VirtualBox

Ticket #13187: PassinThruVBoxStartup-4.3.20.log

File PassinThruVBoxStartup-4.3.20.log, 23.3 KB (added by Scott Hankin, 10 years ago)

4.3.20 VBoxStartup.log - VM hangs on startup

Line 
1222c.1f04: Log file opened: 4.3.20r96997 g_hStartupLog=00000000000000b0 g_uNtVerCombined=0x611db110
2222c.1f04: \SystemRoot\System32\ntdll.dll:
3222c.1f04: CreationTime: 2013-10-09T20:13:19.301520300Z
4222c.1f04: LastWriteTime: 2013-08-29T02:16:35.515578900Z
5222c.1f04: ChangeTime: 2013-10-10T14:18:20.928457600Z
6222c.1f04: FileAttributes: 0x20
7222c.1f04: Size: 0x1a6dc0
8222c.1f04: NT Headers: 0xe0
9222c.1f04: Timestamp: 0x521eaf24
10222c.1f04: Machine: 0x8664 - amd64
11222c.1f04: Timestamp: 0x521eaf24
12222c.1f04: Image Version: 6.1
13222c.1f04: SizeOfImage: 0x1a9000 (1740800)
14222c.1f04: Resource Dir: 0x151000 LB 0x560d8
15222c.1f04: ProductName: Microsoft® Windows® Operating System
16222c.1f04: ProductVersion: 6.1.7601.18247
17222c.1f04: FileVersion: 6.1.7601.18247 (win7sp1_gdr.130828-1532)
18222c.1f04: FileDescription: NT Layer DLL
19222c.1f04: \SystemRoot\System32\kernel32.dll:
20222c.1f04: CreationTime: 2014-04-10T15:02:50.398073700Z
21222c.1f04: LastWriteTime: 2014-03-04T09:44:00.336000000Z
22222c.1f04: ChangeTime: 2014-04-14T14:16:50.794438100Z
23222c.1f04: FileAttributes: 0x20
24222c.1f04: Size: 0x11c000
25222c.1f04: NT Headers: 0xe8
26222c.1f04: Timestamp: 0x5315a059
27222c.1f04: Machine: 0x8664 - amd64
28222c.1f04: Timestamp: 0x5315a059
29222c.1f04: Image Version: 6.1
30222c.1f04: SizeOfImage: 0x11f000 (1175552)
31222c.1f04: Resource Dir: 0x116000 LB 0x528
32222c.1f04: ProductName: Microsoft® Windows® Operating System
33222c.1f04: ProductVersion: 6.1.7601.18409
34222c.1f04: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144)
35222c.1f04: FileDescription: Windows NT BASE API Client DLL
36222c.1f04: \SystemRoot\System32\KernelBase.dll:
37222c.1f04: CreationTime: 2014-05-14T20:49:08.491151100Z
38222c.1f04: LastWriteTime: 2014-03-04T09:44:00.336000000Z
39222c.1f04: ChangeTime: 2014-05-15T15:29:41.206413600Z
40222c.1f04: FileAttributes: 0x20
41222c.1f04: Size: 0x67c00
42222c.1f04: NT Headers: 0xe8
43222c.1f04: Timestamp: 0x5315a05a
44222c.1f04: Machine: 0x8664 - amd64
45222c.1f04: Timestamp: 0x5315a05a
46222c.1f04: Image Version: 6.1
47222c.1f04: SizeOfImage: 0x6c000 (442368)
48222c.1f04: Resource Dir: 0x6a000 LB 0x530
49222c.1f04: ProductName: Microsoft® Windows® Operating System
50222c.1f04: ProductVersion: 6.1.7601.18409
51222c.1f04: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144)
52222c.1f04: FileDescription: Windows NT BASE API Client DLL
53222c.1f04: \SystemRoot\System32\apisetschema.dll:
54222c.1f04: CreationTime: 2013-09-12T15:12:23.923815500Z
55222c.1f04: LastWriteTime: 2013-08-02T02:12:20.275000000Z
56222c.1f04: ChangeTime: 2013-09-16T14:06:36.230838200Z
57222c.1f04: FileAttributes: 0x20
58222c.1f04: Size: 0x1a00
59222c.1f04: NT Headers: 0xc0
60222c.1f04: Timestamp: 0x51fb15ca
61222c.1f04: Machine: 0x8664 - amd64
62222c.1f04: Timestamp: 0x51fb15ca
63222c.1f04: Image Version: 6.1
64222c.1f04: SizeOfImage: 0x50000 (327680)
65222c.1f04: Resource Dir: 0x30000 LB 0x3f8
66222c.1f04: ProductName: Microsoft® Windows® Operating System
67222c.1f04: ProductVersion: 6.1.7601.18229
68222c.1f04: FileVersion: 6.1.7601.18229 (win7sp1_gdr.130801-1533)
69222c.1f04: FileDescription: ApiSet Schema DLL
70222c.1f04: Found driver SymNetS (0x2)
71222c.1f04: Found driver SymDS (0x2)
72222c.1f04: Found driver SRTSPX (0x2)
73222c.1f04: Found driver SymEvent (0x2)
74222c.1f04: Found driver SymIRON (0x2)
75222c.1f04: supR3HardenedWinFindAdversaries: 0x2
76222c.1f04: \SystemRoot\System32\drivers\SysPlant.sys:
77222c.1f04: CreationTime: 2014-04-04T17:05:56.099300100Z
78222c.1f04: LastWriteTime: 2014-08-20T14:38:36.772809300Z
79222c.1f04: ChangeTime: 2014-08-20T14:38:36.772809300Z
80222c.1f04: FileAttributes: 0x2020
81222c.1f04: Size: 0x25f50
82222c.1f04: NT Headers: 0x100
83222c.1f04: Timestamp: 0x53da082a
84222c.1f04: Machine: 0x8664 - amd64
85222c.1f04: Timestamp: 0x53da082a
86222c.1f04: Image Version: 5.0
87222c.1f04: SizeOfImage: 0x2d000 (184320)
88222c.1f04: Resource Dir: 0x2b000 LB 0x498
89222c.1f04: ProductName: Symantec CMC Firewall
90222c.1f04: ProductVersion: 12.1.4112.4156
91222c.1f04: FileVersion: 12.1.4112.4156
92222c.1f04: FileDescription: Symantec CMC Firewall SysPlant
93222c.1f04: \SystemRoot\System32\sysfer.dll:
94222c.1f04: CreationTime: 2014-04-04T17:05:55.958282200Z
95222c.1f04: LastWriteTime: 2014-08-20T14:38:36.741609200Z
96222c.1f04: ChangeTime: 2014-08-20T14:38:36.741609200Z
97222c.1f04: FileAttributes: 0x2020
98222c.1f04: Size: 0x70d70
99222c.1f04: NT Headers: 0xe8
100222c.1f04: Timestamp: 0x53da08b7
101222c.1f04: Machine: 0x8664 - amd64
102222c.1f04: Timestamp: 0x53da08b7
103222c.1f04: Image Version: 0.0
104222c.1f04: SizeOfImage: 0x88000 (557056)
105222c.1f04: Resource Dir: 0x86000 LB 0x630
106222c.1f04: ProductName: Symantec CMC Firewall
107222c.1f04: ProductVersion: 12.1.4112.4156
108222c.1f04: FileVersion: 12.1.4112.4156
109222c.1f04: FileDescription: Symantec CMC Firewall sysfer
110222c.1f04: \SystemRoot\System32\sysferThunk.dll:
111222c.1f04: CreationTime: 2014-04-04T17:05:56.031791500Z
112222c.1f04: LastWriteTime: 2014-08-20T14:38:36.757209300Z
113222c.1f04: ChangeTime: 2014-08-20T14:38:36.757209300Z
114222c.1f04: FileAttributes: 0x2020
115222c.1f04: Size: 0x3170
116222c.1f04: NT Headers: 0xd0
117222c.1f04: Timestamp: 0x53da08b8
118222c.1f04: Machine: 0x8664 - amd64
119222c.1f04: Timestamp: 0x53da08b8
120222c.1f04: Image Version: 0.0
121222c.1f04: SizeOfImage: 0x8000 (32768)
122222c.1f04: Resource Dir: 0x6000 LB 0x648
123222c.1f04: ProductName: Symantec CMC Firewall
124222c.1f04: ProductVersion: 12.1.4112.4156
125222c.1f04: FileVersion: 12.1.4112.4156
126222c.1f04: FileDescription: Symantec CMC Firewall SysferThunk
127222c.1f04: \SystemRoot\System32\drivers\symevent64x86.sys:
128222c.1f04: CreationTime: 2014-04-04T17:06:33.035490400Z
129222c.1f04: LastWriteTime: 2014-08-20T13:40:32.959166500Z
130222c.1f04: ChangeTime: 2014-08-20T13:40:32.959166500Z
131222c.1f04: FileAttributes: 0x20
132222c.1f04: Size: 0x2b658
133222c.1f04: NT Headers: 0xe8
134222c.1f04: Timestamp: 0x51f32ff2
135222c.1f04: Machine: 0x8664 - amd64
136222c.1f04: Timestamp: 0x51f32ff2
137222c.1f04: Image Version: 6.0
138222c.1f04: SizeOfImage: 0x38000 (229376)
139222c.1f04: Resource Dir: 0x36000 LB 0x3c8
140222c.1f04: ProductName: SYMEVENT
141222c.1f04: ProductVersion: 12.9.5.2
142222c.1f04: FileVersion: 12.9.5.2
143222c.1f04: FileDescription: Symantec Event Library
144222c.1f04: Calling main()
145222c.1f04: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
146222c.1f04: SUPR3HardenedMain: Respawn #1
147222c.1f04: System32: \Device\HarddiskVolume3\Windows\System32
148222c.1f04: WinSxS: \Device\HarddiskVolume3\Windows\winsxs
149222c.1f04: KnownDllPath: C:\Windows\system32
150222c.1f04: '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
151222c.1f04: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe)
152222c.1f04: supR3HardNtEnableThreadCreation:
153222c.1f04: supR3HardNtDisableThreadCreation: pvLdrInitThunk=000000007793c340 pvNtTerminateThread=00000000779617e0
154222c.1f04: supR3HardenedWinDoReSpawn(1): New child 1c20.1c24 [kernel32].
155222c.1f04: supR3HardNtChildGatherData: PebBaseAddress=000007fffffd3000 cbPeb=0x380
156222c.1f04: supR3HardNtPuChFindNtdll: uNtDllParentAddr=0000000077910000 uNtDllChildAddr=0000000077910000
157222c.1f04: supR3HardenedWinSetupChildInit: uLdrInitThunk=000000007793c340
158222c.1f04: supR3HardenedWinSetupChildInit: Start child.
159222c.1f04: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 0 ms.
160222c.1f04: supR3HardNtChildPurify: Startup delay kludge #1/0: 520 ms, 52 sleeps
161222c.1f04: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
162222c.1f04: *0000000000000000-fffffffffffeffff 0x0001/0x0000 0x0000000
163222c.1f04: *0000000000010000-fffffffffffeffff 0x0004/0x0004 0x0020000
164222c.1f04: *0000000000030000-000000000002bfff 0x0002/0x0002 0x0040000
165222c.1f04: 0000000000034000-0000000000027fff 0x0001/0x0000 0x0000000
166222c.1f04: *0000000000040000-000000000003efff 0x0004/0x0004 0x0020000
167222c.1f04: 0000000000041000-0000000000031fff 0x0001/0x0000 0x0000000
168222c.1f04: *0000000000050000-000000000004efff 0x0004/0x0004 0x0020000
169222c.1f04: 0000000000051000-ffffffffffee1fff 0x0001/0x0000 0x0000000
170222c.1f04: *00000000001c0000-00000000000c3fff 0x0000/0x0004 0x0020000
171222c.1f04: 00000000002bc000-00000000002b8fff 0x0104/0x0004 0x0020000
172222c.1f04: 00000000002bf000-00000000002bdfff 0x0004/0x0004 0x0020000
173222c.1f04: 00000000002c0000-ffffffff88c6ffff 0x0001/0x0000 0x0000000
174222c.1f04: *0000000077910000-000000007790efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
175222c.1f04: 0000000077911000-000000007780efff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
176222c.1f04: 0000000077a13000-00000000779e3fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
177222c.1f04: 0000000077a42000-0000000077a39fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
178222c.1f04: 0000000077a4a000-0000000077a48fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
179222c.1f04: 0000000077a4b000-0000000077a47fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
180222c.1f04: 0000000077a4e000-00000000779e2fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
181222c.1f04: 0000000077ab9000-0000000070591fff 0x0001/0x0000 0x0000000
182222c.1f04: *000000007efe0000-000000007dfdffff 0x0000/0x0002 0x0020000
183222c.1f04: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000
184222c.1f04: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000
185222c.1f04: 000000007fff0000-ffffffffc0c6ffff 0x0001/0x0000 0x0000000
186222c.1f04: *000000013f370000-000000013f36efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
187222c.1f04: 000000013f371000-000000013f2ecfff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
188222c.1f04: 000000013f3f5000-000000013f3f3fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
189222c.1f04: 000000013f3f6000-000000013f3b8fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
190222c.1f04: 000000013f433000-000000013f431fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
191222c.1f04: 000000013f434000-000000013f432fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
192222c.1f04: 000000013f435000-000000013f432fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
193222c.1f04: 000000013f437000-000000013f435fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
194222c.1f04: 000000013f438000-000000013f436fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
195222c.1f04: 000000013f439000-000000013f434fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
196222c.1f04: 000000013f43d000-000000013f403fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
197222c.1f04: 000000013f476000-fffff8037ecbbfff 0x0001/0x0000 0x0000000
198222c.1f04: *000007feffc30000-000007feffc2efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\apisetschema.dll
199222c.1f04: 000007feffc31000-000007fdff8b1fff 0x0001/0x0000 0x0000000
200222c.1f04: *000007fffffb0000-000007fffff8cfff 0x0002/0x0002 0x0040000
201222c.1f04: *000007fffffd3000-000007fffffd1fff 0x0004/0x0004 0x0020000
202222c.1f04: 000007fffffd4000-000007fffffc9fff 0x0001/0x0000 0x0000000
203222c.1f04: *000007fffffde000-000007fffffdbfff 0x0004/0x0004 0x0020000
204222c.1f04: *000007fffffe0000-000007fffffcffff 0x0001/0x0002 0x0020000
205222c.1f04: apisetschema.dll: timestamp 0x51fb15ca (rc=VINF_SUCCESS)
206222c.1f04: VirtualBox.exe: timestamp 0x54731167 (rc=VINF_SUCCESS)
207222c.1f04: '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
208222c.1f04: '\Device\HarddiskVolume3\Windows\System32\apisetschema.dll' has no imports
209222c.1f04: '\Device\HarddiskVolume3\Windows\System32\ntdll.dll' has no imports
210222c.1f04: supR3HardNtChildPurify: Done after 540 ms and 0 fixes (loop #0).
211222c.1f04: supR3HardNtEnableThreadCreation:
2121c20.1c24: Log file opened: 4.3.20r96997 g_hStartupLog=0000000000000004 g_uNtVerCombined=0x611db110
2131c20.1c24: supR3HardenedVmProcessInit: uNtDllAddr=0000000077910000
2141c20.1c24: ntdll.dll: timestamp 0x521eaf24 (rc=VINF_SUCCESS)
2151c20.1c24: New simple heap: #1 00000000002c0000 LB 0x400000 (for 1740800 allocation)
2161c20.1c24: System32: \Device\HarddiskVolume3\Windows\System32
2171c20.1c24: WinSxS: \Device\HarddiskVolume3\Windows\winsxs
2181c20.1c24: KnownDllPath: C:\Windows\system32
2191c20.1c24: supR3HardenedVmProcessInit: Opening vboxdrv stub...
2201c20.1c24: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
2211c20.1c24: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
2221c20.1c24: Registered Dll notification callback with NTDLL.
2231c20.1c24: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\kernel32.dll)
2241c20.1c24: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\kernel32.dll
2251c20.1c24: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\kernel32.dll (Input=kernel32.dll, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000000:<flags> [calling]
2261c20.1c24: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
2271c20.1c24: supR3HardenedDllNotificationCallback: load 00000000777f0000 LB 0x0011f000 C:\Windows\system32\kernel32.dll [fFlags=0x0]
2281c20.1c24: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
2291c20.1c24: supR3HardenedDllNotificationCallback: load 000007fefd8b0000 LB 0x0006c000 C:\Windows\system32\KERNELBASE.dll [fFlags=0x0]
2301c20.1c24: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\KernelBase.dll)
2311c20.1c24: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\KernelBase.dll
2321c20.1c24: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00000000777f0000 'C:\Windows\system32\kernel32.dll'
2331c20.1c24: supR3HardNtDisableThreadCreation: pvLdrInitThunk=000000007793c340 pvNtTerminateThread=00000000779617e0
234222c.1f04: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 30 ms.
2351c20.1c24: \SystemRoot\System32\ntdll.dll:
2361c20.1c24: CreationTime: 2013-10-09T20:13:19.301520300Z
2371c20.1c24: LastWriteTime: 2013-08-29T02:16:35.515578900Z
2381c20.1c24: ChangeTime: 2013-10-10T14:18:20.928457600Z
2391c20.1c24: FileAttributes: 0x20
2401c20.1c24: Size: 0x1a6dc0
2411c20.1c24: NT Headers: 0xe0
2421c20.1c24: Timestamp: 0x521eaf24
2431c20.1c24: Machine: 0x8664 - amd64
2441c20.1c24: Timestamp: 0x521eaf24
2451c20.1c24: Image Version: 6.1
2461c20.1c24: SizeOfImage: 0x1a9000 (1740800)
2471c20.1c24: Resource Dir: 0x151000 LB 0x560d8
2481c20.1c24: ProductName: Microsoft® Windows® Operating System
2491c20.1c24: ProductVersion: 6.1.7601.18247
2501c20.1c24: FileVersion: 6.1.7601.18247 (win7sp1_gdr.130828-1532)
2511c20.1c24: FileDescription: NT Layer DLL
2521c20.1c24: \SystemRoot\System32\kernel32.dll:
2531c20.1c24: CreationTime: 2014-04-10T15:02:50.398073700Z
2541c20.1c24: LastWriteTime: 2014-03-04T09:44:00.336000000Z
2551c20.1c24: ChangeTime: 2014-04-14T14:16:50.794438100Z
2561c20.1c24: FileAttributes: 0x20
2571c20.1c24: Size: 0x11c000
2581c20.1c24: NT Headers: 0xe8
2591c20.1c24: Timestamp: 0x5315a059
2601c20.1c24: Machine: 0x8664 - amd64
2611c20.1c24: Timestamp: 0x5315a059
2621c20.1c24: Image Version: 6.1
2631c20.1c24: SizeOfImage: 0x11f000 (1175552)
2641c20.1c24: Resource Dir: 0x116000 LB 0x528
2651c20.1c24: ProductName: Microsoft® Windows® Operating System
2661c20.1c24: ProductVersion: 6.1.7601.18409
2671c20.1c24: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144)
2681c20.1c24: FileDescription: Windows NT BASE API Client DLL
2691c20.1c24: \SystemRoot\System32\KernelBase.dll:
2701c20.1c24: CreationTime: 2014-05-14T20:49:08.491151100Z
2711c20.1c24: LastWriteTime: 2014-03-04T09:44:00.336000000Z
2721c20.1c24: ChangeTime: 2014-05-15T15:29:41.206413600Z
2731c20.1c24: FileAttributes: 0x20
2741c20.1c24: Size: 0x67c00
2751c20.1c24: NT Headers: 0xe8
2761c20.1c24: Timestamp: 0x5315a05a
2771c20.1c24: Machine: 0x8664 - amd64
2781c20.1c24: Timestamp: 0x5315a05a
2791c20.1c24: Image Version: 6.1
2801c20.1c24: SizeOfImage: 0x6c000 (442368)
2811c20.1c24: Resource Dir: 0x6a000 LB 0x530
2821c20.1c24: ProductName: Microsoft® Windows® Operating System
2831c20.1c24: ProductVersion: 6.1.7601.18409
2841c20.1c24: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144)
2851c20.1c24: FileDescription: Windows NT BASE API Client DLL
2861c20.1c24: \SystemRoot\System32\apisetschema.dll:
2871c20.1c24: CreationTime: 2013-09-12T15:12:23.923815500Z
2881c20.1c24: LastWriteTime: 2013-08-02T02:12:20.275000000Z
2891c20.1c24: ChangeTime: 2013-09-16T14:06:36.230838200Z
2901c20.1c24: FileAttributes: 0x20
2911c20.1c24: Size: 0x1a00
2921c20.1c24: NT Headers: 0xc0
2931c20.1c24: Timestamp: 0x51fb15ca
2941c20.1c24: Machine: 0x8664 - amd64
2951c20.1c24: Timestamp: 0x51fb15ca
2961c20.1c24: Image Version: 6.1
2971c20.1c24: SizeOfImage: 0x50000 (327680)
2981c20.1c24: Resource Dir: 0x30000 LB 0x3f8
2991c20.1c24: ProductName: Microsoft® Windows® Operating System
3001c20.1c24: ProductVersion: 6.1.7601.18229
3011c20.1c24: FileVersion: 6.1.7601.18229 (win7sp1_gdr.130801-1533)
3021c20.1c24: FileDescription: ApiSet Schema DLL
3031c20.1c24: Found driver SymNetS (0x2)
3041c20.1c24: Found driver SymDS (0x2)
3051c20.1c24: Found driver SRTSPX (0x2)
3061c20.1c24: Found driver SymEvent (0x2)
3071c20.1c24: Found driver SymIRON (0x2)
3081c20.1c24: supR3HardenedWinFindAdversaries: 0x2
3091c20.1c24: \SystemRoot\System32\drivers\SysPlant.sys:
3101c20.1c24: CreationTime: 2014-04-04T17:05:56.099300100Z
3111c20.1c24: LastWriteTime: 2014-08-20T14:38:36.772809300Z
3121c20.1c24: ChangeTime: 2014-08-20T14:38:36.772809300Z
3131c20.1c24: FileAttributes: 0x2020
3141c20.1c24: Size: 0x25f50
3151c20.1c24: NT Headers: 0x100
3161c20.1c24: Timestamp: 0x53da082a
3171c20.1c24: Machine: 0x8664 - amd64
3181c20.1c24: Timestamp: 0x53da082a
3191c20.1c24: Image Version: 5.0
3201c20.1c24: SizeOfImage: 0x2d000 (184320)
3211c20.1c24: Resource Dir: 0x2b000 LB 0x498
3221c20.1c24: ProductName: Symantec CMC Firewall
3231c20.1c24: ProductVersion: 12.1.4112.4156
3241c20.1c24: FileVersion: 12.1.4112.4156
3251c20.1c24: FileDescription: Symantec CMC Firewall SysPlant
3261c20.1c24: \SystemRoot\System32\sysfer.dll:
3271c20.1c24: CreationTime: 2014-04-04T17:05:55.958282200Z
3281c20.1c24: LastWriteTime: 2014-08-20T14:38:36.741609200Z
3291c20.1c24: ChangeTime: 2014-08-20T14:38:36.741609200Z
3301c20.1c24: FileAttributes: 0x2020
3311c20.1c24: Size: 0x70d70
3321c20.1c24: NT Headers: 0xe8
3331c20.1c24: Timestamp: 0x53da08b7
3341c20.1c24: Machine: 0x8664 - amd64
3351c20.1c24: Timestamp: 0x53da08b7
3361c20.1c24: Image Version: 0.0
3371c20.1c24: SizeOfImage: 0x88000 (557056)
3381c20.1c24: Resource Dir: 0x86000 LB 0x630
3391c20.1c24: ProductName: Symantec CMC Firewall
3401c20.1c24: ProductVersion: 12.1.4112.4156
3411c20.1c24: FileVersion: 12.1.4112.4156
3421c20.1c24: FileDescription: Symantec CMC Firewall sysfer
3431c20.1c24: \SystemRoot\System32\sysferThunk.dll:
3441c20.1c24: CreationTime: 2014-04-04T17:05:56.031791500Z
3451c20.1c24: LastWriteTime: 2014-08-20T14:38:36.757209300Z
3461c20.1c24: ChangeTime: 2014-08-20T14:38:36.757209300Z
3471c20.1c24: FileAttributes: 0x2020
3481c20.1c24: Size: 0x3170
3491c20.1c24: NT Headers: 0xd0
3501c20.1c24: Timestamp: 0x53da08b8
3511c20.1c24: Machine: 0x8664 - amd64
3521c20.1c24: Timestamp: 0x53da08b8
3531c20.1c24: Image Version: 0.0
3541c20.1c24: SizeOfImage: 0x8000 (32768)
3551c20.1c24: Resource Dir: 0x6000 LB 0x648
3561c20.1c24: ProductName: Symantec CMC Firewall
3571c20.1c24: ProductVersion: 12.1.4112.4156
3581c20.1c24: FileVersion: 12.1.4112.4156
3591c20.1c24: FileDescription: Symantec CMC Firewall SysferThunk
3601c20.1c24: \SystemRoot\System32\drivers\symevent64x86.sys:
3611c20.1c24: CreationTime: 2014-04-04T17:06:33.035490400Z
3621c20.1c24: LastWriteTime: 2014-08-20T13:40:32.959166500Z
3631c20.1c24: ChangeTime: 2014-08-20T13:40:32.959166500Z
3641c20.1c24: FileAttributes: 0x20
3651c20.1c24: Size: 0x2b658
3661c20.1c24: NT Headers: 0xe8
3671c20.1c24: Timestamp: 0x51f32ff2
3681c20.1c24: Machine: 0x8664 - amd64
3691c20.1c24: Timestamp: 0x51f32ff2
3701c20.1c24: Image Version: 6.0
3711c20.1c24: SizeOfImage: 0x38000 (229376)
3721c20.1c24: Resource Dir: 0x36000 LB 0x3c8
3731c20.1c24: ProductName: SYMEVENT
3741c20.1c24: ProductVersion: 12.9.5.2
3751c20.1c24: FileVersion: 12.9.5.2
3761c20.1c24: FileDescription: Symantec Event Library
3771c20.1c24: Calling main()
3781c20.1c24: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
3791c20.1c24: '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
3801c20.1c24: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe)
3811c20.1c24: SUPR3HardenedMain: Respawn #2
3821c20.1c24: supR3HardNtEnableThreadCreation:
3831c20.1c24: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\apphelp.dll)
3841c20.1c24: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\apphelp.dll
3851c20.1c24: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\apphelp.dll (rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000000:<flags> [calling]
3861c20.1c24: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\apphelp.dll [lacks WinVerifyTrust]
3871c20.1c24: supR3HardenedDllNotificationCallback: load 000007fefd4d0000 LB 0x00057000 C:\Windows\system32\apphelp.dll [fFlags=0x0]
3881c20.1c24: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\apphelp.dll [lacks WinVerifyTrust]
3891c20.1c24: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd4d0000 'C:\Windows\system32\apphelp.dll'

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy