API tools faq
paste
Guest User

VBox-Hardening

a guest
May 27th, 2019
154
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 18.72 KB | None | 0 0
raw download clone embed print report
  1. 45d4.1e80: Log file opened: 5.2.26r128414 g_hStartupLog=000000000000004c g_uNtVerCombined=0xa042ee00
  2. 45d4.1e80: \SystemRoot\System32\ntdll.dll:
  3. 45d4.1e80: CreationTime: 2019-02-13T01:47:25.971242400Z
  4. 45d4.1e80: LastWriteTime: 2019-01-09T05:39:12.294139300Z
  5. 45d4.1e80: ChangeTime: 2019-05-15T13:09:46.908880800Z
  6. 45d4.1e80: FileAttributes: 0x20
  7. 45d4.1e80: Size: 0x1da658
  8. 45d4.1e80: NT Headers: 0xe8
  9. 45d4.1e80: Timestamp: 0x74bed8b0
  10. 45d4.1e80: Machine: 0x8664 - amd64
  11. 45d4.1e80: Timestamp: 0x74bed8b0
  12. 45d4.1e80: Image Version: 10.0
  13. 45d4.1e80: SizeOfImage: 0x1e1000 (1970176)
  14. 45d4.1e80: Resource Dir: 0x174000 LB 0x6b3e8
  15. 45d4.1e80: [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
  16. 45d4.1e80: [Raw version resource data: 0x1740f0 LB 0x380, codepage 0x0 (reserved 0x0)]
  17. 45d4.1e80: ProductName: Microsoft® Windows® Operating System
  18. 45d4.1e80: ProductVersion: 10.0.17134.556
  19. 45d4.1e80: FileVersion: 10.0.17134.556 (WinBuild.160101.0800)
  20. 45d4.1e80: FileDescription: NT Layer DLL
  21. 45d4.1e80: \SystemRoot\System32\kernel32.dll:
  22. 45d4.1e80: CreationTime: 2019-05-15T13:00:45.352225300Z
  23. 45d4.1e80: LastWriteTime: 2019-04-19T10:54:56.743034000Z
  24. 45d4.1e80: ChangeTime: 2019-05-16T14:06:55.935882800Z
  25. 45d4.1e80: FileAttributes: 0x20
  26. 45d4.1e80: Size: 0xafd48
  27. 45d4.1e80: NT Headers: 0xe8
  28. 45d4.1e80: Timestamp: 0xda2d7146
  29. 45d4.1e80: Machine: 0x8664 - amd64
  30. 45d4.1e80: Timestamp: 0xda2d7146
  31. 45d4.1e80: Image Version: 10.0
  32. 45d4.1e80: SizeOfImage: 0xb1000 (724992)
  33. 45d4.1e80: Resource Dir: 0xaf000 LB 0x520
  34. 45d4.1e80: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
  35. 45d4.1e80: [Raw version resource data: 0xaf0b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
  36. 45d4.1e80: ProductName: Microsoft® Windows® Operating System
  37. 45d4.1e80: ProductVersion: 10.0.17134.753
  38. 45d4.1e80: FileVersion: 10.0.17134.753 (WinBuild.160101.0800)
  39. 45d4.1e80: FileDescription: Windows NT BASE API Client DLL
  40. 45d4.1e80: \SystemRoot\System32\KernelBase.dll:
  41. 45d4.1e80: CreationTime: 2019-05-15T13:00:47.909486900Z
  42. 45d4.1e80: LastWriteTime: 2019-04-19T05:06:18.050469100Z
  43. 45d4.1e80: ChangeTime: 2019-05-16T14:06:56.123338000Z
  44. 45d4.1e80: FileAttributes: 0x20
  45. 45d4.1e80: Size: 0x273d70
  46. 45d4.1e80: NT Headers: 0xf0
  47. 45d4.1e80: Timestamp: 0xcdfe5b92
  48. 45d4.1e80: Machine: 0x8664 - amd64
  49. 45d4.1e80: Timestamp: 0xcdfe5b92
  50. 45d4.1e80: Image Version: 10.0
  51. 45d4.1e80: SizeOfImage: 0x273000 (2568192)
  52. 45d4.1e80: Resource Dir: 0x251000 LB 0x548
  53. 45d4.1e80: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
  54. 45d4.1e80: [Raw version resource data: 0x2510b0 LB 0x3bc, codepage 0x0 (reserved 0x0)]
  55. 45d4.1e80: ProductName: Microsoft® Windows® Operating System
  56. 45d4.1e80: ProductVersion: 10.0.17134.753
  57. 45d4.1e80: FileVersion: 10.0.17134.753 (WinBuild.160101.0800)
  58. 45d4.1e80: FileDescription: Windows NT BASE API Client DLL
  59. 45d4.1e80: \SystemRoot\System32\apisetschema.dll:
  60. 45d4.1e80: CreationTime: 2018-04-11T23:34:44.042150700Z
  61. 45d4.1e80: LastWriteTime: 2018-04-11T23:34:44.042150700Z
  62. 45d4.1e80: ChangeTime: 2018-06-03T17:17:03.986840900Z
  63. 45d4.1e80: FileAttributes: 0x20
  64. 45d4.1e80: Size: 0x1bd98
  65. 45d4.1e80: NT Headers: 0xd0
  66. 45d4.1e80: Timestamp: 0xd02ff418
  67. 45d4.1e80: Machine: 0x8664 - amd64
  68. 45d4.1e80: Timestamp: 0xd02ff418
  69. 45d4.1e80: Image Version: 10.0
  70. 45d4.1e80: SizeOfImage: 0x1c000 (114688)
  71. 45d4.1e80: Resource Dir: 0x1b000 LB 0x408
  72. 45d4.1e80: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
  73. 45d4.1e80: [Raw version resource data: 0x1b060 LB 0x3a8, codepage 0x0 (reserved 0x0)]
  74. 45d4.1e80: ProductName: Microsoft® Windows® Operating System
  75. 45d4.1e80: ProductVersion: 10.0.17134.1
  76. 45d4.1e80: FileVersion: 10.0.17134.1 (WinBuild.160101.0800)
  77. 45d4.1e80: FileDescription: ApiSet Schema DLL
  78. 45d4.1e80: NtOpenDirectoryObject failed on \Driver: 0xc0000022
  79. 45d4.1e80: supR3HardenedWinFindAdversaries: 0x0
  80. 45d4.1e80: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
  81. 45d4.1e80: Calling main()
  82. 45d4.1e80: SUPR3HardenedMain: pszProgName=VBoxHeadless fFlags=0x0
  83. 45d4.1e80: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
  84. 45d4.1e80: SUPR3HardenedMain: Respawn #1
  85. 45d4.1e80: System32: \Device\HarddiskVolume2\Windows\System32
  86. 45d4.1e80: WinSxS: \Device\HarddiskVolume2\Windows\WinSxS
  87. 45d4.1e80: KnownDllPath: C:\Windows\System32
  88. 45d4.1e80: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe' has no imports
  89. 45d4.1e80: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe)
  90. 45d4.1e80: supR3HardNtEnableThreadCreation:
  91. 45d4.1e80: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ff936b04f90 pvNtTerminateThread=00007ff936b2b3f0
  92. 45d4.1e80: supR3HardenedWinDoReSpawn(1): New child 978.32fc [kernel32].
  93. 45d4.1e80: supR3HardNtChildGatherData: PebBaseAddress=0000000001120000 cbPeb=0x388
  94. 45d4.1e80: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00007ff936a90000 uNtDllChildAddr=00007ff936a90000
  95. 45d4.1e80: supR3HardenedWinSetupChildInit: uLdrInitThunk=00007ff936b04f90
  96. 45d4.1e80: supR3HardenedWinSetupChildInit: Start child.
  97. 45d4.1e80: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 4 ms.
  98. 45d4.1e80: supR3HardNtChildPurify: Startup delay kludge #1/0: 261 ms, 29 sleeps
  99. 45d4.1e80: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
  100. 45d4.1e80: *0000000000000000-0000000000fbffff 0x0001/0x0000 0x0000000
  101. 45d4.1e80: *0000000000fc0000-0000000000fdffff 0x0004/0x0004 0x0020000
  102. 45d4.1e80: *0000000000fe0000-0000000000ff8fff 0x0002/0x0002 0x0040000
  103. 45d4.1e80: 0000000000ff9000-0000000000ffffff 0x0001/0x0000 0x0000000
  104. 45d4.1e80: *0000000001000000-000000000111ffff 0x0000/0x0004 0x0020000
  105. 45d4.1e80: 0000000001120000-0000000001122fff 0x0004/0x0004 0x0020000
  106. 45d4.1e80: 0000000001123000-00000000011fffff 0x0000/0x0004 0x0020000
  107. 45d4.1e80: *0000000001200000-00000000012fafff 0x0000/0x0004 0x0020000
  108. 45d4.1e80: 00000000012fb000-00000000012fdfff 0x0104/0x0004 0x0020000
  109. 45d4.1e80: 00000000012fe000-00000000012fffff 0x0004/0x0004 0x0020000
  110. 45d4.1e80: *0000000001300000-0000000001303fff 0x0002/0x0002 0x0040000
  111. 45d4.1e80: 0000000001304000-000000000130ffff 0x0001/0x0000 0x0000000
  112. 45d4.1e80: *0000000001310000-0000000001310fff 0x0004/0x0004 0x0020000
  113. 45d4.1e80: 0000000001311000-000000007ffdffff 0x0001/0x0000 0x0000000
  114. 45d4.1e80: *000000007ffe0000-000000007ffe0fff 0x0002/0x0002 0x0020000
  115. 45d4.1e80: 000000007ffe1000-00007ff5fa3cffff 0x0001/0x0000 0x0000000
  116. 45d4.1e80: *00007ff5fa3d0000-00007ff5fa3f2fff 0x0002/0x0002 0x0040000
  117. 45d4.1e80: 00007ff5fa3f3000-00007ff7948bffff 0x0001/0x0000 0x0000000
  118. 45d4.1e80: *00007ff7948c0000-00007ff7948c0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe
  119. 45d4.1e80: 00007ff7948c1000-00007ff794931fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe
  120. 45d4.1e80: 00007ff794932000-00007ff794932fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe
  121. 45d4.1e80: 00007ff794933000-00007ff794979fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe
  122. 45d4.1e80: 00007ff79497a000-00007ff79497afff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe
  123. 45d4.1e80: 00007ff79497b000-00007ff79497bfff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe
  124. 45d4.1e80: 00007ff79497c000-00007ff794980fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe
  125. 45d4.1e80: 00007ff794981000-00007ff794981fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe
  126. 45d4.1e80: 00007ff794982000-00007ff794982fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe
  127. 45d4.1e80: 00007ff794983000-00007ff794986fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe
  128. 45d4.1e80: 00007ff794987000-00007ff7949cefff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe
  129. 45d4.1e80: 00007ff7949cf000-00007ff936a8ffff 0x0001/0x0000 0x0000000
  130. 45d4.1e80: *00007ff936a90000-00007ff936a90fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  131. 45d4.1e80: 00007ff936a91000-00007ff936b9ffff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  132. 45d4.1e80: 00007ff936ba0000-00007ff936be5fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  133. 45d4.1e80: 00007ff936be6000-00007ff936bf0fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  134. 45d4.1e80: 00007ff936bf1000-00007ff936bfefff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  135. 45d4.1e80: 00007ff936bff000-00007ff936bfffff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  136. 45d4.1e80: 00007ff936c00000-00007ff936c02fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  137. 45d4.1e80: 00007ff936c03000-00007ff936c70fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  138. 45d4.1e80: 00007ff936c71000-00007ffffffeffff 0x0001/0x0000 0x0000000
  139. 45d4.1e80: VBoxHeadless.exe: timestamp 0x5c4b5c9e (rc=VINF_SUCCESS)
  140. 45d4.1e80: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe' has no imports
  141. 45d4.1e80: '\Device\HarddiskVolume2\Windows\System32\ntdll.dll' has no imports
  142. 45d4.1e80: supR3HardNtChildPurify: Done after 309 ms and 0 fixes (loop #0).
  143. 45d4.1e80: supR3HardNtEnableThreadCreation:
  144. 978.32fc: Log file opened: 5.2.26r128414 g_hStartupLog=0000000000000008 g_uNtVerCombined=0xa042ee00
  145. 978.32fc: supR3HardenedVmProcessInit: uNtDllAddr=00007ff936a90000 g_uNtVerCombined=0xa042ee00
  146. 978.32fc: ntdll.dll: timestamp 0x74bed8b0 (rc=VINF_SUCCESS)
  147. 978.32fc: New simple heap: #1 0000000001420000 LB 0x400000 (for 1970176 allocation)
  148. 978.32fc: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
  149. 978.32fc: System32: \Device\HarddiskVolume2\Windows\System32
  150. 978.32fc: WinSxS: \Device\HarddiskVolume2\Windows\WinSxS
  151. 978.32fc: KnownDllPath: C:\Windows\System32
  152. 978.32fc: supR3HardenedVmProcessInit: Opening vboxdrv stub...
  153. 978.32fc: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
  154. 978.32fc: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
  155. 978.32fc: Registered Dll notification callback with NTDLL.
  156. 978.32fc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\kernel32.dll)
  157. 978.32fc: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\kernel32.dll
  158. 978.32fc: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\KERNEL32.DLL (Input=KERNEL32.DLL, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000004001:<flags> [calling]
  159. 978.32fc: supR3HardenedDllNotificationCallback: load 00007ff933160000 LB 0x00273000 C:\Windows\System32\KERNELBASE.dll [fFlags=0x0]
  160. 978.32fc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\KernelBase.dll)
  161. 978.32fc: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\KernelBase.dll
  162. 978.32fc: supR3HardenedDllNotificationCallback: load 00007ff935d00000 LB 0x000b1000 C:\Windows\System32\KERNEL32.DLL [fFlags=0x0]
  163. 978.32fc: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
  164. 978.32fc: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff935d00000 'C:\Windows\System32\KERNEL32.DLL'
  165. 978.32fc: supR3HardenedDllNotificationCallback: load 00007ff7948c0000 LB 0x0010f000 C:\Program Files\Oracle\VirtualBox\VBoxHeadless.exe [fFlags=0x0]
  166. 978.32fc: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe' has no imports
  167. 978.32fc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe)
  168. 978.32fc: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe
  169. 978.32fc: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ff936b04f90 pvNtTerminateThread=00007ff936b2b3f0
  170. 45d4.1e80: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 121 ms.
  171. 978.32fc: \SystemRoot\System32\ntdll.dll:
  172. 978.32fc: CreationTime: 2019-02-13T01:47:25.971242400Z
  173. 978.32fc: LastWriteTime: 2019-01-09T05:39:12.294139300Z
  174. 978.32fc: ChangeTime: 2019-05-15T13:09:46.908880800Z
  175. 978.32fc: FileAttributes: 0x20
  176. 978.32fc: Size: 0x1da658
  177. 978.32fc: NT Headers: 0xe8
  178. 978.32fc: Timestamp: 0x74bed8b0
  179. 978.32fc: Machine: 0x8664 - amd64
  180. 978.32fc: Timestamp: 0x74bed8b0
  181. 978.32fc: Image Version: 10.0
  182. 978.32fc: SizeOfImage: 0x1e1000 (1970176)
  183. 978.32fc: Resource Dir: 0x174000 LB 0x6b3e8
  184. 978.32fc: [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
  185. 978.32fc: [Raw version resource data: 0x1740f0 LB 0x380, codepage 0x0 (reserved 0x0)]
  186. 978.32fc: ProductName: Microsoft® Windows® Operating System
  187. 978.32fc: ProductVersion: 10.0.17134.556
  188. 978.32fc: FileVersion: 10.0.17134.556 (WinBuild.160101.0800)
  189. 978.32fc: FileDescription: NT Layer DLL
  190. 978.32fc: \SystemRoot\System32\kernel32.dll:
  191. 978.32fc: CreationTime: 2019-05-15T13:00:45.352225300Z
  192. 978.32fc: LastWriteTime: 2019-04-19T10:54:56.743034000Z
  193. 978.32fc: ChangeTime: 2019-05-16T14:06:55.935882800Z
  194. 978.32fc: FileAttributes: 0x20
  195. 978.32fc: Size: 0xafd48
  196. 978.32fc: NT Headers: 0xe8
  197. 978.32fc: Timestamp: 0xda2d7146
  198. 978.32fc: Machine: 0x8664 - amd64
  199. 978.32fc: Timestamp: 0xda2d7146
  200. 978.32fc: Image Version: 10.0
  201. 978.32fc: SizeOfImage: 0xb1000 (724992)
  202. 978.32fc: Resource Dir: 0xaf000 LB 0x520
  203. 978.32fc: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
  204. 978.32fc: [Raw version resource data: 0xaf0b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
  205. 978.32fc: ProductName: Microsoft® Windows® Operating System
  206. 978.32fc: ProductVersion: 10.0.17134.753
  207. 978.32fc: FileVersion: 10.0.17134.753 (WinBuild.160101.0800)
  208. 978.32fc: FileDescription: Windows NT BASE API Client DLL
  209. 978.32fc: \SystemRoot\System32\KernelBase.dll:
  210. 978.32fc: CreationTime: 2019-05-15T13:00:47.909486900Z
  211. 978.32fc: LastWriteTime: 2019-04-19T05:06:18.050469100Z
  212. 978.32fc: ChangeTime: 2019-05-16T14:06:56.123338000Z
  213. 978.32fc: FileAttributes: 0x20
  214. 978.32fc: Size: 0x273d70
  215. 978.32fc: NT Headers: 0xf0
  216. 978.32fc: Timestamp: 0xcdfe5b92
  217. 978.32fc: Machine: 0x8664 - amd64
  218. 978.32fc: Timestamp: 0xcdfe5b92
  219. 978.32fc: Image Version: 10.0
  220. 978.32fc: SizeOfImage: 0x273000 (2568192)
  221. 978.32fc: Resource Dir: 0x251000 LB 0x548
  222. 978.32fc: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
  223. 978.32fc: [Raw version resource data: 0x2510b0 LB 0x3bc, codepage 0x0 (reserved 0x0)]
  224. 978.32fc: ProductName: Microsoft® Windows® Operating System
  225. 978.32fc: ProductVersion: 10.0.17134.753
  226. 978.32fc: FileVersion: 10.0.17134.753 (WinBuild.160101.0800)
  227. 978.32fc: FileDescription: Windows NT BASE API Client DLL
  228. 978.32fc: \SystemRoot\System32\apisetschema.dll:
  229. 978.32fc: CreationTime: 2018-04-11T23:34:44.042150700Z
  230. 978.32fc: LastWriteTime: 2018-04-11T23:34:44.042150700Z
  231. 978.32fc: ChangeTime: 2018-06-03T17:17:03.986840900Z
  232. 978.32fc: FileAttributes: 0x20
  233. 978.32fc: Size: 0x1bd98
  234. 978.32fc: NT Headers: 0xd0
  235. 978.32fc: Timestamp: 0xd02ff418
  236. 978.32fc: Machine: 0x8664 - amd64
  237. 978.32fc: Timestamp: 0xd02ff418
  238. 978.32fc: Image Version: 10.0
  239. 978.32fc: SizeOfImage: 0x1c000 (114688)
  240. 978.32fc: Resource Dir: 0x1b000 LB 0x408
  241. 978.32fc: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
  242. 978.32fc: [Raw version resource data: 0x1b060 LB 0x3a8, codepage 0x0 (reserved 0x0)]
  243. 978.32fc: ProductName: Microsoft® Windows® Operating System
  244. 978.32fc: ProductVersion: 10.0.17134.1
  245. 978.32fc: FileVersion: 10.0.17134.1 (WinBuild.160101.0800)
  246. 978.32fc: FileDescription: ApiSet Schema DLL
  247. 978.32fc: NtOpenDirectoryObject failed on \Driver: 0xc0000022
  248. 978.32fc: supR3HardenedWinFindAdversaries: 0x0
  249. 978.32fc: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
  250. 978.32fc: Calling main()
  251. 978.32fc: SUPR3HardenedMain: pszProgName=VBoxHeadless fFlags=0x0
  252. 978.32fc: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
  253. 978.32fc: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe' has no imports
  254. 978.32fc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxHeadless.exe)
  255. 978.32fc: SUPR3HardenedMain: Respawn #2
  256. 978.32fc: supR3HardNtEnableThreadCreation:
  257. 978.32fc: '\Device\HarddiskVolume2\Windows\System32\ntdll.dll' has no imports
  258. 978.32fc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\ntdll.dll)
  259. 978.32fc: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  260. 978.32fc: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\ntdll.dll (Input=ntdll.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  261. 978.32fc: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff936a90000 'C:\Windows\System32\ntdll.dll'
  262. 978.32fc: Error -104 in supR3HardenedWinReSpawn! (enmWhat=5)
  263. 978.32fc: Error relaunching VirtualBox VM process: 5
  264. Command line: '60eaff78-4bdd-042d-2e72-669728efd737-suplib-3rdchild --comment local-by-flywheel --startvm 52fe836e-56d5-4492-ae9e-10e50a5d1744 --vrde config --sup-hardening-log=C:\Users\Bruno\.docker\machine\machines\local-by-flywheel\local-by-flywheel\Logs\VBoxHardening.log'
  265. 45d4.1e80: supR3HardNtChildWaitFor[1]: Quitting: ExitCode=0x1 (rcNtWait=0x0, rcNt1=0x0, rcNt2=0x103, rcNt3=0x103, 296 ms, the end);
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!