API tools faq
paste
Advertisement
Guest User

log

a guest
Mar 22nd, 2018
135
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Prolog 101.34 KB | None | 0 0
raw download clone embed print report
  1. 3918.3638: Log file opened: 5.1.22r115126 g_hStartupLog=0000000000000090 g_uNtVerCombined=0xa03fab00
  2. 3918.3638: \SystemRoot\System32\ntdll.dll:
  3. 3918.3638:     CreationTime:    2018-02-18T09:47:41.113109800Z
  4. 3918.3638:     LastWriteTime:   2018-02-10T06:15:34.902092600Z
  5. 3918.3638:     ChangeTime:      2018-03-13T19:07:25.283413100Z
  6. 3918.3638:     FileAttributes:  0x20
  7. 3918.3638:     Size:            0x1dd100
  8. 3918.3638:     NT Headers:      0xe0
  9. 3918.3638:     Timestamp:       0xeffc9126
  10. 3918.3638:     Machine:         0x8664 - amd64
  11. 3918.3638:     Timestamp:       0xeffc9126
  12. 3918.3638:     Image Version:   10.0
  13. 3918.3638:     SizeOfImage:     0x1e0000 (1966080)
  14. 3918.3638:     Resource Dir:    0x174000 LB 0x6a1d8
  15. 3918.3638:     [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
  16. 3918.3638:     [Raw version resource data: 0x1740f0 LB 0x380, codepage 0x0 (reserved 0x0)]
  17. 3918.3638:     ProductName:     Microsoft® Windows® Operating System
  18. 3918.3638:     ProductVersion:  10.0.16299.248
  19. 3918.3638:     FileVersion:     10.0.16299.248 (WinBuild.160101.0800)
  20. 3918.3638:     FileDescription: NT Layer DLL
  21. 3918.3638: \SystemRoot\System32\kernel32.dll:
  22. 3918.3638:     CreationTime:    2017-09-29T13:42:04.954227600Z
  23. 3918.3638:     LastWriteTime:   2017-09-29T13:42:04.954227600Z
  24. 3918.3638:     ChangeTime:      2017-12-04T08:39:41.162415500Z
  25. 3918.3638:     FileAttributes:  0x20
  26. 3918.3638:     Size:            0xab868
  27. 3918.3638:     NT Headers:      0xe8
  28. 3918.3638:     Timestamp:       0xc2cf900
  29. 3918.3638:     Machine:         0x8664 - amd64
  30. 3918.3638:     Timestamp:       0xc2cf900
  31. 3918.3638:     Image Version:   10.0
  32. 3918.3638:     SizeOfImage:     0xae000 (712704)
  33. 3918.3638:     Resource Dir:    0xac000 LB 0x520
  34. 3918.3638:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
  35. 3918.3638:     [Raw version resource data: 0xac0b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
  36. 3918.3638:     ProductName:     Microsoft® Windows® Operating System
  37. 3918.3638:     ProductVersion:  10.0.16299.15
  38. 3918.3638:     FileVersion:     10.0.16299.15 (WinBuild.160101.0800)
  39. 3918.3638:     FileDescription: Windows NT BASE API Client DLL
  40. 3918.3638: \SystemRoot\System32\KernelBase.dll:
  41. 3918.3638:     CreationTime:    2018-03-13T19:05:25.386173300Z
  42. 3918.3638:     LastWriteTime:   2018-03-01T07:40:10.084338900Z
  43. 3918.3638:     ChangeTime:      2018-03-13T23:56:44.279845300Z
  44. 3918.3638:     FileAttributes:  0x20
  45. 3918.3638:     Size:            0x265ff8
  46. 3918.3638:     NT Headers:      0xf0
  47. 3918.3638:     Timestamp:       0x90a96867
  48. 3918.3638:     Machine:         0x8664 - amd64
  49. 3918.3638:     Timestamp:       0x90a96867
  50. 3918.3638:     Image Version:   10.0
  51. 3918.3638:     SizeOfImage:     0x266000 (2514944)
  52. 3918.3638:     Resource Dir:    0x245000 LB 0x548
  53. 3918.3638:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
  54. 3918.3638:     [Raw version resource data: 0x2450b0 LB 0x3bc, codepage 0x0 (reserved 0x0)]
  55. 3918.3638:     ProductName:     Microsoft® Windows® Operating System
  56. 3918.3638:     ProductVersion:  10.0.16299.309
  57. 3918.3638:     FileVersion:     10.0.16299.309 (WinBuild.160101.0800)
  58. 3918.3638:     FileDescription: Windows NT BASE API Client DLL
  59. 3918.3638: \SystemRoot\System32\apisetschema.dll:
  60. 3918.3638:     CreationTime:    2017-09-29T13:42:07.095026600Z
  61. 3918.3638:     LastWriteTime:   2017-09-29T13:42:07.095026600Z
  62. 3918.3638:     ChangeTime:      2018-03-13T19:07:25.311505600Z
  63. 3918.3638:     FileAttributes:  0x20
  64. 3918.3638:     Size:            0x1b398
  65. 3918.3638:     NT Headers:      0xc8
  66. 3918.3638:     Timestamp:       0xf30abf31
  67. 3918.3638:     Machine:         0x8664 - amd64
  68. 3918.3638:     Timestamp:       0xf30abf31
  69. 3918.3638:     Image Version:   10.0
  70. 3918.3638:     SizeOfImage:     0x1c000 (114688)
  71. 3918.3638:     Resource Dir:    0x1b000 LB 0x408
  72. 3918.3638:     [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
  73. 3918.3638:     [Raw version resource data: 0x1b060 LB 0x3a8, codepage 0x0 (reserved 0x0)]
  74. 3918.3638:     ProductName:     Microsoft® Windows® Operating System
  75. 3918.3638:     ProductVersion:  10.0.16299.15
  76. 3918.3638:     FileVersion:     10.0.16299.15 (WinBuild.160101.0800)
  77. 3918.3638:     FileDescription: ApiSet Schema DLL
  78. 3918.3638: supR3HardenedWinFindAdversaries: 0x0
  79. 3918.3638: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume11\Portable-VirtualBox\app64'
  80. 3918.3638: Calling main()
  81. 3918.3638: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
  82. 3918.3638: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume11\Portable-VirtualBox\app64'
  83. 3918.3638: SUPR3HardenedMain: Respawn #1
  84. 3918.3638: System32:  \Device\HarddiskVolume5\Windows\System32
  85. 3918.3638: WinSxS:    \Device\HarddiskVolume5\Windows\WinSxS
  86. 3918.3638: KnownDllPath: C:\WINDOWS\System32
  87. 3918.3638: '\Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe' has no imports
  88. 3918.3638: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe)
  89. 3918.3638: supR3HardNtEnableThreadCreation:
  90. 3918.3638: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ffa7bcd91e0 pvNtTerminateThread=00007ffa7bd008d0
  91. 3918.3638: supR3HardenedWinDoReSpawn(1): New child 2350.32c0 [kernel32].
  92. 3918.3638: supR3HardNtChildGatherData: PebBaseAddress=0000000000888000 cbPeb=0x388
  93. 3918.3638: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00007ffa7bc60000 uNtDllChildAddr=00007ffa7bc60000
  94. 3918.3638: supR3HardenedWinSetupChildInit: uLdrInitThunk=00007ffa7bcd91e0
  95. 3918.3638: supR3HardenedWinSetupChildInit: Start child.
  96. 3918.3638: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 1 ms.
  97. 3918.3638: supR3HardNtChildPurify: Startup delay kludge #1/0: 262 ms, 31 sleeps
  98. 3918.3638: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
  99. 3918.3638:  *0000000000000000-000000000074ffff 0x0001/0x0000 0x0000000
  100. 3918.3638:  *0000000000750000-000000000076ffff 0x0004/0x0004 0x0020000
  101. 3918.3638:  *0000000000770000-0000000000788fff 0x0002/0x0002 0x0040000
  102. 3918.3638:   0000000000789000-000000000078ffff 0x0001/0x0000 0x0000000
  103. 3918.3638:  *0000000000790000-0000000000793fff 0x0002/0x0002 0x0040000
  104. 3918.3638:   0000000000794000-000000000079ffff 0x0001/0x0000 0x0000000
  105. 3918.3638:  *00000000007a0000-00000000007a0fff 0x0004/0x0004 0x0020000
  106. 3918.3638:   00000000007a1000-00000000007fffff 0x0001/0x0000 0x0000000
  107. 3918.3638:  *0000000000800000-0000000000887fff 0x0000/0x0004 0x0020000
  108. 3918.3638:   0000000000888000-000000000088afff 0x0004/0x0004 0x0020000
  109. 3918.3638:   000000000088b000-00000000009fffff 0x0000/0x0004 0x0020000
  110. 3918.3638:  *0000000000a00000-0000000000afafff 0x0000/0x0004 0x0020000
  111. 3918.3638:   0000000000afb000-0000000000afdfff 0x0104/0x0004 0x0020000
  112. 3918.3638:   0000000000afe000-0000000000afffff 0x0004/0x0004 0x0020000
  113. 3918.3638:   0000000000b00000-000000007ffdffff 0x0001/0x0000 0x0000000
  114. 3918.3638:  *000000007ffe0000-000000007ffe0fff 0x0002/0x0002 0x0020000
  115. 3918.3638:  *000000007ffe1000-000000007ffeffff 0x0000/0x0002 0x0020000
  116. 3918.3638:   000000007fff0000-00007ff74fb0ffff 0x0001/0x0000 0x0000000
  117. 3918.3638:  *00007ff74fb10000-00007ff74fb32fff 0x0002/0x0002 0x0040000
  118. 3918.3638:   00007ff74fb33000-00007ff74ff8ffff 0x0001/0x0000 0x0000000
  119. 3918.3638:  *00007ff74ff90000-00007ff74ff90fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  120. 3918.3638:   00007ff74ff91000-00007ff750000fff 0x0020/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  121. 3918.3638:   00007ff750001000-00007ff750001fff 0x0080/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  122. 3918.3638:   00007ff750002000-00007ff750046fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  123. 3918.3638:   00007ff750047000-00007ff750047fff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  124. 3918.3638:   00007ff750048000-00007ff750048fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  125. 3918.3638:   00007ff750049000-00007ff75004dfff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  126. 3918.3638:   00007ff75004e000-00007ff75004efff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  127. 3918.3638:   00007ff75004f000-00007ff75004ffff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  128. 3918.3638:   00007ff750050000-00007ff750053fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  129. 3918.3638:   00007ff750054000-00007ff75009bfff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  130. 3918.3638:   00007ff75009c000-00007ffa7bc5ffff 0x0001/0x0000 0x0000000
  131. 3918.3638:  *00007ffa7bc60000-00007ffa7bc60fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  132. 3918.3638:   00007ffa7bc61000-00007ffa7bd72fff 0x0020/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  133. 3918.3638:   00007ffa7bd73000-00007ffa7bdb8fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  134. 3918.3638:   00007ffa7bdb9000-00007ffa7bdc0fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  135. 3918.3638:   00007ffa7bdc1000-00007ffa7bdcefff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  136. 3918.3638:   00007ffa7bdcf000-00007ffa7bdcffff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  137. 3918.3638:   00007ffa7bdd0000-00007ffa7bdd2fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  138. 3918.3638:   00007ffa7bdd3000-00007ffa7be3ffff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  139. 3918.3638:   00007ffa7be40000-00007ffffffdffff 0x0001/0x0000 0x0000000
  140. 3918.3638:  *00007ffffffe0000-00007ffffffeffff 0x0001/0x0002 0x0020000
  141. 3918.3638: VirtualBox.exe: timestamp 0x5903619d (rc=VINF_SUCCESS)
  142. 3918.3638: '\Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe' has no imports
  143. 3918.3638: '\Device\HarddiskVolume5\Windows\System32\ntdll.dll' has no imports
  144. 3918.3638: supR3HardNtChildPurify: Done after 378 ms and 0 fixes (loop #0).
  145. 2350.32c0: Log file opened: 5.1.22r115126 g_hStartupLog=0000000000000004 g_uNtVerCombined=0xa03fab00
  146. 2350.32c0: supR3HardenedVmProcessInit: uNtDllAddr=00007ffa7bc60000 g_uNtVerCombined=0xa03fab00
  147. 2350.32c0: ntdll.dll: timestamp 0xeffc9126 (rc=VINF_SUCCESS)
  148. 2350.32c0: New simple heap: #1 0000000000c00000 LB 0x400000 (for 1966080 allocation)
  149. 3918.3638: supR3HardNtEnableThreadCreation:
  150. 2350.32c0: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume11\Portable-VirtualBox\app64'
  151. 2350.32c0: System32:  \Device\HarddiskVolume5\Windows\System32
  152. 2350.32c0: WinSxS:    \Device\HarddiskVolume5\Windows\WinSxS
  153. 2350.32c0: KnownDllPath: C:\WINDOWS\System32
  154. 2350.32c0: supR3HardenedVmProcessInit: Opening vboxdrv stub...
  155. 2350.32c0: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
  156. 2350.32c0: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
  157. 2350.32c0: Registered Dll notification callback with NTDLL.
  158. 2350.32c0: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\kernel32.dll)
  159. 2350.32c0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\kernel32.dll
  160. 2350.32c0: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\KERNEL32.DLL (Input=KERNEL32.DLL, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000004001:<flags> [calling]
  161. 2350.32c0: supR3HardenedDllNotificationCallback: load   00007ffa78cf0000 LB 0x00266000 C:\WINDOWS\System32\KERNELBASE.dll [fFlags=0x0]
  162. 2350.32c0: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\KernelBase.dll)
  163. 2350.32c0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\KernelBase.dll
  164. 2350.32c0: supR3HardenedDllNotificationCallback: load   00007ffa7bb00000 LB 0x000ae000 C:\WINDOWS\System32\KERNEL32.DLL [fFlags=0x0]
  165. 2350.32c0: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
  166. 2350.32c0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa7bb00000 'C:\WINDOWS\System32\KERNEL32.DLL'
  167. 2350.32c0: supR3HardenedDllNotificationCallback: load   00007ff74ff90000 LB 0x0010c000 G:\Portable-VirtualBox\app64\VirtualBox.exe [fFlags=0x0]
  168. 2350.32c0: '\Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe' has no imports
  169. 2350.32c0: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe)
  170. 2350.32c0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  171. 2350.32c0: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ffa7bcd91e0 pvNtTerminateThread=00007ffa7bd008d0
  172. 3918.3638: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 277 ms.
  173. 2350.32c0: \SystemRoot\System32\ntdll.dll:
  174. 2350.32c0:     CreationTime:    2018-02-18T09:47:41.113109800Z
  175. 2350.32c0:     LastWriteTime:   2018-02-10T06:15:34.902092600Z
  176. 2350.32c0:     ChangeTime:      2018-03-13T19:07:25.283413100Z
  177. 2350.32c0:     FileAttributes:  0x20
  178. 2350.32c0:     Size:            0x1dd100
  179. 2350.32c0:     NT Headers:      0xe0
  180. 2350.32c0:     Timestamp:       0xeffc9126
  181. 2350.32c0:     Machine:         0x8664 - amd64
  182. 2350.32c0:     Timestamp:       0xeffc9126
  183. 2350.32c0:     Image Version:   10.0
  184. 2350.32c0:     SizeOfImage:     0x1e0000 (1966080)
  185. 2350.32c0:     Resource Dir:    0x174000 LB 0x6a1d8
  186. 2350.32c0:     [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
  187. 2350.32c0:     [Raw version resource data: 0x1740f0 LB 0x380, codepage 0x0 (reserved 0x0)]
  188. 2350.32c0:     ProductName:     Microsoft® Windows® Operating System
  189. 2350.32c0:     ProductVersion:  10.0.16299.248
  190. 2350.32c0:     FileVersion:     10.0.16299.248 (WinBuild.160101.0800)
  191. 2350.32c0:     FileDescription: NT Layer DLL
  192. 2350.32c0: \SystemRoot\System32\kernel32.dll:
  193. 2350.32c0:     CreationTime:    2017-09-29T13:42:04.954227600Z
  194. 2350.32c0:     LastWriteTime:   2017-09-29T13:42:04.954227600Z
  195. 2350.32c0:     ChangeTime:      2017-12-04T08:39:41.162415500Z
  196. 2350.32c0:     FileAttributes:  0x20
  197. 2350.32c0:     Size:            0xab868
  198. 2350.32c0:     NT Headers:      0xe8
  199. 2350.32c0:     Timestamp:       0xc2cf900
  200. 2350.32c0:     Machine:         0x8664 - amd64
  201. 2350.32c0:     Timestamp:       0xc2cf900
  202. 2350.32c0:     Image Version:   10.0
  203. 2350.32c0:     SizeOfImage:     0xae000 (712704)
  204. 2350.32c0:     Resource Dir:    0xac000 LB 0x520
  205. 2350.32c0:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
  206. 2350.32c0:     [Raw version resource data: 0xac0b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
  207. 2350.32c0:     ProductName:     Microsoft® Windows® Operating System
  208. 2350.32c0:     ProductVersion:  10.0.16299.15
  209. 2350.32c0:     FileVersion:     10.0.16299.15 (WinBuild.160101.0800)
  210. 2350.32c0:     FileDescription: Windows NT BASE API Client DLL
  211. 2350.32c0: \SystemRoot\System32\KernelBase.dll:
  212. 2350.32c0:     CreationTime:    2018-03-13T19:05:25.386173300Z
  213. 2350.32c0:     LastWriteTime:   2018-03-01T07:40:10.084338900Z
  214. 2350.32c0:     ChangeTime:      2018-03-13T23:56:44.279845300Z
  215. 2350.32c0:     FileAttributes:  0x20
  216. 2350.32c0:     Size:            0x265ff8
  217. 2350.32c0:     NT Headers:      0xf0
  218. 2350.32c0:     Timestamp:       0x90a96867
  219. 2350.32c0:     Machine:         0x8664 - amd64
  220. 2350.32c0:     Timestamp:       0x90a96867
  221. 2350.32c0:     Image Version:   10.0
  222. 2350.32c0:     SizeOfImage:     0x266000 (2514944)
  223. 2350.32c0:     Resource Dir:    0x245000 LB 0x548
  224. 2350.32c0:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
  225. 2350.32c0:     [Raw version resource data: 0x2450b0 LB 0x3bc, codepage 0x0 (reserved 0x0)]
  226. 2350.32c0:     ProductName:     Microsoft® Windows® Operating System
  227. 2350.32c0:     ProductVersion:  10.0.16299.309
  228. 2350.32c0:     FileVersion:     10.0.16299.309 (WinBuild.160101.0800)
  229. 2350.32c0:     FileDescription: Windows NT BASE API Client DLL
  230. 2350.32c0: \SystemRoot\System32\apisetschema.dll:
  231. 2350.32c0:     CreationTime:    2017-09-29T13:42:07.095026600Z
  232. 2350.32c0:     LastWriteTime:   2017-09-29T13:42:07.095026600Z
  233. 2350.32c0:     ChangeTime:      2018-03-13T19:07:25.311505600Z
  234. 2350.32c0:     FileAttributes:  0x20
  235. 2350.32c0:     Size:            0x1b398
  236. 2350.32c0:     NT Headers:      0xc8
  237. 2350.32c0:     Timestamp:       0xf30abf31
  238. 2350.32c0:     Machine:         0x8664 - amd64
  239. 2350.32c0:     Timestamp:       0xf30abf31
  240. 2350.32c0:     Image Version:   10.0
  241. 2350.32c0:     SizeOfImage:     0x1c000 (114688)
  242. 2350.32c0:     Resource Dir:    0x1b000 LB 0x408
  243. 2350.32c0:     [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
  244. 2350.32c0:     [Raw version resource data: 0x1b060 LB 0x3a8, codepage 0x0 (reserved 0x0)]
  245. 2350.32c0:     ProductName:     Microsoft® Windows® Operating System
  246. 2350.32c0:     ProductVersion:  10.0.16299.15
  247. 2350.32c0:     FileVersion:     10.0.16299.15 (WinBuild.160101.0800)
  248. 2350.32c0:     FileDescription: ApiSet Schema DLL
  249. 2350.32c0: supR3HardenedWinFindAdversaries: 0x0
  250. 2350.32c0: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume11\Portable-VirtualBox\app64'
  251. 2350.32c0: Calling main()
  252. 2350.32c0: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
  253. 2350.32c0: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume11\Portable-VirtualBox\app64'
  254. 2350.32c0: '\Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe' has no imports
  255. 2350.32c0: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe)
  256. 2350.32c0: SUPR3HardenedMain: Respawn #2
  257. 2350.32c0: supR3HardNtEnableThreadCreation:
  258. 2350.32c0: '\Device\HarddiskVolume5\Windows\System32\ntdll.dll' has no imports
  259. 2350.32c0: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\ntdll.dll)
  260. 2350.32c0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  261. 2350.32c0: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\ntdll.dll (Input=ntdll.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  262. 2350.32c0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa7bc60000 'C:\WINDOWS\System32\ntdll.dll'
  263. 2350.32c0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume5\Windows\System32\apphelp.dll)
  264. 2350.32c0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\apphelp.dll
  265. 2350.32c0: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\apphelp.dll (rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000000:<flags> [calling]
  266. 2350.32c0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume5\Windows\System32\apphelp.dll [lacks WinVerifyTrust]
  267. 2350.32c0: supR3HardenedDllNotificationCallback: load   00007ffa76170000 LB 0x00088000 C:\WINDOWS\system32\apphelp.dll [fFlags=0x0]
  268. 2350.32c0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume5\Windows\System32\apphelp.dll [lacks WinVerifyTrust]
  269. 2350.32c0: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\ntdll.dll [lacks WinVerifyTrust]
  270. 2350.32c0: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\ntdll.dll (Input=ntdll.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  271. 2350.32c0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa7bc60000 'C:\WINDOWS\System32\ntdll.dll'
  272. 2350.32c0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa76170000 'C:\WINDOWS\system32\apphelp.dll'
  273. 2350.32c0: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ffa7bcd91e0 pvNtTerminateThread=00007ffa7bd008d0
  274. 2350.32c0: supR3HardenedWinDoReSpawn(2): New child 2ccc.2cc4 [kernel32].
  275. 2350.32c0: supR3HardenedWinReSpawn: NtSetInformationThread/ThreadHideFromDebugger failed: 0xc0000022 (harmless)
  276. 2350.32c0: supR3HardNtChildGatherData: PebBaseAddress=0000000000330000 cbPeb=0x388
  277. 2350.32c0: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00007ffa7bc60000 uNtDllChildAddr=00007ffa7bc60000
  278. 2350.32c0: supR3HardenedWinSetupChildInit: uLdrInitThunk=00007ffa7bcd91e0
  279. 2350.32c0: supR3HardenedWinSetupChildInit: Start child.
  280. 2350.32c0: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 1 ms.
  281. 2350.32c0: supR3HardNtChildPurify: Startup delay kludge #1/0: 266 ms, 14 sleeps
  282. 2350.32c0: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
  283. 2350.32c0:  *0000000000000000-00000000000bffff 0x0001/0x0000 0x0000000
  284. 2350.32c0:  *00000000000c0000-00000000000dffff 0x0004/0x0004 0x0020000
  285. 2350.32c0:  *00000000000e0000-00000000000f8fff 0x0002/0x0002 0x0040000
  286. 2350.32c0:   00000000000f9000-00000000000fffff 0x0001/0x0000 0x0000000
  287. 2350.32c0:  *0000000000100000-00000000001fafff 0x0000/0x0004 0x0020000
  288. 2350.32c0:   00000000001fb000-00000000001fdfff 0x0104/0x0004 0x0020000
  289. 2350.32c0:   00000000001fe000-00000000001fffff 0x0004/0x0004 0x0020000
  290. 2350.32c0:  *0000000000200000-000000000032ffff 0x0000/0x0004 0x0020000
  291. 2350.32c0:   0000000000330000-0000000000332fff 0x0004/0x0004 0x0020000
  292. 2350.32c0:   0000000000333000-00000000003fffff 0x0000/0x0004 0x0020000
  293. 2350.32c0:  *0000000000400000-0000000000403fff 0x0002/0x0002 0x0040000
  294. 2350.32c0:   0000000000404000-000000000040ffff 0x0001/0x0000 0x0000000
  295. 2350.32c0:  *0000000000410000-0000000000410fff 0x0004/0x0004 0x0020000
  296. 2350.32c0:   0000000000411000-000000007ffdffff 0x0001/0x0000 0x0000000
  297. 2350.32c0:  *000000007ffe0000-000000007ffe0fff 0x0002/0x0002 0x0020000
  298. 2350.32c0:  *000000007ffe1000-000000007ffeffff 0x0000/0x0002 0x0020000
  299. 2350.32c0:   000000007fff0000-00007ff74ff5ffff 0x0001/0x0000 0x0000000
  300. 2350.32c0:  *00007ff74ff60000-00007ff74ff82fff 0x0002/0x0002 0x0040000
  301. 2350.32c0:   00007ff74ff83000-00007ff74ff8ffff 0x0001/0x0000 0x0000000
  302. 2350.32c0:  *00007ff74ff90000-00007ff74ff90fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  303. 2350.32c0:   00007ff74ff91000-00007ff750000fff 0x0020/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  304. 2350.32c0:   00007ff750001000-00007ff750001fff 0x0080/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  305. 2350.32c0:   00007ff750002000-00007ff750046fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  306. 2350.32c0:   00007ff750047000-00007ff750047fff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  307. 2350.32c0:   00007ff750048000-00007ff750048fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  308. 2350.32c0:   00007ff750049000-00007ff75004dfff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  309. 2350.32c0:   00007ff75004e000-00007ff75004efff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  310. 2350.32c0:   00007ff75004f000-00007ff75004ffff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  311. 2350.32c0:   00007ff750050000-00007ff750053fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  312. 2350.32c0:   00007ff750054000-00007ff75009bfff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  313. 2350.32c0:   00007ff75009c000-00007ffa7bc5ffff 0x0001/0x0000 0x0000000
  314. 2350.32c0:  *00007ffa7bc60000-00007ffa7bc60fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  315. 2350.32c0:   00007ffa7bc61000-00007ffa7bd72fff 0x0020/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  316. 2350.32c0:   00007ffa7bd73000-00007ffa7bdb8fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  317. 2350.32c0:   00007ffa7bdb9000-00007ffa7bdc0fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  318. 2350.32c0:   00007ffa7bdc1000-00007ffa7bdcefff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  319. 2350.32c0:   00007ffa7bdcf000-00007ffa7bdcffff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  320. 2350.32c0:   00007ffa7bdd0000-00007ffa7bdd2fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  321. 2350.32c0:   00007ffa7bdd3000-00007ffa7be3ffff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume5\Windows\System32\ntdll.dll
  322. 2350.32c0:   00007ffa7be40000-00007ffffffdffff 0x0001/0x0000 0x0000000
  323. 2350.32c0:  *00007ffffffe0000-00007ffffffeffff 0x0001/0x0002 0x0020000
  324. 2350.32c0: VirtualBox.exe: timestamp 0x5903619d (rc=VINF_SUCCESS)
  325. 2350.32c0: '\Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe' has no imports
  326. 2350.32c0: '\Device\HarddiskVolume5\Windows\System32\ntdll.dll' has no imports
  327. 2350.32c0: supR3HardNtChildPurify: Done after 384 ms and 0 fixes (loop #0).
  328. 2ccc.2cc4: Log file opened: 5.1.22r115126 g_hStartupLog=0000000000000004 g_uNtVerCombined=0xa03fab00
  329. 2ccc.2cc4: supR3HardenedVmProcessInit: uNtDllAddr=00007ffa7bc60000 g_uNtVerCombined=0xa03fab00
  330. 2ccc.2cc4: ntdll.dll: timestamp 0xeffc9126 (rc=VINF_SUCCESS)
  331. 2ccc.2cc4: New simple heap: #1 0000000000520000 LB 0x400000 (for 1966080 allocation)
  332. 2350.32c0: supR3HardenedEarlyCompact: Removed heap 1 (0x00000000c00000 LB 0x400000)
  333. 2350.32c0: supR3HardNtEnableThreadCreation:
  334. 2ccc.2cc4: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume11\Portable-VirtualBox\app64'
  335. 2ccc.2cc4: System32:  \Device\HarddiskVolume5\Windows\System32
  336. 2ccc.2cc4: WinSxS:    \Device\HarddiskVolume5\Windows\WinSxS
  337. 2ccc.2cc4: KnownDllPath: C:\WINDOWS\System32
  338. 2ccc.2cc4: supR3HardenedVmProcessInit: Opening vboxdrv...
  339. 2ccc.2cc4: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
  340. 2ccc.2cc4: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
  341. 2ccc.2cc4: Registered Dll notification callback with NTDLL.
  342. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\kernel32.dll)
  343. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\kernel32.dll
  344. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\KERNEL32.DLL (Input=KERNEL32.DLL, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000004001:<flags> [calling]
  345. 2ccc.2cc4: supR3HardenedDllNotificationCallback: load   00007ffa78cf0000 LB 0x00266000 C:\WINDOWS\System32\KERNELBASE.dll [fFlags=0x0]
  346. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\KernelBase.dll)
  347. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\KernelBase.dll
  348. 2ccc.2cc4: supR3HardenedDllNotificationCallback: load   00007ffa7bb00000 LB 0x000ae000 C:\WINDOWS\System32\KERNEL32.DLL [fFlags=0x0]
  349. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
  350. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa7bb00000 'C:\WINDOWS\System32\KERNEL32.DLL'
  351. 2ccc.2cc4: supR3HardenedDllNotificationCallback: load   00007ff74ff90000 LB 0x0010c000 G:\Portable-VirtualBox\app64\VirtualBox.exe [fFlags=0x0]
  352. 2ccc.2cc4: '\Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe' has no imports
  353. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe)
  354. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe
  355. 2ccc.2cc4: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ffa7bcd91e0 pvNtTerminateThread=00007ffa7bd008d0
  356. 2350.32c0: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 299 ms.
  357. 2ccc.2cc4: \SystemRoot\System32\ntdll.dll:
  358. 2ccc.2cc4:     CreationTime:    2018-02-18T09:47:41.113109800Z
  359. 2ccc.2cc4:     LastWriteTime:   2018-02-10T06:15:34.902092600Z
  360. 2ccc.2cc4:     ChangeTime:      2018-03-13T19:07:25.283413100Z
  361. 2ccc.2cc4:     FileAttributes:  0x20
  362. 2ccc.2cc4:     Size:            0x1dd100
  363. 2ccc.2cc4:     NT Headers:      0xe0
  364. 2ccc.2cc4:     Timestamp:       0xeffc9126
  365. 2ccc.2cc4:     Machine:         0x8664 - amd64
  366. 2ccc.2cc4:     Timestamp:       0xeffc9126
  367. 2ccc.2cc4:     Image Version:   10.0
  368. 2ccc.2cc4:     SizeOfImage:     0x1e0000 (1966080)
  369. 2ccc.2cc4:     Resource Dir:    0x174000 LB 0x6a1d8
  370. 2ccc.2cc4:     [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
  371. 2ccc.2cc4:     [Raw version resource data: 0x1740f0 LB 0x380, codepage 0x0 (reserved 0x0)]
  372. 2ccc.2cc4:     ProductName:     Microsoft® Windows® Operating System
  373. 2ccc.2cc4:     ProductVersion:  10.0.16299.248
  374. 2ccc.2cc4:     FileVersion:     10.0.16299.248 (WinBuild.160101.0800)
  375. 2ccc.2cc4:     FileDescription: NT Layer DLL
  376. 2ccc.2cc4: \SystemRoot\System32\kernel32.dll:
  377. 2ccc.2cc4:     CreationTime:    2017-09-29T13:42:04.954227600Z
  378. 2ccc.2cc4:     LastWriteTime:   2017-09-29T13:42:04.954227600Z
  379. 2ccc.2cc4:     ChangeTime:      2017-12-04T08:39:41.162415500Z
  380. 2ccc.2cc4:     FileAttributes:  0x20
  381. 2ccc.2cc4:     Size:            0xab868
  382. 2ccc.2cc4:     NT Headers:      0xe8
  383. 2ccc.2cc4:     Timestamp:       0xc2cf900
  384. 2ccc.2cc4:     Machine:         0x8664 - amd64
  385. 2ccc.2cc4:     Timestamp:       0xc2cf900
  386. 2ccc.2cc4:     Image Version:   10.0
  387. 2ccc.2cc4:     SizeOfImage:     0xae000 (712704)
  388. 2ccc.2cc4:     Resource Dir:    0xac000 LB 0x520
  389. 2ccc.2cc4:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
  390. 2ccc.2cc4:     [Raw version resource data: 0xac0b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
  391. 2ccc.2cc4:     ProductName:     Microsoft® Windows® Operating System
  392. 2ccc.2cc4:     ProductVersion:  10.0.16299.15
  393. 2ccc.2cc4:     FileVersion:     10.0.16299.15 (WinBuild.160101.0800)
  394. 2ccc.2cc4:     FileDescription: Windows NT BASE API Client DLL
  395. 2ccc.2cc4: \SystemRoot\System32\KernelBase.dll:
  396. 2ccc.2cc4:     CreationTime:    2018-03-13T19:05:25.386173300Z
  397. 2ccc.2cc4:     LastWriteTime:   2018-03-01T07:40:10.084338900Z
  398. 2ccc.2cc4:     ChangeTime:      2018-03-13T23:56:44.279845300Z
  399. 2ccc.2cc4:     FileAttributes:  0x20
  400. 2ccc.2cc4:     Size:            0x265ff8
  401. 2ccc.2cc4:     NT Headers:      0xf0
  402. 2ccc.2cc4:     Timestamp:       0x90a96867
  403. 2ccc.2cc4:     Machine:         0x8664 - amd64
  404. 2ccc.2cc4:     Timestamp:       0x90a96867
  405. 2ccc.2cc4:     Image Version:   10.0
  406. 2ccc.2cc4:     SizeOfImage:     0x266000 (2514944)
  407. 2ccc.2cc4:     Resource Dir:    0x245000 LB 0x548
  408. 2ccc.2cc4:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
  409. 2ccc.2cc4:     [Raw version resource data: 0x2450b0 LB 0x3bc, codepage 0x0 (reserved 0x0)]
  410. 2ccc.2cc4:     ProductName:     Microsoft® Windows® Operating System
  411. 2ccc.2cc4:     ProductVersion:  10.0.16299.309
  412. 2ccc.2cc4:     FileVersion:     10.0.16299.309 (WinBuild.160101.0800)
  413. 2ccc.2cc4:     FileDescription: Windows NT BASE API Client DLL
  414. 2ccc.2cc4: \SystemRoot\System32\apisetschema.dll:
  415. 2ccc.2cc4:     CreationTime:    2017-09-29T13:42:07.095026600Z
  416. 2ccc.2cc4:     LastWriteTime:   2017-09-29T13:42:07.095026600Z
  417. 2ccc.2cc4:     ChangeTime:      2018-03-13T19:07:25.311505600Z
  418. 2ccc.2cc4:     FileAttributes:  0x20
  419. 2ccc.2cc4:     Size:            0x1b398
  420. 2ccc.2cc4:     NT Headers:      0xc8
  421. 2ccc.2cc4:     Timestamp:       0xf30abf31
  422. 2ccc.2cc4:     Machine:         0x8664 - amd64
  423. 2ccc.2cc4:     Timestamp:       0xf30abf31
  424. 2ccc.2cc4:     Image Version:   10.0
  425. 2ccc.2cc4:     SizeOfImage:     0x1c000 (114688)
  426. 2ccc.2cc4:     Resource Dir:    0x1b000 LB 0x408
  427. 2ccc.2cc4:     [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
  428. 2ccc.2cc4:     [Raw version resource data: 0x1b060 LB 0x3a8, codepage 0x0 (reserved 0x0)]
  429. 2ccc.2cc4:     ProductName:     Microsoft® Windows® Operating System
  430. 2ccc.2cc4:     ProductVersion:  10.0.16299.15
  431. 2ccc.2cc4:     FileVersion:     10.0.16299.15 (WinBuild.160101.0800)
  432. 2ccc.2cc4:     FileDescription: ApiSet Schema DLL
  433. 2ccc.2cc4: supR3HardenedWinFindAdversaries: 0x0
  434. 2ccc.2cc4: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume11\Portable-VirtualBox\app64'
  435. 2ccc.2cc4: Calling main()
  436. 2ccc.2cc4: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
  437. 2ccc.2cc4: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume11\Portable-VirtualBox\app64'
  438. 2ccc.2cc4: '\Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe' has no imports
  439. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe)
  440. 2ccc.2cc4: SUPR3HardenedMain: Final process, opening VBoxDrv...
  441. 2ccc.2cc4: supR3HardenedEarlyCompact: Removed heap 1 (0x00000000520000 LB 0x400000)
  442. 2ccc.2cc4: supR3HardNtEnableThreadCreation:
  443. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume11\Portable-VirtualBox\app64\VBoxSupLib.dll)
  444. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume11\Portable-VirtualBox\app64\VBoxSupLib.dll
  445. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=G:\Portable-VirtualBox\app64\VBoxSupLib.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  446. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\VBoxSupLib.dll [lacks WinVerifyTrust]
  447. 2ccc.2cc4: supR3HardenedDllNotificationCallback: load   00007ffa70dd0000 LB 0x00005000 G:\Portable-VirtualBox\app64\VBoxSupLib.DLL [fFlags=0x0]
  448. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\VBoxSupLib.dll [lacks WinVerifyTrust]
  449. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\VBoxSupLib.dll [lacks WinVerifyTrust]
  450. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=G:\Portable-VirtualBox\app64\VBoxSupLib.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
  451. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa70dd0000 'G:\Portable-VirtualBox\app64\VBoxSupLib.DLL'
  452. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\VBoxSupLib.dll [lacks WinVerifyTrust]
  453. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=G:\Portable-VirtualBox\app64\VBoxSupLib.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
  454. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa70dd0000 'G:\Portable-VirtualBox\app64\VBoxSupLib.DLL'
  455. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa70dd0000 'G:\Portable-VirtualBox\app64\VBoxSupLib.DLL'
  456. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  457. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msasn1.dll'.
  458. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'crypt32.dll'.
  459. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #27 'rpcrt4.dll'.
  460. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\wintrust.dll)
  461. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\wintrust.dll
  462. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  463. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume5\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  464. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\rpcrt4.dll)
  465. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\rpcrt4.dll
  466. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'crypt32.dll'...
  467. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'crypt32.dll' -> '\Device\HarddiskVolume5\Windows\System32\crypt32.dll' [rcNtRedir=0xc0150008]
  468. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #33 'msasn1.dll'.
  469. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\crypt32.dll)
  470. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\crypt32.dll
  471. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msasn1.dll'...
  472. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msasn1.dll' -> '\Device\HarddiskVolume5\Windows\System32\msasn1.dll' [rcNtRedir=0xc0150008]
  473. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\msasn1.dll)
  474. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\msasn1.dll
  475. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  476. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume5\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  477. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\msvcrt.dll)
  478. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\msvcrt.dll
  479. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msasn1.dll'...
  480. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msasn1.dll' -> '\Device\HarddiskVolume5\Windows\System32\msasn1.dll' [rcNtRedir=0xc0150008]
  481. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\msasn1.dll [lacks WinVerifyTrust]
  482. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\Wintrust.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  483. 2ccc.2cc4: supR3HardenedDllNotificationCallback: load   00007ffa7b7b0000 LB 0x0009d000 C:\WINDOWS\System32\msvcrt.dll [fFlags=0x0]
  484. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  485. 2ccc.2cc4: supR3HardenedDllNotificationCallback: load   00007ffa78020000 LB 0x00012000 C:\WINDOWS\System32\MSASN1.dll [fFlags=0x0]
  486. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\msasn1.dll [lacks WinVerifyTrust]
  487. 2ccc.2cc4: supR3HardenedDllNotificationCallback: load   00007ffa789c0000 LB 0x000f6000 C:\WINDOWS\System32\ucrtbase.dll [fFlags=0x0]
  488. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\ucrtbase.dll)
  489. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\ucrtbase.dll
  490. 2ccc.2cc4: supR3HardenedDllNotificationCallback: load   00007ffa78f60000 LB 0x001ce000 C:\WINDOWS\System32\CRYPT32.dll [fFlags=0x0]
  491. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\crypt32.dll [lacks WinVerifyTrust]
  492. 2ccc.2cc4: supR3HardenedDllNotificationCallback: load   00007ffa79a40000 LB 0x0011f000 C:\WINDOWS\System32\RPCRT4.dll [fFlags=0x0]
  493. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  494. 2ccc.2cc4: supR3HardenedDllNotificationCallback: load   00007ffa799e0000 LB 0x0005b000 C:\WINDOWS\System32\sechost.dll [fFlags=0x0]
  495. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'rpcrt4.dll'.
  496. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\sechost.dll)
  497. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\sechost.dll
  498. 2ccc.2cc4: supR3HardenedDllNotificationCallback: load   00007ffa7b700000 LB 0x000a1000 C:\WINDOWS\System32\advapi32.dll [fFlags=0x0]
  499. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  500. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'sechost.dll'.
  501. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #27 'rpcrt4.dll'.
  502. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\advapi32.dll)
  503. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\advapi32.dll
  504. 2ccc.2cc4: supR3HardenedDllNotificationCallback: load   00007ffa78ac0000 LB 0x00058000 C:\WINDOWS\System32\Wintrust.dll [fFlags=0x0]
  505. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
  506. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-synch-l1-2-0 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  507. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa78cf0000 'api-ms-win-core-synch-l1-2-0'
  508. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-fibers-l1-1-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  509. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa78cf0000 'api-ms-win-core-fibers-l1-1-1'
  510. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-fibers-l1-1-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  511. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa78cf0000 'api-ms-win-core-fibers-l1-1-1'
  512. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-synch-l1-2-0 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  513. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa78cf0000 'api-ms-win-core-synch-l1-2-0'
  514. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-localization-l1-2-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
  515. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa78cf0000 'api-ms-win-core-localization-l1-2-1'
  516. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa78ac0000 'C:\WINDOWS\system32\Wintrust.dll'
  517. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> -626 (\Device\HarddiskVolume5\Windows\System32\bcrypt.dll)
  518. 2ccc.2cc4: Error (rc=0):
  519. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: rc=Unknown Status -626 (0xfffffd8e) fImage=1 fProtect=0x0 fAccess=0x0 \Device\HarddiskVolume5\Windows\System32\bcrypt.dll: Grown load config (244 to 256 bytes) includes non-zero bytes: 00 00 00 00 60 a9 01 80 01 00 00 00
  520. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\bcrypt.dll
  521. 2ccc.2cc4: Error (rc=0):
  522. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: rejecting 'C:\WINDOWS\system32\bcrypt.dll' (C:\WINDOWS\system32\bcrypt.dll): rcNt=0xc0000190
  523. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000190 'C:\WINDOWS\system32\bcrypt.dll'
  524. 2ccc.2cc4: Warning! Failed to load bcrypt.dll
  525. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
  526. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  527. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume5\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  528. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  529. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'sechost.dll'...
  530. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'sechost.dll' -> '\Device\HarddiskVolume5\Windows\System32\sechost.dll' [rcNtRedir=0xc0150008]
  531. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\sechost.dll [lacks WinVerifyTrust]
  532. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  533. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume5\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  534. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  535. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  536. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume5\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  537. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  538. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\WINTRUST.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
  539. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa78ac0000 'C:\Windows\System32\WINTRUST.DLL'
  540. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
  541. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\WINTRUST.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
  542. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa78ac0000 'C:\Windows\System32\WINTRUST.DLL'
  543. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
  544. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\WINTRUST.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
  545. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa78ac0000 'C:\Windows\System32\WINTRUST.DLL'
  546. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
  547. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\WINTRUST.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
  548. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa78ac0000 'C:\Windows\System32\WINTRUST.DLL'
  549. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
  550. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\WINTRUST.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
  551. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa78ac0000 'C:\Windows\System32\WINTRUST.DLL'
  552. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
  553. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\WINTRUST.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
  554. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa78ac0000 'C:\Windows\System32\WINTRUST.DLL'
  555. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
  556. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\WINTRUST.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
  557. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffa78ac0000 'C:\Windows\System32\WINTRUST.DLL'
  558. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\cryptsp.dll)
  559. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\cryptsp.dll
  560. 2ccc.2cc4: supR3HardenedDllNotificationCallback: load   00007ffa77a00000 LB 0x00017000 C:\WINDOWS\SYSTEM32\CRYPTSP.dll [fFlags=0x0]
  561. 2ccc.2cc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\cryptsp.dll [lacks WinVerifyTrust]
  562. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #18 'bcrypt.dll'.
  563. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\rsaenh.dll)
  564. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\rsaenh.dll
  565. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcrypt.dll'...
  566. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcrypt.dll' -> '\Device\HarddiskVolume5\Windows\System32\bcrypt.dll' [rcNtRedir=0xc0150008]
  567. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (Unknown Status -626 (0xfffffd8e)) on \Device\HarddiskVolume5\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
  568. 2ccc.2cc4: Error (rc=0):
  569. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cached rc=Unknown Status -626 (0xfffffd8e) fImage=1 fProtect=0x0 fAccess=0x0 cHits=1 \Device\HarddiskVolume5\Windows\System32\bcrypt.dll
  570. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\rsaenh.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
  571. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\rsaenh.dll [lacks WinVerifyTrust]
  572. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status -626 (0xfffffd8e)) on \Device\HarddiskVolume5\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
  573. 2ccc.2cc4: Error (rc=0):
  574. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cached rc=Unknown Status -626 (0xfffffd8e) fImage=1 fProtect=0x10 fAccess=0xf cHits=2 \Device\HarddiskVolume5\Windows\System32\bcrypt.dll
  575. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000190 'C:\WINDOWS\system32\rsaenh.dll'
  576. 2ccc.2cc4: supR3HardNtViCallWinVerifyTrust: WinVerifyTrust failed with 0x8 (<NULL>) on '\Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe'
  577. 2ccc.2cc4: Error -22919 in VirtualBox! (enmWhat=1)
  578. 2ccc.2cc4: WinVerifyTrust failed on stub executable: WinVerifyTrust failed with hrc=Unknown Status 0x8 on '\Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.exe'
  579. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'opengl32.dll'.
  580. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'vboxrt.dll'.
  581. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'msvcp100.dll'.
  582. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'msvcr100.dll'.
  583. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qt5corevbox.dll'.
  584. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'qt5guivbox.dll'.
  585. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'qt5widgetsvbox.dll'.
  586. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'qt5printsupportvbox.dll'.
  587. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'qt5openglvbox.dll'.
  588. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'user32.dll'.
  589. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'advapi32.dll'.
  590. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'shell32.dll'.
  591. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #13 'ole32.dll'.
  592. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #14 'oleaut32.dll'.
  593. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #15 'winmm.dll'.
  594. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.dll)
  595. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.dll
  596. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
  597. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume5\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
  598. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'winmmbase.dll'.
  599. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msvcrt.dll'.
  600. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\winmm.dll)
  601. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\winmm.dll
  602. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
  603. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume5\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
  604. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcp_win.dll'.
  605. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'combase.dll'.
  606. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #23 'rpcrt4.dll'.
  607. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\oleaut32.dll)
  608. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\oleaut32.dll
  609. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
  610. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume5\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
  611. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #22 'rpcrt4.dll'.
  612. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #46 'gdi32.dll'.
  613. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #47 'user32.dll'.
  614. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #48 'combase.dll'.
  615. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\ole32.dll)
  616. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\ole32.dll
  617. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
  618. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume5\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
  619. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  620. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #73 'user32.dll'.
  621. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #75 'gdi32.dll'.
  622. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\shell32.dll)
  623. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\shell32.dll
  624. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
  625. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume5\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
  626. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
  627. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  628. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume5\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  629. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'win32u.dll'.
  630. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #34 'gdi32.dll'.
  631. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\user32.dll)
  632. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\user32.dll
  633. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5openglvbox.dll'...
  634. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5openglvbox.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\qt5openglvbox.dll' [rcNtRedir=0xc0150008]
  635. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'qt5widgetsvbox.dll'.
  636. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'qt5guivbox.dll'.
  637. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'qt5corevbox.dll'.
  638. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'msvcr100.dll'.
  639. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5OpenGLVBox.dll)
  640. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5OpenGLVBox.dll
  641. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5printsupportvbox.dll'...
  642. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5printsupportvbox.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\qt5printsupportvbox.dll' [rcNtRedir=0xc0150008]
  643. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'.
  644. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
  645. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'qt5widgetsvbox.dll'.
  646. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'qt5guivbox.dll'.
  647. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qt5corevbox.dll'.
  648. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'winspool.drv'.
  649. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'comdlg32.dll'.
  650. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'msvcr100.dll'.
  651. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5PrintSupportVBox.dll)
  652. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5PrintSupportVBox.dll
  653. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5widgetsvbox.dll'...
  654. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5widgetsvbox.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\qt5widgetsvbox.dll' [rcNtRedir=0xc0150008]
  655. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'.
  656. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
  657. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'qt5guivbox.dll'.
  658. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'qt5corevbox.dll'.
  659. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'shell32.dll'.
  660. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcp100.dll'.
  661. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msvcr100.dll'.
  662. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5WidgetsVBox.dll)
  663. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5WidgetsVBox.dll
  664. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
  665. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\qt5guivbox.dll' [rcNtRedir=0xc0150008]
  666. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'ole32.dll'.
  667. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'opengl32.dll'.
  668. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
  669. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
  670. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qt5corevbox.dll'.
  671. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcp100.dll'.
  672. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msvcr100.dll'.
  673. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5GuiVBox.dll)
  674. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5GuiVBox.dll
  675. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
  676. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\qt5corevbox.dll' [rcNtRedir=0xc0150008]
  677. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
  678. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'shell32.dll'.
  679. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ole32.dll'.
  680. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'advapi32.dll'.
  681. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'ws2_32.dll'.
  682. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'mpr.dll'.
  683. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'msvcp100.dll'.
  684. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'msvcr100.dll'.
  685. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5CoreVBox.dll)
  686. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5CoreVBox.dll
  687. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
  688. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll' [rcNtRedir=0xc0150008]
  689. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll)
  690. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll
  691. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
  692. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcp100.dll' [rcNtRedir=0xc0150008]
  693. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'.
  694. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcp100.dll)
  695. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcp100.dll
  696. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'vboxrt.dll'...
  697. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'vboxrt.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\vboxrt.dll' [rcNtRedir=0xc0150008]
  698. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'.
  699. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcp100.dll'.
  700. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ws2_32.dll'.
  701. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'rpcrt4.dll'.
  702. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume11\Portable-VirtualBox\app64\VBoxRT.dll)
  703. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume11\Portable-VirtualBox\app64\VBoxRT.dll
  704. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
  705. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume5\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
  706. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  707. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'advapi32.dll'.
  708. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
  709. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'.
  710. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'glu32.dll'.
  711. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume5\Windows\System32\opengl32.dll)
  712. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\opengl32.dll
  713. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'glu32.dll'...
  714. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'glu32.dll' -> '\Device\HarddiskVolume5\Windows\System32\glu32.dll' [rcNtRedir=0xc0150008]
  715. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  716. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
  717. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'opengl32.dll'.
  718. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume5\Windows\System32\glu32.dll)
  719. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\glu32.dll
  720. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  721. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume5\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  722. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\gdi32.dll)
  723. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\gdi32.dll
  724. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  725. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume5\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  726. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\user32.dll [lacks WinVerifyTrust]
  727. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
  728. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume5\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
  729. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
  730. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  731. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume5\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  732. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  733. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  734. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume5\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  735. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  736. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'...
  737. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume5\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008]
  738. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #26 'rpcrt4.dll'.
  739. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\ws2_32.dll)
  740. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\ws2_32.dll
  741. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
  742. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcp100.dll' [rcNtRedir=0xc0150008]
  743. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcp100.dll [lacks WinVerifyTrust]
  744. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
  745. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll' [rcNtRedir=0xc0150008]
  746. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll [lacks WinVerifyTrust]
  747. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
  748. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll' [rcNtRedir=0xc0150008]
  749. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll [lacks WinVerifyTrust]
  750. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
  751. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll' [rcNtRedir=0xc0150008]
  752. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll [lacks WinVerifyTrust]
  753. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
  754. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcp100.dll' [rcNtRedir=0xc0150008]
  755. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcp100.dll [lacks WinVerifyTrust]
  756. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mpr.dll'...
  757. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'mpr.dll' -> '\Device\HarddiskVolume5\Windows\System32\mpr.dll' [rcNtRedir=0xc0150008]
  758. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\mpr.dll)
  759. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\mpr.dll
  760. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'...
  761. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume5\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008]
  762. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\ws2_32.dll [lacks WinVerifyTrust]
  763. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
  764. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume5\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
  765. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
  766. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
  767. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume5\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
  768. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\ole32.dll [lacks WinVerifyTrust]
  769. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
  770. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume5\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
  771. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\shell32.dll [lacks WinVerifyTrust]
  772. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  773. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume5\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  774. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\user32.dll [lacks WinVerifyTrust]
  775. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
  776. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll' [rcNtRedir=0xc0150008]
  777. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll [lacks WinVerifyTrust]
  778. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
  779. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcp100.dll' [rcNtRedir=0xc0150008]
  780. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcp100.dll [lacks WinVerifyTrust]
  781. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
  782. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\qt5corevbox.dll' [rcNtRedir=0xc0150008]
  783. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5CoreVBox.dll [lacks WinVerifyTrust]
  784. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  785. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume5\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  786. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\user32.dll [lacks WinVerifyTrust]
  787. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  788. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume5\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  789. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  790. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
  791. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume5\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
  792. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume5\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
  793. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
  794. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume5\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
  795. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\ole32.dll [lacks WinVerifyTrust]
  796. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
  797. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll' [rcNtRedir=0xc0150008]
  798. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll [lacks WinVerifyTrust]
  799. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
  800. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcp100.dll' [rcNtRedir=0xc0150008]
  801. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcp100.dll [lacks WinVerifyTrust]
  802. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
  803. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume5\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
  804. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\shell32.dll [lacks WinVerifyTrust]
  805. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
  806. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\qt5corevbox.dll' [rcNtRedir=0xc0150008]
  807. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5CoreVBox.dll [lacks WinVerifyTrust]
  808. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
  809. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\qt5guivbox.dll' [rcNtRedir=0xc0150008]
  810. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5GuiVBox.dll [lacks WinVerifyTrust]
  811. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  812. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume5\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  813. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\user32.dll [lacks WinVerifyTrust]
  814. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  815. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume5\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  816. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  817. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
  818. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll' [rcNtRedir=0xc0150008]
  819. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll [lacks WinVerifyTrust]
  820. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comdlg32.dll'...
  821. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'comdlg32.dll' -> '\Device\HarddiskVolume5\Windows\System32\comdlg32.dll' [rcNtRedir=0xc0150008]
  822. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  823. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #36 'user32.dll'.
  824. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #37 'shlwapi.dll'.
  825. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #38 'gdi32.dll'.
  826. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #39 'comctl32.dll'.
  827. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #40 'shell32.dll'.
  828. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume5\Windows\System32\comdlg32.dll)
  829. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\comdlg32.dll
  830. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winspool.drv'...
  831. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'winspool.drv' -> '\Device\HarddiskVolume5\Windows\System32\winspool.drv' [rcNtRedir=0xc0150008]
  832. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  833. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #25 'iphlpapi.dll'.
  834. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #34 'bcrypt.dll'.
  835. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume5\Windows\System32\winspool.drv)
  836. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\winspool.drv
  837. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
  838. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\qt5corevbox.dll' [rcNtRedir=0xc0150008]
  839. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5CoreVBox.dll [lacks WinVerifyTrust]
  840. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
  841. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\qt5guivbox.dll' [rcNtRedir=0xc0150008]
  842. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5GuiVBox.dll [lacks WinVerifyTrust]
  843. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5widgetsvbox.dll'...
  844. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5widgetsvbox.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\qt5widgetsvbox.dll' [rcNtRedir=0xc0150008]
  845. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5WidgetsVBox.dll [lacks WinVerifyTrust]
  846. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  847. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume5\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  848. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\user32.dll [lacks WinVerifyTrust]
  849. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  850. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume5\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  851. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  852. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
  853. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll' [rcNtRedir=0xc0150008]
  854. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll [lacks WinVerifyTrust]
  855. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
  856. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\qt5corevbox.dll' [rcNtRedir=0xc0150008]
  857. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5CoreVBox.dll [lacks WinVerifyTrust]
  858. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
  859. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\qt5guivbox.dll' [rcNtRedir=0xc0150008]
  860. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5GuiVBox.dll [lacks WinVerifyTrust]
  861. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5widgetsvbox.dll'...
  862. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5widgetsvbox.dll' -> '\Device\HarddiskVolume11\Portable-VirtualBox\app64\qt5widgetsvbox.dll' [rcNtRedir=0xc0150008]
  863. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5WidgetsVBox.dll [lacks WinVerifyTrust]
  864. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  865. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume5\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  866. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  867. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
  868. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume5\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
  869. 2ccc.2cc4: '\Device\HarddiskVolume5\Windows\System32\win32u.dll' has no imports
  870. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\win32u.dll)
  871. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\win32u.dll
  872. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  873. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume5\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  874. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  875. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  876. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume5\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  877. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\user32.dll [lacks WinVerifyTrust]
  878. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  879. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume5\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  880. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  881. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
  882. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume5\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
  883. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'rpcrt4.dll'.
  884. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #45 'bcryptprimitives.dll'.
  885. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\combase.dll)
  886. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\combase.dll
  887. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  888. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume5\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  889. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\user32.dll [lacks WinVerifyTrust]
  890. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  891. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume5\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  892. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  893. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  894. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume5\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  895. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  896. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  897. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume5\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  898. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  899. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
  900. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume5\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
  901. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\combase.dll [lacks WinVerifyTrust]
  902. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp_win.dll'...
  903. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp_win.dll' -> '\Device\HarddiskVolume5\Windows\System32\msvcp_win.dll' [rcNtRedir=0xc0150008]
  904. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\msvcp_win.dll)
  905. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\msvcp_win.dll
  906. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  907. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume5\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  908. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  909. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmmbase.dll'...
  910. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmmbase.dll' -> '\Device\HarddiskVolume5\Windows\System32\winmmbase.dll' [rcNtRedir=0xc0150008]
  911. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
  912. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\winmmbase.dll)
  913. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\winmmbase.dll
  914. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  915. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume5\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  916. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  917. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcryptprimitives.dll'...
  918. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcryptprimitives.dll' -> '\Device\HarddiskVolume5\Windows\System32\bcryptprimitives.dll' [rcNtRedir=0xc0150008]
  919. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> -626 (\Device\HarddiskVolume5\Windows\System32\bcryptprimitives.dll)
  920. 2ccc.2cc4: Error (rc=0):
  921. 2ccc.2cc4: supR3HardenedScreenImage/Imports: rc=Unknown Status -626 (0xfffffd8e) fImage=1 fProtect=0x0 fAccess=0x0 \Device\HarddiskVolume5\Windows\System32\bcryptprimitives.dll: Grown load config (244 to 256 bytes) includes non-zero bytes: 00 00 00 00 40 16 06 80 01 00 00 00
  922. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\bcryptprimitives.dll
  923. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  924. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume5\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  925. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  926. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcrypt.dll'...
  927. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcrypt.dll' -> '\Device\HarddiskVolume5\Windows\System32\bcrypt.dll' [rcNtRedir=0xc0150008]
  928. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (Unknown Status -626 (0xfffffd8e)) on \Device\HarddiskVolume5\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
  929. 2ccc.2cc4: Error (rc=0):
  930. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cached rc=Unknown Status -626 (0xfffffd8e) fImage=1 fProtect=0x0 fAccess=0x0 cHits=3 \Device\HarddiskVolume5\Windows\System32\bcrypt.dll
  931. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'iphlpapi.dll'...
  932. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'iphlpapi.dll' -> '\Device\HarddiskVolume5\Windows\System32\iphlpapi.dll' [rcNtRedir=0xc0150008]
  933. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\IPHLPAPI.DLL)
  934. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\IPHLPAPI.DLL
  935. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  936. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume5\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  937. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  938. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
  939. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume5\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
  940. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\shell32.dll [lacks WinVerifyTrust]
  941. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comctl32.dll'...
  942. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'comctl32.dll' -> '\Device\HarddiskVolume5\Windows\System32\comctl32.dll' [rcNtRedir=0x0]
  943. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'advapi32.dll'.
  944. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
  945. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
  946. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\comctl32.dll)
  947. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\comctl32.dll
  948. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  949. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume5\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  950. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  951. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shlwapi.dll'...
  952. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'shlwapi.dll' -> '\Device\HarddiskVolume5\Windows\System32\shlwapi.dll' [rcNtRedir=0xc0150008]
  953. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcrt.dll'.
  954. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #45 'gdi32.dll'.
  955. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #46 'user32.dll'.
  956. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\System32\shlwapi.dll)
  957. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\shlwapi.dll
  958. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  959. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume5\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  960. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\user32.dll [lacks WinVerifyTrust]
  961. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  962. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume5\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  963. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  964. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
  965. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume5\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
  966. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
  967. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
  968. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume5\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
  969. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume5\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
  970. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  971. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume5\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  972. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\user32.dll [lacks WinVerifyTrust]
  973. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  974. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume5\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  975. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  976. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  977. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume5\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  978. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\user32.dll [lacks WinVerifyTrust]
  979. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  980. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume5\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  981. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  982. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
  983. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume5\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
  984. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
  985. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
  986. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume5\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
  987. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\user32.dll [lacks WinVerifyTrust]
  988. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
  989. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume5\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
  990. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
  991. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
  992. 2ccc.2cc4: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume5\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
  993. 2ccc.2cc4: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
  994. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: pName=G:\Portable-VirtualBox\app64\VirtualBox.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000a01:<flags> [calling]
  995. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\VirtualBox.dll [lacks WinVerifyTrust]
  996. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume5\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
  997. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\VBoxRT.dll [lacks WinVerifyTrust]
  998. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcp100.dll [lacks WinVerifyTrust]
  999. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\msvcr100.dll [lacks WinVerifyTrust]
  1000. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5CoreVBox.dll [lacks WinVerifyTrust]
  1001. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5GuiVBox.dll [lacks WinVerifyTrust]
  1002. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5WidgetsVBox.dll [lacks WinVerifyTrust]
  1003. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5PrintSupportVBox.dll [lacks WinVerifyTrust]
  1004. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume11\Portable-VirtualBox\app64\Qt5OpenGLVBox.dll [lacks WinVerifyTrust]
  1005. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\winmm.dll [lacks WinVerifyTrust]
  1006. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume5\Windows\System32\glu32.dll [lacks WinVerifyTrust]
  1007. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\mpr.dll [lacks WinVerifyTrust]
  1008. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume5\Windows\System32\winspool.drv [lacks WinVerifyTrust]
  1009. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'advapi32.dll'.
  1010. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
  1011. 2ccc.2cc4: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
  1012. 2ccc.2cc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume5\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.16299.309_none_8875ce284abe80d8\comctl32.dll)
  1013. 2ccc.2cc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.16299.309_none_8875ce284abe80d8\comctl32.dll
  1014. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\winmmbase.dll [lacks WinVerifyTrust]
  1015. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume5\Windows\System32\IPHLPAPI.DLL [lacks WinVerifyTrust]
  1016. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status -626 (0xfffffd8e)) on \Device\HarddiskVolume5\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
  1017. 2ccc.2cc4: Error (rc=0):
  1018. 2ccc.2cc4: supR3HardenedScreenImage/NtCreateSection: cached rc=Unknown Status -626 (0xfffffd8e) fImage=1 fProtect=0x10 fAccess=0xf cHits=4 \Device\HarddiskVolume5\Windows\System32\bcrypt.dll
  1019. 2ccc.2cc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000190 'G:\Portable-VirtualBox\app64\VirtualBox.dll'
  1020. 2350.32c0: supR3HardNtChildWaitFor[2]: Quitting: ExitCode=0x1 (rcNtWait=0x0, rcNt1=0x0, rcNt2=0x103, rcNt3=0x103, 2519 ms, the end);
  1021. 3918.3638: supR3HardNtChildWaitFor[1]: Quitting: ExitCode=0x1 (rcNtWait=0x0, rcNt1=0x0, rcNt2=0x103, rcNt3=0x103, 3455 ms, the end);
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!