API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jun 30th, 2019
83
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 93.96 KB | None | 0 0
raw download clone embed print report
  1. 2700.3bc4: Log file opened: 4.3.40r110317 g_hStartupLog=0000000000000068 g_uNtVerCombined=0xa042ee00
  2. 2700.3bc4: \SystemRoot\System32\ntdll.dll:
  3. 2700.3bc4: CreationTime: 2019-06-12T13:24:21.785062700Z
  4. 2700.3bc4: LastWriteTime: 2019-05-17T06:06:58.140701600Z
  5. 2700.3bc4: ChangeTime: 2019-06-12T19:12:53.659007400Z
  6. 2700.3bc4: FileAttributes: 0x20
  7. 2700.3bc4: Size: 0x1da660
  8. 2700.3bc4: NT Headers: 0xe8
  9. 2700.3bc4: Timestamp: 0x7f828745
  10. 2700.3bc4: Machine: 0x8664 - amd64
  11. 2700.3bc4: Timestamp: 0x7f828745
  12. 2700.3bc4: Image Version: 10.0
  13. 2700.3bc4: SizeOfImage: 0x1e1000 (1970176)
  14. 2700.3bc4: Resource Dir: 0x174000 LB 0x6b3e8
  15. 2700.3bc4: ProductName: Microsoft® Windows® Operating System
  16. 2700.3bc4: ProductVersion: 10.0.17134.799
  17. 2700.3bc4: FileVersion: 10.0.17134.799 (WinBuild.160101.0800)
  18. 2700.3bc4: FileDescription: NT Layer DLL
  19. 2700.3bc4: \SystemRoot\System32\kernel32.dll:
  20. 2700.3bc4: CreationTime: 2019-05-15T17:54:54.877734600Z
  21. 2700.3bc4: LastWriteTime: 2019-04-19T10:54:56.743034000Z
  22. 2700.3bc4: ChangeTime: 2019-06-12T13:30:57.698020700Z
  23. 2700.3bc4: FileAttributes: 0x20
  24. 2700.3bc4: Size: 0xafd48
  25. 2700.3bc4: NT Headers: 0xe8
  26. 2700.3bc4: Timestamp: 0xda2d7146
  27. 2700.3bc4: Machine: 0x8664 - amd64
  28. 2700.3bc4: Timestamp: 0xda2d7146
  29. 2700.3bc4: Image Version: 10.0
  30. 2700.3bc4: SizeOfImage: 0xb1000 (724992)
  31. 2700.3bc4: Resource Dir: 0xaf000 LB 0x520
  32. 2700.3bc4: ProductName: Microsoft® Windows® Operating System
  33. 2700.3bc4: ProductVersion: 10.0.17134.753
  34. 2700.3bc4: FileVersion: 10.0.17134.753 (WinBuild.160101.0800)
  35. 2700.3bc4: FileDescription: Windows NT BASE API Client DLL
  36. 2700.3bc4: \SystemRoot\System32\KernelBase.dll:
  37. 2700.3bc4: CreationTime: 2019-06-12T13:24:25.038873000Z
  38. 2700.3bc4: LastWriteTime: 2019-05-17T06:07:07.278992600Z
  39. 2700.3bc4: ChangeTime: 2019-06-12T19:12:53.643313900Z
  40. 2700.3bc4: FileAttributes: 0x20
  41. 2700.3bc4: Size: 0x273d78
  42. 2700.3bc4: NT Headers: 0xf0
  43. 2700.3bc4: Timestamp: 0x8a3d2a4
  44. 2700.3bc4: Machine: 0x8664 - amd64
  45. 2700.3bc4: Timestamp: 0x8a3d2a4
  46. 2700.3bc4: Image Version: 10.0
  47. 2700.3bc4: SizeOfImage: 0x273000 (2568192)
  48. 2700.3bc4: Resource Dir: 0x251000 LB 0x548
  49. 2700.3bc4: ProductName: Microsoft® Windows® Operating System
  50. 2700.3bc4: ProductVersion: 10.0.17134.799
  51. 2700.3bc4: FileVersion: 10.0.17134.799 (WinBuild.160101.0800)
  52. 2700.3bc4: FileDescription: Windows NT BASE API Client DLL
  53. 2700.3bc4: \SystemRoot\System32\apisetschema.dll:
  54. 2700.3bc4: CreationTime: 2018-04-11T23:34:44.042150700Z
  55. 2700.3bc4: LastWriteTime: 2018-04-11T23:34:44.042150700Z
  56. 2700.3bc4: ChangeTime: 2019-03-20T16:34:26.845506400Z
  57. 2700.3bc4: FileAttributes: 0x80
  58. 2700.3bc4: Size: 0x1bd98
  59. 2700.3bc4: NT Headers: 0xd0
  60. 2700.3bc4: Timestamp: 0xd02ff418
  61. 2700.3bc4: Machine: 0x8664 - amd64
  62. 2700.3bc4: Timestamp: 0xd02ff418
  63. 2700.3bc4: Image Version: 10.0
  64. 2700.3bc4: SizeOfImage: 0x1c000 (114688)
  65. 2700.3bc4: Resource Dir: 0x1b000 LB 0x408
  66. 2700.3bc4: ProductName: Microsoft® Windows® Operating System
  67. 2700.3bc4: ProductVersion: 10.0.17134.1
  68. 2700.3bc4: FileVersion: 10.0.17134.1 (WinBuild.160101.0800)
  69. 2700.3bc4: FileDescription: ApiSet Schema DLL
  70. 2700.3bc4: NtOpenDirectoryObject failed on \Driver: 0xc0000022
  71. 2700.3bc4: supR3HardenedWinFindAdversaries: 0x0
  72. 2700.3bc4: Calling main()
  73. 2700.3bc4: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
  74. 2700.3bc4: SUPR3HardenedMain: Respawn #1
  75. 2700.3bc4: System32: \Device\HarddiskVolume2\Windows\System32
  76. 2700.3bc4: WinSxS: \Device\HarddiskVolume2\Windows\WinSxS
  77. 2700.3bc4: KnownDllPath: C:\Windows\System32
  78. 2700.3bc4: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
  79. 2700.3bc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe)
  80. 2700.3bc4: supR3HardNtEnableThreadCreation:
  81. 2700.3bc4: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ffb8ab14f90 pvNtTerminateThread=00007ffb8ab3b3f0
  82. 2700.3bc4: supR3HardenedWinDoReSpawn(1): New child a44.3dc [kernel32].
  83. 2700.3bc4: supR3HardNtChildGatherData: PebBaseAddress=000000000116b000 cbPeb=0x388
  84. 2700.3bc4: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00007ffb8aaa0000 uNtDllChildAddr=00007ffb8aaa0000
  85. 2700.3bc4: supR3HardenedWinSetupChildInit: uLdrInitThunk=00007ffb8ab14f90
  86. 2700.3bc4: supR3HardenedWinSetupChildInit: Start child.
  87. 2700.3bc4: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 0 ms.
  88. 2700.3bc4: supR3HardNtChildPurify: Startup delay kludge #1/0: 270 ms, 16 sleeps
  89. 2700.3bc4: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
  90. 2700.3bc4: *0000000000000000-ffffffffff12ffff 0x0001/0x0000 0x0000000
  91. 2700.3bc4: *0000000000ed0000-0000000000eaffff 0x0004/0x0004 0x0020000
  92. 2700.3bc4: *0000000000ef0000-0000000000ed6fff 0x0002/0x0002 0x0040000
  93. 2700.3bc4: 0000000000f09000-0000000000f01fff 0x0001/0x0000 0x0000000
  94. 2700.3bc4: *0000000000f10000-0000000000f0bfff 0x0002/0x0002 0x0040000
  95. 2700.3bc4: 0000000000f14000-0000000000f07fff 0x0001/0x0000 0x0000000
  96. 2700.3bc4: *0000000000f20000-0000000000f1efff 0x0004/0x0004 0x0020000
  97. 2700.3bc4: 0000000000f21000-0000000000e41fff 0x0001/0x0000 0x0000000
  98. 2700.3bc4: *0000000001000000-0000000000e94fff 0x0000/0x0004 0x0020000
  99. 2700.3bc4: 000000000116b000-0000000001167fff 0x0004/0x0004 0x0020000
  100. 2700.3bc4: 000000000116e000-00000000010dbfff 0x0000/0x0004 0x0020000
  101. 2700.3bc4: *0000000001200000-0000000001104fff 0x0000/0x0004 0x0020000
  102. 2700.3bc4: 00000000012fb000-00000000012f7fff 0x0104/0x0004 0x0020000
  103. 2700.3bc4: 00000000012fe000-00000000012fbfff 0x0004/0x0004 0x0020000
  104. 2700.3bc4: 0000000001300000-ffffffff8261ffff 0x0001/0x0000 0x0000000
  105. 2700.3bc4: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000
  106. 2700.3bc4: 000000007ffe1000-ffff800b0d061fff 0x0001/0x0000 0x0000000
  107. 2700.3bc4: *00007ff5f2f60000-00007ff5f2f3cfff 0x0002/0x0002 0x0040000
  108. 2700.3bc4: 00007ff5f2f83000-00007ff56b3d5fff 0x0001/0x0000 0x0000000
  109. 2700.3bc4: *00007ff67ab30000-00007ff67ab30fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  110. 2700.3bc4: 00007ff67ab31000-00007ff67ab9ffff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  111. 2700.3bc4: 00007ff67aba0000-00007ff67aba0fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  112. 2700.3bc4: 00007ff67aba1000-00007ff67abd9fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  113. 2700.3bc4: 00007ff67abda000-00007ff67abdafff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  114. 2700.3bc4: 00007ff67abdb000-00007ff67abdbfff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  115. 2700.3bc4: 00007ff67abdc000-00007ff67abe0fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  116. 2700.3bc4: 00007ff67abe1000-00007ff67abe1fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  117. 2700.3bc4: 00007ff67abe2000-00007ff67abe2fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  118. 2700.3bc4: 00007ff67abe3000-00007ff67abe6fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  119. 2700.3bc4: 00007ff67abe7000-00007ff67ac1dfff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  120. 2700.3bc4: 00007ff67ac1e000-00007ff16ad9bfff 0x0001/0x0000 0x0000000
  121. 2700.3bc4: *00007ffb8aaa0000-00007ffb8aaa0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  122. 2700.3bc4: 00007ffb8aaa1000-00007ffb8abaffff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  123. 2700.3bc4: 00007ffb8abb0000-00007ffb8abf5fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  124. 2700.3bc4: 00007ffb8abf6000-00007ffb8ac00fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  125. 2700.3bc4: 00007ffb8ac01000-00007ffb8ac0efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  126. 2700.3bc4: 00007ffb8ac0f000-00007ffb8ac0ffff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  127. 2700.3bc4: 00007ffb8ac10000-00007ffb8ac12fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  128. 2700.3bc4: 00007ffb8ac13000-00007ffb8ac80fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  129. 2700.3bc4: 00007ffb8ac81000-00007ff715911fff 0x0001/0x0000 0x0000000
  130. 2700.3bc4: VirtualBox.exe: timestamp 0x57baf3c5 (rc=VINF_SUCCESS)
  131. 2700.3bc4: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
  132. 2700.3bc4: '\Device\HarddiskVolume2\Windows\System32\ntdll.dll' has no imports
  133. 2700.3bc4: supR3HardNtChildPurify: Done after 301 ms and 0 fixes (loop #0).
  134. a44.3dc: Log file opened: 4.3.40r110317 g_hStartupLog=0000000000000004 g_uNtVerCombined=0xa042ee00
  135. 2700.3bc4: supR3HardNtEnableThreadCreation:
  136. a44.3dc: supR3HardenedVmProcessInit: uNtDllAddr=00007ffb8aaa0000 g_uNtVerCombined=0xa042ee00
  137. a44.3dc: ntdll.dll: timestamp 0x7f828745 (rc=VINF_SUCCESS)
  138. a44.3dc: New simple heap: #1 0000000001400000 LB 0x400000 (for 1970176 allocation)
  139. a44.3dc: System32: \Device\HarddiskVolume2\Windows\System32
  140. a44.3dc: WinSxS: \Device\HarddiskVolume2\Windows\WinSxS
  141. a44.3dc: KnownDllPath: C:\Windows\System32
  142. a44.3dc: supR3HardenedVmProcessInit: Opening vboxdrv stub...
  143. a44.3dc: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
  144. a44.3dc: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
  145. a44.3dc: Registered Dll notification callback with NTDLL.
  146. a44.3dc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\kernel32.dll)
  147. a44.3dc: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\kernel32.dll
  148. a44.3dc: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\KERNEL32.DLL (Input=KERNEL32.DLL, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000004001:<flags> [calling]
  149. a44.3dc: supR3HardenedDllNotificationCallback: load 00007ffb87600000 LB 0x00273000 C:\Windows\System32\KERNELBASE.dll [fFlags=0x0]
  150. a44.3dc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\KernelBase.dll)
  151. a44.3dc: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\KernelBase.dll
  152. a44.3dc: supR3HardenedDllNotificationCallback: load 00007ffb8a8a0000 LB 0x000b1000 C:\Windows\System32\KERNEL32.DLL [fFlags=0x0]
  153. a44.3dc: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
  154. a44.3dc: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb8a8a0000 'C:\Windows\System32\KERNEL32.DLL'
  155. a44.3dc: supR3HardenedDllNotificationCallback: load 00007ff67ab30000 LB 0x000ee000 C:\Program Files\Oracle\VirtualBox\VirtualBox.exe [fFlags=0x0]
  156. a44.3dc: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
  157. a44.3dc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe)
  158. a44.3dc: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  159. a44.3dc: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ffb8ab14f90 pvNtTerminateThread=00007ffb8ab3b3f0
  160. 2700.3bc4: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 100 ms.
  161. a44.3dc: \SystemRoot\System32\ntdll.dll:
  162. a44.3dc: CreationTime: 2019-06-12T13:24:21.785062700Z
  163. a44.3dc: LastWriteTime: 2019-05-17T06:06:58.140701600Z
  164. a44.3dc: ChangeTime: 2019-06-12T19:12:53.659007400Z
  165. a44.3dc: FileAttributes: 0x20
  166. a44.3dc: Size: 0x1da660
  167. a44.3dc: NT Headers: 0xe8
  168. a44.3dc: Timestamp: 0x7f828745
  169. a44.3dc: Machine: 0x8664 - amd64
  170. a44.3dc: Timestamp: 0x7f828745
  171. a44.3dc: Image Version: 10.0
  172. a44.3dc: SizeOfImage: 0x1e1000 (1970176)
  173. a44.3dc: Resource Dir: 0x174000 LB 0x6b3e8
  174. a44.3dc: ProductName: Microsoft® Windows® Operating System
  175. a44.3dc: ProductVersion: 10.0.17134.799
  176. a44.3dc: FileVersion: 10.0.17134.799 (WinBuild.160101.0800)
  177. a44.3dc: FileDescription: NT Layer DLL
  178. a44.3dc: \SystemRoot\System32\kernel32.dll:
  179. a44.3dc: CreationTime: 2019-05-15T17:54:54.877734600Z
  180. a44.3dc: LastWriteTime: 2019-04-19T10:54:56.743034000Z
  181. a44.3dc: ChangeTime: 2019-06-12T13:30:57.698020700Z
  182. a44.3dc: FileAttributes: 0x20
  183. a44.3dc: Size: 0xafd48
  184. a44.3dc: NT Headers: 0xe8
  185. a44.3dc: Timestamp: 0xda2d7146
  186. a44.3dc: Machine: 0x8664 - amd64
  187. a44.3dc: Timestamp: 0xda2d7146
  188. a44.3dc: Image Version: 10.0
  189. a44.3dc: SizeOfImage: 0xb1000 (724992)
  190. a44.3dc: Resource Dir: 0xaf000 LB 0x520
  191. a44.3dc: ProductName: Microsoft® Windows® Operating System
  192. a44.3dc: ProductVersion: 10.0.17134.753
  193. a44.3dc: FileVersion: 10.0.17134.753 (WinBuild.160101.0800)
  194. a44.3dc: FileDescription: Windows NT BASE API Client DLL
  195. a44.3dc: \SystemRoot\System32\KernelBase.dll:
  196. a44.3dc: CreationTime: 2019-06-12T13:24:25.038873000Z
  197. a44.3dc: LastWriteTime: 2019-05-17T06:07:07.278992600Z
  198. a44.3dc: ChangeTime: 2019-06-12T19:12:53.643313900Z
  199. a44.3dc: FileAttributes: 0x20
  200. a44.3dc: Size: 0x273d78
  201. a44.3dc: NT Headers: 0xf0
  202. a44.3dc: Timestamp: 0x8a3d2a4
  203. a44.3dc: Machine: 0x8664 - amd64
  204. a44.3dc: Timestamp: 0x8a3d2a4
  205. a44.3dc: Image Version: 10.0
  206. a44.3dc: SizeOfImage: 0x273000 (2568192)
  207. a44.3dc: Resource Dir: 0x251000 LB 0x548
  208. a44.3dc: ProductName: Microsoft® Windows® Operating System
  209. a44.3dc: ProductVersion: 10.0.17134.799
  210. a44.3dc: FileVersion: 10.0.17134.799 (WinBuild.160101.0800)
  211. a44.3dc: FileDescription: Windows NT BASE API Client DLL
  212. a44.3dc: \SystemRoot\System32\apisetschema.dll:
  213. a44.3dc: CreationTime: 2018-04-11T23:34:44.042150700Z
  214. a44.3dc: LastWriteTime: 2018-04-11T23:34:44.042150700Z
  215. a44.3dc: ChangeTime: 2019-03-20T16:34:26.845506400Z
  216. a44.3dc: FileAttributes: 0x80
  217. a44.3dc: Size: 0x1bd98
  218. a44.3dc: NT Headers: 0xd0
  219. a44.3dc: Timestamp: 0xd02ff418
  220. a44.3dc: Machine: 0x8664 - amd64
  221. a44.3dc: Timestamp: 0xd02ff418
  222. a44.3dc: Image Version: 10.0
  223. a44.3dc: SizeOfImage: 0x1c000 (114688)
  224. a44.3dc: Resource Dir: 0x1b000 LB 0x408
  225. a44.3dc: ProductName: Microsoft® Windows® Operating System
  226. a44.3dc: ProductVersion: 10.0.17134.1
  227. a44.3dc: FileVersion: 10.0.17134.1 (WinBuild.160101.0800)
  228. a44.3dc: FileDescription: ApiSet Schema DLL
  229. a44.3dc: NtOpenDirectoryObject failed on \Driver: 0xc0000022
  230. a44.3dc: supR3HardenedWinFindAdversaries: 0x0
  231. a44.3dc: Calling main()
  232. a44.3dc: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
  233. a44.3dc: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
  234. a44.3dc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe)
  235. a44.3dc: SUPR3HardenedMain: Respawn #2
  236. a44.3dc: supR3HardNtEnableThreadCreation:
  237. a44.3dc: '\Device\HarddiskVolume2\Windows\System32\ntdll.dll' has no imports
  238. a44.3dc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\ntdll.dll)
  239. a44.3dc: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  240. a44.3dc: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\ntdll.dll (Input=ntdll.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  241. a44.3dc: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb8aaa0000 'C:\Windows\System32\ntdll.dll'
  242. a44.3dc: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ffb8ab14f90 pvNtTerminateThread=00007ffb8ab3b3f0
  243. a44.3dc: supR3HardenedWinDoReSpawn(2): New child 24ac.10e4 [kernel32].
  244. a44.3dc: supR3HardenedWinReSpawn: NtSetInformationThread/ThreadHideFromDebugger failed: 0xc0000022 (harmless)
  245. a44.3dc: supR3HardNtChildGatherData: PebBaseAddress=00000000010bb000 cbPeb=0x388
  246. a44.3dc: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00007ffb8aaa0000 uNtDllChildAddr=00007ffb8aaa0000
  247. a44.3dc: supR3HardenedWinSetupChildInit: uLdrInitThunk=00007ffb8ab14f90
  248. a44.3dc: supR3HardenedWinSetupChildInit: Start child.
  249. a44.3dc: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 0 ms.
  250. a44.3dc: supR3HardNtChildPurify: Startup delay kludge #1/0: 264 ms, 20 sleeps
  251. a44.3dc: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
  252. a44.3dc: *0000000000000000-ffffffffff1cffff 0x0001/0x0000 0x0000000
  253. a44.3dc: *0000000000e30000-0000000000e0ffff 0x0004/0x0004 0x0020000
  254. a44.3dc: *0000000000e50000-0000000000e36fff 0x0002/0x0002 0x0040000
  255. a44.3dc: 0000000000e69000-0000000000e61fff 0x0001/0x0000 0x0000000
  256. a44.3dc: *0000000000e70000-0000000000d74fff 0x0000/0x0004 0x0020000
  257. a44.3dc: 0000000000f6b000-0000000000f67fff 0x0104/0x0004 0x0020000
  258. a44.3dc: 0000000000f6e000-0000000000f6bfff 0x0004/0x0004 0x0020000
  259. a44.3dc: *0000000000f70000-0000000000f6bfff 0x0002/0x0002 0x0040000
  260. a44.3dc: 0000000000f74000-0000000000f67fff 0x0001/0x0000 0x0000000
  261. a44.3dc: *0000000000f80000-0000000000f7efff 0x0004/0x0004 0x0020000
  262. a44.3dc: 0000000000f81000-0000000000f01fff 0x0001/0x0000 0x0000000
  263. a44.3dc: *0000000001000000-0000000000f44fff 0x0000/0x0004 0x0020000
  264. a44.3dc: 00000000010bb000-00000000010b7fff 0x0004/0x0004 0x0020000
  265. a44.3dc: 00000000010be000-0000000000f7bfff 0x0000/0x0004 0x0020000
  266. a44.3dc: 0000000001200000-ffffffff8241ffff 0x0001/0x0000 0x0000000
  267. a44.3dc: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000
  268. a44.3dc: 000000007ffe1000-ffff800b112a1fff 0x0001/0x0000 0x0000000
  269. a44.3dc: *00007ff5eed20000-00007ff5eecfcfff 0x0002/0x0002 0x0040000
  270. a44.3dc: 00007ff5eed43000-00007ff562f55fff 0x0001/0x0000 0x0000000
  271. a44.3dc: *00007ff67ab30000-00007ff67ab30fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  272. a44.3dc: 00007ff67ab31000-00007ff67ab9ffff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  273. a44.3dc: 00007ff67aba0000-00007ff67aba0fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  274. a44.3dc: 00007ff67aba1000-00007ff67abd9fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  275. a44.3dc: 00007ff67abda000-00007ff67abdafff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  276. a44.3dc: 00007ff67abdb000-00007ff67abdbfff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  277. a44.3dc: 00007ff67abdc000-00007ff67abe0fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  278. a44.3dc: 00007ff67abe1000-00007ff67abe1fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  279. a44.3dc: 00007ff67abe2000-00007ff67abe2fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  280. a44.3dc: 00007ff67abe3000-00007ff67abe6fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  281. a44.3dc: 00007ff67abe7000-00007ff67ac1dfff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  282. a44.3dc: 00007ff67ac1e000-00007ff16ad9bfff 0x0001/0x0000 0x0000000
  283. a44.3dc: *00007ffb8aaa0000-00007ffb8aaa0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  284. a44.3dc: 00007ffb8aaa1000-00007ffb8abaffff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  285. a44.3dc: 00007ffb8abb0000-00007ffb8abf5fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  286. a44.3dc: 00007ffb8abf6000-00007ffb8ac00fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  287. a44.3dc: 00007ffb8ac01000-00007ffb8ac0efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  288. a44.3dc: 00007ffb8ac0f000-00007ffb8ac0ffff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  289. a44.3dc: 00007ffb8ac10000-00007ffb8ac12fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  290. a44.3dc: 00007ffb8ac13000-00007ffb8ac80fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
  291. a44.3dc: 00007ffb8ac81000-00007ff715911fff 0x0001/0x0000 0x0000000
  292. a44.3dc: VirtualBox.exe: timestamp 0x57baf3c5 (rc=VINF_SUCCESS)
  293. a44.3dc: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
  294. a44.3dc: '\Device\HarddiskVolume2\Windows\System32\ntdll.dll' has no imports
  295. a44.3dc: supR3HardNtChildPurify: Done after 292 ms and 0 fixes (loop #0).
  296. 24ac.10e4: Log file opened: 4.3.40r110317 g_hStartupLog=0000000000000004 g_uNtVerCombined=0xa042ee00
  297. 24ac.10e4: supR3HardenedVmProcessInit: uNtDllAddr=00007ffb8aaa0000 g_uNtVerCombined=0xa042ee00
  298. a44.3dc: supR3HardenedEarlyCompact: Removed heap 1 (0x00000001400000 LB 0x400000)
  299. 24ac.10e4: ntdll.dll: timestamp 0x7f828745 (rc=VINF_SUCCESS)
  300. a44.3dc: supR3HardNtEnableThreadCreation:
  301. 24ac.10e4: New simple heap: #1 0000000001300000 LB 0x400000 (for 1970176 allocation)
  302. 24ac.10e4: System32: \Device\HarddiskVolume2\Windows\System32
  303. 24ac.10e4: WinSxS: \Device\HarddiskVolume2\Windows\WinSxS
  304. 24ac.10e4: KnownDllPath: C:\Windows\System32
  305. 24ac.10e4: supR3HardenedVmProcessInit: Opening vboxdrv...
  306. 24ac.10e4: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
  307. 24ac.10e4: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
  308. 24ac.10e4: Registered Dll notification callback with NTDLL.
  309. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\kernel32.dll)
  310. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\kernel32.dll
  311. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\KERNEL32.DLL (Input=KERNEL32.DLL, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000004001:<flags> [calling]
  312. 24ac.10e4: supR3HardenedDllNotificationCallback: load 00007ffb87600000 LB 0x00273000 C:\Windows\System32\KERNELBASE.dll [fFlags=0x0]
  313. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\KernelBase.dll)
  314. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\KernelBase.dll
  315. 24ac.10e4: supR3HardenedDllNotificationCallback: load 00007ffb8a8a0000 LB 0x000b1000 C:\Windows\System32\KERNEL32.DLL [fFlags=0x0]
  316. 24ac.10e4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
  317. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb8a8a0000 'C:\Windows\System32\KERNEL32.DLL'
  318. 24ac.10e4: supR3HardenedDllNotificationCallback: load 00007ff67ab30000 LB 0x000ee000 C:\Program Files\Oracle\VirtualBox\VirtualBox.exe [fFlags=0x0]
  319. 24ac.10e4: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
  320. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe)
  321. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
  322. 24ac.10e4: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ffb8ab14f90 pvNtTerminateThread=00007ffb8ab3b3f0
  323. a44.3dc: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 79 ms.
  324. 24ac.10e4: \SystemRoot\System32\ntdll.dll:
  325. 24ac.10e4: CreationTime: 2019-06-12T13:24:21.785062700Z
  326. 24ac.10e4: LastWriteTime: 2019-05-17T06:06:58.140701600Z
  327. 24ac.10e4: ChangeTime: 2019-06-12T19:12:53.659007400Z
  328. 24ac.10e4: FileAttributes: 0x20
  329. 24ac.10e4: Size: 0x1da660
  330. 24ac.10e4: NT Headers: 0xe8
  331. 24ac.10e4: Timestamp: 0x7f828745
  332. 24ac.10e4: Machine: 0x8664 - amd64
  333. 24ac.10e4: Timestamp: 0x7f828745
  334. 24ac.10e4: Image Version: 10.0
  335. 24ac.10e4: SizeOfImage: 0x1e1000 (1970176)
  336. 24ac.10e4: Resource Dir: 0x174000 LB 0x6b3e8
  337. 24ac.10e4: ProductName: Microsoft® Windows® Operating System
  338. 24ac.10e4: ProductVersion: 10.0.17134.799
  339. 24ac.10e4: FileVersion: 10.0.17134.799 (WinBuild.160101.0800)
  340. 24ac.10e4: FileDescription: NT Layer DLL
  341. 24ac.10e4: \SystemRoot\System32\kernel32.dll:
  342. 24ac.10e4: CreationTime: 2019-05-15T17:54:54.877734600Z
  343. 24ac.10e4: LastWriteTime: 2019-04-19T10:54:56.743034000Z
  344. 24ac.10e4: ChangeTime: 2019-06-12T13:30:57.698020700Z
  345. 24ac.10e4: FileAttributes: 0x20
  346. 24ac.10e4: Size: 0xafd48
  347. 24ac.10e4: NT Headers: 0xe8
  348. 24ac.10e4: Timestamp: 0xda2d7146
  349. 24ac.10e4: Machine: 0x8664 - amd64
  350. 24ac.10e4: Timestamp: 0xda2d7146
  351. 24ac.10e4: Image Version: 10.0
  352. 24ac.10e4: SizeOfImage: 0xb1000 (724992)
  353. 24ac.10e4: Resource Dir: 0xaf000 LB 0x520
  354. 24ac.10e4: ProductName: Microsoft® Windows® Operating System
  355. 24ac.10e4: ProductVersion: 10.0.17134.753
  356. 24ac.10e4: FileVersion: 10.0.17134.753 (WinBuild.160101.0800)
  357. 24ac.10e4: FileDescription: Windows NT BASE API Client DLL
  358. 24ac.10e4: \SystemRoot\System32\KernelBase.dll:
  359. 24ac.10e4: CreationTime: 2019-06-12T13:24:25.038873000Z
  360. 24ac.10e4: LastWriteTime: 2019-05-17T06:07:07.278992600Z
  361. 24ac.10e4: ChangeTime: 2019-06-12T19:12:53.643313900Z
  362. 24ac.10e4: FileAttributes: 0x20
  363. 24ac.10e4: Size: 0x273d78
  364. 24ac.10e4: NT Headers: 0xf0
  365. 24ac.10e4: Timestamp: 0x8a3d2a4
  366. 24ac.10e4: Machine: 0x8664 - amd64
  367. 24ac.10e4: Timestamp: 0x8a3d2a4
  368. 24ac.10e4: Image Version: 10.0
  369. 24ac.10e4: SizeOfImage: 0x273000 (2568192)
  370. 24ac.10e4: Resource Dir: 0x251000 LB 0x548
  371. 24ac.10e4: ProductName: Microsoft® Windows® Operating System
  372. 24ac.10e4: ProductVersion: 10.0.17134.799
  373. 24ac.10e4: FileVersion: 10.0.17134.799 (WinBuild.160101.0800)
  374. 24ac.10e4: FileDescription: Windows NT BASE API Client DLL
  375. 24ac.10e4: \SystemRoot\System32\apisetschema.dll:
  376. 24ac.10e4: CreationTime: 2018-04-11T23:34:44.042150700Z
  377. 24ac.10e4: LastWriteTime: 2018-04-11T23:34:44.042150700Z
  378. 24ac.10e4: ChangeTime: 2019-03-20T16:34:26.845506400Z
  379. 24ac.10e4: FileAttributes: 0x80
  380. 24ac.10e4: Size: 0x1bd98
  381. 24ac.10e4: NT Headers: 0xd0
  382. 24ac.10e4: Timestamp: 0xd02ff418
  383. 24ac.10e4: Machine: 0x8664 - amd64
  384. 24ac.10e4: Timestamp: 0xd02ff418
  385. 24ac.10e4: Image Version: 10.0
  386. 24ac.10e4: SizeOfImage: 0x1c000 (114688)
  387. 24ac.10e4: Resource Dir: 0x1b000 LB 0x408
  388. 24ac.10e4: ProductName: Microsoft® Windows® Operating System
  389. 24ac.10e4: ProductVersion: 10.0.17134.1
  390. 24ac.10e4: FileVersion: 10.0.17134.1 (WinBuild.160101.0800)
  391. 24ac.10e4: FileDescription: ApiSet Schema DLL
  392. 24ac.10e4: NtOpenDirectoryObject failed on \Driver: 0xc0000022
  393. 24ac.10e4: supR3HardenedWinFindAdversaries: 0x0
  394. 24ac.10e4: Calling main()
  395. 24ac.10e4: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
  396. 24ac.10e4: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
  397. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe)
  398. 24ac.10e4: SUPR3HardenedMain: Final process, opening VBoxDrv...
  399. 24ac.10e4: supR3HardenedEarlyCompact: Removed heap 1 (0x00000001300000 LB 0x400000)
  400. 24ac.10e4: supR3HardNtEnableThreadCreation:
  401. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxSupLib.dll)
  402. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxSupLib.dll
  403. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxSupLib.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  404. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxSupLib.dll [lacks WinVerifyTrust]
  405. 24ac.10e4: supR3HardenedDllNotificationCallback: load 00007ffb83740000 LB 0x00005000 C:\Program Files\Oracle\VirtualBox\VBoxSupLib.DLL [fFlags=0x0]
  406. 24ac.10e4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxSupLib.dll [lacks WinVerifyTrust]
  407. 24ac.10e4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxSupLib.dll [lacks WinVerifyTrust]
  408. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxSupLib.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
  409. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb83740000 'C:\Program Files\Oracle\VirtualBox\VBoxSupLib.DLL'
  410. 24ac.10e4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxSupLib.dll [lacks WinVerifyTrust]
  411. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxSupLib.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
  412. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb83740000 'C:\Program Files\Oracle\VirtualBox\VBoxSupLib.DLL'
  413. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb83740000 'C:\Program Files\Oracle\VirtualBox\VBoxSupLib.DLL'
  414. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  415. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msasn1.dll'.
  416. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'crypt32.dll'.
  417. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #27 'rpcrt4.dll'.
  418. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\wintrust.dll)
  419. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\wintrust.dll
  420. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  421. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  422. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll)
  423. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll
  424. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'crypt32.dll'...
  425. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'crypt32.dll' -> '\Device\HarddiskVolume2\Windows\System32\crypt32.dll' [rcNtRedir=0xc0150008]
  426. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #34 'msasn1.dll'.
  427. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\crypt32.dll)
  428. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\crypt32.dll
  429. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msasn1.dll'...
  430. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msasn1.dll' -> '\Device\HarddiskVolume2\Windows\System32\msasn1.dll' [rcNtRedir=0xc0150008]
  431. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\msasn1.dll)
  432. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\msasn1.dll
  433. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  434. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  435. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\msvcrt.dll)
  436. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\msvcrt.dll
  437. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msasn1.dll'...
  438. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msasn1.dll' -> '\Device\HarddiskVolume2\Windows\System32\msasn1.dll' [rcNtRedir=0xc0150008]
  439. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msasn1.dll [lacks WinVerifyTrust]
  440. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\Wintrust.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  441. 24ac.10e4: supR3HardenedDllNotificationCallback: load 00007ffb88830000 LB 0x0009e000 C:\Windows\System32\msvcrt.dll [fFlags=0x0]
  442. 24ac.10e4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  443. 24ac.10e4: supR3HardenedDllNotificationCallback: load 00007ffb86e50000 LB 0x00012000 C:\Windows\System32\MSASN1.dll [fFlags=0x0]
  444. 24ac.10e4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msasn1.dll [lacks WinVerifyTrust]
  445. 24ac.10e4: supR3HardenedDllNotificationCallback: load 00007ffb87c60000 LB 0x000f8000 C:\Windows\System32\ucrtbase.dll [fFlags=0x0]
  446. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\ucrtbase.dll)
  447. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ucrtbase.dll
  448. 24ac.10e4: supR3HardenedDllNotificationCallback: load 00007ffb878d0000 LB 0x001e2000 C:\Windows\System32\CRYPT32.dll [fFlags=0x0]
  449. 24ac.10e4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\crypt32.dll [lacks WinVerifyTrust]
  450. 24ac.10e4: supR3HardenedDllNotificationCallback: load 00007ffb88640000 LB 0x00124000 C:\Windows\System32\RPCRT4.dll [fFlags=0x0]
  451. 24ac.10e4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  452. 24ac.10e4: supR3HardenedDllNotificationCallback: load 00007ffb88be0000 LB 0x0005b000 C:\Windows\System32\sechost.dll [fFlags=0x0]
  453. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'rpcrt4.dll'.
  454. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\sechost.dll)
  455. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\sechost.dll
  456. 24ac.10e4: supR3HardenedDllNotificationCallback: load 00007ffb8a990000 LB 0x000a1000 C:\Windows\System32\advapi32.dll [fFlags=0x0]
  457. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  458. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'sechost.dll'.
  459. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #27 'rpcrt4.dll'.
  460. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\advapi32.dll)
  461. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\advapi32.dll
  462. 24ac.10e4: supR3HardenedDllNotificationCallback: load 00007ffb87eb0000 LB 0x00057000 C:\Windows\System32\Wintrust.dll [fFlags=0x0]
  463. 24ac.10e4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
  464. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-synch-l1-2-0 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  465. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb87600000 'api-ms-win-core-synch-l1-2-0'
  466. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-fibers-l1-1-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  467. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb87600000 'api-ms-win-core-fibers-l1-1-1'
  468. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-fibers-l1-1-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  469. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb87600000 'api-ms-win-core-fibers-l1-1-1'
  470. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-synch-l1-2-0 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  471. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb87600000 'api-ms-win-core-synch-l1-2-0'
  472. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-localization-l1-2-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  473. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb87600000 'api-ms-win-core-localization-l1-2-1'
  474. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb87eb0000 'C:\Windows\system32\Wintrust.dll'
  475. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> -626 (\Device\HarddiskVolume2\Windows\System32\bcrypt.dll)
  476. 24ac.10e4: Error (rc=0):
  477. 24ac.10e4: supR3HardenedScreenImage/LdrLoadDll: rc=Unknown Status -626 (0xfffffd8e) fImage=1 fProtect=0x0 fAccess=0x0 \Device\HarddiskVolume2\Windows\System32\bcrypt.dll: Grown load config (192 to 256 bytes) includes non-zero bytes: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 90 a9 01 80 01 00 00 00
  478. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\bcrypt.dll
  479. 24ac.10e4: Error (rc=0):
  480. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: rejecting 'C:\Windows\system32\bcrypt.dll' (C:\Windows\system32\bcrypt.dll): rcNt=0xc0000190
  481. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000190 'C:\Windows\system32\bcrypt.dll'
  482. 24ac.10e4: Warning! Failed to load bcrypt.dll
  483. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\cryptsp.dll)
  484. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\cryptsp.dll
  485. 24ac.10e4: supR3HardenedDllNotificationCallback: load 00007ffb867e0000 LB 0x00017000 C:\Windows\SYSTEM32\CRYPTSP.dll [fFlags=0x0]
  486. 24ac.10e4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\cryptsp.dll [lacks WinVerifyTrust]
  487. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #18 'bcrypt.dll'.
  488. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\rsaenh.dll)
  489. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\rsaenh.dll
  490. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcrypt.dll'...
  491. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcrypt.dll' -> '\Device\HarddiskVolume2\Windows\System32\bcrypt.dll' [rcNtRedir=0xc0150008]
  492. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (Unknown Status -626 (0xfffffd8e)) on \Device\HarddiskVolume2\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
  493. 24ac.10e4: Error (rc=0):
  494. 24ac.10e4: supR3HardenedScreenImage/Imports: cached rc=Unknown Status -626 (0xfffffd8e) fImage=1 fProtect=0x0 fAccess=0x0 cHits=1 \Device\HarddiskVolume2\Windows\System32\bcrypt.dll
  495. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  496. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  497. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  498. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'sechost.dll'...
  499. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'sechost.dll' -> '\Device\HarddiskVolume2\Windows\System32\sechost.dll' [rcNtRedir=0xc0150008]
  500. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\sechost.dll [lacks WinVerifyTrust]
  501. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  502. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  503. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  504. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  505. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  506. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  507. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\rsaenh.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
  508. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rsaenh.dll [lacks WinVerifyTrust]
  509. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status -626 (0xfffffd8e)) on \Device\HarddiskVolume2\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
  510. 24ac.10e4: Error (rc=0):
  511. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cached rc=Unknown Status -626 (0xfffffd8e) fImage=1 fProtect=0x10 fAccess=0xf cHits=2 \Device\HarddiskVolume2\Windows\System32\bcrypt.dll
  512. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000190 'C:\Windows\system32\rsaenh.dll'
  513. 24ac.10e4: supR3HardNtViCallWinVerifyTrust: WinVerifyTrust failed with 0x8 (<NULL>) on '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe'
  514. 24ac.10e4: Error -22919 in VirtualBox! (enmWhat=1)
  515. 24ac.10e4: WinVerifyTrust failed on stub executable: WinVerifyTrust failed with hrc=Unknown Status 0x8 on '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe'
  516. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'opengl32.dll'.
  517. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'vboxrt.dll'.
  518. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'msvcp100.dll'.
  519. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'msvcr100.dll'.
  520. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qtcorevbox4.dll'.
  521. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'qtguivbox4.dll'.
  522. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'qtnetworkvbox4.dll'.
  523. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'qtopenglvbox4.dll'.
  524. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'user32.dll'.
  525. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'gdi32.dll'.
  526. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'advapi32.dll'.
  527. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'shell32.dll'.
  528. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #13 'ole32.dll'.
  529. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #14 'oleaut32.dll'.
  530. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #15 'winmm.dll'.
  531. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.dll)
  532. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.dll
  533. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
  534. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
  535. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'winmmbase.dll'.
  536. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msvcrt.dll'.
  537. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\winmm.dll)
  538. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\winmm.dll
  539. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
  540. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
  541. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcp_win.dll'.
  542. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'combase.dll'.
  543. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #23 'rpcrt4.dll'.
  544. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\oleaut32.dll)
  545. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\oleaut32.dll
  546. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
  547. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
  548. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #23 'rpcrt4.dll'.
  549. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #48 'gdi32.dll'.
  550. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #49 'user32.dll'.
  551. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #50 'combase.dll'.
  552. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\ole32.dll)
  553. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ole32.dll
  554. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
  555. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
  556. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  557. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #74 'user32.dll'.
  558. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #76 'gdi32.dll'.
  559. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\shell32.dll)
  560. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\shell32.dll
  561. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
  562. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
  563. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
  564. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  565. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  566. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\gdi32.dll)
  567. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\gdi32.dll
  568. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  569. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  570. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'win32u.dll'.
  571. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #34 'gdi32.dll'.
  572. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\user32.dll)
  573. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\user32.dll
  574. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtopenglvbox4.dll'...
  575. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtopenglvbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtopenglvbox4.dll' [rcNtRedir=0xc0150008]
  576. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'opengl32.dll'.
  577. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'gdi32.dll'.
  578. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
  579. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'qtguivbox4.dll'.
  580. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qtcorevbox4.dll'.
  581. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcr100.dll'.
  582. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtOpenGLVBox4.dll)
  583. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtOpenGLVBox4.dll
  584. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtnetworkvbox4.dll'...
  585. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtnetworkvbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtnetworkvbox4.dll' [rcNtRedir=0xc0150008]
  586. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'ws2_32.dll'.
  587. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'qtcorevbox4.dll'.
  588. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'msvcr100.dll'.
  589. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtNetworkVBox4.dll)
  590. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtNetworkVBox4.dll
  591. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtguivbox4.dll'...
  592. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtguivbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtguivbox4.dll' [rcNtRedir=0xc0150008]
  593. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'.
  594. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'comdlg32.dll'.
  595. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'oleaut32.dll'.
  596. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'imm32.dll'.
  597. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'winmm.dll'.
  598. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'winspool.drv'.
  599. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'ole32.dll'.
  600. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'user32.dll'.
  601. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'advapi32.dll'.
  602. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'shell32.dll'.
  603. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'qtcorevbox4.dll'.
  604. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'msvcp100.dll'.
  605. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'msvcr100.dll'.
  606. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll)
  607. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll
  608. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtcorevbox4.dll'...
  609. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtcorevbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtcorevbox4.dll' [rcNtRedir=0xc0150008]
  610. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
  611. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'ole32.dll'.
  612. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'.
  613. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'ws2_32.dll'.
  614. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcp100.dll'.
  615. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msvcr100.dll'.
  616. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll)
  617. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll
  618. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
  619. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
  620. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll)
  621. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll
  622. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
  623. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
  624. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'.
  625. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll)
  626. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll
  627. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'vboxrt.dll'...
  628. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'vboxrt.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\vboxrt.dll' [rcNtRedir=0xc0150008]
  629. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'.
  630. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcp100.dll'.
  631. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ws2_32.dll'.
  632. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'rpcrt4.dll'.
  633. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll)
  634. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll
  635. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
  636. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
  637. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  638. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'advapi32.dll'.
  639. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
  640. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'.
  641. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'glu32.dll'.
  642. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\opengl32.dll)
  643. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\opengl32.dll
  644. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'glu32.dll'...
  645. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'glu32.dll' -> '\Device\HarddiskVolume2\Windows\System32\glu32.dll' [rcNtRedir=0xc0150008]
  646. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  647. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
  648. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'opengl32.dll'.
  649. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\glu32.dll)
  650. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\glu32.dll
  651. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  652. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  653. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  654. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  655. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  656. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
  657. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
  658. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
  659. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
  660. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  661. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  662. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  663. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  664. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  665. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  666. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'...
  667. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008]
  668. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #26 'rpcrt4.dll'.
  669. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\ws2_32.dll)
  670. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ws2_32.dll
  671. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
  672. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
  673. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
  674. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
  675. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
  676. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
  677. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
  678. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
  679. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
  680. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
  681. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
  682. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
  683. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
  684. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
  685. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
  686. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'...
  687. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008]
  688. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\ws2_32.dll [lacks WinVerifyTrust]
  689. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
  690. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
  691. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
  692. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
  693. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
  694. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
  695. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  696. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  697. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
  698. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
  699. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
  700. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
  701. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
  702. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
  703. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
  704. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtcorevbox4.dll'...
  705. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtcorevbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtcorevbox4.dll' [rcNtRedir=0xc0150008]
  706. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [lacks WinVerifyTrust]
  707. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
  708. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
  709. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
  710. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
  711. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
  712. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
  713. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  714. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  715. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
  716. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
  717. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
  718. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
  719. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winspool.drv'...
  720. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'winspool.drv' -> '\Device\HarddiskVolume2\Windows\System32\winspool.drv' [rcNtRedir=0xc0150008]
  721. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  722. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #24 'propsys.dll'.
  723. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #29 'iphlpapi.dll'.
  724. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #38 'bcrypt.dll'.
  725. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\winspool.drv)
  726. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\winspool.drv
  727. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
  728. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
  729. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
  730. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'imm32.dll'...
  731. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'imm32.dll' -> '\Device\HarddiskVolume2\Windows\System32\imm32.dll' [rcNtRedir=0xc0150008]
  732. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'user32.dll'.
  733. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #25 'win32u.dll'.
  734. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\imm32.dll)
  735. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\imm32.dll
  736. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
  737. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
  738. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
  739. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comdlg32.dll'...
  740. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'comdlg32.dll' -> '\Device\HarddiskVolume2\Windows\System32\comdlg32.dll' [rcNtRedir=0xc0150008]
  741. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  742. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #35 'user32.dll'.
  743. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #36 'shlwapi.dll'.
  744. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #37 'gdi32.dll'.
  745. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #38 'comctl32.dll'.
  746. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #39 'shell32.dll'.
  747. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\comdlg32.dll)
  748. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\comdlg32.dll
  749. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  750. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  751. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  752. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
  753. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
  754. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
  755. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtcorevbox4.dll'...
  756. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtcorevbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtcorevbox4.dll' [rcNtRedir=0xc0150008]
  757. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [lacks WinVerifyTrust]
  758. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'...
  759. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008]
  760. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\ws2_32.dll [lacks WinVerifyTrust]
  761. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
  762. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
  763. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
  764. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtcorevbox4.dll'...
  765. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtcorevbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtcorevbox4.dll' [rcNtRedir=0xc0150008]
  766. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [lacks WinVerifyTrust]
  767. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtguivbox4.dll'...
  768. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtguivbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtguivbox4.dll' [rcNtRedir=0xc0150008]
  769. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll [lacks WinVerifyTrust]
  770. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  771. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  772. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
  773. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  774. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  775. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  776. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
  777. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
  778. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
  779. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  780. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  781. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  782. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
  783. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume2\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
  784. 24ac.10e4: '\Device\HarddiskVolume2\Windows\System32\win32u.dll' has no imports
  785. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\win32u.dll)
  786. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\win32u.dll
  787. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  788. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  789. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  790. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  791. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  792. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
  793. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  794. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  795. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  796. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
  797. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume2\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
  798. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'rpcrt4.dll'.
  799. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #45 'bcryptprimitives.dll'.
  800. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\combase.dll)
  801. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\combase.dll
  802. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  803. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  804. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
  805. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  806. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  807. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  808. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  809. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  810. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  811. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  812. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  813. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  814. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
  815. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume2\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
  816. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\combase.dll [lacks WinVerifyTrust]
  817. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp_win.dll'...
  818. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp_win.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcp_win.dll' [rcNtRedir=0xc0150008]
  819. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\msvcp_win.dll)
  820. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\msvcp_win.dll
  821. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  822. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  823. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  824. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmmbase.dll'...
  825. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmmbase.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmmbase.dll' [rcNtRedir=0xc0150008]
  826. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  827. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\winmmbase.dll)
  828. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\winmmbase.dll
  829. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  830. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  831. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  832. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcryptprimitives.dll'...
  833. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcryptprimitives.dll' -> '\Device\HarddiskVolume2\Windows\System32\bcryptprimitives.dll' [rcNtRedir=0xc0150008]
  834. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> -626 (\Device\HarddiskVolume2\Windows\System32\bcryptprimitives.dll)
  835. 24ac.10e4: Error (rc=0):
  836. 24ac.10e4: supR3HardenedScreenImage/Imports: rc=Unknown Status -626 (0xfffffd8e) fImage=1 fProtect=0x0 fAccess=0x0 \Device\HarddiskVolume2\Windows\System32\bcryptprimitives.dll: Grown load config (192 to 256 bytes) includes non-zero bytes: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 8e 06 80 01 00 00 00
  837. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\bcryptprimitives.dll
  838. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  839. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  840. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  841. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
  842. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
  843. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
  844. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comctl32.dll'...
  845. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'comctl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\comctl32.dll' [rcNtRedir=0x0]
  846. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'advapi32.dll'.
  847. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
  848. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
  849. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\comctl32.dll)
  850. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\comctl32.dll
  851. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  852. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  853. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  854. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shlwapi.dll'...
  855. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'shlwapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\shlwapi.dll' [rcNtRedir=0xc0150008]
  856. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcrt.dll'.
  857. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #44 'gdi32.dll'.
  858. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #45 'user32.dll'.
  859. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\shlwapi.dll)
  860. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\shlwapi.dll
  861. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  862. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  863. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
  864. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  865. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  866. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  867. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
  868. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume2\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
  869. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\win32u.dll [lacks WinVerifyTrust]
  870. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  871. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  872. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
  873. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcrypt.dll'...
  874. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcrypt.dll' -> '\Device\HarddiskVolume2\Windows\System32\bcrypt.dll' [rcNtRedir=0xc0150008]
  875. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (Unknown Status -626 (0xfffffd8e)) on \Device\HarddiskVolume2\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
  876. 24ac.10e4: Error (rc=0):
  877. 24ac.10e4: supR3HardenedScreenImage/Imports: cached rc=Unknown Status -626 (0xfffffd8e) fImage=1 fProtect=0x0 fAccess=0x0 cHits=3 \Device\HarddiskVolume2\Windows\System32\bcrypt.dll
  878. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'iphlpapi.dll'...
  879. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'iphlpapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\iphlpapi.dll' [rcNtRedir=0xc0150008]
  880. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\IPHLPAPI.DLL)
  881. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\IPHLPAPI.DLL
  882. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'propsys.dll'...
  883. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'propsys.dll' -> '\Device\HarddiskVolume2\Windows\System32\propsys.dll' [rcNtRedir=0xc0150008]
  884. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  885. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #15 'oleaut32.dll'.
  886. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #31 'rpcrt4.dll'.
  887. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\propsys.dll)
  888. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\propsys.dll
  889. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  890. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  891. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  892. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  893. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  894. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  895. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
  896. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
  897. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
  898. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  899. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  900. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
  901. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  902. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  903. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  904. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  905. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  906. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  907. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
  908. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
  909. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
  910. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  911. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  912. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  913. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  914. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  915. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
  916. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  917. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  918. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  919. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  920. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  921. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  922. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  923. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  924. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
  925. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  926. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  927. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  928. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
  929. 24ac.10e4: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
  930. 24ac.10e4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
  931. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VirtualBox.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000a01:<flags> [calling]
  932. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.dll [lacks WinVerifyTrust]
  933. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
  934. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
  935. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
  936. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
  937. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [lacks WinVerifyTrust]
  938. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll [lacks WinVerifyTrust]
  939. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtNetworkVBox4.dll [lacks WinVerifyTrust]
  940. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtOpenGLVBox4.dll [lacks WinVerifyTrust]
  941. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
  942. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\glu32.dll [lacks WinVerifyTrust]
  943. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'advapi32.dll'.
  944. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
  945. 24ac.10e4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
  946. 24ac.10e4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.17134.829_none_f94fe9573097fa34\comctl32.dll)
  947. 24ac.10e4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.17134.829_none_f94fe9573097fa34\comctl32.dll
  948. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winspool.drv [lacks WinVerifyTrust]
  949. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\winmmbase.dll [lacks WinVerifyTrust]
  950. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\propsys.dll [lacks WinVerifyTrust]
  951. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\IPHLPAPI.DLL [lacks WinVerifyTrust]
  952. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status -626 (0xfffffd8e)) on \Device\HarddiskVolume2\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
  953. 24ac.10e4: Error (rc=0):
  954. 24ac.10e4: supR3HardenedScreenImage/NtCreateSection: cached rc=Unknown Status -626 (0xfffffd8e) fImage=1 fProtect=0x10 fAccess=0xf cHits=4 \Device\HarddiskVolume2\Windows\System32\bcrypt.dll
  955. 24ac.10e4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000190 'C:\Program Files\Oracle\VirtualBox\VirtualBox.dll'
  956. a44.3dc: supR3HardNtChildWaitFor[2]: Quitting: ExitCode=0x1 (rcNtWait=0x0, rcNt1=0x0, rcNt2=0x103, rcNt3=0x103, 1433 ms, the end);
  957. 2700.3bc4: supR3HardNtChildWaitFor[1]: Quitting: ExitCode=0x1 (rcNtWait=0x0, rcNt1=0x0, rcNt2=0x103, rcNt3=0x103, 1827 ms, the end);
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!