileVersion:     10.0.17134.1 (WinBuild.160101.0800)
4988.2aa4:     FileDescription: ApiSet Schema DLL
4988.2aa4: Found driver SymNetS (0x2)
4988.2aa4: Found driver SRTSPX (0x2)
4988.2aa4: Found driver SymEvent (0x2)
4988.2aa4: Found driver SymIRON (0x2)
4988.2aa4: supR3HardenedWinFindAdversaries: 0x2
4988.2aa4: \SystemRoot\System32\drivers\symevent64x86.sys:
4988.2aa4:     CreationTime:    2018-05-04T06:59:05.713447400Z
4988.2aa4:     LastWriteTime:   2018-06-14T18:13:36.727665800Z
4988.2aa4:     ChangeTime:      2018-06-15T01:58:25.222933600Z
4988.2aa4:     FileAttributes:  0x20
4988.2aa4:     Size:            0x18650
4988.2aa4:     NT Headers:      0xe8
4988.2aa4:     Timestamp:       0x5a95cc4b
4988.2aa4:     Machine:         0x8664 - amd64
4988.2aa4:     Timestamp:       0x5a95cc4b
4988.2aa4:     Image Version:   6.3
4988.2aa4:     SizeOfImage:     0x21000 (135168)
4988.2aa4:     Resource Dir:    0x1f000 LB 0x3c8
4988.2aa4:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
4988.2aa4:     [Raw version resource data: 0x1f0b8 LB 0x310, codepage 0x4e4 (reserved 0x0)]
4988.2aa4:     ProductName:     SYMEVENT
4988.2aa4:     ProductVersion:  14.0.6.27
4988.2aa4:     FileVersion:     14.0.6.27
4988.2aa4:     FileDescription: Symantec Event Library
4988.2aa4: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox'
4988.2aa4: Calling main()
4988.2aa4: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
4988.2aa4: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox'
4988.2aa4: SUPR3HardenedMain: Respawn #1
4988.2aa4: System32:  \Device\HarddiskVolume3\Windows\System32
4988.2aa4: WinSxS:    \Device\HarddiskVolume3\Windows\WinSxS
4988.2aa4: KnownDllPath: C:\WINDOWS\System32
4988.2aa4: '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
4988.2aa4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe)
4988.2aa4: supR3HardNtEnableThreadCreation:
4988.2aa4: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ffbfe322fc0 pvNtTerminateThread=00007ffbfe34a900
4988.2aa4: supR3HardenedWinDoReSpawn(1): New child 3770.2c5c [kernel32].
4988.2aa4: supR3HardNtChildGatherData: PebBaseAddress=0000000000481000 cbPeb=0x388
4988.2aa4: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00007ffbfe2b0000 uNtDllChildAddr=00007ffbfe2b0000
4988.2aa4: supR3HardenedWinSetupChildInit: uLdrInitThunk=00007ffbfe322fc0
4988.2aa4: supR3HardenedWinSetupChildInit: Start child.
4988.2aa4: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 0 ms.
4988.2aa4: supR3HardNtChildPurify: Startup delay kludge #1/0: 518 ms, 61 sleeps
4988.2aa4: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
4988.2aa4:  *0000000000000000-000000000029ffff 0x0001/0x0000 0x0000000
4988.2aa4:  *00000000002a0000-00000000002bffff 0x0004/0x0004 0x0020000
4988.2aa4:  *00000000002c0000-00000000002d8fff 0x0002/0x0002 0x0040000
4988.2aa4:   00000000002d9000-00000000002dffff 0x0001/0x0000 0x0000000
4988.2aa4:  *00000000002e0000-00000000003dafff 0x0000/0x0004 0x0020000
4988.2aa4:   00000000003db000-00000000003ddfff 0x0104/0x0004 0x0020000
4988.2aa4:   00000000003de000-00000000003dffff 0x0004/0x0004 0x0020000
4988.2aa4:  *00000000003e0000-00000000003e3fff 0x0002/0x0002 0x0040000
4988.2aa4:   00000000003e4000-00000000003effff 0x0001/0x0000 0x0000000
4988.2aa4:  *00000000003f0000-00000000003f0fff 0x0004/0x0004 0x0020000
4988.2aa4:   00000000003f1000-00000000003fffff 0x0001/0x0000 0x0000000
4988.2aa4:  *0000000000400000-0000000000480fff 0x0000/0x0004 0x0020000
4988.2aa4:   0000000000481000-0000000000483fff 0x0004/0x0004 0x0020000
4988.2aa4:   0000000000484000-00000000005fffff 0x0000/0x0004 0x0020000
4988.2aa4:   0000000000600000-000000007ffdffff 0x0001/0x0000 0x0000000
4988.2aa4:  *000000007ffe0000-000000007ffe0fff 0x0002/0x0002 0x0020000
4988.2aa4:   000000007ffe1000-00007ff5f669ffff 0x0001/0x0000 0x0000000
4988.2aa4:  *00007ff5f66a0000-00007ff5f66cafff 0x0002/0x0002 0x0040000
4988.2aa4:   00007ff5f66cb000-00007ff6db83ffff 0x0001/0x0000 0x0000000
4988.2aa4:  *00007ff6db840000-00007ff6db840fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
4988.2aa4:   00007ff6db841000-00007ff6db8b1fff 0x0020/0x0080 0x1000000  \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
4988.2aa4:   00007ff6db8b2000-00007ff6db8b2fff 0x0080/0x0080 0x1000000  \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
4988.2aa4:   00007ff6db8b3000-00007ff6db8f8fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
4988.2aa4:   00007ff6db8f9000-00007ff6db8f9fff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
4988.2aa4:   00007ff6db8fa000-00007ff6db8fafff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
4988.2aa4:   00007ff6db8fb000-00007ff6db8fffff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
4988.2aa4:   00007ff6db900000-00007ff6db900fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
4988.2aa4:   00007ff6db901000-00007ff6db901fff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
4988.2aa4:   00007ff6db902000-00007ff6db905fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
4988.2aa4:   00007ff6db906000-00007ff6db94dfff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
4988.2aa4:   00007ff6db94e000-00007ffbfe2affff 0x0001/0x0000 0x0000000
4988.2aa4:  *00007ffbfe2b0000-00007ffbfe2b0fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume3\Windows\System32\ntdll.dll
4988.2aa4:   00007ffbfe2b1000-00007ffbfe3bffff 0x0020/0x0080 0x1000000  \Device\HarddiskVolume3\Windows\System32\ntdll.dll
4988.2aa4:   00007ffbfe3c0000-00007ffbfe405fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume3\Windows\System32\ntdll.dll
4988.2aa4:   00007ffbfe406000-00007ffbfe410fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume3\Windows\System32\ntdll.dll
4988.2aa4:   00007ffbfe411000-00007ffbfe41efff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume3\Windows\System32\ntdll.dll
4988.2aa4:   00007ffbfe41f000-00007ffbfe41ffff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume3\Windows\System32\ntdll.dll
4988.2aa4:   00007ffbfe420000-00007ffbfe422fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume3\Windows\System32\ntdll.dll
4988.2aa4:   00007ffbfe423000-00007ffbfe490fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume3\Windows\System32\ntdll.dll
4988.2aa4:   00007ffbfe491000-00007ffffffeffff 0x0001/0x0000 0x0000000
4988.2aa4: VirtualBox.exe: timestamp 0x5b4cb14e (rc=VINF_SUCCESS)
4988.2aa4: '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
4988.2aa4: '\Device\HarddiskVolume3\Windows\System32\ntdll.dll' has no imports
4988.2aa4: supR3HardNtChildPurify: Done after 544 ms and 0 fixes (loop #0).
4988.2aa4: supR3HardNtEnableThreadCreation:
3770.2c5c: Log file opened: 5.2.16r123759 g_hStartupLog=0000000000000004 g_uNtVerCombined=0xa042ee00
3770.2c5c: supR3HardenedVmProcessInit: uNtDllAddr=00007ffbfe2b0000 g_uNtVerCombined=0xa042ee00
3770.2c5c: ntdll.dll: timestamp 0xf4df6dc2 (rc=VINF_SUCCESS)
3770.2c5c: New simple heap: #1 0000000000700000 LB 0x400000 (for 1970176 allocation)
3770.2c5c: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox'
3770.2c5c: System32:  \Device\HarddiskVolume3\Windows\System32
3770.2c5c: WinSxS:    \Device\HarddiskVolume3\Windows\WinSxS
3770.2c5c: KnownDllPath: C:\WINDOWS\System32
3770.2c5c: supR3HardenedVmProcessInit: Opening vboxdrv stub...
3770.2c5c: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
3770.2c5c: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
3770.2c5c: Registered Dll notification callback with NTDLL.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\kernel32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\kernel32.dll
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\KERNEL32.DLL (Input=KERNEL32.DLL, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000004001:<flags> [calling]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfa740000 LB 0x00273000 C:\WINDOWS\System32\KERNELBASE.dll [fFlags=0x0]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\KernelBase.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\KernelBase.dll
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfe1c0000 LB 0x000b2000 C:\WINDOWS\System32\KERNEL32.DLL [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfe1c0000 'C:\WINDOWS\System32\KERNEL32.DLL'
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ff6db840000 LB 0x0010e000 C:\Program Files\Oracle\VirtualBox\VirtualBox.exe [fFlags=0x0]
3770.2c5c: '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
3770.2c5c: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ffbfe322fc0 pvNtTerminateThread=00007ffbfe34a900
4988.2aa4: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 69 ms.
3770.2c5c: \SystemRoot\System32\ntdll.dll:
3770.2c5c:     CreationTime:    2018-07-11T01:22:20.486818800Z
3770.2c5c:     LastWriteTime:   2018-07-06T07:25:51.438518000Z
3770.2c5c:     ChangeTime:      2018-07-26T18:08:11.660009400Z
3770.2c5c:     FileAttributes:  0x20
3770.2c5c:     Size:            0x1db0b8
3770.2c5c:     NT Headers:      0xe8
3770.2c5c:     Timestamp:       0xf4df6dc2
3770.2c5c:     Machine:         0x8664 - amd64
3770.2c5c:     Timestamp:       0xf4df6dc2
3770.2c5c:     Image Version:   10.0
3770.2c5c:     SizeOfImage:     0x1e1000 (1970176)
3770.2c5c:     Resource Dir:    0x174000 LB 0x6b338
3770.2c5c:     [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
3770.2c5c:     [Raw version resource data: 0x1740f0 LB 0x380, codepage 0x0 (reserved 0x0)]
3770.2c5c:     ProductName:     Microsoft® Windows® Operating System
3770.2c5c:     ProductVersion:  10.0.17134.165
3770.2c5c:     FileVersion:     10.0.17134.165 (WinBuild.160101.0800)
3770.2c5c:     FileDescription: NT Layer DLL
3770.2c5c: \SystemRoot\System32\kernel32.dll:
3770.2c5c:     CreationTime:    2018-04-11T23:34:40.510607900Z
3770.2c5c:     LastWriteTime:   2018-04-11T23:34:40.510607900Z
3770.2c5c:     ChangeTime:      2018-05-04T08:45:56.436435100Z
3770.2c5c:     FileAttributes:  0x20
3770.2c5c:     Size:            0xafef8
3770.2c5c:     NT Headers:      0xe8
3770.2c5c:     Timestamp:       0x5f488a51
3770.2c5c:     Machine:         0x8664 - amd64
3770.2c5c:     Timestamp:       0x5f488a51
3770.2c5c:     Image Version:   10.0
3770.2c5c:     SizeOfImage:     0xb2000 (729088)
3770.2c5c:     Resource Dir:    0xb0000 LB 0x520
3770.2c5c:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
3770.2c5c:     [Raw version resource data: 0xb00b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
3770.2c5c:     ProductName:     Microsoft® Windows® Operating System
3770.2c5c:     ProductVersion:  10.0.17134.1
3770.2c5c:     FileVersion:     10.0.17134.1 (WinBuild.160101.0800)
3770.2c5c:     FileDescription: Windows NT BASE API Client DLL
3770.2c5c: \SystemRoot\System32\KernelBase.dll:
3770.2c5c:     CreationTime:    2018-07-11T01:22:17.653886000Z
3770.2c5c:     LastWriteTime:   2018-07-06T07:25:54.438736600Z
3770.2c5c:     ChangeTime:      2018-07-26T18:08:11.655022700Z
3770.2c5c:     FileAttributes:  0x20
3770.2c5c:     Size:            0x273dd0
3770.2c5c:     NT Headers:      0xf8
3770.2c5c:     Timestamp:       0xb0bb231d
3770.2c5c:     Machine:         0x8664 - amd64
3770.2c5c:     Timestamp:       0xb0bb231d
3770.2c5c:     Image Version:   10.0
3770.2c5c:     SizeOfImage:     0x273000 (2568192)
3770.2c5c:     Resource Dir:    0x251000 LB 0x548
3770.2c5c:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
3770.2c5c:     [Raw version resource data: 0x2510b0 LB 0x3bc, codepage 0x0 (reserved 0x0)]
3770.2c5c:     ProductName:     Microsoft® Windows® Operating System
3770.2c5c:     ProductVersion:  10.0.17134.165
3770.2c5c:     FileVersion:     10.0.17134.165 (WinBuild.160101.0800)
3770.2c5c:     FileDescription: Windows NT BASE API Client DLL
3770.2c5c: \SystemRoot\System32\apisetschema.dll:
3770.2c5c:     CreationTime:    2018-04-11T23:34:44.042150700Z
3770.2c5c:     LastWriteTime:   2018-04-11T23:34:44.042150700Z
3770.2c5c:     ChangeTime:      2018-05-04T06:25:07.131292400Z
3770.2c5c:     FileAttributes:  0x20
3770.2c5c:     Size:            0x1bd98
3770.2c5c:     NT Headers:      0xd0
3770.2c5c:     Timestamp:       0xd02ff418
3770.2c5c:     Machine:         0x8664 - amd64
3770.2c5c:     Timestamp:       0xd02ff418
3770.2c5c:     Image Version:   10.0
3770.2c5c:     SizeOfImage:     0x1c000 (114688)
3770.2c5c:     Resource Dir:    0x1b000 LB 0x408
3770.2c5c:     [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
3770.2c5c:     [Raw version resource data: 0x1b060 LB 0x3a8, codepage 0x0 (reserved 0x0)]
3770.2c5c:     ProductName:     Microsoft® Windows® Operating System
3770.2c5c:     ProductVersion:  10.0.17134.1
3770.2c5c:     FileVersion:     10.0.17134.1 (WinBuild.160101.0800)
3770.2c5c:     FileDescription: ApiSet Schema DLL
3770.2c5c: Found driver SymNetS (0x2)
3770.2c5c: Found driver SRTSPX (0x2)
3770.2c5c: Found driver SymEvent (0x2)
3770.2c5c: Found driver SymIRON (0x2)
3770.2c5c: supR3HardenedWinFindAdversaries: 0x2
3770.2c5c: \SystemRoot\System32\drivers\symevent64x86.sys:
3770.2c5c:     CreationTime:    2018-05-04T06:59:05.713447400Z
3770.2c5c:     LastWriteTime:   2018-06-14T18:13:36.727665800Z
3770.2c5c:     ChangeTime:      2018-06-15T01:58:25.222933600Z
3770.2c5c:     FileAttributes:  0x20
3770.2c5c:     Size:            0x18650
3770.2c5c:     NT Headers:      0xe8
3770.2c5c:     Timestamp:       0x5a95cc4b
3770.2c5c:     Machine:         0x8664 - amd64
3770.2c5c:     Timestamp:       0x5a95cc4b
3770.2c5c:     Image Version:   6.3
3770.2c5c:     SizeOfImage:     0x21000 (135168)
3770.2c5c:     Resource Dir:    0x1f000 LB 0x3c8
3770.2c5c:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
3770.2c5c:     [Raw version resource data: 0x1f0b8 LB 0x310, codepage 0x4e4 (reserved 0x0)]
3770.2c5c:     ProductName:     SYMEVENT
3770.2c5c:     ProductVersion:  14.0.6.27
3770.2c5c:     FileVersion:     14.0.6.27
3770.2c5c:     FileDescription: Symantec Event Library
3770.2c5c: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox'
3770.2c5c: Calling main()
3770.2c5c: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
3770.2c5c: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox'
3770.2c5c: '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe)
3770.2c5c: SUPR3HardenedMain: Respawn #2
3770.2c5c: supR3HardNtEnableThreadCreation:
3770.2c5c: '\Device\HarddiskVolume3\Windows\System32\ntdll.dll' has no imports
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\ntdll.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\ntdll.dll
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\ntdll.dll (Input=ntdll.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfe2b0000 'C:\WINDOWS\System32\ntdll.dll'
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\apphelp.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\apphelp.dll
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\apphelp.dll (rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000000:<flags> [calling]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\apphelp.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf8670000 LB 0x0008b000 C:\WINDOWS\system32\apphelp.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\apphelp.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ntdll.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\ntdll.dll (Input=ntdll.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfe2b0000 'C:\WINDOWS\System32\ntdll.dll'
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf8670000 'C:\WINDOWS\system32\apphelp.dll'
3770.2c5c: Error -104 in supR3HardenedWinReSpawn! (enmWhat=5)
3770.2c5c: Error relaunching VirtualBox VM process: 5
Command line: '60eaff78-4bdd-042d-2e72-669728efd737-suplib-3rdchild --comment CentOS --startvm 7b2e78fe-0cd7-4cde-b122-aa47c0974be8 --no-startvm-errormsgbox "--sup-hardening-log=C:\Users\digni\VirtualBox VMs\CentOS\Logs\VBoxHardening.log"'
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'opengl32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'vboxrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'msvcp100.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'msvcr100.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qt5corevbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'qt5guivbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'qt5widgetsvbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'qt5printsupportvbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'qt5openglvbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'advapi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'shell32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #13 'ole32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #14 'oleaut32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #15 'winmm.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume3\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'winmmbase.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msvcrt.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\winmm.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\winmm.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume3\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcp_win.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'combase.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #23 'rpcrt4.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\oleaut32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\oleaut32.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume3\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #23 'rpcrt4.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #48 'gdi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #49 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #50 'combase.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\ole32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\ole32.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume3\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #74 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #76 'gdi32.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\shell32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\shell32.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'sechost.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #27 'rpcrt4.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\advapi32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\advapi32.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'win32u.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #34 'gdi32.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\user32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\user32.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5openglvbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5openglvbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5openglvbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'qt5widgetsvbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'qt5guivbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'qt5corevbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'msvcr100.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5OpenGLVBox.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5OpenGLVBox.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5printsupportvbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5printsupportvbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5printsupportvbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'qt5widgetsvbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'qt5guivbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qt5corevbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'winspool.drv'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'comdlg32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'msvcr100.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5PrintSupportVBox.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5PrintSupportVBox.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5widgetsvbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5widgetsvbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5widgetsvbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'qt5guivbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'qt5corevbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'shell32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcp100.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msvcr100.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5guivbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'ole32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'opengl32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qt5corevbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcp100.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msvcr100.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'shell32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ole32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'advapi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'ws2_32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'mpr.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'msvcp100.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'msvcr100.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcp100.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcp100.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'vboxrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'vboxrt.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\vboxrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcp100.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ws2_32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'rpcrt4.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume3\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'advapi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'glu32.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\opengl32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\opengl32.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'glu32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'glu32.dll' -> '\Device\HarddiskVolume3\Windows\System32\glu32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'opengl32.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\glu32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\glu32.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\gdi32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\gdi32.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\msvcrt.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\msvcrt.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume3\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #26 'rpcrt4.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\ws2_32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\ws2_32.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mpr.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'mpr.dll' -> '\Device\HarddiskVolume3\Windows\System32\mpr.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\mpr.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\mpr.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume3\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ws2_32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume3\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ole32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume3\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\shell32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume3\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume3\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ole32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume3\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\shell32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5guivbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comdlg32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'comdlg32.dll' -> '\Device\HarddiskVolume3\Windows\System32\comdlg32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #35 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #36 'shlwapi.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #37 'gdi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #38 'comctl32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #39 'shell32.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\comdlg32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\comdlg32.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winspool.drv'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'winspool.drv' -> '\Device\HarddiskVolume3\Windows\System32\winspool.drv' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #24 'propsys.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #29 'iphlpapi.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #38 'bcrypt.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\winspool.drv)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\winspool.drv
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5guivbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5widgetsvbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5widgetsvbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5widgetsvbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5guivbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5widgetsvbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5widgetsvbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5widgetsvbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume3\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
3770.2c5c: '\Device\HarddiskVolume3\Windows\System32\win32u.dll' has no imports
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\win32u.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\win32u.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'sechost.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'sechost.dll' -> '\Device\HarddiskVolume3\Windows\System32\sechost.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'rpcrt4.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\sechost.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\sechost.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume3\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'rpcrt4.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #45 'bcryptprimitives.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\combase.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\combase.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume3\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\combase.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp_win.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp_win.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcp_win.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\msvcp_win.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\msvcp_win.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmmbase.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmmbase.dll' -> '\Device\HarddiskVolume3\Windows\System32\winmmbase.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\winmmbase.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\winmmbase.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcryptprimitives.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcryptprimitives.dll' -> '\Device\HarddiskVolume3\Windows\System32\bcryptprimitives.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\bcryptprimitives.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\bcryptprimitives.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcrypt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcrypt.dll' -> '\Device\HarddiskVolume3\Windows\System32\bcrypt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\bcrypt.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\bcrypt.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'iphlpapi.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'iphlpapi.dll' -> '\Device\HarddiskVolume3\Windows\System32\iphlpapi.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\IPHLPAPI.DLL)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\IPHLPAPI.DLL
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'propsys.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'propsys.dll' -> '\Device\HarddiskVolume3\Windows\System32\propsys.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #15 'oleaut32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #31 'rpcrt4.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\propsys.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\propsys.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume3\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\shell32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comctl32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'comctl32.dll' -> '\Device\HarddiskVolume3\Windows\System32\comctl32.dll' [rcNtRedir=0x0]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'advapi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\comctl32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\comctl32.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shlwapi.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shlwapi.dll' -> '\Device\HarddiskVolume3\Windows\System32\shlwapi.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #44 'gdi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #45 'user32.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\shlwapi.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\shlwapi.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume3\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume3\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VirtualBox.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000a01:<flags> [calling]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5PrintSupportVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5OpenGLVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\winmm.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\glu32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\mpr.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\winspool.drv [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'advapi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.17134.191_none_f957a2993090dc56\comctl32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.17134.191_none_f957a2993090dc56\comctl32.dll
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\winmmbase.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\propsys.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IPHLPAPI.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfc1f0000 LB 0x0009e000 C:\WINDOWS\System32\msvcrt.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfc420000 LB 0x00124000 C:\WINDOWS\System32\RPCRT4.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfca40000 LB 0x0005b000 C:\WINDOWS\System32\sechost.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\sechost.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfc6b0000 LB 0x000a1000 C:\WINDOWS\System32\ADVAPI32.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfa720000 LB 0x00020000 C:\WINDOWS\System32\win32u.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\win32u.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfaa70000 LB 0x000fa000 C:\WINDOWS\System32\ucrtbase.dll [fFlags=0x0]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\ucrtbase.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\ucrtbase.dll
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfa680000 LB 0x0009f000 C:\WINDOWS\System32\msvcp_win.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcp_win.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfabf0000 LB 0x00192000 C:\WINDOWS\System32\gdi32full.dll [fFlags=0x0]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcp_win.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #33 'gdi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #35 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #36 'win32u.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\gdi32full.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\gdi32full.dll
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfcd50000 LB 0x00028000 C:\WINDOWS\System32\GDI32.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfb740000 LB 0x00190000 C:\WINDOWS\System32\USER32.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbcc4a0000 LB 0x0002c000 C:\WINDOWS\SYSTEM32\GLU32.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\glu32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbbfa70000 LB 0x00120000 C:\WINDOWS\SYSTEM32\OPENGL32.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   0000000066100000 LB 0x000d2000 C:\Program Files\Oracle\VirtualBox\MSVCR100.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   0000000066060000 LB 0x00098000 C:\Program Files\Oracle\VirtualBox\MSVCP100.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfc640000 LB 0x0006c000 C:\WINDOWS\System32\WS2_32.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ws2_32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffba1de0000 LB 0x00595000 C:\Program Files\Oracle\VirtualBox\VBoxRT.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfaa20000 LB 0x00049000 C:\WINDOWS\System32\cfgmgr32.dll [fFlags=0x0]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\cfgmgr32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\cfgmgr32.dll
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfab70000 LB 0x0007a000 C:\WINDOWS\System32\bcryptPrimitives.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\bcryptprimitives.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfbec0000 LB 0x00323000 C:\WINDOWS\System32\combase.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\combase.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfc920000 LB 0x000a9000 C:\WINDOWS\System32\shcore.dll [fFlags=0x0]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #37 'rpcrt4.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #44 'combase.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\SHCore.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\SHCore.dll
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfc9e0000 LB 0x00051000 C:\WINDOWS\System32\shlwapi.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\shlwapi.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfa610000 LB 0x00011000 C:\WINDOWS\System32\kernel.appcore.dll [fFlags=0x0]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'rpcrt4.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\kernel.appcore.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\kernel.appcore.dll
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfa5f0000 LB 0x0001f000 C:\WINDOWS\System32\profapi.dll [fFlags=0x0]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\profapi.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\profapi.dll
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfa630000 LB 0x0004c000 C:\WINDOWS\System32\powrprof.dll [fFlags=0x0]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'rpcrt4.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\powrprof.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\powrprof.dll
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfa5e0000 LB 0x0000a000 C:\WINDOWS\System32\FLTLIB.DLL [fFlags=0x0]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\fltLib.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\fltLib.dll
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfb030000 LB 0x0070d000 C:\WINDOWS\System32\windows.storage.dll [fFlags=0x0]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'rpcrt4.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #54 'combase.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #58 'profapi.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #81 'fltlib.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\windows.storage.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\windows.storage.dll
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfcd80000 LB 0x01440000 C:\WINDOWS\System32\SHELL32.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\shell32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfcb70000 LB 0x00151000 C:\WINDOWS\System32\ole32.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ole32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbed400000 LB 0x0001a000 C:\WINDOWS\SYSTEM32\MPR.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\mpr.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   0000000065af0000 LB 0x00565000 C:\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffba0dd0000 LB 0x005f7000 C:\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   0000000065580000 LB 0x00561000 C:\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfcaa0000 LB 0x000c2000 C:\WINDOWS\System32\OLEAUT32.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf90d0000 LB 0x001b4000 C:\WINDOWS\SYSTEM32\PROPSYS.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\propsys.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf9b60000 LB 0x00038000 C:\WINDOWS\SYSTEM32\IPHLPAPI.DLL [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IPHLPAPI.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfa120000 LB 0x00025000 C:\WINDOWS\SYSTEM32\bcrypt.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf3f70000 LB 0x00084000 C:\WINDOWS\SYSTEM32\WINSPOOL.DRV [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\winspool.drv [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf0410000 LB 0x000a7000 C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.17134.191_none_f957a2993090dc56\COMCTL32.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.17134.191_none_f957a2993090dc56\comctl32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfc760000 LB 0x000ed000 C:\WINDOWS\System32\COMDLG32.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\comdlg32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbe8210000 LB 0x00051000 C:\Program Files\Oracle\VirtualBox\Qt5PrintSupportVBox.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5PrintSupportVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   0000000065520000 LB 0x00054000 C:\Program Files\Oracle\VirtualBox\Qt5OpenGLVBox.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5OpenGLVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf7160000 LB 0x0002a000 C:\WINDOWS\SYSTEM32\WINMMBASE.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\winmmbase.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf7190000 LB 0x00023000 C:\WINDOWS\SYSTEM32\WINMM.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\winmm.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffba13d0000 LB 0x00a06000 C:\Program Files\Oracle\VirtualBox\VirtualBox.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-synch-l1-2-0) -> 0x0, fPresent=1
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-synch-l1-2-0 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfa740000 'api-ms-win-core-synch-l1-2-0'
3770.2c5c: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-fibers-l1-1-1) -> 0x0, fPresent=1
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-fibers-l1-1-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfa740000 'api-ms-win-core-fibers-l1-1-1'
3770.2c5c: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-fibers-l1-1-1) -> 0x0, fPresent=1
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-fibers-l1-1-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfa740000 'api-ms-win-core-fibers-l1-1-1'
3770.2c5c: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-synch-l1-2-0) -> 0x0, fPresent=1
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-synch-l1-2-0 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfa740000 'api-ms-win-core-synch-l1-2-0'
3770.2c5c: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-localization-l1-2-1) -> 0x0, fPresent=1
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-localization-l1-2-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfa740000 'api-ms-win-core-localization-l1-2-1'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'fltlib.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'fltlib.dll' -> '\Device\HarddiskVolume3\Windows\System32\fltlib.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\fltLib.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'profapi.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'profapi.dll' -> '\Device\HarddiskVolume3\Windows\System32\profapi.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\profapi.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume3\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\combase.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume3\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\combase.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume3\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\win32u.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp_win.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp_win.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcp_win.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcp_win.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\kernel32.dll (Input=kernel32, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfe1c0000 'C:\WINDOWS\System32\kernel32.dll'
3770.2c5c: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-string-l1-1-0) -> 0x0, fPresent=1
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-string-l1-1-0 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfa740000 'api-ms-win-core-string-l1-1-0'
3770.2c5c: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-datetime-l1-1-1) -> 0x0, fPresent=1
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-datetime-l1-1-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfa740000 'api-ms-win-core-datetime-l1-1-1'
3770.2c5c: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-localization-obsolete-l1-2-0) -> 0x0, fPresent=1
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-localization-obsolete-l1-2-0 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfa740000 'api-ms-win-core-localization-obsolete-l1-2-0'
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #25 'win32u.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\imm32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\imm32.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume3\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\win32u.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\IMM32.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000009:<flags> [calling]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfc8f0000 LB 0x0002d000 C:\WINDOWS\System32\IMM32.DLL [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\imm32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfc8f0000 'C:\WINDOWS\system32\IMM32.DLL'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\kernel32.dll (Input=kernel32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfe1c0000 'C:\WINDOWS\System32\kernel32.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba1de0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\imm32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\imm32.dll (Input=imm32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfc8f0000 'C:\WINDOWS\System32\imm32.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\ADVAPI32.DLL (Input=ADVAPI32.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfc6b0000 'C:\WINDOWS\System32\ADVAPI32.DLL'
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'bcryptprimitives.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\cryptbase.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\cryptbase.dll
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfa110000 LB 0x0000b000 C:\WINDOWS\SYSTEM32\CRYPTBASE.DLL [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\cryptbase.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffba13d0000 'C:\Program Files\Oracle\VirtualBox\VirtualBox.dll'
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'ole32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'imm32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'winmm.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'oleaut32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'shell32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'advapi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'qt5guivbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'qt5corevbox.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'msvcr100.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\platforms\qwindows.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\platforms\qwindows.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\qt5guivbox.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume3\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\shell32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume3\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume3\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\winmm.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'imm32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'imm32.dll' -> '\Device\HarddiskVolume3\Windows\System32\imm32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\imm32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume3\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ole32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcryptprimitives.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcryptprimitives.dll' -> '\Device\HarddiskVolume3\Windows\System32\bcryptprimitives.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\bcryptprimitives.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\platforms\qwindows.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\platforms\qwindows.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbbcba0000 LB 0x0012e000 C:\Program Files\Oracle\VirtualBox\platforms\qwindows.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\platforms\qwindows.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbbcba0000 'C:\Program Files\Oracle\VirtualBox\platforms\qwindows.dll'
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #33 'gdi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #34 'user32.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\uxtheme.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\uxtheme.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000009:<flags> [calling]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf8830000 LB 0x00098000 C:\WINDOWS\system32\uxtheme.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf8830000 'C:\WINDOWS\system32\uxtheme.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfb740000 'C:\WINDOWS\system32\user32.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\shell32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\shell32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfcd80000 'C:\WINDOWS\system32\shell32.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\SHCore.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\SHCore.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfc920000 'C:\WINDOWS\system32\SHCore.dll'
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: error opening 'C:\WINDOWS\system32\wintab32.dll': 0 (NtPath=\??\C:\WINDOWS\system32\wintab32.dll; Input=C:\WINDOWS\system32\wintab32.dll; rcNtGetDll=0x0
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000034 'C:\WINDOWS\system32\wintab32.dll'
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #21 'win32u.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #22 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #23 'gdi32.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\dwmapi.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\dwmapi.dll
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf8a80000 LB 0x00029000 C:\WINDOWS\system32\dwmapi.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\dwmapi.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\winmm.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume3\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\win32u.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\winmm.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf7190000 'C:\WINDOWS\system32\winmm.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\winmm.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\winmm.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf7190000 'C:\WINDOWS\system32\winmm.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\shell32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\shell32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfcd80000 'C:\WINDOWS\system32\shell32.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf8830000 'C:\WINDOWS\system32\uxtheme.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\gdi32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfcd50000 'C:\WINDOWS\system32\gdi32.dll'
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfc2a0000 LB 0x00175000 C:\WINDOWS\System32\MSCTF.dll [fFlags=0x0]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #18 'oleaut32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #38 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #39 'gdi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #40 'imm32.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\msctf.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\msctf.dll
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'imm32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'imm32.dll' -> '\Device\HarddiskVolume3\Windows\System32\imm32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\imm32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume3\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfc420000 'C:\WINDOWS\System32\rpcrt4.dll'
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfc850000 LB 0x000a0000 C:\WINDOWS\System32\clbcatq.dll [fFlags=0x0]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #28 'rpcrt4.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\clbcatq.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\clbcatq.dll
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'shcore.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #29 'combase.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #34 'd3d11.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #35 'dcomp.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\DataExchange.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\DataExchange.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'dcomp.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'dcomp.dll' -> '\Device\HarddiskVolume3\Windows\System32\dcomp.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'win32u.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcp_win.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #36 'oleaut32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #37 'dxgi.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\dcomp.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\dcomp.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'd3d11.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'd3d11.dll' -> '\Device\HarddiskVolume3\Windows\System32\d3d11.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'dxgi.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #35 'win32u.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\d3d11.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\d3d11.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume3\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\combase.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shcore.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shcore.dll' -> '\Device\HarddiskVolume3\Windows\System32\shcore.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\SHCore.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume3\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\win32u.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'dxgi.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'dxgi.dll' -> '\Device\HarddiskVolume3\Windows\System32\dxgi.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'win32u.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\dxgi.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\dxgi.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'dxgi.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'dxgi.dll' -> '\Device\HarddiskVolume3\Windows\System32\dxgi.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\dxgi.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume3\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp_win.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp_win.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcp_win.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcp_win.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume3\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\win32u.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume3\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\win32u.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\dataexchange.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000002009:<flags> [calling]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\DataExchange.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\d3d11.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\dcomp.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\dxgi.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf9380000 LB 0x000bb000 C:\WINDOWS\system32\dxgi.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\dxgi.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf76b0000 LB 0x0030b000 C:\WINDOWS\system32\d3d11.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\d3d11.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf7f90000 LB 0x0019c000 C:\WINDOWS\system32\dcomp.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\dcomp.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbdc5f0000 LB 0x00058000 C:\WINDOWS\system32\dataexchange.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\DataExchange.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfcd50000 'C:\WINDOWS\System32\gdi32.dll'
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbdc5f0000 'C:\WINDOWS\system32\dataexchange.dll'
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'rmclient.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #30 'rpcrt4.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #44 'combase.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\twinapi.appcore.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\twinapi.appcore.dll
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'rpcrt4.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\rmclient.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\rmclient.dll
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf8b60000 LB 0x00021000 C:\WINDOWS\system32\RMCLIENT.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rmclient.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf8bc0000 LB 0x001b8000 C:\WINDOWS\system32\twinapi.appcore.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\twinapi.appcore.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #16 'rpcrt4.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #35 'devobj.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #36 'propsys.dll'.
3770.45b8: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\MMDevAPI.dll)
3770.45b8: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\MMDevAPI.dll
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #17 'cfgmgr32.dll'.
3770.45b8: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\devobj.dll)
3770.45b8: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\devobj.dll
3770.45b8: supR3HardenedDllNotificationCallback: load   00007ffbfa3d0000 LB 0x00027000 C:\WINDOWS\SYSTEM32\DEVOBJ.dll [fFlags=0x0]
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\devobj.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedDllNotificationCallback: load   00007ffbede20000 LB 0x00076000 C:\WINDOWS\SYSTEM32\MMDevAPI.DLL [fFlags=0x0]
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'mmdevapi.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #27 'ksuser.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #28 'avrt.dll'.
3770.45b8: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\wdmaud.drv)
3770.45b8: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\wdmaud.drv
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'avrt.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'avrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\avrt.dll' [rcNtRedir=0xc0150008]
3770.45b8: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\avrt.dll)
3770.45b8: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\avrt.dll
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ksuser.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'ksuser.dll' -> '\Device\HarddiskVolume3\Windows\System32\ksuser.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.45b8: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\ksuser.dll)
3770.45b8: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\ksuser.dll
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mmdevapi.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'mmdevapi.dll' -> '\Device\HarddiskVolume3\Windows\System32\mmdevapi.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'cfgmgr32.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'cfgmgr32.dll' -> '\Device\HarddiskVolume3\Windows\System32\cfgmgr32.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\cfgmgr32.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'propsys.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'propsys.dll' -> '\Device\HarddiskVolume3\Windows\System32\propsys.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\propsys.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'devobj.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'devobj.dll' -> '\Device\HarddiskVolume3\Windows\System32\devobj.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\devobj.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume3\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\combase.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rmclient.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'rmclient.dll' -> '\Device\HarddiskVolume3\Windows\System32\rmclient.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rmclient.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #15 'coreuicomponents.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #16 'coremessaging.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\TextInputFramework.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\TextInputFramework.dll
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'coremessaging.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'coremessaging.dll' -> '\Device\HarddiskVolume3\Windows\System32\coremessaging.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #24 'rpcrt4.dll'.
3770.45b8: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\CoreMessaging.dll)
3770.45b8: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\CoreMessaging.dll
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'coreuicomponents.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'coreuicomponents.dll' -> '\Device\HarddiskVolume3\Windows\System32\coreuicomponents.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #35 'coremessaging.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #48 'shcore.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\CoreUIComponents.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\CoreUIComponents.dll
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\CoreMessaging.dll [lacks WinVerifyTrust]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\ntmarta.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\ntmarta.dll
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #35 'coremessaging.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #48 'shcore.dll'.
3770.45b8: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\CoreUIComponents.dll)
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shcore.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'shcore.dll' -> '\Device\HarddiskVolume3\Windows\System32\shcore.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\SHCore.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'coremessaging.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'coremessaging.dll' -> '\Device\HarddiskVolume3\Windows\System32\coremessaging.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\CoreMessaging.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shcore.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'shcore.dll' -> '\Device\HarddiskVolume3\Windows\System32\shcore.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\SHCore.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'coremessaging.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'coremessaging.dll' -> '\Device\HarddiskVolume3\Windows\System32\coremessaging.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\CoreMessaging.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'combase.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #22 'rpcrt4.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #29 'bcryptprimitives.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\WinTypes.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\WinTypes.dll
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf9760000 LB 0x00031000 C:\WINDOWS\SYSTEM32\ntmarta.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ntmarta.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf8130000 LB 0x000da000 C:\WINDOWS\System32\CoreMessaging.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\CoreMessaging.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf6630000 LB 0x0014d000 C:\WINDOWS\SYSTEM32\wintypes.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\WinTypes.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf5b40000 LB 0x0031e000 C:\WINDOWS\System32\CoreUIComponents.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\CoreUIComponents.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbe8d70000 LB 0x00097000 C:\WINDOWS\System32\TextInputFramework.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\TextInputFramework.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcryptprimitives.dll'...
3770.45b8: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcryptprimitives.dll' -> '\Device\HarddiskVolume3\Windows\System32\bcryptprimitives.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\bcryptprimitives.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume3\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\combase.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\OLEAUT32.DLL (Input=OLEAUT32.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfcaa0000 'C:\WINDOWS\System32\OLEAUT32.DLL'
3770.45b8: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ksuser.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(ext-ms-win-rtcore-ntuser-window-ext-l1-1-0.dll) -> 0x0, fPresent=1
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=ext-ms-win-rtcore-ntuser-window-ext-l1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfb740000 'ext-ms-win-rtcore-ntuser-window-ext-l1-1-0.dll'
3770.45b8: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\avrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(ext-ms-win-rtcore-ntuser-integration-l1-1-0.dll) -> 0x0, fPresent=1
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=ext-ms-win-rtcore-ntuser-integration-l1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfb740000 'ext-ms-win-rtcore-ntuser-integration-l1-1-0.dll'
3770.45b8: supR3HardenedDllNotificationCallback: load   00007ffbedd60000 LB 0x00009000 C:\WINDOWS\SYSTEM32\ksuser.dll [fFlags=0x0]
3770.2c5c: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-com-l1-1-0.dll) -> 0x0, fPresent=1
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-com-l1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfbec0000 'api-ms-win-core-com-l1-1-0.dll'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ksuser.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedDllNotificationCallback: load   00007ffbf62a0000 LB 0x0000a000 C:\WINDOWS\SYSTEM32\AVRT.dll [fFlags=0x0]
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\avrt.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedDllNotificationCallback: load   00007ffbc90f0000 LB 0x00044000 C:\WINDOWS\System32\wdmaud.drv [fFlags=0x0]
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbc90f0000 'C:\WINDOWS\System32\wdmaud.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbc90f0000 'C:\WINDOWS\System32\wdmaud.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\MMDEVAPI.DLL (Input=MMDEVAPI.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbede20000 'C:\WINDOWS\System32\MMDEVAPI.DLL'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msctf.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\MSCTF.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000009:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfc2a0000 'C:\WINDOWS\System32\MSCTF.dll'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbc90f0000 'C:\WINDOWS\System32\wdmaud.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbc90f0000 'C:\WINDOWS\System32\wdmaud.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbc90f0000 'C:\WINDOWS\System32\wdmaud.drv'
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcp_win.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'rpcrt4.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'oleaut32.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #55 'mmdevapi.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #56 'avrt.dll'.
3770.45b8: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\AudioSes.dll)
3770.45b8: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\AudioSes.dll
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'avrt.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'avrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\avrt.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\avrt.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mmdevapi.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'mmdevapi.dll' -> '\Device\HarddiskVolume3\Windows\System32\mmdevapi.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume3\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp_win.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp_win.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcp_win.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcp_win.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\AUDIOSES.DLL (Input=AUDIOSES.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.45b8: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\AudioSes.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedDllNotificationCallback: load   00007ffbcd290000 LB 0x0012c000 C:\WINDOWS\System32\AUDIOSES.DLL [fFlags=0x0]
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\AudioSes.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbcd290000 'C:\WINDOWS\System32\AUDIOSES.DLL'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbc90f0000 'C:\WINDOWS\System32\wdmaud.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbc90f0000 'C:\WINDOWS\System32\wdmaud.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbc90f0000 'C:\WINDOWS\System32\wdmaud.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbc90f0000 'C:\WINDOWS\System32\wdmaud.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbc90f0000 'C:\WINDOWS\System32\wdmaud.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbc90f0000 'C:\WINDOWS\System32\wdmaud.drv'
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'mmdevapi.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #13 'msacm32.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #14 'winmmbase.dll'.
3770.45b8: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\msacm32.drv)
3770.45b8: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\msacm32.drv
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmmbase.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmmbase.dll' -> '\Device\HarddiskVolume3\Windows\System32\winmmbase.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\winmmbase.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msacm32.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'msacm32.dll' -> '\Device\HarddiskVolume3\Windows\System32\msacm32.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.45b8: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\msacm32.dll)
3770.45b8: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\msacm32.dll
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mmdevapi.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'mmdevapi.dll' -> '\Device\HarddiskVolume3\Windows\System32\mmdevapi.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msacm32.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedDllNotificationCallback: load   00007ffbe3d80000 LB 0x0001c000 C:\WINDOWS\SYSTEM32\MSACM32.dll [fFlags=0x0]
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msacm32.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedDllNotificationCallback: load   00007ffbf55a0000 LB 0x0000d000 C:\WINDOWS\System32\msacm32.drv [fFlags=0x0]
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf55a0000 'C:\WINDOWS\System32\msacm32.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf55a0000 'C:\WINDOWS\System32\msacm32.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf55a0000 'C:\WINDOWS\System32\msacm32.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf55a0000 'C:\WINDOWS\System32\msacm32.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf55a0000 'C:\WINDOWS\System32\msacm32.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf55a0000 'C:\WINDOWS\System32\msacm32.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf55a0000 'C:\WINDOWS\System32\msacm32.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf55a0000 'C:\WINDOWS\System32\msacm32.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf55a0000 'C:\WINDOWS\System32\msacm32.drv'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf55a0000 'C:\WINDOWS\System32\msacm32.drv'
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.45b8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'winmm.dll'.
3770.45b8: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\midimap.dll)
3770.45b8: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\midimap.dll
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume3\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\winmm.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.45b8: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.45b8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\midimap.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedDllNotificationCallback: load   00007ffbe87d0000 LB 0x0000a000 C:\WINDOWS\System32\midimap.dll [fFlags=0x0]
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\midimap.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbe87d0000 'C:\WINDOWS\System32\midimap.dll'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\midimap.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbe87d0000 'C:\WINDOWS\System32\midimap.dll'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\midimap.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbe87d0000 'C:\WINDOWS\System32\midimap.dll'
3770.45b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\midimap.dll [lacks WinVerifyTrust]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000001001:<flags> [calling]
3770.45b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbe87d0000 'C:\WINDOWS\System32\midimap.dll'
3770.1604: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
3770.1604: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\MMDevApi.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000002009:<flags> [calling]
3770.1604: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbede20000 'C:\WINDOWS\System32\MMDevApi.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ole32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\ole32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000009:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfcb70000 'C:\WINDOWS\system32\ole32.dll'
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'gdi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'advapi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'ole32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'oleaut32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'shell32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'iertutil.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'oleacc.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'version.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'rpcrt4.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #13 'shlwapi.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #14 'propsys.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #15 'profapi.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\IME\IMEJP\IMJPTIP.DLL)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\IME\IMEJP\IMJPTIP.DLL
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'profapi.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'profapi.dll' -> '\Device\HarddiskVolume3\Windows\System32\profapi.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\profapi.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'propsys.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'propsys.dll' -> '\Device\HarddiskVolume3\Windows\System32\propsys.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\propsys.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shlwapi.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shlwapi.dll' -> '\Device\HarddiskVolume3\Windows\System32\shlwapi.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\shlwapi.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'version.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'version.dll' -> '\Device\HarddiskVolume3\Windows\System32\version.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\version.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\version.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleacc.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleacc.dll' -> '\Device\HarddiskVolume3\Windows\System32\oleacc.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'rpcrt4.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #30 'user32.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\oleacc.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\oleacc.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'iertutil.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'iertutil.dll' -> '\Device\HarddiskVolume3\Windows\System32\iertutil.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\iertutil.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\iertutil.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume3\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\shell32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume3\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume3\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ole32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\IME\IMEJP\imjptip.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000002009:<flags> [calling]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\IMEJP\IMJPTIP.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\iertutil.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\oleacc.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\version.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbec600000 LB 0x002a2000 C:\WINDOWS\SYSTEM32\iertutil.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\iertutil.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbefea0000 LB 0x0006b000 C:\WINDOWS\SYSTEM32\OLEACC.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\oleacc.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf5060000 LB 0x0000a000 C:\WINDOWS\SYSTEM32\VERSION.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\version.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbba390000 LB 0x002c2000 C:\Windows\System32\IME\IMEJP\imjptip.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\IMEJP\IMJPTIP.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ole32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\ole32.dll (Input=ole32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfcb70000 'C:\WINDOWS\System32\ole32.dll'
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbba390000 'C:\Windows\System32\IME\IMEJP\imjptip.dll'
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'oleaut32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #15 'rpcrt4.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #49 'bcrypt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #50 'crypt32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #55 'profapi.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\IME\IMEJP\IMJPAPI.DLL)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\IME\IMEJP\IMJPAPI.DLL
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'profapi.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'profapi.dll' -> '\Device\HarddiskVolume3\Windows\System32\profapi.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\profapi.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'crypt32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'crypt32.dll' -> '\Device\HarddiskVolume3\Windows\System32\crypt32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #34 'msasn1.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\crypt32.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\crypt32.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcrypt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcrypt.dll' -> '\Device\HarddiskVolume3\Windows\System32\bcrypt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume3\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msasn1.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msasn1.dll' -> '\Device\HarddiskVolume3\Windows\System32\msasn1.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\msasn1.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\msasn1.dll
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\IME\IMEJP\imjpapi.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\IMEJP\IMJPAPI.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfa5c0000 LB 0x00012000 C:\WINDOWS\System32\MSASN1.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msasn1.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbfad90000 LB 0x001e2000 C:\WINDOWS\System32\CRYPT32.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\crypt32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbc2c70000 LB 0x0021d000 C:\Windows\System32\IME\IMEJP\imjpapi.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\IMEJP\IMJPAPI.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ole32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\ole32.dll (Input=ole32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfcb70000 'C:\WINDOWS\System32\ole32.dll'
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbc2c70000 'C:\Windows\System32\IME\IMEJP\imjpapi.dll'
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'oleaut32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'rpcrt4.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\IME\shared\IMJKAPI.DLL)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\IME\shared\IMJKAPI.DLL
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume3\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\IME\shared\imjkapi.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\shared\IMJKAPI.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf1b10000 LB 0x00040000 C:\Windows\System32\IME\shared\imjkapi.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\shared\IMJKAPI.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ole32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfcb70000 'C:\WINDOWS\System32\ole32.dll'
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf1b10000 'C:\Windows\System32\IME\shared\imjkapi.dll'
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcp110_win.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'rpcrt4.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\policymanager.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\policymanager.dll
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\msvcp110_win.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\msvcp110_win.dll
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf7000000 LB 0x00091000 C:\WINDOWS\SYSTEM32\msvcp110_win.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcp110_win.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf6cf0000 LB 0x0007f000 C:\WINDOWS\SYSTEM32\policymanager.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\policymanager.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'oleaut32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #37 'profapi.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\IME\IMEJP\IMJPPRED.DLL)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\IME\IMEJP\IMJPPRED.DLL
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'profapi.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'profapi.dll' -> '\Device\HarddiskVolume3\Windows\System32\profapi.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\profapi.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume3\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp110_win.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp110_win.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcp110_win.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcp110_win.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\IME\IMEJP\imjppred.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\IMEJP\IMJPPRED.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbe8560000 LB 0x00091000 C:\Windows\System32\IME\IMEJP\imjppred.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\IMEJP\IMJPPRED.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ole32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfcb70000 'C:\WINDOWS\System32\ole32.dll'
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbe8560000 'C:\Windows\System32\IME\IMEJP\imjppred.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msctf.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\MSCTF.DLL (Input=MSCTF.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfc2a0000 'C:\WINDOWS\System32\MSCTF.DLL'
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'advapi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'ole32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'oleaut32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'gdi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'oleacc.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'version.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'dui70.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\IME\shared\IMETIP.DLL)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\IME\shared\IMETIP.DLL
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'dui70.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'dui70.dll' -> '\Device\HarddiskVolume3\Windows\System32\dui70.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #32 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #33 'gdi32.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\dui70.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\dui70.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'version.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'version.dll' -> '\Device\HarddiskVolume3\Windows\System32\version.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\version.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleacc.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleacc.dll' -> '\Device\HarddiskVolume3\Windows\System32\oleacc.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\oleacc.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume3\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume3\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ole32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\IME\shared\imetip.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000002009:<flags> [calling]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\shared\IMETIP.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\dui70.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbc2840000 LB 0x001ab000 C:\WINDOWS\SYSTEM32\DUI70.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\dui70.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbc8eb0000 LB 0x00156000 C:\Windows\System32\IME\shared\imetip.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\shared\IMETIP.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbc8eb0000 'C:\Windows\System32\IME\shared\imetip.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msctf.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\MSCTF.DLL (Input=MSCTF.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfc2a0000 'C:\WINDOWS\System32\MSCTF.DLL'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msctf.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\msctf.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000002009:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfc2a0000 'C:\WINDOWS\System32\msctf.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msctf.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\msctf.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000002009:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfc2a0000 'C:\WINDOWS\system32\msctf.dll'
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'advapi32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ole32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'shlwapi.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'oleaut32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'wer.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\IME\shared\imecfm.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\IME\shared\imecfm.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'wer.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'wer.dll' -> '\Device\HarddiskVolume3\Windows\System32\wer.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #41 'rpcrt4.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\wer.dll)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\wer.dll
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume3\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shlwapi.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shlwapi.dll' -> '\Device\HarddiskVolume3\Windows\System32\shlwapi.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\shlwapi.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume3\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ole32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\IME\shared\imecfm.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\shared\imecfm.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\wer.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbf88f0000 LB 0x000c1000 C:\WINDOWS\SYSTEM32\wer.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\wer.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbe7e30000 LB 0x0003b000 C:\Windows\System32\IME\shared\imecfm.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\shared\imecfm.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbe7e30000 'C:\Windows\System32\IME\shared\imecfm.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbfb740000 'C:\WINDOWS\System32\user32.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\IMEJP\IMJPAPI.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\IME\IMEJP\imjpapi.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000002009:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbc2c70000 'C:\Windows\System32\IME\IMEJP\imjpapi.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\shared\IMJKAPI.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\IME\shared\imjkapi.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf1b10000 'C:\Windows\System32\IME\shared\imjkapi.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\shared\IMJKAPI.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\IME\shared\imjkapi.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf1b10000 'C:\Windows\System32\IME\shared\imjkapi.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\shared\IMJKAPI.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\IME\shared\imjkapi.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf1b10000 'C:\Windows\System32\IME\shared\imjkapi.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\shared\IMJKAPI.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\IME\shared\imjkapi.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbf1b10000 'C:\Windows\System32\IME\shared\imjkapi.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\IMEJP\IMJPPRED.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\IME\IMEJP\imjppred.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbe8560000 'C:\Windows\System32\IME\IMEJP\imjppred.dll'
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\shared\imecfm.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\IME\shared\imecfm.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbe7e30000 'C:\Windows\System32\IME\shared\imecfm.dll'
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'ole32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'oleaut32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
3770.2c5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'advapi32.dll'.
3770.2c5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\IME\shared\IMESEARCHDLL.DLL)
3770.2c5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\IME\shared\IMESEARCHDLL.DLL
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume3\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume3\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\ole32.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3770.2c5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3770.2c5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\IME\SHARED\imesearchdll.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000002009:<flags> [calling]
3770.2c5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\shared\IMESEARCHDLL.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedDllNotificationCallback: load   00007ffbe9940000 LB 0x0001f000 C:\Windows\System32\IME\SHARED\imesearchdll.dll [fFlags=0x0]
3770.2c5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\IME\shared\IMESEARCHDLL.DLL [lacks WinVerifyTrust]
3770.2c5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffbe9940000 'C:\Windows\System32\IME\SHARED\imesearchdll.dll'
3770.2c5c: supR3HardenedDllNotificationCallback: Unload 00007ffbe7e30000 LB 0x0003b000 C:\Windows\System32\IME\shared\imecfm.dll [flags=0x0]
3770.2c5c: supR3HardenedDllNotificationCallback: Unload 00007ffbf88f0000 LB 0x000c1000 C:\WINDOWS\SYSTEM32\wer.dll [flags=0x0]
4988.2aa4: supR3HardNtChildWaitFor[1]: Quitting: ExitCode=0x1 (rcNtWait=0x0, rcNt1=0x0, rcNt2=0x103, rcNt3=0x103, 2518 ms, the end);