VirtualBox

Ticket #13755: VBoxStartup.log

File VBoxStartup.log, 152.7 KB (added by shadow1305, 10 years ago)

Log

Line 
11fb8.1a6c: Log file opened: 4.3.20r96997 g_hStartupLog=0000000000000018 g_uNtVerCombined=0x611db110
21fb8.1a6c: \SystemRoot\System32\ntdll.dll:
31fb8.1a6c: CreationTime: 2013-11-01T11:05:44.243638200Z
41fb8.1a6c: LastWriteTime: 2013-08-29T02:16:35.515578900Z
51fb8.1a6c: ChangeTime: 2013-11-01T13:14:07.131567700Z
61fb8.1a6c: FileAttributes: 0x20
71fb8.1a6c: Size: 0x1a6dc0
81fb8.1a6c: NT Headers: 0xe0
91fb8.1a6c: Timestamp: 0x521eaf24
101fb8.1a6c: Machine: 0x8664 - amd64
111fb8.1a6c: Timestamp: 0x521eaf24
121fb8.1a6c: Image Version: 6.1
131fb8.1a6c: SizeOfImage: 0x1a9000 (1740800)
141fb8.1a6c: Resource Dir: 0x151000 LB 0x560d8
151fb8.1a6c: ProductName: Microsoft® Windows® Operating System
161fb8.1a6c: ProductVersion: 6.1.7601.18247
171fb8.1a6c: FileVersion: 6.1.7601.18247 (win7sp1_gdr.130828-1532)
181fb8.1a6c: FileDescription: NT Layer DLL
191fb8.1a6c: \SystemRoot\System32\kernel32.dll:
201fb8.1a6c: CreationTime: 2014-04-09T06:11:53.781814400Z
211fb8.1a6c: LastWriteTime: 2014-03-04T09:44:00.336000000Z
221fb8.1a6c: ChangeTime: 2014-04-14T05:43:51.462211400Z
231fb8.1a6c: FileAttributes: 0x20
241fb8.1a6c: Size: 0x11c000
251fb8.1a6c: NT Headers: 0xe8
261fb8.1a6c: Timestamp: 0x5315a059
271fb8.1a6c: Machine: 0x8664 - amd64
281fb8.1a6c: Timestamp: 0x5315a059
291fb8.1a6c: Image Version: 6.1
301fb8.1a6c: SizeOfImage: 0x11f000 (1175552)
311fb8.1a6c: Resource Dir: 0x116000 LB 0x528
321fb8.1a6c: ProductName: Microsoft® Windows® Operating System
331fb8.1a6c: ProductVersion: 6.1.7601.18409
341fb8.1a6c: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144)
351fb8.1a6c: FileDescription: Windows NT BASE API Client DLL
361fb8.1a6c: \SystemRoot\System32\KernelBase.dll:
371fb8.1a6c: CreationTime: 2014-05-15T05:31:21.478784500Z
381fb8.1a6c: LastWriteTime: 2014-03-04T09:44:00.336000000Z
391fb8.1a6c: ChangeTime: 2014-05-16T05:04:13.427627900Z
401fb8.1a6c: FileAttributes: 0x20
411fb8.1a6c: Size: 0x67c00
421fb8.1a6c: NT Headers: 0xe8
431fb8.1a6c: Timestamp: 0x5315a05a
441fb8.1a6c: Machine: 0x8664 - amd64
451fb8.1a6c: Timestamp: 0x5315a05a
461fb8.1a6c: Image Version: 6.1
471fb8.1a6c: SizeOfImage: 0x6c000 (442368)
481fb8.1a6c: Resource Dir: 0x6a000 LB 0x530
491fb8.1a6c: ProductName: Microsoft® Windows® Operating System
501fb8.1a6c: ProductVersion: 6.1.7601.18409
511fb8.1a6c: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144)
521fb8.1a6c: FileDescription: Windows NT BASE API Client DLL
531fb8.1a6c: \SystemRoot\System32\apisetschema.dll:
541fb8.1a6c: CreationTime: 2013-11-01T11:07:25.144615500Z
551fb8.1a6c: LastWriteTime: 2013-08-02T02:12:20.275000000Z
561fb8.1a6c: ChangeTime: 2013-11-01T13:14:22.762795100Z
571fb8.1a6c: FileAttributes: 0x20
581fb8.1a6c: Size: 0x1a00
591fb8.1a6c: NT Headers: 0xc0
601fb8.1a6c: Timestamp: 0x51fb15ca
611fb8.1a6c: Machine: 0x8664 - amd64
621fb8.1a6c: Timestamp: 0x51fb15ca
631fb8.1a6c: Image Version: 6.1
641fb8.1a6c: SizeOfImage: 0x50000 (327680)
651fb8.1a6c: Resource Dir: 0x30000 LB 0x3f8
661fb8.1a6c: ProductName: Microsoft® Windows® Operating System
671fb8.1a6c: ProductVersion: 6.1.7601.18229
681fb8.1a6c: FileVersion: 6.1.7601.18229 (win7sp1_gdr.130801-1533)
691fb8.1a6c: FileDescription: ApiSet Schema DLL
701fb8.1a6c: Found driver aswVmm (0x4)
711fb8.1a6c: Found driver aswHwid (0x4)
721fb8.1a6c: Found driver aswStm (0x4)
731fb8.1a6c: Found driver aswRvrt (0x4)
741fb8.1a6c: supR3HardenedWinFindAdversaries: 0x4
751fb8.1a6c: \SystemRoot\System32\drivers\aswHwid.sys:
761fb8.1a6c: CreationTime: 2014-04-28T05:17:42.644695500Z
771fb8.1a6c: LastWriteTime: 2014-11-21T10:26:54.952853600Z
781fb8.1a6c: ChangeTime: 2014-11-21T10:27:06.949539800Z
791fb8.1a6c: FileAttributes: 0x20
801fb8.1a6c: Size: 0x7218
811fb8.1a6c: NT Headers: 0xe8
821fb8.1a6c: Timestamp: 0x545b6fa5
831fb8.1a6c: Machine: 0x8664 - amd64
841fb8.1a6c: Timestamp: 0x545b6fa5
851fb8.1a6c: Image Version: 6.0
861fb8.1a6c: SizeOfImage: 0xa000 (40960)
871fb8.1a6c: Resource Dir: 0x8000 LB 0x460
881fb8.1a6c: ProductName: Avast Antivirus
891fb8.1a6c: ProductVersion: 10.0.2208.712
901fb8.1a6c: FileVersion: 10.0.2208.712
911fb8.1a6c: SpecialBuild: feb2012
921fb8.1a6c: PrivateBuild: 0SpecialBuild
931fb8.1a6c: FileDescription: avast! HWID
941fb8.1a6c: \SystemRoot\System32\drivers\aswMonFlt.sys:
951fb8.1a6c: CreationTime: 2013-11-07T06:17:54.604342100Z
961fb8.1a6c: LastWriteTime: 2014-11-21T10:26:55.146864700Z
971fb8.1a6c: ChangeTime: 2014-11-21T10:27:06.949539800Z
981fb8.1a6c: FileAttributes: 0x20
991fb8.1a6c: Size: 0x14550
1001fb8.1a6c: NT Headers: 0xe8
1011fb8.1a6c: Timestamp: 0x545b6f33
1021fb8.1a6c: Machine: 0x8664 - amd64
1031fb8.1a6c: Timestamp: 0x545b6f33
1041fb8.1a6c: Image Version: 6.0
1051fb8.1a6c: SizeOfImage: 0x22000 (139264)
1061fb8.1a6c: Resource Dir: 0x20000 LB 0x3b8
1071fb8.1a6c: ProductName: Avast Antivirus
1081fb8.1a6c: ProductVersion: 10.0.2208.712
1091fb8.1a6c: FileVersion: 10.0.2208.712
1101fb8.1a6c: FileDescription: avast! File System Minifilter for Windows 2003/Vista
1111fb8.1a6c: \SystemRoot\System32\drivers\aswRdr2.sys:
1121fb8.1a6c: CreationTime: 2013-11-07T06:17:54.122314600Z
1131fb8.1a6c: LastWriteTime: 2014-11-21T10:26:52.758728100Z
1141fb8.1a6c: ChangeTime: 2014-11-21T10:27:06.949539800Z
1151fb8.1a6c: FileAttributes: 0x20
1161fb8.1a6c: Size: 0x16d80
1171fb8.1a6c: NT Headers: 0xf0
1181fb8.1a6c: Timestamp: 0x545b6f6a
1191fb8.1a6c: Machine: 0x8664 - amd64
1201fb8.1a6c: Timestamp: 0x545b6f6a
1211fb8.1a6c: Image Version: 6.1
1221fb8.1a6c: SizeOfImage: 0x1a000 (106496)
1231fb8.1a6c: Resource Dir: 0x18000 LB 0x3a0
1241fb8.1a6c: ProductName: Avast Antivirus
1251fb8.1a6c: ProductVersion: 10.0.2208.712
1261fb8.1a6c: FileVersion: 10.0.2208.712 built by: WinDDK
1271fb8.1a6c: FileDescription: avast! WFP Redirect Driver
1281fb8.1a6c: \SystemRoot\System32\drivers\aswRvrt.sys:
1291fb8.1a6c: CreationTime: 2013-11-07T06:17:55.705405100Z
1301fb8.1a6c: LastWriteTime: 2014-11-21T10:26:55.225869200Z
1311fb8.1a6c: ChangeTime: 2014-11-21T10:27:06.949539800Z
1321fb8.1a6c: FileAttributes: 0x20
1331fb8.1a6c: Size: 0x100f0
1341fb8.1a6c: NT Headers: 0xf8
1351fb8.1a6c: Timestamp: 0x545b6f42
1361fb8.1a6c: Machine: 0x8664 - amd64
1371fb8.1a6c: Timestamp: 0x545b6f42
1381fb8.1a6c: Image Version: 6.0
1391fb8.1a6c: SizeOfImage: 0x13000 (77824)
1401fb8.1a6c: Resource Dir: 0x11000 LB 0x468
1411fb8.1a6c: ProductName: Avast Antivirus
1421fb8.1a6c: ProductVersion: 10.0.2208.712
1431fb8.1a6c: FileVersion: 10.0.2208.712
1441fb8.1a6c: SpecialBuild: feb2012
1451fb8.1a6c: PrivateBuild: 0SpecialBuild
1461fb8.1a6c: FileDescription: avast! Revert
1471fb8.1a6c: \SystemRoot\System32\drivers\aswSnx.sys:
1481fb8.1a6c: CreationTime: 2013-11-07T06:17:55.497393200Z
1491fb8.1a6c: LastWriteTime: 2014-11-24T06:03:14.214882600Z
1501fb8.1a6c: ChangeTime: 2014-11-24T06:03:14.214882600Z
1511fb8.1a6c: FileAttributes: 0x20
1521fb8.1a6c: Size: 0x100740
1531fb8.1a6c: NT Headers: 0xf0
1541fb8.1a6c: Timestamp: 0x546f1f38
1551fb8.1a6c: Machine: 0x8664 - amd64
1561fb8.1a6c: Timestamp: 0x546f1f38
1571fb8.1a6c: Image Version: 6.0
1581fb8.1a6c: SizeOfImage: 0x104000 (1064960)
1591fb8.1a6c: Resource Dir: 0xfc000 LB 0x380
1601fb8.1a6c: ProductName: Avast Antivirus
1611fb8.1a6c: ProductVersion: 10.0.2208.722
1621fb8.1a6c: FileVersion: 10.0.2208.722
1631fb8.1a6c: FileDescription: avast! Virtualization Driver
1641fb8.1a6c: \SystemRoot\System32\drivers\aswsp.sys:
1651fb8.1a6c: CreationTime: 2013-11-07T06:17:55.114371300Z
1661fb8.1a6c: LastWriteTime: 2014-11-21T10:26:55.558888300Z
1671fb8.1a6c: ChangeTime: 2014-11-21T10:27:06.950539800Z
1681fb8.1a6c: FileAttributes: 0x20
1691fb8.1a6c: Size: 0x6a990
1701fb8.1a6c: NT Headers: 0x100
1711fb8.1a6c: Timestamp: 0x545b7323
1721fb8.1a6c: Machine: 0x8664 - amd64
1731fb8.1a6c: Timestamp: 0x545b7323
1741fb8.1a6c: Image Version: 6.0
1751fb8.1a6c: SizeOfImage: 0x71000 (462848)
1761fb8.1a6c: Resource Dir: 0x6f000 LB 0x378
1771fb8.1a6c: ProductName: Avast Antivirus
1781fb8.1a6c: ProductVersion: 10.0.2208.712
1791fb8.1a6c: FileVersion: 10.0.2208.712
1801fb8.1a6c: FileDescription: avast! self protection module
1811fb8.1a6c: \SystemRoot\System32\drivers\aswStm.sys:
1821fb8.1a6c: CreationTime: 2013-12-30T06:13:02.878184400Z
1831fb8.1a6c: LastWriteTime: 2014-11-21T10:26:56.615948700Z
1841fb8.1a6c: ChangeTime: 2014-11-21T10:27:06.950539800Z
1851fb8.1a6c: FileAttributes: 0x20
1861fb8.1a6c: Size: 0x1c7f8
1871fb8.1a6c: NT Headers: 0x110
1881fb8.1a6c: Timestamp: 0x545b7364
1891fb8.1a6c: Machine: 0x8664 - amd64
1901fb8.1a6c: Timestamp: 0x545b7364
1911fb8.1a6c: Image Version: 6.2
1921fb8.1a6c: SizeOfImage: 0x1f000 (126976)
1931fb8.1a6c: Resource Dir: 0x1d000 LB 0x358
1941fb8.1a6c: ProductName: Avast Antivirus
1951fb8.1a6c: ProductVersion: 10.0.2208.712
1961fb8.1a6c: FileVersion: 10.0.2208.712
1971fb8.1a6c: FileDescription: Stream Filter
1981fb8.1a6c: \SystemRoot\System32\drivers\aswVmm.sys:
1991fb8.1a6c: CreationTime: 2013-11-07T06:17:55.938418400Z
2001fb8.1a6c: LastWriteTime: 2014-11-21T10:26:55.808902600Z
2011fb8.1a6c: ChangeTime: 2014-11-21T10:27:06.950539800Z
2021fb8.1a6c: FileAttributes: 0x20
2031fb8.1a6c: Size: 0x41570
2041fb8.1a6c: NT Headers: 0xf0
2051fb8.1a6c: Timestamp: 0x545b6f4b
2061fb8.1a6c: Machine: 0x8664 - amd64
2071fb8.1a6c: Timestamp: 0x545b6f4b
2081fb8.1a6c: Image Version: 6.0
2091fb8.1a6c: SizeOfImage: 0x43000 (274432)
2101fb8.1a6c: Resource Dir: 0x40000 LB 0x470
2111fb8.1a6c: ProductName: Avast Antivirus
2121fb8.1a6c: ProductVersion: 10.0.2208.712
2131fb8.1a6c: FileVersion: 10.0.2208.712
2141fb8.1a6c: SpecialBuild: feb2012
2151fb8.1a6c: PrivateBuild: 0SpecialBuild
2161fb8.1a6c: FileDescription: avast! VM Monitor
2171fb8.1a6c: Calling main()
2181fb8.1a6c: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
2191fb8.1a6c: SUPR3HardenedMain: Respawn #1
2201fb8.1a6c: System32: \Device\HarddiskVolume3\Windows\System32
2211fb8.1a6c: WinSxS: \Device\HarddiskVolume3\Windows\winsxs
2221fb8.1a6c: KnownDllPath: C:\Windows\system32
2231fb8.1a6c: '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
2241fb8.1a6c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe)
2251fb8.1a6c: supR3HardNtEnableThreadCreation:
2261fb8.1a6c: supR3HardNtDisableThreadCreation: pvLdrInitThunk=000000007770c340 pvNtTerminateThread=00000000777317e0
2271fb8.1a6c: supR3HardenedWinDoReSpawn(1): New child 1dbc.1dc4 [kernel32].
2281fb8.1a6c: supR3HardNtChildGatherData: PebBaseAddress=000007fffffd9000 cbPeb=0x380
2291fb8.1a6c: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00000000776e0000 uNtDllChildAddr=00000000776e0000
2301fb8.1a6c: supR3HardenedWinSetupChildInit: uLdrInitThunk=000000007770c340
2311fb8.1a6c: supR3HardenedWinSetupChildInit: Start child.
2321fb8.1a6c: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 0 ms.
2331fb8.1a6c: supR3HardNtChildPurify: Startup delay kludge #1/0: 520 ms, 65 sleeps
2341fb8.1a6c: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
2351fb8.1a6c: *0000000000000000-fffffffffffeffff 0x0001/0x0000 0x0000000
2361fb8.1a6c: *0000000000010000-fffffffffffeffff 0x0004/0x0004 0x0020000
2371fb8.1a6c: *0000000000030000-000000000002bfff 0x0002/0x0002 0x0040000
2381fb8.1a6c: 0000000000034000-0000000000027fff 0x0001/0x0000 0x0000000
2391fb8.1a6c: *0000000000040000-000000000003efff 0x0004/0x0004 0x0020000
2401fb8.1a6c: 0000000000041000-0000000000031fff 0x0001/0x0000 0x0000000
2411fb8.1a6c: *0000000000050000-000000000004efff 0x0004/0x0004 0x0020000
2421fb8.1a6c: 0000000000051000-fffffffffffb1fff 0x0001/0x0000 0x0000000
2431fb8.1a6c: *00000000000f0000-ffffffffffff3fff 0x0000/0x0004 0x0020000
2441fb8.1a6c: 00000000001ec000-00000000001e8fff 0x0104/0x0004 0x0020000
2451fb8.1a6c: 00000000001ef000-00000000001edfff 0x0004/0x0004 0x0020000
2461fb8.1a6c: 00000000001f0000-ffffffff88cfffff 0x0001/0x0000 0x0000000
2471fb8.1a6c: *00000000776e0000-00000000776defff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
2481fb8.1a6c: 00000000776e1000-00000000775defff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
2491fb8.1a6c: 00000000777e3000-00000000777b3fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
2501fb8.1a6c: 0000000077812000-0000000077809fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
2511fb8.1a6c: 000000007781a000-0000000077818fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
2521fb8.1a6c: 000000007781b000-0000000077817fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
2531fb8.1a6c: 000000007781e000-00000000777b2fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
2541fb8.1a6c: 0000000077889000-0000000070131fff 0x0001/0x0000 0x0000000
2551fb8.1a6c: *000000007efe0000-000000007dfdffff 0x0000/0x0002 0x0020000
2561fb8.1a6c: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000
2571fb8.1a6c: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000
2581fb8.1a6c: 000000007fff0000-ffffffffc00cffff 0x0001/0x0000 0x0000000
2591fb8.1a6c: *000000013ff10000-000000013ff0efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
2601fb8.1a6c: 000000013ff11000-000000013fe8cfff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
2611fb8.1a6c: 000000013ff95000-000000013ff93fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
2621fb8.1a6c: 000000013ff96000-000000013ff58fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
2631fb8.1a6c: 000000013ffd3000-000000013ffd1fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
2641fb8.1a6c: 000000013ffd4000-000000013ffd2fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
2651fb8.1a6c: 000000013ffd5000-000000013ffd2fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
2661fb8.1a6c: 000000013ffd7000-000000013ffd5fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
2671fb8.1a6c: 000000013ffd8000-000000013ffd6fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
2681fb8.1a6c: 000000013ffd9000-000000013ffd4fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
2691fb8.1a6c: 000000013ffdd000-000000013ffa3fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
2701fb8.1a6c: 0000000140016000-fffff8038062bfff 0x0001/0x0000 0x0000000
2711fb8.1a6c: *000007feffa00000-000007feff9fefff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\apisetschema.dll
2721fb8.1a6c: 000007feffa01000-000007fdff451fff 0x0001/0x0000 0x0000000
2731fb8.1a6c: *000007fffffb0000-000007fffff8cfff 0x0002/0x0002 0x0040000
2741fb8.1a6c: 000007fffffd3000-000007fffffccfff 0x0001/0x0000 0x0000000
2751fb8.1a6c: *000007fffffd9000-000007fffffd7fff 0x0004/0x0004 0x0020000
2761fb8.1a6c: 000007fffffda000-000007fffffd5fff 0x0001/0x0000 0x0000000
2771fb8.1a6c: *000007fffffde000-000007fffffdbfff 0x0004/0x0004 0x0020000
2781fb8.1a6c: *000007fffffe0000-000007fffffcffff 0x0001/0x0002 0x0020000
2791fb8.1a6c: apisetschema.dll: timestamp 0x51fb15ca (rc=VINF_SUCCESS)
2801fb8.1a6c: VirtualBox.exe: timestamp 0x54731167 (rc=VINF_SUCCESS)
2811fb8.1a6c: '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
2821fb8.1a6c: '\Device\HarddiskVolume3\Windows\System32\apisetschema.dll' has no imports
2831fb8.1a6c: '\Device\HarddiskVolume3\Windows\System32\ntdll.dll' has no imports
2841fb8.1a6c: supR3HardNtChildPurify: Done after 554 ms and 0 fixes (loop #0).
2851dbc.1dc4: Log file opened: 4.3.20r96997 g_hStartupLog=0000000000000004 g_uNtVerCombined=0x611db110
2861dbc.1dc4: supR3HardenedVmProcessInit: uNtDllAddr=00000000776e0000
2871dbc.1dc4: ntdll.dll: timestamp 0x521eaf24 (rc=VINF_SUCCESS)
2881dbc.1dc4: New simple heap: #1 00000000002f0000 LB 0x400000 (for 1740800 allocation)
2891dbc.1dc4: System32: \Device\HarddiskVolume3\Windows\System32
2901dbc.1dc4: WinSxS: \Device\HarddiskVolume3\Windows\winsxs
2911dbc.1dc4: KnownDllPath: C:\Windows\system32
2921dbc.1dc4: supR3HardenedVmProcessInit: Opening vboxdrv stub...
2931fb8.1a6c: supR3HardNtEnableThreadCreation:
2941dbc.1dc4: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
2951dbc.1dc4: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
2961dbc.1dc4: Registered Dll notification callback with NTDLL.
2971dbc.1dc4: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\kernel32.dll)
2981dbc.1dc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\kernel32.dll
2991dbc.1dc4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\kernel32.dll (Input=kernel32.dll, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000000:<flags> [calling]
3001dbc.1dc4: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
3011dbc.1dc4: supR3HardenedDllNotificationCallback: load 00000000774c0000 LB 0x0011f000 C:\Windows\system32\kernel32.dll [fFlags=0x0]
3021dbc.1dc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
3031dbc.1dc4: supR3HardenedDllNotificationCallback: load 000007fefd660000 LB 0x0006c000 C:\Windows\system32\KERNELBASE.dll [fFlags=0x0]
3041dbc.1dc4: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\KernelBase.dll)
3051dbc.1dc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\KernelBase.dll
3061dbc.1dc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00000000774c0000 'C:\Windows\system32\kernel32.dll'
3071dbc.1dc4: supR3HardNtDisableThreadCreation: pvLdrInitThunk=000000007770c340 pvNtTerminateThread=00000000777317e0
3081dbc.1dc4: \SystemRoot\System32\ntdll.dll:
3091dbc.1dc4: CreationTime: 2013-11-01T11:05:44.243638200Z
3101dbc.1dc4: LastWriteTime: 2013-08-29T02:16:35.515578900Z
3111dbc.1dc4: ChangeTime: 2013-11-01T13:14:07.131567700Z
3121dbc.1dc4: FileAttributes: 0x20
3131dbc.1dc4: Size: 0x1a6dc0
3141dbc.1dc4: NT Headers: 0xe0
3151dbc.1dc4: Timestamp: 0x521eaf24
3161dbc.1dc4: Machine: 0x8664 - amd64
3171dbc.1dc4: Timestamp: 0x521eaf24
3181dbc.1dc4: Image Version: 6.1
3191dbc.1dc4: SizeOfImage: 0x1a9000 (1740800)
3201dbc.1dc4: Resource Dir: 0x151000 LB 0x560d8
3211fb8.1a6c: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 21 ms.
3221dbc.1dc4: ProductName: Microsoft® Windows® Operating System
3231dbc.1dc4: ProductVersion: 6.1.7601.18247
3241dbc.1dc4: FileVersion: 6.1.7601.18247 (win7sp1_gdr.130828-1532)
3251dbc.1dc4: FileDescription: NT Layer DLL
3261dbc.1dc4: \SystemRoot\System32\kernel32.dll:
3271dbc.1dc4: CreationTime: 2014-04-09T06:11:53.781814400Z
3281dbc.1dc4: LastWriteTime: 2014-03-04T09:44:00.336000000Z
3291dbc.1dc4: ChangeTime: 2014-04-14T05:43:51.462211400Z
3301dbc.1dc4: FileAttributes: 0x20
3311dbc.1dc4: Size: 0x11c000
3321dbc.1dc4: NT Headers: 0xe8
3331dbc.1dc4: Timestamp: 0x5315a059
3341dbc.1dc4: Machine: 0x8664 - amd64
3351dbc.1dc4: Timestamp: 0x5315a059
3361dbc.1dc4: Image Version: 6.1
3371dbc.1dc4: SizeOfImage: 0x11f000 (1175552)
3381dbc.1dc4: Resource Dir: 0x116000 LB 0x528
3391dbc.1dc4: ProductName: Microsoft® Windows® Operating System
3401dbc.1dc4: ProductVersion: 6.1.7601.18409
3411dbc.1dc4: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144)
3421dbc.1dc4: FileDescription: Windows NT BASE API Client DLL
3431dbc.1dc4: \SystemRoot\System32\KernelBase.dll:
3441dbc.1dc4: CreationTime: 2014-05-15T05:31:21.478784500Z
3451dbc.1dc4: LastWriteTime: 2014-03-04T09:44:00.336000000Z
3461dbc.1dc4: ChangeTime: 2014-05-16T05:04:13.427627900Z
3471dbc.1dc4: FileAttributes: 0x20
3481dbc.1dc4: Size: 0x67c00
3491dbc.1dc4: NT Headers: 0xe8
3501dbc.1dc4: Timestamp: 0x5315a05a
3511dbc.1dc4: Machine: 0x8664 - amd64
3521dbc.1dc4: Timestamp: 0x5315a05a
3531dbc.1dc4: Image Version: 6.1
3541dbc.1dc4: SizeOfImage: 0x6c000 (442368)
3551dbc.1dc4: Resource Dir: 0x6a000 LB 0x530
3561dbc.1dc4: ProductName: Microsoft® Windows® Operating System
3571dbc.1dc4: ProductVersion: 6.1.7601.18409
3581dbc.1dc4: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144)
3591dbc.1dc4: FileDescription: Windows NT BASE API Client DLL
3601dbc.1dc4: \SystemRoot\System32\apisetschema.dll:
3611dbc.1dc4: CreationTime: 2013-11-01T11:07:25.144615500Z
3621dbc.1dc4: LastWriteTime: 2013-08-02T02:12:20.275000000Z
3631dbc.1dc4: ChangeTime: 2013-11-01T13:14:22.762795100Z
3641dbc.1dc4: FileAttributes: 0x20
3651dbc.1dc4: Size: 0x1a00
3661dbc.1dc4: NT Headers: 0xc0
3671dbc.1dc4: Timestamp: 0x51fb15ca
3681dbc.1dc4: Machine: 0x8664 - amd64
3691dbc.1dc4: Timestamp: 0x51fb15ca
3701dbc.1dc4: Image Version: 6.1
3711dbc.1dc4: SizeOfImage: 0x50000 (327680)
3721dbc.1dc4: Resource Dir: 0x30000 LB 0x3f8
3731dbc.1dc4: ProductName: Microsoft® Windows® Operating System
3741dbc.1dc4: ProductVersion: 6.1.7601.18229
3751dbc.1dc4: FileVersion: 6.1.7601.18229 (win7sp1_gdr.130801-1533)
3761dbc.1dc4: FileDescription: ApiSet Schema DLL
3771dbc.1dc4: Found driver aswVmm (0x4)
3781dbc.1dc4: Found driver aswHwid (0x4)
3791dbc.1dc4: Found driver aswStm (0x4)
3801dbc.1dc4: Found driver aswRvrt (0x4)
3811dbc.1dc4: supR3HardenedWinFindAdversaries: 0x4
3821dbc.1dc4: \SystemRoot\System32\drivers\aswHwid.sys:
3831dbc.1dc4: CreationTime: 2014-04-28T05:17:42.644695500Z
3841dbc.1dc4: LastWriteTime: 2014-11-21T10:26:54.952853600Z
3851dbc.1dc4: ChangeTime: 2014-11-21T10:27:06.949539800Z
3861dbc.1dc4: FileAttributes: 0x20
3871dbc.1dc4: Size: 0x7218
3881dbc.1dc4: NT Headers: 0xe8
3891dbc.1dc4: Timestamp: 0x545b6fa5
3901dbc.1dc4: Machine: 0x8664 - amd64
3911dbc.1dc4: Timestamp: 0x545b6fa5
3921dbc.1dc4: Image Version: 6.0
3931dbc.1dc4: SizeOfImage: 0xa000 (40960)
3941dbc.1dc4: Resource Dir: 0x8000 LB 0x460
3951dbc.1dc4: ProductName: Avast Antivirus
3961dbc.1dc4: ProductVersion: 10.0.2208.712
3971dbc.1dc4: FileVersion: 10.0.2208.712
3981dbc.1dc4: SpecialBuild: feb2012
3991dbc.1dc4: PrivateBuild: 0SpecialBuild
4001dbc.1dc4: FileDescription: avast! HWID
4011dbc.1dc4: \SystemRoot\System32\drivers\aswMonFlt.sys:
4021dbc.1dc4: CreationTime: 2013-11-07T06:17:54.604342100Z
4031dbc.1dc4: LastWriteTime: 2014-11-21T10:26:55.146864700Z
4041dbc.1dc4: ChangeTime: 2014-11-21T10:27:06.949539800Z
4051dbc.1dc4: FileAttributes: 0x20
4061dbc.1dc4: Size: 0x14550
4071dbc.1dc4: NT Headers: 0xe8
4081dbc.1dc4: Timestamp: 0x545b6f33
4091dbc.1dc4: Machine: 0x8664 - amd64
4101dbc.1dc4: Timestamp: 0x545b6f33
4111dbc.1dc4: Image Version: 6.0
4121dbc.1dc4: SizeOfImage: 0x22000 (139264)
4131dbc.1dc4: Resource Dir: 0x20000 LB 0x3b8
4141dbc.1dc4: ProductName: Avast Antivirus
4151dbc.1dc4: ProductVersion: 10.0.2208.712
4161dbc.1dc4: FileVersion: 10.0.2208.712
4171dbc.1dc4: FileDescription: avast! File System Minifilter for Windows 2003/Vista
4181dbc.1dc4: \SystemRoot\System32\drivers\aswRdr2.sys:
4191dbc.1dc4: CreationTime: 2013-11-07T06:17:54.122314600Z
4201dbc.1dc4: LastWriteTime: 2014-11-21T10:26:52.758728100Z
4211dbc.1dc4: ChangeTime: 2014-11-21T10:27:06.949539800Z
4221dbc.1dc4: FileAttributes: 0x20
4231dbc.1dc4: Size: 0x16d80
4241dbc.1dc4: NT Headers: 0xf0
4251dbc.1dc4: Timestamp: 0x545b6f6a
4261dbc.1dc4: Machine: 0x8664 - amd64
4271dbc.1dc4: Timestamp: 0x545b6f6a
4281dbc.1dc4: Image Version: 6.1
4291dbc.1dc4: SizeOfImage: 0x1a000 (106496)
4301dbc.1dc4: Resource Dir: 0x18000 LB 0x3a0
4311dbc.1dc4: ProductName: Avast Antivirus
4321dbc.1dc4: ProductVersion: 10.0.2208.712
4331dbc.1dc4: FileVersion: 10.0.2208.712 built by: WinDDK
4341dbc.1dc4: FileDescription: avast! WFP Redirect Driver
4351dbc.1dc4: \SystemRoot\System32\drivers\aswRvrt.sys:
4361dbc.1dc4: CreationTime: 2013-11-07T06:17:55.705405100Z
4371dbc.1dc4: LastWriteTime: 2014-11-21T10:26:55.225869200Z
4381dbc.1dc4: ChangeTime: 2014-11-21T10:27:06.949539800Z
4391dbc.1dc4: FileAttributes: 0x20
4401dbc.1dc4: Size: 0x100f0
4411dbc.1dc4: NT Headers: 0xf8
4421dbc.1dc4: Timestamp: 0x545b6f42
4431dbc.1dc4: Machine: 0x8664 - amd64
4441dbc.1dc4: Timestamp: 0x545b6f42
4451dbc.1dc4: Image Version: 6.0
4461dbc.1dc4: SizeOfImage: 0x13000 (77824)
4471dbc.1dc4: Resource Dir: 0x11000 LB 0x468
4481dbc.1dc4: ProductName: Avast Antivirus
4491dbc.1dc4: ProductVersion: 10.0.2208.712
4501dbc.1dc4: FileVersion: 10.0.2208.712
4511dbc.1dc4: SpecialBuild: feb2012
4521dbc.1dc4: PrivateBuild: 0SpecialBuild
4531dbc.1dc4: FileDescription: avast! Revert
4541dbc.1dc4: \SystemRoot\System32\drivers\aswSnx.sys:
4551dbc.1dc4: CreationTime: 2013-11-07T06:17:55.497393200Z
4561dbc.1dc4: LastWriteTime: 2014-11-24T06:03:14.214882600Z
4571dbc.1dc4: ChangeTime: 2014-11-24T06:03:14.214882600Z
4581dbc.1dc4: FileAttributes: 0x20
4591dbc.1dc4: Size: 0x100740
4601dbc.1dc4: NT Headers: 0xf0
4611dbc.1dc4: Timestamp: 0x546f1f38
4621dbc.1dc4: Machine: 0x8664 - amd64
4631dbc.1dc4: Timestamp: 0x546f1f38
4641dbc.1dc4: Image Version: 6.0
4651dbc.1dc4: SizeOfImage: 0x104000 (1064960)
4661dbc.1dc4: Resource Dir: 0xfc000 LB 0x380
4671dbc.1dc4: ProductName: Avast Antivirus
4681dbc.1dc4: ProductVersion: 10.0.2208.722
4691dbc.1dc4: FileVersion: 10.0.2208.722
4701dbc.1dc4: FileDescription: avast! Virtualization Driver
4711dbc.1dc4: \SystemRoot\System32\drivers\aswsp.sys:
4721dbc.1dc4: CreationTime: 2013-11-07T06:17:55.114371300Z
4731dbc.1dc4: LastWriteTime: 2014-11-21T10:26:55.558888300Z
4741dbc.1dc4: ChangeTime: 2014-11-21T10:27:06.950539800Z
4751dbc.1dc4: FileAttributes: 0x20
4761dbc.1dc4: Size: 0x6a990
4771dbc.1dc4: NT Headers: 0x100
4781dbc.1dc4: Timestamp: 0x545b7323
4791dbc.1dc4: Machine: 0x8664 - amd64
4801dbc.1dc4: Timestamp: 0x545b7323
4811dbc.1dc4: Image Version: 6.0
4821dbc.1dc4: SizeOfImage: 0x71000 (462848)
4831dbc.1dc4: Resource Dir: 0x6f000 LB 0x378
4841dbc.1dc4: ProductName: Avast Antivirus
4851dbc.1dc4: ProductVersion: 10.0.2208.712
4861dbc.1dc4: FileVersion: 10.0.2208.712
4871dbc.1dc4: FileDescription: avast! self protection module
4881dbc.1dc4: \SystemRoot\System32\drivers\aswStm.sys:
4891dbc.1dc4: CreationTime: 2013-12-30T06:13:02.878184400Z
4901dbc.1dc4: LastWriteTime: 2014-11-21T10:26:56.615948700Z
4911dbc.1dc4: ChangeTime: 2014-11-21T10:27:06.950539800Z
4921dbc.1dc4: FileAttributes: 0x20
4931dbc.1dc4: Size: 0x1c7f8
4941dbc.1dc4: NT Headers: 0x110
4951dbc.1dc4: Timestamp: 0x545b7364
4961dbc.1dc4: Machine: 0x8664 - amd64
4971dbc.1dc4: Timestamp: 0x545b7364
4981dbc.1dc4: Image Version: 6.2
4991dbc.1dc4: SizeOfImage: 0x1f000 (126976)
5001dbc.1dc4: Resource Dir: 0x1d000 LB 0x358
5011dbc.1dc4: ProductName: Avast Antivirus
5021dbc.1dc4: ProductVersion: 10.0.2208.712
5031dbc.1dc4: FileVersion: 10.0.2208.712
5041dbc.1dc4: FileDescription: Stream Filter
5051dbc.1dc4: \SystemRoot\System32\drivers\aswVmm.sys:
5061dbc.1dc4: CreationTime: 2013-11-07T06:17:55.938418400Z
5071dbc.1dc4: LastWriteTime: 2014-11-21T10:26:55.808902600Z
5081dbc.1dc4: ChangeTime: 2014-11-21T10:27:06.950539800Z
5091dbc.1dc4: FileAttributes: 0x20
5101dbc.1dc4: Size: 0x41570
5111dbc.1dc4: NT Headers: 0xf0
5121dbc.1dc4: Timestamp: 0x545b6f4b
5131dbc.1dc4: Machine: 0x8664 - amd64
5141dbc.1dc4: Timestamp: 0x545b6f4b
5151dbc.1dc4: Image Version: 6.0
5161dbc.1dc4: SizeOfImage: 0x43000 (274432)
5171dbc.1dc4: Resource Dir: 0x40000 LB 0x470
5181dbc.1dc4: ProductName: Avast Antivirus
5191dbc.1dc4: ProductVersion: 10.0.2208.712
5201dbc.1dc4: FileVersion: 10.0.2208.712
5211dbc.1dc4: SpecialBuild: feb2012
5221dbc.1dc4: PrivateBuild: 0SpecialBuild
5231dbc.1dc4: FileDescription: avast! VM Monitor
5241dbc.1dc4: Calling main()
5251dbc.1dc4: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
5261dbc.1dc4: '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
5271dbc.1dc4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe)
5281dbc.1dc4: SUPR3HardenedMain: Respawn #2
5291dbc.1dc4: supR3HardNtEnableThreadCreation:
5301dbc.1dc4: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\apphelp.dll)
5311dbc.1dc4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\apphelp.dll
5321dbc.1dc4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\apphelp.dll (rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000000:<flags> [calling]
5331dbc.1dc4: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\apphelp.dll [lacks WinVerifyTrust]
5341dbc.1dc4: supR3HardenedDllNotificationCallback: load 000007fefd2a0000 LB 0x00057000 C:\Windows\system32\apphelp.dll [fFlags=0x0]
5351dbc.1dc4: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\apphelp.dll [lacks WinVerifyTrust]
5361dbc.1dc4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd2a0000 'C:\Windows\system32\apphelp.dll'
5371dbc.1dc4: supR3HardNtDisableThreadCreation: pvLdrInitThunk=000000007770c340 pvNtTerminateThread=00000000777317e0
5381dbc.1dc4: supR3HardenedWinDoReSpawn(2): New child 1eac.1fd0 [kernel32].
5391dbc.1dc4: supR3HardNtChildGatherData: PebBaseAddress=000007fffffd3000 cbPeb=0x380
5401dbc.1dc4: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00000000776e0000 uNtDllChildAddr=00000000776e0000
5411dbc.1dc4: supR3HardenedWinSetupChildInit: uLdrInitThunk=000000007770c340
5421dbc.1dc4: supR3HardenedWinSetupChildInit: Start child.
5431dbc.1dc4: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 0 ms.
5441dbc.1dc4: supR3HardNtChildPurify: Startup delay kludge #1/0: 515 ms, 64 sleeps
5451dbc.1dc4: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
5461dbc.1dc4: *0000000000000000-fffffffffffeffff 0x0001/0x0000 0x0000000
5471dbc.1dc4: *0000000000010000-fffffffffffeffff 0x0004/0x0004 0x0020000
5481dbc.1dc4: *0000000000030000-000000000002bfff 0x0002/0x0002 0x0040000
5491dbc.1dc4: 0000000000034000-0000000000027fff 0x0001/0x0000 0x0000000
5501dbc.1dc4: *0000000000040000-000000000003efff 0x0004/0x0004 0x0020000
5511dbc.1dc4: 0000000000041000-0000000000031fff 0x0001/0x0000 0x0000000
5521dbc.1dc4: *0000000000050000-000000000004efff 0x0004/0x0004 0x0020000
5531dbc.1dc4: 0000000000051000-fffffffffff31fff 0x0001/0x0000 0x0000000
5541dbc.1dc4: *0000000000170000-0000000000073fff 0x0000/0x0004 0x0020000
5551dbc.1dc4: 000000000026c000-0000000000268fff 0x0104/0x0004 0x0020000
5561dbc.1dc4: 000000000026f000-000000000026dfff 0x0004/0x0004 0x0020000
5571dbc.1dc4: 0000000000270000-ffffffff88dfffff 0x0001/0x0000 0x0000000
5581dbc.1dc4: *00000000776e0000-00000000776defff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
5591dbc.1dc4: 00000000776e1000-00000000775defff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
5601dbc.1dc4: 00000000777e3000-00000000777b3fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
5611dbc.1dc4: 0000000077812000-0000000077809fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
5621dbc.1dc4: 000000007781a000-0000000077818fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
5631dbc.1dc4: 000000007781b000-0000000077817fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
5641dbc.1dc4: 000000007781e000-00000000777b2fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
5651dbc.1dc4: 0000000077889000-0000000070131fff 0x0001/0x0000 0x0000000
5661dbc.1dc4: *000000007efe0000-000000007dfdffff 0x0000/0x0002 0x0020000
5671dbc.1dc4: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000
5681dbc.1dc4: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000
5691dbc.1dc4: 000000007fff0000-ffffffffc00cffff 0x0001/0x0000 0x0000000
5701dbc.1dc4: *000000013ff10000-000000013ff0efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
5711dbc.1dc4: 000000013ff11000-000000013fe8cfff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
5721dbc.1dc4: 000000013ff95000-000000013ff93fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
5731dbc.1dc4: 000000013ff96000-000000013ff58fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
5741dbc.1dc4: 000000013ffd3000-000000013ffd1fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
5751dbc.1dc4: 000000013ffd4000-000000013ffd2fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
5761dbc.1dc4: 000000013ffd5000-000000013ffd2fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
5771dbc.1dc4: 000000013ffd7000-000000013ffd5fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
5781dbc.1dc4: 000000013ffd8000-000000013ffd6fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
5791dbc.1dc4: 000000013ffd9000-000000013ffd4fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
5801dbc.1dc4: 000000013ffdd000-000000013ffa3fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
5811dbc.1dc4: 0000000140016000-fffff8038062bfff 0x0001/0x0000 0x0000000
5821dbc.1dc4: *000007feffa00000-000007feff9fefff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\apisetschema.dll
5831dbc.1dc4: 000007feffa01000-000007fdff451fff 0x0001/0x0000 0x0000000
5841dbc.1dc4: *000007fffffb0000-000007fffff8cfff 0x0002/0x0002 0x0040000
5851dbc.1dc4: *000007fffffd3000-000007fffffd1fff 0x0004/0x0004 0x0020000
5861dbc.1dc4: 000007fffffd4000-000007fffffc9fff 0x0001/0x0000 0x0000000
5871dbc.1dc4: *000007fffffde000-000007fffffdbfff 0x0004/0x0004 0x0020000
5881dbc.1dc4: *000007fffffe0000-000007fffffcffff 0x0001/0x0002 0x0020000
5891dbc.1dc4: apisetschema.dll: timestamp 0x51fb15ca (rc=VINF_SUCCESS)
5901dbc.1dc4: VirtualBox.exe: timestamp 0x54731167 (rc=VINF_SUCCESS)
5911dbc.1dc4: '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
5921dbc.1dc4: '\Device\HarddiskVolume3\Windows\System32\apisetschema.dll' has no imports
5931dbc.1dc4: '\Device\HarddiskVolume3\Windows\System32\ntdll.dll' has no imports
5941dbc.1dc4: supR3HardNtChildPurify: Done after 553 ms and 0 fixes (loop #0).
5951eac.1fd0: Log file opened: 4.3.20r96997 g_hStartupLog=0000000000000004 g_uNtVerCombined=0x611db110
5961dbc.1dc4: supR3HardenedEarlyCompact: Removed heap 1 (0x000000002f0000 LB 0x400000)
5971eac.1fd0: supR3HardenedVmProcessInit: uNtDllAddr=00000000776e0000
5981dbc.1dc4: supR3HardNtEnableThreadCreation:
5991eac.1fd0: ntdll.dll: timestamp 0x521eaf24 (rc=VINF_SUCCESS)
6001eac.1fd0: New simple heap: #1 0000000000270000 LB 0x400000 (for 1740800 allocation)
6011eac.1fd0: System32: \Device\HarddiskVolume3\Windows\System32
6021eac.1fd0: WinSxS: \Device\HarddiskVolume3\Windows\winsxs
6031eac.1fd0: KnownDllPath: C:\Windows\system32
6041eac.1fd0: supR3HardenedVmProcessInit: Opening vboxdrv...
6051eac.1fd0: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
6061eac.1fd0: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
6071eac.1fd0: Registered Dll notification callback with NTDLL.
6081eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\kernel32.dll)
6091eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\kernel32.dll
6101eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\kernel32.dll (Input=kernel32.dll, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000000:<flags> [calling]
6111eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
6121eac.1fd0: supR3HardenedDllNotificationCallback: load 00000000774c0000 LB 0x0011f000 C:\Windows\system32\kernel32.dll [fFlags=0x0]
6131eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
6141eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefd660000 LB 0x0006c000 C:\Windows\system32\KERNELBASE.dll [fFlags=0x0]
6151eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\KernelBase.dll)
6161eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\KernelBase.dll
6171eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00000000774c0000 'C:\Windows\system32\kernel32.dll'
6181eac.1fd0: supR3HardNtDisableThreadCreation: pvLdrInitThunk=000000007770c340 pvNtTerminateThread=00000000777317e0
6191dbc.1dc4: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 38 ms.
6201eac.1fd0: \SystemRoot\System32\ntdll.dll:
6211eac.1fd0: CreationTime: 2013-11-01T11:05:44.243638200Z
6221eac.1fd0: LastWriteTime: 2013-08-29T02:16:35.515578900Z
6231eac.1fd0: ChangeTime: 2013-11-01T13:14:07.131567700Z
6241eac.1fd0: FileAttributes: 0x20
6251eac.1fd0: Size: 0x1a6dc0
6261eac.1fd0: NT Headers: 0xe0
6271eac.1fd0: Timestamp: 0x521eaf24
6281eac.1fd0: Machine: 0x8664 - amd64
6291eac.1fd0: Timestamp: 0x521eaf24
6301eac.1fd0: Image Version: 6.1
6311eac.1fd0: SizeOfImage: 0x1a9000 (1740800)
6321eac.1fd0: Resource Dir: 0x151000 LB 0x560d8
6331eac.1fd0: ProductName: Microsoft® Windows® Operating System
6341eac.1fd0: ProductVersion: 6.1.7601.18247
6351eac.1fd0: FileVersion: 6.1.7601.18247 (win7sp1_gdr.130828-1532)
6361eac.1fd0: FileDescription: NT Layer DLL
6371eac.1fd0: \SystemRoot\System32\kernel32.dll:
6381eac.1fd0: CreationTime: 2014-04-09T06:11:53.781814400Z
6391eac.1fd0: LastWriteTime: 2014-03-04T09:44:00.336000000Z
6401eac.1fd0: ChangeTime: 2014-04-14T05:43:51.462211400Z
6411eac.1fd0: FileAttributes: 0x20
6421eac.1fd0: Size: 0x11c000
6431eac.1fd0: NT Headers: 0xe8
6441eac.1fd0: Timestamp: 0x5315a059
6451eac.1fd0: Machine: 0x8664 - amd64
6461eac.1fd0: Timestamp: 0x5315a059
6471eac.1fd0: Image Version: 6.1
6481eac.1fd0: SizeOfImage: 0x11f000 (1175552)
6491eac.1fd0: Resource Dir: 0x116000 LB 0x528
6501eac.1fd0: ProductName: Microsoft® Windows® Operating System
6511eac.1fd0: ProductVersion: 6.1.7601.18409
6521eac.1fd0: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144)
6531eac.1fd0: FileDescription: Windows NT BASE API Client DLL
6541eac.1fd0: \SystemRoot\System32\KernelBase.dll:
6551eac.1fd0: CreationTime: 2014-05-15T05:31:21.478784500Z
6561eac.1fd0: LastWriteTime: 2014-03-04T09:44:00.336000000Z
6571eac.1fd0: ChangeTime: 2014-05-16T05:04:13.427627900Z
6581eac.1fd0: FileAttributes: 0x20
6591eac.1fd0: Size: 0x67c00
6601eac.1fd0: NT Headers: 0xe8
6611eac.1fd0: Timestamp: 0x5315a05a
6621eac.1fd0: Machine: 0x8664 - amd64
6631eac.1fd0: Timestamp: 0x5315a05a
6641eac.1fd0: Image Version: 6.1
6651eac.1fd0: SizeOfImage: 0x6c000 (442368)
6661eac.1fd0: Resource Dir: 0x6a000 LB 0x530
6671eac.1fd0: ProductName: Microsoft® Windows® Operating System
6681eac.1fd0: ProductVersion: 6.1.7601.18409
6691eac.1fd0: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144)
6701eac.1fd0: FileDescription: Windows NT BASE API Client DLL
6711eac.1fd0: \SystemRoot\System32\apisetschema.dll:
6721eac.1fd0: CreationTime: 2013-11-01T11:07:25.144615500Z
6731eac.1fd0: LastWriteTime: 2013-08-02T02:12:20.275000000Z
6741eac.1fd0: ChangeTime: 2013-11-01T13:14:22.762795100Z
6751eac.1fd0: FileAttributes: 0x20
6761eac.1fd0: Size: 0x1a00
6771eac.1fd0: NT Headers: 0xc0
6781eac.1fd0: Timestamp: 0x51fb15ca
6791eac.1fd0: Machine: 0x8664 - amd64
6801eac.1fd0: Timestamp: 0x51fb15ca
6811eac.1fd0: Image Version: 6.1
6821eac.1fd0: SizeOfImage: 0x50000 (327680)
6831eac.1fd0: Resource Dir: 0x30000 LB 0x3f8
6841eac.1fd0: ProductName: Microsoft® Windows® Operating System
6851eac.1fd0: ProductVersion: 6.1.7601.18229
6861eac.1fd0: FileVersion: 6.1.7601.18229 (win7sp1_gdr.130801-1533)
6871eac.1fd0: FileDescription: ApiSet Schema DLL
6881eac.1fd0: Found driver aswVmm (0x4)
6891eac.1fd0: Found driver aswHwid (0x4)
6901eac.1fd0: Found driver aswStm (0x4)
6911eac.1fd0: Found driver aswRvrt (0x4)
6921eac.1fd0: supR3HardenedWinFindAdversaries: 0x4
6931eac.1fd0: \SystemRoot\System32\drivers\aswHwid.sys:
6941eac.1fd0: CreationTime: 2014-04-28T05:17:42.644695500Z
6951eac.1fd0: LastWriteTime: 2014-11-21T10:26:54.952853600Z
6961eac.1fd0: ChangeTime: 2014-11-21T10:27:06.949539800Z
6971eac.1fd0: FileAttributes: 0x20
6981eac.1fd0: Size: 0x7218
6991eac.1fd0: NT Headers: 0xe8
7001eac.1fd0: Timestamp: 0x545b6fa5
7011eac.1fd0: Machine: 0x8664 - amd64
7021eac.1fd0: Timestamp: 0x545b6fa5
7031eac.1fd0: Image Version: 6.0
7041eac.1fd0: SizeOfImage: 0xa000 (40960)
7051eac.1fd0: Resource Dir: 0x8000 LB 0x460
7061eac.1fd0: ProductName: Avast Antivirus
7071eac.1fd0: ProductVersion: 10.0.2208.712
7081eac.1fd0: FileVersion: 10.0.2208.712
7091eac.1fd0: SpecialBuild: feb2012
7101eac.1fd0: PrivateBuild: 0SpecialBuild
7111eac.1fd0: FileDescription: avast! HWID
7121eac.1fd0: \SystemRoot\System32\drivers\aswMonFlt.sys:
7131eac.1fd0: CreationTime: 2013-11-07T06:17:54.604342100Z
7141eac.1fd0: LastWriteTime: 2014-11-21T10:26:55.146864700Z
7151eac.1fd0: ChangeTime: 2014-11-21T10:27:06.949539800Z
7161eac.1fd0: FileAttributes: 0x20
7171eac.1fd0: Size: 0x14550
7181eac.1fd0: NT Headers: 0xe8
7191eac.1fd0: Timestamp: 0x545b6f33
7201eac.1fd0: Machine: 0x8664 - amd64
7211eac.1fd0: Timestamp: 0x545b6f33
7221eac.1fd0: Image Version: 6.0
7231eac.1fd0: SizeOfImage: 0x22000 (139264)
7241eac.1fd0: Resource Dir: 0x20000 LB 0x3b8
7251eac.1fd0: ProductName: Avast Antivirus
7261eac.1fd0: ProductVersion: 10.0.2208.712
7271eac.1fd0: FileVersion: 10.0.2208.712
7281eac.1fd0: FileDescription: avast! File System Minifilter for Windows 2003/Vista
7291eac.1fd0: \SystemRoot\System32\drivers\aswRdr2.sys:
7301eac.1fd0: CreationTime: 2013-11-07T06:17:54.122314600Z
7311eac.1fd0: LastWriteTime: 2014-11-21T10:26:52.758728100Z
7321eac.1fd0: ChangeTime: 2014-11-21T10:27:06.949539800Z
7331eac.1fd0: FileAttributes: 0x20
7341eac.1fd0: Size: 0x16d80
7351eac.1fd0: NT Headers: 0xf0
7361eac.1fd0: Timestamp: 0x545b6f6a
7371eac.1fd0: Machine: 0x8664 - amd64
7381eac.1fd0: Timestamp: 0x545b6f6a
7391eac.1fd0: Image Version: 6.1
7401eac.1fd0: SizeOfImage: 0x1a000 (106496)
7411eac.1fd0: Resource Dir: 0x18000 LB 0x3a0
7421eac.1fd0: ProductName: Avast Antivirus
7431eac.1fd0: ProductVersion: 10.0.2208.712
7441eac.1fd0: FileVersion: 10.0.2208.712 built by: WinDDK
7451eac.1fd0: FileDescription: avast! WFP Redirect Driver
7461eac.1fd0: \SystemRoot\System32\drivers\aswRvrt.sys:
7471eac.1fd0: CreationTime: 2013-11-07T06:17:55.705405100Z
7481eac.1fd0: LastWriteTime: 2014-11-21T10:26:55.225869200Z
7491eac.1fd0: ChangeTime: 2014-11-21T10:27:06.949539800Z
7501eac.1fd0: FileAttributes: 0x20
7511eac.1fd0: Size: 0x100f0
7521eac.1fd0: NT Headers: 0xf8
7531eac.1fd0: Timestamp: 0x545b6f42
7541eac.1fd0: Machine: 0x8664 - amd64
7551eac.1fd0: Timestamp: 0x545b6f42
7561eac.1fd0: Image Version: 6.0
7571eac.1fd0: SizeOfImage: 0x13000 (77824)
7581eac.1fd0: Resource Dir: 0x11000 LB 0x468
7591eac.1fd0: ProductName: Avast Antivirus
7601eac.1fd0: ProductVersion: 10.0.2208.712
7611eac.1fd0: FileVersion: 10.0.2208.712
7621eac.1fd0: SpecialBuild: feb2012
7631eac.1fd0: PrivateBuild: 0SpecialBuild
7641eac.1fd0: FileDescription: avast! Revert
7651eac.1fd0: \SystemRoot\System32\drivers\aswSnx.sys:
7661eac.1fd0: CreationTime: 2013-11-07T06:17:55.497393200Z
7671eac.1fd0: LastWriteTime: 2014-11-24T06:03:14.214882600Z
7681eac.1fd0: ChangeTime: 2014-11-24T06:03:14.214882600Z
7691eac.1fd0: FileAttributes: 0x20
7701eac.1fd0: Size: 0x100740
7711eac.1fd0: NT Headers: 0xf0
7721eac.1fd0: Timestamp: 0x546f1f38
7731eac.1fd0: Machine: 0x8664 - amd64
7741eac.1fd0: Timestamp: 0x546f1f38
7751eac.1fd0: Image Version: 6.0
7761eac.1fd0: SizeOfImage: 0x104000 (1064960)
7771eac.1fd0: Resource Dir: 0xfc000 LB 0x380
7781eac.1fd0: ProductName: Avast Antivirus
7791eac.1fd0: ProductVersion: 10.0.2208.722
7801eac.1fd0: FileVersion: 10.0.2208.722
7811eac.1fd0: FileDescription: avast! Virtualization Driver
7821eac.1fd0: \SystemRoot\System32\drivers\aswsp.sys:
7831eac.1fd0: CreationTime: 2013-11-07T06:17:55.114371300Z
7841eac.1fd0: LastWriteTime: 2014-11-21T10:26:55.558888300Z
7851eac.1fd0: ChangeTime: 2014-11-21T10:27:06.950539800Z
7861eac.1fd0: FileAttributes: 0x20
7871eac.1fd0: Size: 0x6a990
7881eac.1fd0: NT Headers: 0x100
7891eac.1fd0: Timestamp: 0x545b7323
7901eac.1fd0: Machine: 0x8664 - amd64
7911eac.1fd0: Timestamp: 0x545b7323
7921eac.1fd0: Image Version: 6.0
7931eac.1fd0: SizeOfImage: 0x71000 (462848)
7941eac.1fd0: Resource Dir: 0x6f000 LB 0x378
7951eac.1fd0: ProductName: Avast Antivirus
7961eac.1fd0: ProductVersion: 10.0.2208.712
7971eac.1fd0: FileVersion: 10.0.2208.712
7981eac.1fd0: FileDescription: avast! self protection module
7991eac.1fd0: \SystemRoot\System32\drivers\aswStm.sys:
8001eac.1fd0: CreationTime: 2013-12-30T06:13:02.878184400Z
8011eac.1fd0: LastWriteTime: 2014-11-21T10:26:56.615948700Z
8021eac.1fd0: ChangeTime: 2014-11-21T10:27:06.950539800Z
8031eac.1fd0: FileAttributes: 0x20
8041eac.1fd0: Size: 0x1c7f8
8051eac.1fd0: NT Headers: 0x110
8061eac.1fd0: Timestamp: 0x545b7364
8071eac.1fd0: Machine: 0x8664 - amd64
8081eac.1fd0: Timestamp: 0x545b7364
8091eac.1fd0: Image Version: 6.2
8101eac.1fd0: SizeOfImage: 0x1f000 (126976)
8111eac.1fd0: Resource Dir: 0x1d000 LB 0x358
8121eac.1fd0: ProductName: Avast Antivirus
8131eac.1fd0: ProductVersion: 10.0.2208.712
8141eac.1fd0: FileVersion: 10.0.2208.712
8151eac.1fd0: FileDescription: Stream Filter
8161eac.1fd0: \SystemRoot\System32\drivers\aswVmm.sys:
8171eac.1fd0: CreationTime: 2013-11-07T06:17:55.938418400Z
8181eac.1fd0: LastWriteTime: 2014-11-21T10:26:55.808902600Z
8191eac.1fd0: ChangeTime: 2014-11-21T10:27:06.950539800Z
8201eac.1fd0: FileAttributes: 0x20
8211eac.1fd0: Size: 0x41570
8221eac.1fd0: NT Headers: 0xf0
8231eac.1fd0: Timestamp: 0x545b6f4b
8241eac.1fd0: Machine: 0x8664 - amd64
8251eac.1fd0: Timestamp: 0x545b6f4b
8261eac.1fd0: Image Version: 6.0
8271eac.1fd0: SizeOfImage: 0x43000 (274432)
8281eac.1fd0: Resource Dir: 0x40000 LB 0x470
8291eac.1fd0: ProductName: Avast Antivirus
8301eac.1fd0: ProductVersion: 10.0.2208.712
8311eac.1fd0: FileVersion: 10.0.2208.712
8321eac.1fd0: SpecialBuild: feb2012
8331eac.1fd0: PrivateBuild: 0SpecialBuild
8341eac.1fd0: FileDescription: avast! VM Monitor
8351eac.1fd0: Calling main()
8361eac.1fd0: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
8371eac.1fd0: '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
8381eac.1fd0: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe)
8391eac.1fd0: SUPR3HardenedMain: Final process, opening VBoxDrv...
8401eac.1fd0: supR3HardenedEarlyCompact: Removed heap 1 (0x00000000270000 LB 0x400000)
8411eac.1fd0: supR3HardNtEnableThreadCreation:
8421eac.1fd0: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxSupLib.dll)
8431eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxSupLib.dll
8441eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxSupLib.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007242f0:C:\Windows\system32 [calling]
8451eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxSupLib.dll [lacks WinVerifyTrust]
8461eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefc3d0000 LB 0x00004000 C:\Program Files\Oracle\VirtualBox\VBoxSupLib.DLL [fFlags=0x0]
8471eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxSupLib.dll [lacks WinVerifyTrust]
8481eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxSupLib.dll [lacks WinVerifyTrust]
8491eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxSupLib.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
8501eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefc3d0000 'C:\Program Files\Oracle\VirtualBox\VBoxSupLib.DLL'
8511eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxSupLib.dll [lacks WinVerifyTrust]
8521eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxSupLib.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
8531eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefc3d0000 'C:\Program Files\Oracle\VirtualBox\VBoxSupLib.DLL'
8541eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefc3d0000 'C:\Program Files\Oracle\VirtualBox\VBoxSupLib.DLL'
8551eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
8561eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'crypt32.dll'.
8571eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msasn1.dll'.
8581eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'rpcrt4.dll'.
8591eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\wintrust.dll)
8601eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\wintrust.dll
8611eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
8621eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
8631eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll)
8641eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll
8651eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msasn1.dll'...
8661eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msasn1.dll' -> '\Device\HarddiskVolume3\Windows\System32\msasn1.dll' [rcNtRedir=0xc0150008]
8671eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\msasn1.dll)
8681eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\msasn1.dll
8691eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'crypt32.dll'...
8701eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'crypt32.dll' -> '\Device\HarddiskVolume3\Windows\System32\crypt32.dll' [rcNtRedir=0xc0150008]
8711eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
8721eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msasn1.dll'.
8731eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\crypt32.dll)
8741eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\crypt32.dll
8751eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
8761eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
8771eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\msvcrt.dll)
8781eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\msvcrt.dll
8791eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msasn1.dll'...
8801eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msasn1.dll' -> '\Device\HarddiskVolume3\Windows\System32\msasn1.dll' [rcNtRedir=0xc0150008]
8811eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msasn1.dll [lacks WinVerifyTrust]
8821eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
8831eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
8841eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
8851eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\Wintrust.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007242f0:C:\Windows\system32 [calling]
8861eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
8871eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefd5f0000 LB 0x0003a000 C:\Windows\system32\Wintrust.dll [fFlags=0x0]
8881eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
8891eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefdb40000 LB 0x0009f000 C:\Windows\system32\msvcrt.dll [fFlags=0x0]
8901eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
8911eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefd6d0000 LB 0x0016d000 C:\Windows\system32\CRYPT32.dll [fFlags=0x0]
8921eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\crypt32.dll [lacks WinVerifyTrust]
8931eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefd4b0000 LB 0x0000f000 C:\Windows\system32\MSASN1.dll [fFlags=0x0]
8941eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msasn1.dll [lacks WinVerifyTrust]
8951eac.1fd0: supR3HardenedDllNotificationCallback: load 000007feff750000 LB 0x0012d000 C:\Windows\system32\RPCRT4.dll [fFlags=0x0]
8961eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
8971eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd5f0000 'C:\Windows\system32\Wintrust.dll'
8981eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\cryptsp.dll)
8991eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\cryptsp.dll
9001eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\CRYPTSP.dll (Input=CRYPTSP.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
9011eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptsp.dll [lacks WinVerifyTrust]
9021eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefcdd0000 LB 0x00017000 C:\Windows\system32\CRYPTSP.dll [fFlags=0x0]
9031eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptsp.dll [lacks WinVerifyTrust]
9041eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefcdd0000 'C:\Windows\system32\CRYPTSP.dll'
9051eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
9061eac.1fd0: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\rsaenh.dll)
9071eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\rsaenh.dll
9081eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9091eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9101eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9111eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\rsaenh.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
9121eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rsaenh.dll [lacks WinVerifyTrust]
9131eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefc9a0000 LB 0x00047000 C:\Windows\system32\rsaenh.dll [fFlags=0x0]
9141eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\rsaenh.dll [lacks WinVerifyTrust]
9151eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefc9a0000 'C:\Windows\system32\rsaenh.dll'
9161eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
9171eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'rpcrt4.dll'.
9181eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\advapi32.dll)
9191eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\advapi32.dll
9201eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
9211eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
9221eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
9231eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9241eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9251eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9261eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\ADVAPI32.dll (Input=ADVAPI32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
9271eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
9281eac.1fd0: supR3HardenedDllNotificationCallback: load 000007feff5d0000 LB 0x000db000 C:\Windows\system32\ADVAPI32.dll [fFlags=0x0]
9291eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
9301eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msvcrt.dll'.
9311eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #14 'rpcrt4.dll'.
9321eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\sechost.dll)
9331eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\sechost.dll
9341eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefe350000 LB 0x0001f000 C:\Windows\SYSTEM32\sechost.dll [fFlags=0x0]
9351eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\sechost.dll [lacks WinVerifyTrust]
9361eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007feff5d0000 'C:\Windows\system32\ADVAPI32.dll'
9371eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\cryptbase.dll)
9381eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\cryptbase.dll
9391eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
9401eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
9411eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
9421eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9431eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9441eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9451eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\CRYPTBASE.dll (Input=CRYPTBASE.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
9461eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptbase.dll [lacks WinVerifyTrust]
9471eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefd340000 LB 0x0000f000 C:\Windows\system32\CRYPTBASE.dll [fFlags=0x0]
9481eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptbase.dll [lacks WinVerifyTrust]
9491eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd340000 'C:\Windows\system32\CRYPTBASE.dll'
9501eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
9511eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\kernel32.dll (Input=kernel32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
9521eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00000000774c0000 'C:\Windows\system32\kernel32.dll'
9531eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
9541eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\WINTRUST.DLL (Input=WINTRUST.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
9551eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd5f0000 'C:\Windows\system32\WINTRUST.DLL'
9561eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\crypt32.dll [lacks WinVerifyTrust]
9571eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\CRYPT32.dll (rcNtResolve=0xc0150008) *pfFlags=0x1002 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
9581eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd6d0000 'C:\Windows\system32\CRYPT32.dll'
9591eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
9601eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #16 'advapi32.dll'.
9611eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\imagehlp.dll)
9621eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\imagehlp.dll
9631eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
9641eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
9651eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
9661eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9671eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9681eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9691eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\imagehlp.dll (Input=imagehlp.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
9701eac.1fd0: supR3HardenedDllNotificationCallback: load 000007feff880000 LB 0x00019000 C:\Windows\system32\imagehlp.dll [fFlags=0x0]
9711eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\imagehlp.dll [lacks WinVerifyTrust]
9721eac.1fd0: supR3HardenedWinReInstallHooks: Reinstalling NtCreateSection (0000000077731750: e9 bb eb a2 88 3f 01 00 00 00 ff e0 1f 44 00 00).
9731eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007feff880000 'C:\Windows\system32\imagehlp.dll'
9741eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptsp.dll [lacks WinVerifyTrust]
9751eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\CRYPTSP.dll (Input=CRYPTSP.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
9761eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefcdd0000 'C:\Windows\system32\CRYPTSP.dll'
9771eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'gdi32.dll'.
9781eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\user32.dll)
9791eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\user32.dll
9801eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
9811eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
9821eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
9831eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'lpk.dll'.
9841eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\gdi32.dll)
9851eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\gdi32.dll
9861eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'lpk.dll'...
9871eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'lpk.dll' -> '\Device\HarddiskVolume3\Windows\System32\lpk.dll' [rcNtRedir=0xc0150008]
9881eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'gdi32.dll'.
9891eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'user32.dll'.
9901eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'usp10.dll'.
9911eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\lpk.dll)
9921eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\lpk.dll
9931eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9941eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9951eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
9961eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'usp10.dll'...
9971eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'usp10.dll' -> '\Device\HarddiskVolume3\Windows\System32\usp10.dll' [rcNtRedir=0xc0150008]
9981eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
9991eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
10001eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'gdi32.dll'.
10011eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\usp10.dll)
10021eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\usp10.dll
10031eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10041eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10051eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
10061eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10071eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10081eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10091eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10101eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10111eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10121eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10131eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10141eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
10151eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10161eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10171eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10181eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\USER32.dll (Input=USER32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
10191eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
10201eac.1fd0: supR3HardenedDllNotificationCallback: load 00000000775e0000 LB 0x000fa000 C:\Windows\system32\USER32.dll [fFlags=0x0]
10211eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
10221eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefe370000 LB 0x00067000 C:\Windows\system32\GDI32.dll [fFlags=0x0]
10231eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10241eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefdbe0000 LB 0x0000e000 C:\Windows\system32\LPK.dll [fFlags=0x0]
10251eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\lpk.dll [lacks WinVerifyTrust]
10261eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefdd70000 LB 0x000c9000 C:\Windows\system32\USP10.dll [fFlags=0x0]
10271eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\usp10.dll [lacks WinVerifyTrust]
10281eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10291eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\gdi32.dll (Input=gdi32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
10301eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe370000 'C:\Windows\system32\gdi32.dll'
10311eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'user32.dll'.
10321eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'.
10331eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msctf.dll'.
10341eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\imm32.dll)
10351eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\imm32.dll
10361eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msctf.dll'...
10371eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msctf.dll' -> '\Device\HarddiskVolume3\Windows\System32\msctf.dll' [rcNtRedir=0xc0150008]
10381eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
10391eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'user32.dll'.
10401eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'gdi32.dll'.
10411eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'imm32.dll'.
10421eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\msctf.dll)
10431eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\msctf.dll
10441eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10451eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10461eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10471eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10481eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10491eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
10501eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'imm32.dll'...
10511eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'imm32.dll' -> '\Device\HarddiskVolume3\Windows\System32\imm32.dll' [rcNtRedir=0xc0150008]
10521eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\imm32.dll [lacks WinVerifyTrust]
10531eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10541eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10551eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10561eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10571eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10581eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
10591eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10601eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10611eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10621eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\IMM32.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
10631eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\imm32.dll [lacks WinVerifyTrust]
10641eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefdb10000 LB 0x0002e000 C:\Windows\system32\IMM32.DLL [fFlags=0x0]
10651eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\imm32.dll [lacks WinVerifyTrust]
10661eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefdc60000 LB 0x00109000 C:\Windows\system32\MSCTF.dll [fFlags=0x0]
10671eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msctf.dll [lacks WinVerifyTrust]
10681eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefdb10000 'C:\Windows\system32\IMM32.DLL'
10691eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00000000775e0000 'C:\Windows\system32\USER32.dll'
10701eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'bcrypt.dll'.
10711eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcrt.dll'.
10721eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msasn1.dll'.
10731eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\ncrypt.dll)
10741eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\ncrypt.dll
10751eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msasn1.dll'...
10761eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msasn1.dll' -> '\Device\HarddiskVolume3\Windows\System32\msasn1.dll' [rcNtRedir=0xc0150008]
10771eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msasn1.dll [lacks WinVerifyTrust]
10781eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10791eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10801eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10811eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcrypt.dll'...
10821eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcrypt.dll' -> '\Device\HarddiskVolume3\Windows\System32\bcrypt.dll' [rcNtRedir=0xc0150008]
10831eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\bcrypt.dll)
10841eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\bcrypt.dll
10851eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\ncrypt.dll (Input=ncrypt.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
10861eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\ncrypt.dll [lacks WinVerifyTrust]
10871eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefce20000 LB 0x00050000 C:\Windows\system32\ncrypt.dll [fFlags=0x0]
10881eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\ncrypt.dll [lacks WinVerifyTrust]
10891eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
10901eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefcdf0000 LB 0x00022000 C:\Windows\system32\bcrypt.dll [fFlags=0x0]
10911eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
10921eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefce20000 'C:\Windows\system32\ncrypt.dll'
10931eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'advapi32.dll'.
10941eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'bcrypt.dll'.
10951eac.1fd0: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\bcryptprimitives.dll)
10961eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\bcryptprimitives.dll
10971eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcrypt.dll'...
10981eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcrypt.dll' -> '\Device\HarddiskVolume3\Windows\System32\bcrypt.dll' [rcNtRedir=0xc0150008]
10991eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
11001eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
11011eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
11021eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
11031eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\bcryptprimitives.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
11041eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\bcryptprimitives.dll [lacks WinVerifyTrust]
11051eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefc8e0000 LB 0x0004c000 C:\Windows\system32\bcryptprimitives.dll [fFlags=0x0]
11061eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\bcryptprimitives.dll [lacks WinVerifyTrust]
11071eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefc8e0000 'C:\Windows\system32\bcryptprimitives.dll'
11081eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
11091eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\bcrypt.dll (Input=bcrypt.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
11101eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefcdf0000 'C:\Windows\system32\bcrypt.dll'
11111eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
11121eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #17 'rpcrt4.dll'.
11131eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #18 'profapi.dll'.
11141eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\userenv.dll)
11151eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\userenv.dll
11161eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'profapi.dll'...
11171eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'profapi.dll' -> '\Device\HarddiskVolume3\Windows\System32\profapi.dll' [rcNtRedir=0xc0150008]
11181eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
11191eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\profapi.dll)
11201eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\profapi.dll
11211eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
11221eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
11231eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
11241eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
11251eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
11261eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
11271eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
11281eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
11291eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
11301eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\USERENV.dll (Input=USERENV.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
11311eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\userenv.dll [lacks WinVerifyTrust]
11321eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefd840000 LB 0x0001e000 C:\Windows\system32\USERENV.dll [fFlags=0x0]
11331eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\userenv.dll [lacks WinVerifyTrust]
11341eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefd4a0000 LB 0x0000f000 C:\Windows\system32\profapi.dll [fFlags=0x0]
11351eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\profapi.dll [lacks WinVerifyTrust]
11361eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd840000 'C:\Windows\system32\USERENV.dll'
11371eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-Win-Security-SDDL-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
11381eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe350000 'API-MS-Win-Security-SDDL-L1-1-0.dll'
11391eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-Win-Security-SDDL-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
11401eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe350000 'API-MS-Win-Security-SDDL-L1-1-0.dll'
11411eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
11421eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #16 'rpcrt4.dll'.
11431eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\gpapi.dll)
11441eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\gpapi.dll
11451eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
11461eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
11471eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
11481eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
11491eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
11501eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
11511eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\GPAPI.dll (Input=GPAPI.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
11521eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\gpapi.dll [lacks WinVerifyTrust]
11531eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefc760000 LB 0x0001b000 C:\Windows\system32\GPAPI.dll [fFlags=0x0]
11541eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\gpapi.dll [lacks WinVerifyTrust]
11551eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefc760000 'C:\Windows\system32\GPAPI.dll'
11561eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-WIN-Service-Management-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
11571eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe350000 'API-MS-WIN-Service-Management-L1-1-0.dll'
11581eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
11591eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\rpcrt4.dll (Input=rpcrt4.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
11601eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007feff750000 'C:\Windows\system32\rpcrt4.dll'
11611eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-WIN-Service-Management-L2-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
11621eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe350000 'API-MS-WIN-Service-Management-L2-1-0.dll'
11631eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-Win-Security-SDDL-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
11641eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe350000 'API-MS-Win-Security-SDDL-L1-1-0.dll'
11651eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
11661eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'advapi32.dll'.
11671eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'crypt32.dll'.
11681eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'wldap32.dll'.
11691eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\cryptnet.dll)
11701eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\cryptnet.dll
11711eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'wldap32.dll'...
11721eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'wldap32.dll' -> '\Device\HarddiskVolume3\Windows\System32\wldap32.dll' [rcNtRedir=0xc0150008]
11731eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
11741eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\Wldap32.dll)
11751eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\Wldap32.dll
11761eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'crypt32.dll'...
11771eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'crypt32.dll' -> '\Device\HarddiskVolume3\Windows\System32\crypt32.dll' [rcNtRedir=0xc0150008]
11781eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\crypt32.dll [lacks WinVerifyTrust]
11791eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
11801eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
11811eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
11821eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
11831eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
11841eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
11851eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
11861eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
11871eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
11881eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\cryptnet.dll (Input=cryptnet.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
11891eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptnet.dll [lacks WinVerifyTrust]
11901eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fef9d70000 LB 0x00027000 C:\Windows\system32\cryptnet.dll [fFlags=0x0]
11911eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptnet.dll [lacks WinVerifyTrust]
11921eac.1fd0: supR3HardenedDllNotificationCallback: load 000007fefdc00000 LB 0x00052000 C:\Windows\system32\WLDAP32.dll [fFlags=0x0]
11931eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\Wldap32.dll [lacks WinVerifyTrust]
11941eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptnet.dll [lacks WinVerifyTrust]
11951eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\cryptnet.dll (rcNtResolve=0xc0150008) *pfFlags=0x1002 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
11961eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9d70000 'C:\Windows\system32\cryptnet.dll'
11971eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptnet.dll [lacks WinVerifyTrust]
11981eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\cryptnet.dll (rcNtResolve=0xc0150008) *pfFlags=0x1002 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
11991eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9d70000 'C:\Windows\system32\cryptnet.dll'
12001eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptnet.dll [lacks WinVerifyTrust]
12011eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\cryptnet.dll (rcNtResolve=0xc0150008) *pfFlags=0x1002 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
12021eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9d70000 'C:\Windows\system32\cryptnet.dll'
12031eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptnet.dll [lacks WinVerifyTrust]
12041eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\cryptnet.dll (rcNtResolve=0xc0150008) *pfFlags=0x1002 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
12051eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9d70000 'C:\Windows\system32\cryptnet.dll'
12061eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptnet.dll [lacks WinVerifyTrust]
12071eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\cryptnet.dll (rcNtResolve=0xc0150008) *pfFlags=0x1002 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
12081eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9d70000 'C:\Windows\system32\cryptnet.dll'
12091eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptnet.dll [lacks WinVerifyTrust]
12101eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\cryptnet.dll (rcNtResolve=0xc0150008) *pfFlags=0x1002 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
12111eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9d70000 'C:\Windows\system32\cryptnet.dll'
12121eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptnet.dll [lacks WinVerifyTrust]
12131eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9d70000 'C:\Windows\system32\cryptnet.dll'
12141eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptnet.dll [lacks WinVerifyTrust]
12151eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9d70000 'C:\Windows\system32\cryptnet.dll'
12161eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptnet.dll [lacks WinVerifyTrust]
12171eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9d70000 'C:\Windows\system32\cryptnet.dll'
12181eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptnet.dll [lacks WinVerifyTrust]
12191eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9d70000 'C:\Windows\system32\cryptnet.dll'
12201eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptnet.dll [lacks WinVerifyTrust]
12211eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9d70000 'C:\Windows\system32\cryptnet.dll'
12221eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9d70000 'C:\Windows\system32\cryptnet.dll'
12231eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\cryptnet.dll [lacks WinVerifyTrust]
12241eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9d70000 'C:\Windows\system32\cryptnet.dll'
12251eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-Win-Security-SDDL-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
12261eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe350000 'API-MS-Win-Security-SDDL-L1-1-0.dll'
12271eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\profapi.dll [lacks WinVerifyTrust]
12281eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\profapi.dll (Input=profapi.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
12291eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd4a0000 'C:\Windows\system32\profapi.dll'
12301eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'gdi32.dll'.
12311eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
12321eac.1fd0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msvcrt.dll'.
12331eac.1fd0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume3\Windows\System32\shlwapi.dll)
12341eac.1fd0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\shlwapi.dll
12351eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
12361eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
12371eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
12381eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
12391eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume3\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
12401eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\user32.dll [lacks WinVerifyTrust]
12411eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
12421eac.1fd0: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume3\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
12431eac.1fd0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
12441eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\SHLWAPI.dll (Input=SHLWAPI.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
12451eac.1fd0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\shlwapi.dll [lacks WinVerifyTrust]
12461eac.1fd0: supR3HardenedDllNotificationCallback: load 000007feff8f0000 LB 0x00071000 C:\Windows\system32\SHLWAPI.dll [fFlags=0x0]
12471eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\shlwapi.dll [lacks WinVerifyTrust]
12481eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007feff8f0000 'C:\Windows\system32\SHLWAPI.dll'
12491eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000000 pwszName=\SystemRoot\System32\ntdll.dll
12501eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
12511eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
12521eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=771D512B7B1C39F0393BD4EF9FC62F442783FB35
12531eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-Win-Security-SDDL-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
12541eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe350000 'API-MS-Win-Security-SDDL-L1-1-0.dll'
12551eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-WIN-Service-Management-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
12561eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe350000 'API-MS-WIN-Service-Management-L1-1-0.dll'
12571eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-WIN-Service-winsvc-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
12581eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe350000 'API-MS-WIN-Service-winsvc-L1-1-0.dll'
12591eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
12601eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\ADVAPI32.dll (Input=ADVAPI32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
12611eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007feff5d0000 'C:\Windows\system32\ADVAPI32.dll'
12621eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-Win-Security-LSALookup-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
12631eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe350000 'API-MS-Win-Security-LSALookup-L1-1-0.dll'
12641eac.1fd0: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-Win-Security-LSALookup-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000007249b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Windows\SysWOW64;C:\Program Files\Java\jdk1.7.0_45\bin;C:\Program Files (x86)\IVT Corporation\BlueSoleil\Mobile;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\;C:\Program Files (x86)\MySQL\MySQL Utilities 1.4.3\Doctrine extensions for PHP\;C:\Program Files (x86)\Microsoft SDKs\TypeScript\1.0\ [calling]
12651eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe350000 'API-MS-Win-Security-LSALookup-L1-1-0.dll'
12661eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
12671eac.1fd0: g_pfnWinVerifyTrust=000007fefd5f1010
12681eac.1fd0: supR3HardenedScreenImage/preload: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\crypt32.dll [redoing WinVerifyTrust]
12691eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=00000000000000e0 pwszName=\Device\HarddiskVolume3\Windows\System32\crypt32.dll
12701eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
12711eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
12721eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=0752B52B3009339E2F25EAE5A58D7AAA80FBDE38
12731eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
12741eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
12751eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
12761eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=0752B52B3009339E2F25EAE5A58D7AAA80FBDE38
12771eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
12781eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
12791eac.1fd0: supR3HardenedScreenImage/preload: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\crypt32.dll'
12801eac.1fd0: Error (rc=0):
12811eac.1fd0: supR3HardenedScreenImage/preload: cached rc=Unknown Status -22900 (0xffffa68c) fImage=0 fProtect=0x0 fAccess=0x0 cHits=4 \Device\HarddiskVolume3\Windows\System32\crypt32.dll
12821eac.1fd0: supR3HardenedScreenImage/preload: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume3\Windows\System32\wintrust.dll [redoing WinVerifyTrust]
12831eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=00000000000000d4 pwszName=\Device\HarddiskVolume3\Windows\System32\wintrust.dll
12841eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
12851eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
12861eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=80662AB761CF56CEC7909E5D03289BC65B4457A8
12871eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
12881eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
12891eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
12901eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=80662AB761CF56CEC7909E5D03289BC65B4457A8
12911eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
12921eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
12931eac.1fd0: supR3HardenedScreenImage/preload: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\wintrust.dll'
12941eac.1fd0: Error (rc=0):
12951eac.1fd0: supR3HardenedScreenImage/preload: cached rc=Unknown Status -22900 (0xffffa68c) fImage=0 fProtect=0x0 fAccess=0x0 cHits=4 \Device\HarddiskVolume3\Windows\System32\wintrust.dll
12961eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000390 pwszName=\Device\HarddiskVolume3\Windows\System32\shlwapi.dll
12971eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
12981eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
12991eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=0AB8D9C9D3E1FC95D01F9A984B16ED031BB40CD8
13001eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
13011eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
13021eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13031eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=0AB8D9C9D3E1FC95D01F9A984B16ED031BB40CD8
13041eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
13051eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
13061eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\shlwapi.dll'
13071eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000388 pwszName=\Device\HarddiskVolume3\Windows\System32\Wldap32.dll
13081eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
13091eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13101eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=87E73086F2528CF31D3AD5F0D71E04F8B942D5D8
13111eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
13121eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
13131eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13141eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=87E73086F2528CF31D3AD5F0D71E04F8B942D5D8
13151eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
13161eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
13171eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\Wldap32.dll'
13181eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000384 pwszName=\Device\HarddiskVolume3\Windows\System32\cryptnet.dll
13191eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
13201eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13211eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=C1C670A9871F2BD448B2F0FA6127AC7A486B8D8F
13221eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
13231eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
13241eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13251eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=C1C670A9871F2BD448B2F0FA6127AC7A486B8D8F
13261eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
13271eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
13281eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\cryptnet.dll'
13291eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000260 pwszName=\Device\HarddiskVolume3\Windows\System32\gpapi.dll
13301eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
13311eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13321eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=470795C189226F7BDB8E50F42104CC34488B9340
13331eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
13341eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
13351eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13361eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=470795C189226F7BDB8E50F42104CC34488B9340
13371eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
13381eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
13391eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\gpapi.dll'
13401eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=00000000000001cc pwszName=\Device\HarddiskVolume3\Windows\System32\profapi.dll
13411eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
13421eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13431eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=2449672745D9BA339420451D13FA0380AA768231
13441eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
13451eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
13461eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13471eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=2449672745D9BA339420451D13FA0380AA768231
13481eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
13491eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
13501eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\profapi.dll'
13511eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=00000000000001c8 pwszName=\Device\HarddiskVolume3\Windows\System32\userenv.dll
13521eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
13531eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13541eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=D3E1A2CC7367F751C19EBF4E6EDF5E9A10E47313
13551eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
13561eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
13571eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13581eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=D3E1A2CC7367F751C19EBF4E6EDF5E9A10E47313
13591eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
13601eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
13611eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\userenv.dll'
13621eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\bcryptprimitives.dll'
13631eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=00000000000001a0 pwszName=\Device\HarddiskVolume3\Windows\System32\bcrypt.dll
13641eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
13651eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13661eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=62E377A1F0AD0C2EDC0A73CB3EFF841FF18D00D2
13671eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
13681eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
13691eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13701eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=62E377A1F0AD0C2EDC0A73CB3EFF841FF18D00D2
13711eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
13721eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
13731eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\bcrypt.dll'
13741eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=000000000000019c pwszName=\Device\HarddiskVolume3\Windows\System32\ncrypt.dll
13751eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
13761eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13771eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=D68DA0EBD4E0AA6C401CF7C54CEA904099DD3933
13781eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
13791eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
13801eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13811eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=D68DA0EBD4E0AA6C401CF7C54CEA904099DD3933
13821eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
13831eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
13841eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\ncrypt.dll'
13851eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000180 pwszName=\Device\HarddiskVolume3\Windows\System32\msctf.dll
13861eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
13871eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13881eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=803AF52F95A9EFDFDA06C595023831EE36ACD3A8
13891eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
13901eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
13911eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13921eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=803AF52F95A9EFDFDA06C595023831EE36ACD3A8
13931eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
13941eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
13951eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\msctf.dll'
13961eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=000000000000017c pwszName=\Device\HarddiskVolume3\Windows\System32\imm32.dll
13971eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
13981eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
13991eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=6EEE1AB3B6D79AFF857940FF5F51ED27698153EC
14001eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
14011eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
14021eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14031eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=6EEE1AB3B6D79AFF857940FF5F51ED27698153EC
14041eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
14051eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
14061eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\imm32.dll'
14071eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000178 pwszName=\Device\HarddiskVolume3\Windows\System32\usp10.dll
14081eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
14091eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14101eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=1F1AA8340DE02FC1B6341EE2706E55D56EDF63B8
14111eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
14121eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
14131eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14141eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=1F1AA8340DE02FC1B6341EE2706E55D56EDF63B8
14151eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
14161eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
14171eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\usp10.dll'
14181eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000174 pwszName=\Device\HarddiskVolume3\Windows\System32\lpk.dll
14191eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
14201eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14211eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=6FCA4D678614C8615E6E5C082BF3A4562FCF14EB
14221eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
14231eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
14241eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14251eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=6FCA4D678614C8615E6E5C082BF3A4562FCF14EB
14261eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
14271eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
14281eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\lpk.dll'
14291eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000170 pwszName=\Device\HarddiskVolume3\Windows\System32\gdi32.dll
14301eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
14311eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14321eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=7AEB59C2353484ADF282BEA358113ABD82C223B9
14331eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
14341eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
14351eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14361eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=7AEB59C2353484ADF282BEA358113ABD82C223B9
14371eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
14381eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
14391eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\gdi32.dll'
14401eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=000000000000016c pwszName=\Device\HarddiskVolume3\Windows\System32\user32.dll
14411eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
14421eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14431eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=B723D1B8AD72750B0CF5F6BEC66171B1254ED879
14441eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
14451eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
14461eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14471eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=B723D1B8AD72750B0CF5F6BEC66171B1254ED879
14481eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
14491eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
14501eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\user32.dll'
14511eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000168 pwszName=\Device\HarddiskVolume3\Windows\System32\imagehlp.dll
14521eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
14531eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14541eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=2702EE05F1B717B0F2CE0FBE32784A47B8419DCA
14551eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
14561eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
14571eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14581eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=2702EE05F1B717B0F2CE0FBE32784A47B8419DCA
14591eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
14601eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
14611eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\imagehlp.dll'
14621eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000120 pwszName=\Device\HarddiskVolume3\Windows\System32\cryptbase.dll
14631eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
14641eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14651eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=A965CC5DB13A5FB23BBB1B6B5FA6D400DC49462F
14661eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
14671eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
14681eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14691eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=A965CC5DB13A5FB23BBB1B6B5FA6D400DC49462F
14701eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
14711eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
14721eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\cryptbase.dll'
14731eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000114 pwszName=\Device\HarddiskVolume3\Windows\System32\sechost.dll
14741eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
14751eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14761eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=3FA2A014BF360CDC0E203A174FFC9DC5343C5323
14771eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
14781eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
14791eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14801eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=3FA2A014BF360CDC0E203A174FFC9DC5343C5323
14811eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
14821eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
14831eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\sechost.dll'
14841eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000108 pwszName=\Device\HarddiskVolume3\Windows\System32\advapi32.dll
14851eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
14861eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14871eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=7C0A1C638CE7C1160F49C473EC1420BD3AB693C4
14881eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
14891eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
14901eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14911eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=7C0A1C638CE7C1160F49C473EC1420BD3AB693C4
14921eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
14931eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
14941eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\advapi32.dll'
14951eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\rsaenh.dll'
14961eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000104 pwszName=\Device\HarddiskVolume3\Windows\System32\cryptsp.dll
14971eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
14981eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
14991eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=40667EDBA9045D4A4BE1D4844665D3B88F8CD0E0
15001eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
15011eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
15021eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
15031eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=40667EDBA9045D4A4BE1D4844665D3B88F8CD0E0
15041eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
15051eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
15061eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\cryptsp.dll'
15071eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=00000000000000e4 pwszName=\Device\HarddiskVolume3\Windows\System32\msvcrt.dll
15081eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
15091eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
15101eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=2CA2FD632B264C063162F71474266E3615B6420C
15111eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
15121eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
15131eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
15141eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=2CA2FD632B264C063162F71474266E3615B6420C
15151eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
15161eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
15171eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\msvcrt.dll'
15181eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=00000000000000dc pwszName=\Device\HarddiskVolume3\Windows\System32\msasn1.dll
15191eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
15201eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
15211eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=F2FF57DC30D774F93061607060DAA0DD15E39CCE
15221eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
15231eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
15241eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
15251eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=F2FF57DC30D774F93061607060DAA0DD15E39CCE
15261eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
15271eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
15281eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\msasn1.dll'
15291eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=00000000000000d8 pwszName=\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll
15301eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
15311eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
15321eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=03E871CFC4A3E7194619AFC99CEEA1EC75982D12
15331eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
15341eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
15351eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
15361eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=03E871CFC4A3E7194619AFC99CEEA1EC75982D12
15371eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
15381eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
15391eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\rpcrt4.dll'
15401eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VBoxSupLib.dll'
15411eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000028 pwszName=\Device\HarddiskVolume3\Windows\System32\KernelBase.dll
15421eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
15431eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
15441eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=57EB6F834C5A5D9585A660D91756134028A3B089
15451eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
15461eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
15471eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
15481eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=57EB6F834C5A5D9585A660D91756134028A3B089
15491eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
15501eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
15511eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\KernelBase.dll'
15521eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hFile=0000000000000020 pwszName=\Device\HarddiskVolume3\Windows\System32\kernel32.dll
15531eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Cached context 0000000000765940
15541eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
15551eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=5349346AE66DA4E3A7206628F484AC3B3AA43776
15561eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: Retrying with fresh context (CryptCATAdminEnumCatalogFromHash -> 1783; iCat=0x0)
15571eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: New context 0000000000765940
15581eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: hCatAdmin=0000000000765940
15591eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: cbHash=20 wszDigest=5349346AE66DA4E3A7206628F484AC3B3AA43776
15601eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile: CryptCATAdminEnumCatalogFromHash failed ERRROR_NOT_FOUND (1783)
15611eac.1fd0: supR3HardNtViCallWinVerifyTrustCatFile -> -22900 (org 22900)
15621eac.1fd0: supR3HardenedWinVerifyCacheProcessWvtTodos: -22900 (was 22900) fWinVerifyTrust=1 for '\Device\HarddiskVolume3\Windows\System32\kernel32.dll'
15631eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status -22900 (0xffffa68c)) on \Device\HarddiskVolume3\Windows\System32\crypt32.dll
15641eac.1fd0: Error (rc=0):
15651eac.1fd0: supR3HardenedScreenImage/LdrLoadDll: cached rc=Unknown Status -22900 (0xffffa68c) fImage=1 fProtect=0x0 fAccess=0x0 cHits=5 \Device\HarddiskVolume3\Windows\System32\crypt32.dll
15661eac.1fd0: Error (rc=0):
15671eac.1fd0: supR3HardenedMonitor_LdrLoadDll: rejecting 'C:\Windows\system32\crypt32.dll' (C:\Windows\system32\crypt32.dll): rcNt=0xc0000190
15681eac.1fd0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000190 'C:\Windows\system32\crypt32.dll'
15691eac.1fd0: Fatal error:
15701eac.1fd0: Error loading 'crypt32.dll': 1790 [C:\Windows\system32\crypt32.dll]
15711dbc.1dc4: supR3HardNtChildWaitFor[2]: Quitting: ExitCode=0x1 (rcNtWait=0x0, rcNt1=0x0, rcNt2=0x103, rcNt3=0x103, 433 ms, the end);
15721fb8.1a6c: supR3HardNtChildWaitFor[1]: Quitting: ExitCode=0x1 (rcNtWait=0x0, rcNt1=0x0, rcNt2=0x103, rcNt3=0x103, 1060 ms, the end);

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy