VirtualBox

Ticket #13187: VBoxStartup.11.log

File VBoxStartup.11.log, 27.3 KB (added by dgc, 10 years ago)

dgc startup log 4.3.20 Hangs

Line 
126dc.8e0: Log file opened: 4.3.20r96997 g_hStartupLog=0000000000000024 g_uNtVerCombined=0x611db110
226dc.8e0: \SystemRoot\System32\ntdll.dll:
326dc.8e0: CreationTime: 2014-01-29T19:37:43.928253400Z
426dc.8e0: LastWriteTime: 2013-08-02T02:15:44.087554100Z
526dc.8e0: ChangeTime: 2014-01-29T20:20:44.781466400Z
626dc.8e0: FileAttributes: 0x20
726dc.8e0: Size: 0x1a6dc0
826dc.8e0: NT Headers: 0xe0
926dc.8e0: Timestamp: 0x51fb164a
1026dc.8e0: Machine: 0x8664 - amd64
1126dc.8e0: Timestamp: 0x51fb164a
1226dc.8e0: Image Version: 6.1
1326dc.8e0: SizeOfImage: 0x1a9000 (1740800)
1426dc.8e0: Resource Dir: 0x151000 LB 0x560d8
1526dc.8e0: ProductName: Microsoft® Windows® Operating System
1626dc.8e0: ProductVersion: 6.1.7601.18229
1726dc.8e0: FileVersion: 6.1.7601.18229 (win7sp1_gdr.130801-1533)
1826dc.8e0: FileDescription: NT Layer DLL
1926dc.8e0: \SystemRoot\System32\kernel32.dll:
2026dc.8e0: CreationTime: 2014-04-16T17:57:48.640715700Z
2126dc.8e0: LastWriteTime: 2014-03-04T09:44:00.336000000Z
2226dc.8e0: ChangeTime: 2014-04-16T18:28:22.435803400Z
2326dc.8e0: FileAttributes: 0x20
2426dc.8e0: Size: 0x11c000
2526dc.8e0: NT Headers: 0xe8
2626dc.8e0: Timestamp: 0x5315a059
2726dc.8e0: Machine: 0x8664 - amd64
2826dc.8e0: Timestamp: 0x5315a059
2926dc.8e0: Image Version: 6.1
3026dc.8e0: SizeOfImage: 0x11f000 (1175552)
3126dc.8e0: Resource Dir: 0x116000 LB 0x528
3226dc.8e0: ProductName: Microsoft® Windows® Operating System
3326dc.8e0: ProductVersion: 6.1.7601.18409
3426dc.8e0: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144)
3526dc.8e0: FileDescription: Windows NT BASE API Client DLL
3626dc.8e0: \SystemRoot\System32\KernelBase.dll:
3726dc.8e0: CreationTime: 2014-01-29T19:37:45.304028500Z
3826dc.8e0: LastWriteTime: 2013-08-02T02:13:34.580000000Z
3926dc.8e0: ChangeTime: 2014-01-29T20:20:45.639488400Z
4026dc.8e0: FileAttributes: 0x20
4126dc.8e0: Size: 0x67a00
4226dc.8e0: NT Headers: 0xe8
4326dc.8e0: Timestamp: 0x51fb1677
4426dc.8e0: Machine: 0x8664 - amd64
4526dc.8e0: Timestamp: 0x51fb1677
4626dc.8e0: Image Version: 6.1
4726dc.8e0: SizeOfImage: 0x6b000 (438272)
4826dc.8e0: Resource Dir: 0x69000 LB 0x530
4926dc.8e0: ProductName: Microsoft® Windows® Operating System
5026dc.8e0: ProductVersion: 6.1.7601.18229
5126dc.8e0: FileVersion: 6.1.7601.18229 (win7sp1_gdr.130801-1533)
5226dc.8e0: FileDescription: Windows NT BASE API Client DLL
5326dc.8e0: \SystemRoot\System32\apisetschema.dll:
5426dc.8e0: CreationTime: 2014-01-29T19:37:47.254418500Z
5526dc.8e0: LastWriteTime: 2013-08-02T06:20:45.851000000Z
5626dc.8e0: ChangeTime: 2014-01-29T20:20:44.625462400Z
5726dc.8e0: FileAttributes: 0x20
5826dc.8e0: Size: 0x1a00
5926dc.8e0: NT Headers: 0xc0
6026dc.8e0: Timestamp: 0x51fb5005
6126dc.8e0: Machine: 0x8664 - amd64
6226dc.8e0: Timestamp: 0x51fb5005
6326dc.8e0: Image Version: 6.1
6426dc.8e0: SizeOfImage: 0x50000 (327680)
6526dc.8e0: Resource Dir: 0x30000 LB 0x3f8
6626dc.8e0: ProductName: Microsoft® Windows® Operating System
6726dc.8e0: ProductVersion: 6.1.7601.22411
6826dc.8e0: FileVersion: 6.1.7601.22411 (win7sp1_ldr.130801-1934)
6926dc.8e0: FileDescription: ApiSet Schema DLL
7026dc.8e0: Found driver SymNetS (0x2)
7126dc.8e0: Found driver SymDS (0x2)
7226dc.8e0: Found driver SRTSPX (0x2)
7326dc.8e0: Found driver SymEvent (0x2)
7426dc.8e0: Found driver SymIRON (0x2)
7526dc.8e0: supR3HardenedWinFindAdversaries: 0x2
7626dc.8e0: \SystemRoot\System32\drivers\SysPlant.sys:
7726dc.8e0: CreationTime: 2014-04-22T20:12:36.053609800Z
7826dc.8e0: LastWriteTime: 2014-04-22T20:12:36.069209800Z
7926dc.8e0: ChangeTime: 2014-04-22T20:12:36.069209800Z
8026dc.8e0: FileAttributes: 0x20
8126dc.8e0: Size: 0x25ed8
8226dc.8e0: NT Headers: 0x100
8326dc.8e0: Timestamp: 0x52647ffd
8426dc.8e0: Machine: 0x8664 - amd64
8526dc.8e0: Timestamp: 0x52647ffd
8626dc.8e0: Image Version: 5.0
8726dc.8e0: SizeOfImage: 0x2e000 (188416)
8826dc.8e0: Resource Dir: 0x2c000 LB 0x498
8926dc.8e0: ProductName: Symantec CMC Firewall
9026dc.8e0: ProductVersion: 12.1.4013.4013
9126dc.8e0: FileVersion: 12.1.4013.4013
9226dc.8e0: FileDescription: Symantec CMC Firewall SysPlant
9326dc.8e0: \SystemRoot\System32\sysfer.dll:
9426dc.8e0: CreationTime: 2014-04-22T20:12:36.053609800Z
9526dc.8e0: LastWriteTime: 2014-04-22T20:12:36.053609800Z
9626dc.8e0: ChangeTime: 2014-04-22T20:12:36.053609800Z
9726dc.8e0: FileAttributes: 0x20
9826dc.8e0: Size: 0x70190
9926dc.8e0: NT Headers: 0xe8
10026dc.8e0: Timestamp: 0x526480b2
10126dc.8e0: Machine: 0x8664 - amd64
10226dc.8e0: Timestamp: 0x526480b2
10326dc.8e0: Image Version: 0.0
10426dc.8e0: SizeOfImage: 0x87000 (552960)
10526dc.8e0: Resource Dir: 0x85000 LB 0x630
10626dc.8e0: ProductName: Symantec CMC Firewall
10726dc.8e0: ProductVersion: 12.1.4013.4013
10826dc.8e0: FileVersion: 12.1.4013.4013
10926dc.8e0: FileDescription: Symantec CMC Firewall sysfer
11026dc.8e0: \SystemRoot\System32\sysferThunk.dll:
11126dc.8e0: CreationTime: 2014-04-22T20:12:36.053609800Z
11226dc.8e0: LastWriteTime: 2014-04-22T20:12:36.053609800Z
11326dc.8e0: ChangeTime: 2014-04-22T20:12:36.053609800Z
11426dc.8e0: FileAttributes: 0x20
11526dc.8e0: Size: 0x2f90
11626dc.8e0: NT Headers: 0xd0
11726dc.8e0: Timestamp: 0x526480b3
11826dc.8e0: Machine: 0x8664 - amd64
11926dc.8e0: Timestamp: 0x526480b3
12026dc.8e0: Image Version: 0.0
12126dc.8e0: SizeOfImage: 0x8000 (32768)
12226dc.8e0: Resource Dir: 0x6000 LB 0x648
12326dc.8e0: ProductName: Symantec CMC Firewall
12426dc.8e0: ProductVersion: 12.1.4013.4013
12526dc.8e0: FileVersion: 12.1.4013.4013
12626dc.8e0: FileDescription: Symantec CMC Firewall SysferThunk
12726dc.8e0: \SystemRoot\System32\drivers\symevent64x86.sys:
12826dc.8e0: CreationTime: 2013-10-09T20:14:44.144924800Z
12926dc.8e0: LastWriteTime: 2014-04-22T20:11:05.189614400Z
13026dc.8e0: ChangeTime: 2014-04-22T20:11:05.189614400Z
13126dc.8e0: FileAttributes: 0x20
13226dc.8e0: Size: 0x2b658
13326dc.8e0: NT Headers: 0xe8
13426dc.8e0: Timestamp: 0x51f32ff2
13526dc.8e0: Machine: 0x8664 - amd64
13626dc.8e0: Timestamp: 0x51f32ff2
13726dc.8e0: Image Version: 6.0
13826dc.8e0: SizeOfImage: 0x38000 (229376)
13926dc.8e0: Resource Dir: 0x36000 LB 0x3c8
14026dc.8e0: ProductName: SYMEVENT
14126dc.8e0: ProductVersion: 12.9.5.2
14226dc.8e0: FileVersion: 12.9.5.2
14326dc.8e0: FileDescription: Symantec Event Library
14426dc.8e0: Calling main()
14526dc.8e0: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
14626dc.8e0: SUPR3HardenedMain: Respawn #1
14726dc.8e0: System32: \Device\HarddiskVolume1\Windows\System32
14826dc.8e0: WinSxS: \Device\HarddiskVolume1\Windows\winsxs
14926dc.8e0: KnownDllPath: C:\Windows\system32
15026dc.8e0: '\Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe' has no imports
15126dc.8e0: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe)
15226dc.8e0: supR3HardNtEnableThreadCreation:
15326dc.8e0: supR3HardNtDisableThreadCreation: pvLdrInitThunk=0000000077a8c340 pvNtTerminateThread=0000000077ab17e0
15426dc.8e0: supR3HardenedWinDoReSpawn(1): New child 25b8.2844 [kernel32].
15526dc.8e0: supR3HardNtChildGatherData: PebBaseAddress=000007fffffdf000 cbPeb=0x380
15626dc.8e0: supR3HardNtPuChFindNtdll: uNtDllParentAddr=0000000077a60000 uNtDllChildAddr=0000000077a60000
15726dc.8e0: supR3HardenedWinSetupChildInit: uLdrInitThunk=0000000077a8c340
15826dc.8e0: supR3HardenedWinSetupChildInit: Start child.
15926dc.8e0: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 19 ms.
16026dc.8e0: supR3HardNtChildPurify: Startup delay kludge #1/0: 520 ms, 65 sleeps
16126dc.8e0: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
16226dc.8e0: *0000000000000000-fffffffffffeffff 0x0001/0x0000 0x0000000
16326dc.8e0: *0000000000010000-fffffffffffeffff 0x0004/0x0004 0x0020000
16426dc.8e0: *0000000000030000-0000000000027fff 0x0040/0x0040 0x0020000 !!
16526dc.8e0: supHardNtVpScanVirtualMemory: Freeing exec mem at 0000000000030000 (0000000000030000 LB 0x8000)
16626dc.8e0: 0000000000038000-000000000002ffff 0x0001/0x0000 0x0000000
16726dc.8e0: *0000000000040000-000000000003bfff 0x0002/0x0002 0x0040000
16826dc.8e0: 0000000000044000-0000000000037fff 0x0001/0x0000 0x0000000
16926dc.8e0: *0000000000050000-000000000004efff 0x0004/0x0004 0x0020000
17026dc.8e0: 0000000000051000-0000000000041fff 0x0001/0x0000 0x0000000
17126dc.8e0: *0000000000060000-000000000005efff 0x0004/0x0004 0x0020000
17226dc.8e0: 0000000000061000-0000000000041fff 0x0001/0x0000 0x0000000
17326dc.8e0: *0000000000080000-fffffffffff83fff 0x0000/0x0004 0x0020000
17426dc.8e0: 000000000017c000-0000000000178fff 0x0104/0x0004 0x0020000
17526dc.8e0: 000000000017f000-000000000017dfff 0x0004/0x0004 0x0020000
17626dc.8e0: 0000000000180000-ffffffff8889ffff 0x0001/0x0000 0x0000000
17726dc.8e0: *0000000077a60000-0000000077a5efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
17826dc.8e0: 0000000077a61000-000000007795efff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
17926dc.8e0: 0000000077b63000-0000000077b33fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
18026dc.8e0: 0000000077b92000-0000000077b89fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
18126dc.8e0: 0000000077b9a000-0000000077b98fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
18226dc.8e0: 0000000077b9b000-0000000077b97fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
18326dc.8e0: 0000000077b9e000-0000000077b32fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
18426dc.8e0: 0000000077c09000-0000000070831fff 0x0001/0x0000 0x0000000
18526dc.8e0: *000000007efe0000-000000007dfdffff 0x0000/0x0002 0x0020000
18626dc.8e0: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000
18726dc.8e0: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000
18826dc.8e0: 000000007fff0000-ffffffffc05cffff 0x0001/0x0000 0x0000000
18926dc.8e0: *000000013fa10000-000000013fa0efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
19026dc.8e0: 000000013fa11000-000000013f98cfff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
19126dc.8e0: 000000013fa95000-000000013fa93fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
19226dc.8e0: 000000013fa96000-000000013fa58fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
19326dc.8e0: 000000013fad3000-000000013fad1fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
19426dc.8e0: 000000013fad4000-000000013fad2fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
19526dc.8e0: 000000013fad5000-000000013fad2fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
19626dc.8e0: 000000013fad7000-000000013fad5fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
19726dc.8e0: 000000013fad8000-000000013fad6fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
19826dc.8e0: 000000013fad9000-000000013fad4fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
19926dc.8e0: 000000013fadd000-000000013faa3fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
20026dc.8e0: 000000013fb16000-fffff8037f8abfff 0x0001/0x0000 0x0000000
20126dc.8e0: *000007feffd80000-000007feffd7efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\apisetschema.dll
20226dc.8e0: 000007feffd81000-000007fdffb51fff 0x0001/0x0000 0x0000000
20326dc.8e0: *000007fffffb0000-000007fffff8cfff 0x0002/0x0002 0x0040000
20426dc.8e0: 000007fffffd3000-000007fffffc8fff 0x0001/0x0000 0x0000000
20526dc.8e0: *000007fffffdd000-000007fffffdafff 0x0004/0x0004 0x0020000
20626dc.8e0: *000007fffffdf000-000007fffffddfff 0x0004/0x0004 0x0020000
20726dc.8e0: *000007fffffe0000-000007fffffcffff 0x0001/0x0002 0x0020000
20826dc.8e0: apisetschema.dll: timestamp 0x51fb5005 (rc=VINF_SUCCESS)
20926dc.8e0: VirtualBox.exe: timestamp 0x54731167 (rc=VINF_SUCCESS)
21026dc.8e0: '\Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe' has no imports
21126dc.8e0: '\Device\HarddiskVolume1\Windows\System32\apisetschema.dll' has no imports
21226dc.8e0: '\Device\HarddiskVolume1\Windows\System32\ntdll.dll' has no imports
21326dc.8e0: supR3HardNtChildPurify: cFixes=1 g_fSupAdversaries=0x2 cPatchCount=0
21426dc.8e0: supR3HardNtChildPurify: Startup delay kludge #1/1: 520 ms, 65 sleeps
21526dc.8e0: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
21626dc.8e0: *0000000000000000-fffffffffffeffff 0x0001/0x0000 0x0000000
21726dc.8e0: *0000000000010000-fffffffffffeffff 0x0004/0x0004 0x0020000
21826dc.8e0: 0000000000030000-000000000001ffff 0x0001/0x0000 0x0000000
21926dc.8e0: *0000000000040000-000000000003bfff 0x0002/0x0002 0x0040000
22026dc.8e0: 0000000000044000-0000000000037fff 0x0001/0x0000 0x0000000
22126dc.8e0: *0000000000050000-000000000004efff 0x0004/0x0004 0x0020000
22226dc.8e0: 0000000000051000-0000000000041fff 0x0001/0x0000 0x0000000
22326dc.8e0: *0000000000060000-000000000005efff 0x0004/0x0004 0x0020000
22426dc.8e0: 0000000000061000-0000000000041fff 0x0001/0x0000 0x0000000
22526dc.8e0: *0000000000080000-fffffffffff83fff 0x0000/0x0004 0x0020000
22626dc.8e0: 000000000017c000-0000000000178fff 0x0104/0x0004 0x0020000
22726dc.8e0: 000000000017f000-000000000017dfff 0x0004/0x0004 0x0020000
22826dc.8e0: 0000000000180000-ffffffff8889ffff 0x0001/0x0000 0x0000000
22926dc.8e0: *0000000077a60000-0000000077a5efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
23026dc.8e0: 0000000077a61000-000000007795efff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
23126dc.8e0: 0000000077b63000-0000000077b33fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
23226dc.8e0: 0000000077b92000-0000000077b89fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
23326dc.8e0: 0000000077b9a000-0000000077b98fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
23426dc.8e0: 0000000077b9b000-0000000077b99fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
23526dc.8e0: 0000000077b9c000-0000000077b99fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
23626dc.8e0: 0000000077b9e000-0000000077b32fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
23726dc.8e0: 0000000077c09000-0000000070831fff 0x0001/0x0000 0x0000000
23826dc.8e0: *000000007efe0000-000000007dfdffff 0x0000/0x0002 0x0020000
23926dc.8e0: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000
24026dc.8e0: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000
24126dc.8e0: 000000007fff0000-ffffffffc05cffff 0x0001/0x0000 0x0000000
24226dc.8e0: *000000013fa10000-000000013fa0efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
24326dc.8e0: 000000013fa11000-000000013f98cfff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
24426dc.8e0: 000000013fa95000-000000013fa93fff 0x0040/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
24526dc.8e0: 000000013fa96000-000000013fa58fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
24626dc.8e0: 000000013fad3000-000000013fac8fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
24726dc.8e0: 000000013fadd000-000000013faa3fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe
24826dc.8e0: 000000013fb16000-fffff8037f8abfff 0x0001/0x0000 0x0000000
24926dc.8e0: *000007feffd80000-000007feffd7efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\apisetschema.dll
25026dc.8e0: 000007feffd81000-000007fdffb51fff 0x0001/0x0000 0x0000000
25126dc.8e0: *000007fffffb0000-000007fffff8cfff 0x0002/0x0002 0x0040000
25226dc.8e0: 000007fffffd3000-000007fffffc8fff 0x0001/0x0000 0x0000000
25326dc.8e0: *000007fffffdd000-000007fffffdafff 0x0004/0x0004 0x0020000
25426dc.8e0: *000007fffffdf000-000007fffffddfff 0x0004/0x0004 0x0020000
25526dc.8e0: *000007fffffe0000-000007fffffcffff 0x0001/0x0002 0x0020000
25626dc.8e0: supR3HardNtChildPurify: Done after 1064 ms and 1 fixes (loop #1).
25725b8.2844: Log file opened: 4.3.20r96997 g_hStartupLog=0000000000000004 g_uNtVerCombined=0x611db110
25825b8.2844: supR3HardenedVmProcessInit: uNtDllAddr=0000000077a60000
25926dc.8e0: supR3HardNtEnableThreadCreation:
26025b8.2844: ntdll.dll: timestamp 0x51fb164a (rc=VINF_SUCCESS)
26125b8.2844: New simple heap: #1 0000000000280000 LB 0x400000 (for 1740800 allocation)
26225b8.2844: System32: \Device\HarddiskVolume1\Windows\System32
26325b8.2844: WinSxS: \Device\HarddiskVolume1\Windows\winsxs
26425b8.2844: KnownDllPath: C:\Windows\system32
26525b8.2844: supR3HardenedVmProcessInit: Opening vboxdrv stub...
26625b8.2844: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
26725b8.2844: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
26825b8.2844: Registered Dll notification callback with NTDLL.
26925b8.2844: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\kernel32.dll)
27025b8.2844: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\kernel32.dll
27125b8.2844: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\kernel32.dll (Input=kernel32.dll, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000000:<flags> [calling]
27225b8.2844: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
27325b8.2844: supR3HardenedDllNotificationCallback: load 0000000077360000 LB 0x0011f000 C:\Windows\system32\kernel32.dll [fFlags=0x0]
27425b8.2844: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
27525b8.2844: supR3HardenedDllNotificationCallback: load 000007fefdf70000 LB 0x0006b000 C:\Windows\system32\KERNELBASE.dll [fFlags=0x0]
27625b8.2844: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\KernelBase.dll)
27725b8.2844: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\KernelBase.dll
27825b8.2844: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000077360000 'C:\Windows\system32\kernel32.dll'
27925b8.2844: supR3HardNtDisableThreadCreation: pvLdrInitThunk=0000000077a8c340 pvNtTerminateThread=0000000077ab17e0
28026dc.8e0: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 20 ms.
28125b8.2844: \SystemRoot\System32\ntdll.dll:
28225b8.2844: CreationTime: 2014-01-29T19:37:43.928253400Z
28325b8.2844: LastWriteTime: 2013-08-02T02:15:44.087554100Z
28425b8.2844: ChangeTime: 2014-01-29T20:20:44.781466400Z
28525b8.2844: FileAttributes: 0x20
28625b8.2844: Size: 0x1a6dc0
28725b8.2844: NT Headers: 0xe0
28825b8.2844: Timestamp: 0x51fb164a
28925b8.2844: Machine: 0x8664 - amd64
29025b8.2844: Timestamp: 0x51fb164a
29125b8.2844: Image Version: 6.1
29225b8.2844: SizeOfImage: 0x1a9000 (1740800)
29325b8.2844: Resource Dir: 0x151000 LB 0x560d8
29425b8.2844: ProductName: Microsoft® Windows® Operating System
29525b8.2844: ProductVersion: 6.1.7601.18229
29625b8.2844: FileVersion: 6.1.7601.18229 (win7sp1_gdr.130801-1533)
29725b8.2844: FileDescription: NT Layer DLL
29825b8.2844: \SystemRoot\System32\kernel32.dll:
29925b8.2844: CreationTime: 2014-04-16T17:57:48.640715700Z
30025b8.2844: LastWriteTime: 2014-03-04T09:44:00.336000000Z
30125b8.2844: ChangeTime: 2014-04-16T18:28:22.435803400Z
30225b8.2844: FileAttributes: 0x20
30325b8.2844: Size: 0x11c000
30425b8.2844: NT Headers: 0xe8
30525b8.2844: Timestamp: 0x5315a059
30625b8.2844: Machine: 0x8664 - amd64
30725b8.2844: Timestamp: 0x5315a059
30825b8.2844: Image Version: 6.1
30925b8.2844: SizeOfImage: 0x11f000 (1175552)
31025b8.2844: Resource Dir: 0x116000 LB 0x528
31125b8.2844: ProductName: Microsoft® Windows® Operating System
31225b8.2844: ProductVersion: 6.1.7601.18409
31325b8.2844: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144)
31425b8.2844: FileDescription: Windows NT BASE API Client DLL
31525b8.2844: \SystemRoot\System32\KernelBase.dll:
31625b8.2844: CreationTime: 2014-01-29T19:37:45.304028500Z
31725b8.2844: LastWriteTime: 2013-08-02T02:13:34.580000000Z
31825b8.2844: ChangeTime: 2014-01-29T20:20:45.639488400Z
31925b8.2844: FileAttributes: 0x20
32025b8.2844: Size: 0x67a00
32125b8.2844: NT Headers: 0xe8
32225b8.2844: Timestamp: 0x51fb1677
32325b8.2844: Machine: 0x8664 - amd64
32425b8.2844: Timestamp: 0x51fb1677
32525b8.2844: Image Version: 6.1
32625b8.2844: SizeOfImage: 0x6b000 (438272)
32725b8.2844: Resource Dir: 0x69000 LB 0x530
32825b8.2844: ProductName: Microsoft® Windows® Operating System
32925b8.2844: ProductVersion: 6.1.7601.18229
33025b8.2844: FileVersion: 6.1.7601.18229 (win7sp1_gdr.130801-1533)
33125b8.2844: FileDescription: Windows NT BASE API Client DLL
33225b8.2844: \SystemRoot\System32\apisetschema.dll:
33325b8.2844: CreationTime: 2014-01-29T19:37:47.254418500Z
33425b8.2844: LastWriteTime: 2013-08-02T06:20:45.851000000Z
33525b8.2844: ChangeTime: 2014-01-29T20:20:44.625462400Z
33625b8.2844: FileAttributes: 0x20
33725b8.2844: Size: 0x1a00
33825b8.2844: NT Headers: 0xc0
33925b8.2844: Timestamp: 0x51fb5005
34025b8.2844: Machine: 0x8664 - amd64
34125b8.2844: Timestamp: 0x51fb5005
34225b8.2844: Image Version: 6.1
34325b8.2844: SizeOfImage: 0x50000 (327680)
34425b8.2844: Resource Dir: 0x30000 LB 0x3f8
34525b8.2844: ProductName: Microsoft® Windows® Operating System
34625b8.2844: ProductVersion: 6.1.7601.22411
34725b8.2844: FileVersion: 6.1.7601.22411 (win7sp1_ldr.130801-1934)
34825b8.2844: FileDescription: ApiSet Schema DLL
34925b8.2844: Found driver SymNetS (0x2)
35025b8.2844: Found driver SymDS (0x2)
35125b8.2844: Found driver SRTSPX (0x2)
35225b8.2844: Found driver SymEvent (0x2)
35325b8.2844: Found driver SymIRON (0x2)
35425b8.2844: supR3HardenedWinFindAdversaries: 0x2
35525b8.2844: \SystemRoot\System32\drivers\SysPlant.sys:
35625b8.2844: CreationTime: 2014-04-22T20:12:36.053609800Z
35725b8.2844: LastWriteTime: 2014-04-22T20:12:36.069209800Z
35825b8.2844: ChangeTime: 2014-04-22T20:12:36.069209800Z
35925b8.2844: FileAttributes: 0x20
36025b8.2844: Size: 0x25ed8
36125b8.2844: NT Headers: 0x100
36225b8.2844: Timestamp: 0x52647ffd
36325b8.2844: Machine: 0x8664 - amd64
36425b8.2844: Timestamp: 0x52647ffd
36525b8.2844: Image Version: 5.0
36625b8.2844: SizeOfImage: 0x2e000 (188416)
36725b8.2844: Resource Dir: 0x2c000 LB 0x498
36825b8.2844: ProductName: Symantec CMC Firewall
36925b8.2844: ProductVersion: 12.1.4013.4013
37025b8.2844: FileVersion: 12.1.4013.4013
37125b8.2844: FileDescription: Symantec CMC Firewall SysPlant
37225b8.2844: \SystemRoot\System32\sysfer.dll:
37325b8.2844: CreationTime: 2014-04-22T20:12:36.053609800Z
37425b8.2844: LastWriteTime: 2014-04-22T20:12:36.053609800Z
37525b8.2844: ChangeTime: 2014-04-22T20:12:36.053609800Z
37625b8.2844: FileAttributes: 0x20
37725b8.2844: Size: 0x70190
37825b8.2844: NT Headers: 0xe8
37925b8.2844: Timestamp: 0x526480b2
38025b8.2844: Machine: 0x8664 - amd64
38125b8.2844: Timestamp: 0x526480b2
38225b8.2844: Image Version: 0.0
38325b8.2844: SizeOfImage: 0x87000 (552960)
38425b8.2844: Resource Dir: 0x85000 LB 0x630
38525b8.2844: ProductName: Symantec CMC Firewall
38625b8.2844: ProductVersion: 12.1.4013.4013
38725b8.2844: FileVersion: 12.1.4013.4013
38825b8.2844: FileDescription: Symantec CMC Firewall sysfer
38925b8.2844: \SystemRoot\System32\sysferThunk.dll:
39025b8.2844: CreationTime: 2014-04-22T20:12:36.053609800Z
39125b8.2844: LastWriteTime: 2014-04-22T20:12:36.053609800Z
39225b8.2844: ChangeTime: 2014-04-22T20:12:36.053609800Z
39325b8.2844: FileAttributes: 0x20
39425b8.2844: Size: 0x2f90
39525b8.2844: NT Headers: 0xd0
39625b8.2844: Timestamp: 0x526480b3
39725b8.2844: Machine: 0x8664 - amd64
39825b8.2844: Timestamp: 0x526480b3
39925b8.2844: Image Version: 0.0
40025b8.2844: SizeOfImage: 0x8000 (32768)
40125b8.2844: Resource Dir: 0x6000 LB 0x648
40225b8.2844: ProductName: Symantec CMC Firewall
40325b8.2844: ProductVersion: 12.1.4013.4013
40425b8.2844: FileVersion: 12.1.4013.4013
40525b8.2844: FileDescription: Symantec CMC Firewall SysferThunk
40625b8.2844: \SystemRoot\System32\drivers\symevent64x86.sys:
40725b8.2844: CreationTime: 2013-10-09T20:14:44.144924800Z
40825b8.2844: LastWriteTime: 2014-04-22T20:11:05.189614400Z
40925b8.2844: ChangeTime: 2014-04-22T20:11:05.189614400Z
41025b8.2844: FileAttributes: 0x20
41125b8.2844: Size: 0x2b658
41225b8.2844: NT Headers: 0xe8
41325b8.2844: Timestamp: 0x51f32ff2
41425b8.2844: Machine: 0x8664 - amd64
41525b8.2844: Timestamp: 0x51f32ff2
41625b8.2844: Image Version: 6.0
41725b8.2844: SizeOfImage: 0x38000 (229376)
41825b8.2844: Resource Dir: 0x36000 LB 0x3c8
41925b8.2844: ProductName: SYMEVENT
42025b8.2844: ProductVersion: 12.9.5.2
42125b8.2844: FileVersion: 12.9.5.2
42225b8.2844: FileDescription: Symantec Event Library
42325b8.2844: Calling main()
42425b8.2844: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
42525b8.2844: '\Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe' has no imports
42625b8.2844: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Program Files\Oracle VM VirtualBox\VirtualBox.exe)
42725b8.2844: SUPR3HardenedMain: Respawn #2
42825b8.2844: supR3HardNtEnableThreadCreation:
42925b8.2844: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\apphelp.dll)
43025b8.2844: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\apphelp.dll
43125b8.2844: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\apphelp.dll (rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000000:<flags> [calling]
43225b8.2844: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\apphelp.dll [lacks WinVerifyTrust]
43325b8.2844: supR3HardenedDllNotificationCallback: load 000007fefdd90000 LB 0x00057000 C:\Windows\system32\apphelp.dll [fFlags=0x0]
43425b8.2844: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\apphelp.dll [lacks WinVerifyTrust]
43525b8.2844: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefdd90000 'C:\Windows\system32\apphelp.dll'

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy