VirtualBox

Ticket #13833: VirtualBox-4.3.27-99267-Win with DG Whitelist VBoxStartup.log

File VirtualBox-4.3.27-99267-Win with DG Whitelist VBoxStartup.log, 268.2 KB (added by Suo, 9 years ago)
Line 
1213c.24cc: Log file opened: 4.3.27r99267 g_hStartupLog=0000000000000014 g_uNtVerCombined=0x611db110
2213c.24cc: \SystemRoot\System32\ntdll.dll:
3213c.24cc: CreationTime: 2014-10-16T20:00:34.625558000Z
4213c.24cc: LastWriteTime: 2013-08-29T02:16:35.515578900Z
5213c.24cc: ChangeTime: 2015-03-29T06:51:15.574163900Z
6213c.24cc: FileAttributes: 0x20
7213c.24cc: Size: 0x1a6dc0
8213c.24cc: NT Headers: 0xe0
9213c.24cc: Timestamp: 0x521eaf24
10213c.24cc: Machine: 0x8664 - amd64
11213c.24cc: Timestamp: 0x521eaf24
12213c.24cc: Image Version: 6.1
13213c.24cc: SizeOfImage: 0x1a9000 (1740800)
14213c.24cc: Resource Dir: 0x151000 LB 0x560d8
15213c.24cc: ProductName: Microsoft® Windows® Operating System
16213c.24cc: ProductVersion: 6.1.7601.18247
17213c.24cc: FileVersion: 6.1.7601.18247 (win7sp1_gdr.130828-1532)
18213c.24cc: FileDescription: NT Layer DLL
19213c.24cc: \SystemRoot\System32\kernel32.dll:
20213c.24cc: CreationTime: 2014-04-11T19:54:46.040464900Z
21213c.24cc: LastWriteTime: 2014-03-04T09:44:00.336000000Z
22213c.24cc: ChangeTime: 2015-03-29T05:53:06.046888000Z
23213c.24cc: FileAttributes: 0x20
24213c.24cc: Size: 0x11c000
25213c.24cc: NT Headers: 0xe8
26213c.24cc: Timestamp: 0x5315a059
27213c.24cc: Machine: 0x8664 - amd64
28213c.24cc: Timestamp: 0x5315a059
29213c.24cc: Image Version: 6.1
30213c.24cc: SizeOfImage: 0x11f000 (1175552)
31213c.24cc: Resource Dir: 0x116000 LB 0x528
32213c.24cc: ProductName: Microsoft® Windows® Operating System
33213c.24cc: ProductVersion: 6.1.7601.18409
34213c.24cc: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144)
35213c.24cc: FileDescription: Windows NT BASE API Client DLL
36213c.24cc: \SystemRoot\System32\KernelBase.dll:
37213c.24cc: CreationTime: 2014-01-06T17:20:19.520291600Z
38213c.24cc: LastWriteTime: 2013-08-02T02:13:34.580000000Z
39213c.24cc: ChangeTime: 2015-03-29T05:53:06.056888000Z
40213c.24cc: FileAttributes: 0x20
41213c.24cc: Size: 0x67a00
42213c.24cc: NT Headers: 0xe8
43213c.24cc: Timestamp: 0x51fb1677
44213c.24cc: Machine: 0x8664 - amd64
45213c.24cc: Timestamp: 0x51fb1677
46213c.24cc: Image Version: 6.1
47213c.24cc: SizeOfImage: 0x6b000 (438272)
48213c.24cc: Resource Dir: 0x69000 LB 0x530
49213c.24cc: ProductName: Microsoft® Windows® Operating System
50213c.24cc: ProductVersion: 6.1.7601.18229
51213c.24cc: FileVersion: 6.1.7601.18229 (win7sp1_gdr.130801-1533)
52213c.24cc: FileDescription: Windows NT BASE API Client DLL
53213c.24cc: \SystemRoot\System32\apisetschema.dll:
54213c.24cc: CreationTime: 2015-03-15T15:05:43.180376900Z
55213c.24cc: LastWriteTime: 2015-01-29T03:16:19.592000000Z
56213c.24cc: ChangeTime: 2015-03-29T06:51:15.588164700Z
57213c.24cc: FileAttributes: 0x20
58213c.24cc: Size: 0x1a00
59213c.24cc: NT Headers: 0xc0
60213c.24cc: Timestamp: 0x54c9a64c
61213c.24cc: Machine: 0x8664 - amd64
62213c.24cc: Timestamp: 0x54c9a64c
63213c.24cc: Image Version: 6.1
64213c.24cc: SizeOfImage: 0x50000 (327680)
65213c.24cc: Resource Dir: 0x30000 LB 0x3f8
66213c.24cc: ProductName: Microsoft® Windows® Operating System
67213c.24cc: ProductVersion: 6.1.7601.18738
68213c.24cc: FileVersion: 6.1.7601.18738 (win7sp1_gdr.150128-1513)
69213c.24cc: FileDescription: ApiSet Schema DLL
70213c.24cc: NtOpenDirectoryObject failed on \Driver: 0xc0000022
71213c.24cc: supR3HardenedWinFindAdversaries: 0x20
72213c.24cc: \SystemRoot\System32\drivers\mfeapfk.sys:
73213c.24cc: CreationTime: 2014-01-06T18:38:32.997080800Z
74213c.24cc: LastWriteTime: 2014-08-28T13:58:32.000000000Z
75213c.24cc: ChangeTime: 2015-03-29T06:41:32.737402400Z
76213c.24cc: FileAttributes: 0x20
77213c.24cc: Size: 0x2c548
78213c.24cc: NT Headers: 0xe0
79213c.24cc: Timestamp: 0x53ee4b6e
80213c.24cc: Machine: 0x8664 - amd64
81213c.24cc: Timestamp: 0x53ee4b6e
82213c.24cc: Image Version: 0.0
83213c.24cc: SizeOfImage: 0x2a200 (172544)
84213c.24cc: Resource Dir: 0x29a00 LB 0x340
85213c.24cc: ProductName: SYSCORE
86213c.24cc: FileVersion: SYSCORE.15.1.0.680
87213c.24cc: PrivateBuild: SYSCORE.15.1.0.680 F16
88213c.24cc: FileDescription: Access Protection Filter Driver
89213c.24cc: \SystemRoot\System32\drivers\mfeavfk.sys:
90213c.24cc: CreationTime: 2014-01-06T18:38:32.938074900Z
91213c.24cc: LastWriteTime: 2014-08-28T14:00:14.000000000Z
92213c.24cc: ChangeTime: 2015-03-29T06:51:15.637167500Z
93213c.24cc: FileAttributes: 0x20
94213c.24cc: Size: 0x4c948
95213c.24cc: NT Headers: 0xe8
96213c.24cc: Timestamp: 0x53ee4b7e
97213c.24cc: Machine: 0x8664 - amd64
98213c.24cc: Timestamp: 0x53ee4b7e
99213c.24cc: Image Version: 0.0
100213c.24cc: SizeOfImage: 0x4a300 (303872)
101213c.24cc: Resource Dir: 0x49500 LB 0x718
102213c.24cc: ProductName: SYSCORE
103213c.24cc: FileVersion: SYSCORE.15.1.0.680
104213c.24cc: PrivateBuild: SYSCORE.15.1.0.680 F15,F16,F19
105213c.24cc: FileDescription: Anti-Virus File System Filter Driver
106213c.24cc: \SystemRoot\System32\drivers\mfefirek.sys:
107213c.24cc: CreationTime: 2015-03-26T18:01:49.586511200Z
108213c.24cc: LastWriteTime: 2014-08-28T14:03:42.000000000Z
109213c.24cc: ChangeTime: 2015-03-29T06:51:15.667169200Z
110213c.24cc: FileAttributes: 0x20
111213c.24cc: Size: 0x80810
112213c.24cc: NT Headers: 0xe8
113213c.24cc: Timestamp: 0x53ee4bce
114213c.24cc: Machine: 0x8664 - amd64
115213c.24cc: Timestamp: 0x53ee4bce
116213c.24cc: Image Version: 0.0
117213c.24cc: SizeOfImage: 0x7dd00 (515328)
118213c.24cc: Resource Dir: 0x7b380 LB 0x350
119213c.24cc: ProductName: SYSCORE
120213c.24cc: FileVersion: SYSCORE.15.1.0.680
121213c.24cc: PrivateBuild: SYSCORE.15.1.0.680 F17,F18
122213c.24cc: FileDescription: McAfee Core Firewall Engine Driver
123213c.24cc: \SystemRoot\System32\drivers\mfehidk.sys:
124213c.24cc: CreationTime: 2014-01-06T18:38:32.368017900Z
125213c.24cc: LastWriteTime: 2014-08-28T14:08:02.000000000Z
126213c.24cc: ChangeTime: 2015-03-29T06:51:15.732172900Z
127213c.24cc: FileAttributes: 0x20
128213c.24cc: Size: 0xbff78
129213c.24cc: NT Headers: 0xf0
130213c.24cc: Timestamp: 0x53ee4b36
131213c.24cc: Machine: 0x8664 - amd64
132213c.24cc: Timestamp: 0x53ee4b36
133213c.24cc: Image Version: 0.0
134213c.24cc: SizeOfImage: 0xbce80 (773760)
135213c.24cc: Resource Dir: 0xba880 LB 0x348
136213c.24cc: ProductName: SYSCORE
137213c.24cc: FileVersion: SYSCORE.15.1.0.680
138213c.24cc: PrivateBuild: SYSCORE.15.1.0.680 F14,F15,F16,F18,F20
139213c.24cc: FileDescription: McAfee Link Driver
140213c.24cc: \SystemRoot\System32\drivers\mfewfpk.sys:
141213c.24cc: CreationTime: 2014-01-06T18:38:29.867767900Z
142213c.24cc: LastWriteTime: 2014-08-28T14:17:38.000000000Z
143213c.24cc: ChangeTime: 2015-03-29T06:51:15.789176200Z
144213c.24cc: FileAttributes: 0x20
145213c.24cc: Size: 0x55188
146213c.24cc: NT Headers: 0xf8
147213c.24cc: Timestamp: 0x53ee4b46
148213c.24cc: Machine: 0x8664 - amd64
149213c.24cc: Timestamp: 0x53ee4b46
150213c.24cc: Image Version: 0.0
151213c.24cc: SizeOfImage: 0x52a80 (338560)
152213c.24cc: Resource Dir: 0x51f00 LB 0x348
153213c.24cc: ProductName: SYSCORE
154213c.24cc: FileVersion: SYSCORE.15.1.0.680
155213c.24cc: PrivateBuild: SYSCORE.15.1.0.680 F17,F18
156213c.24cc: FileDescription: Anti-Virus Mini-Firewall Driver
157213c.24cc: Calling main()
158213c.24cc: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
159213c.24cc: SUPR3HardenedMain: Respawn #1
160213c.24cc: System32: \Device\HarddiskVolume1\Windows\System32
161213c.24cc: WinSxS: \Device\HarddiskVolume1\Windows\winsxs
162213c.24cc: KnownDllPath: C:\Windows\system32
163213c.24cc: '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
164213c.24cc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe)
165213c.24cc: supR3HardNtEnableThreadCreation:
166213c.24cc: supR3HardNtDisableThreadCreation: pvLdrInitThunk=000000007742c340 pvNtTerminateThread=00000000774517e0
167213c.24cc: supR3HardenedWinDoReSpawn(1): New child 2658.1eac [kernel32].
168213c.24cc: supR3HardNtChildGatherData: PebBaseAddress=000007fffffdb000 cbPeb=0x380
169213c.24cc: supR3HardNtPuChFindNtdll: uNtDllParentAddr=0000000077400000 uNtDllChildAddr=0000000077400000
170213c.24cc: supR3HardenedWinSetupChildInit: uLdrInitThunk=000000007742c340
171213c.24cc: supR3HardenedWinSetupChildInit: Start child.
172213c.24cc: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 36 ms.
173213c.24cc: supR3HardNtChildPurify: Startup delay kludge #1/0: 513 ms, 64 sleeps
174213c.24cc: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
175213c.24cc: *0000000000000000-fffffffffffeffff 0x0001/0x0000 0x0000000
176213c.24cc: *0000000000010000-fffffffffffeffff 0x0004/0x0004 0x0020000
177213c.24cc: *0000000000030000-000000000002efff 0x0040/0x0040 0x0020000 !!
178213c.24cc: supHardNtVpFreeOrReplacePrivateExecMemory: Freeing exec mem at 0000000000030000 (LB 0x1000, 0000000000030000 LB 0x1000)
179213c.24cc: supHardNtVpFreeOrReplacePrivateExecMemory: Free attempt #1 succeeded: 0x0 [0000000000030000/0000000000030000 LB 0/0x1000]
180213c.24cc: 0000000000031000-0000000000021fff 0x0001/0x0000 0x0000000
181213c.24cc: *0000000000040000-000000000003bfff 0x0002/0x0002 0x0040000
182213c.24cc: 0000000000044000-0000000000037fff 0x0001/0x0000 0x0000000
183213c.24cc: *0000000000050000-000000000004efff 0x0004/0x0004 0x0020000
184213c.24cc: 0000000000051000-ffffffffffea1fff 0x0001/0x0000 0x0000000
185213c.24cc: *0000000000200000-0000000000103fff 0x0000/0x0004 0x0020000
186213c.24cc: 00000000002fc000-00000000002f8fff 0x0104/0x0004 0x0020000
187213c.24cc: 00000000002ff000-00000000002fdfff 0x0004/0x0004 0x0020000
188213c.24cc: 0000000000300000-ffffffff891fffff 0x0001/0x0000 0x0000000
189213c.24cc: *0000000077400000-0000000077400fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
190213c.24cc: 0000000077401000-0000000077502fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
191213c.24cc: 0000000077503000-0000000077531fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
192213c.24cc: 0000000077532000-0000000077539fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
193213c.24cc: 000000007753a000-000000007753afff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
194213c.24cc: 000000007753b000-000000007753dfff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
195213c.24cc: 000000007753e000-00000000775a8fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
196213c.24cc: 00000000775a9000-000000006fb71fff 0x0001/0x0000 0x0000000
197213c.24cc: *000000007efe0000-000000007dfdffff 0x0000/0x0002 0x0020000
198213c.24cc: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000
199213c.24cc: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000
200213c.24cc: 000000007fff0000-ffffffffc070ffff 0x0001/0x0000 0x0000000
201213c.24cc: *000000013f8d0000-000000013f8d0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
202213c.24cc: 000000013f8d1000-000000013f955fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
203213c.24cc: 000000013f956000-000000013f956fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
204213c.24cc: 000000013f957000-000000013f994fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
205213c.24cc: 000000013f995000-000000013f995fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
206213c.24cc: 000000013f996000-000000013f996fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
207213c.24cc: 000000013f997000-000000013f998fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
208213c.24cc: 000000013f999000-000000013f999fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
209213c.24cc: 000000013f99a000-000000013f99afff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
210213c.24cc: 000000013f99b000-000000013f99efff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
211213c.24cc: 000000013f99f000-000000013f9d7fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
212213c.24cc: 000000013f9d8000-fffff8037fc8ffff 0x0001/0x0000 0x0000000
213213c.24cc: *000007feff720000-000007feff720fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\apisetschema.dll
214213c.24cc: 000007feff721000-000007fdfee91fff 0x0001/0x0000 0x0000000
215213c.24cc: *000007fffffb0000-000007fffff8cfff 0x0002/0x0002 0x0040000
216213c.24cc: 000007fffffd3000-000007fffffcafff 0x0001/0x0000 0x0000000
217213c.24cc: *000007fffffdb000-000007fffffd9fff 0x0004/0x0004 0x0020000
218213c.24cc: 000007fffffdc000-000007fffffd9fff 0x0001/0x0000 0x0000000
219213c.24cc: *000007fffffde000-000007fffffdbfff 0x0004/0x0004 0x0020000
220213c.24cc: *000007fffffe0000-000007fffffcffff 0x0001/0x0002 0x0020000
221213c.24cc: apisetschema.dll: timestamp 0x54c9a64c (rc=VINF_SUCCESS)
222213c.24cc: VirtualBox.exe: timestamp 0x551708ba (rc=VINF_SUCCESS)
223213c.24cc: '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
224213c.24cc: '\Device\HarddiskVolume1\Windows\System32\apisetschema.dll' has no imports
225213c.24cc: '\Device\HarddiskVolume1\Windows\System32\ntdll.dll' has no imports
226213c.24cc: supR3HardNtChildPurify: cFixes=1 g_fSupAdversaries=0x20 cPatchCount=0
227213c.24cc: supR3HardNtChildPurify: Startup delay kludge #1/1: 520 ms, 65 sleeps
228213c.24cc: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
229213c.24cc: *0000000000000000-fffffffffffeffff 0x0001/0x0000 0x0000000
230213c.24cc: *0000000000010000-fffffffffffeffff 0x0004/0x0004 0x0020000
231213c.24cc: 0000000000030000-000000000001ffff 0x0001/0x0000 0x0000000
232213c.24cc: *0000000000040000-000000000003bfff 0x0002/0x0002 0x0040000
233213c.24cc: 0000000000044000-0000000000037fff 0x0001/0x0000 0x0000000
234213c.24cc: *0000000000050000-000000000004efff 0x0004/0x0004 0x0020000
235213c.24cc: 0000000000051000-ffffffffffea1fff 0x0001/0x0000 0x0000000
236213c.24cc: *0000000000200000-0000000000103fff 0x0000/0x0004 0x0020000
237213c.24cc: 00000000002fc000-00000000002f8fff 0x0104/0x0004 0x0020000
238213c.24cc: 00000000002ff000-00000000002fdfff 0x0004/0x0004 0x0020000
239213c.24cc: 0000000000300000-ffffffff891fffff 0x0001/0x0000 0x0000000
240213c.24cc: *0000000077400000-0000000077400fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
241213c.24cc: 0000000077401000-0000000077502fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
242213c.24cc: 0000000077503000-0000000077531fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
243213c.24cc: 0000000077532000-0000000077539fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
244213c.24cc: 000000007753a000-000000007753afff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
245213c.24cc: 000000007753b000-000000007753bfff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
246213c.24cc: 000000007753c000-000000007753dfff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
247213c.24cc: 000000007753e000-00000000775a8fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
248213c.24cc: 00000000775a9000-000000006fb71fff 0x0001/0x0000 0x0000000
249213c.24cc: *000000007efe0000-000000007dfdffff 0x0000/0x0002 0x0020000
250213c.24cc: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000
251213c.24cc: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000
252213c.24cc: 000000007fff0000-ffffffffc070ffff 0x0001/0x0000 0x0000000
253213c.24cc: *000000013f8d0000-000000013f8d0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
254213c.24cc: 000000013f8d1000-000000013f955fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
255213c.24cc: 000000013f956000-000000013f956fff 0x0040/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
256213c.24cc: 000000013f957000-000000013f994fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
257213c.24cc: 000000013f995000-000000013f99efff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
258213c.24cc: 000000013f99f000-000000013f9d7fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
259213c.24cc: 000000013f9d8000-fffff8037fc8ffff 0x0001/0x0000 0x0000000
260213c.24cc: *000007feff720000-000007feff720fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\apisetschema.dll
261213c.24cc: 000007feff721000-000007fdfee91fff 0x0001/0x0000 0x0000000
262213c.24cc: *000007fffffb0000-000007fffff8cfff 0x0002/0x0002 0x0040000
263213c.24cc: 000007fffffd3000-000007fffffcafff 0x0001/0x0000 0x0000000
264213c.24cc: *000007fffffdb000-000007fffffd9fff 0x0004/0x0004 0x0020000
265213c.24cc: 000007fffffdc000-000007fffffd9fff 0x0001/0x0000 0x0000000
266213c.24cc: *000007fffffde000-000007fffffdbfff 0x0004/0x0004 0x0020000
267213c.24cc: *000007fffffe0000-000007fffffcffff 0x0001/0x0002 0x0020000
268213c.24cc: supR3HardNtChildPurify: Done after 1053 ms and 1 fixes (loop #1).
2692658.1eac: Log file opened: 4.3.27r99267 g_hStartupLog=0000000000000004 g_uNtVerCombined=0x611db110
270213c.24cc: supR3HardNtEnableThreadCreation:
2712658.1eac: supR3HardenedVmProcessInit: uNtDllAddr=0000000077400000
2722658.1eac: ntdll.dll: timestamp 0x521eaf24 (rc=VINF_SUCCESS)
2732658.1eac: New simple heap: #1 0000000000300000 LB 0x400000 (for 1740800 allocation)
2742658.1eac: System32: \Device\HarddiskVolume1\Windows\System32
2752658.1eac: WinSxS: \Device\HarddiskVolume1\Windows\winsxs
2762658.1eac: KnownDllPath: C:\Windows\system32
2772658.1eac: supR3HardenedVmProcessInit: Opening vboxdrv stub...
2782658.1eac: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
2792658.1eac: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
2802658.1eac: Registered Dll notification callback with NTDLL.
2812658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\kernel32.dll)
2822658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\kernel32.dll
2832658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\kernel32.dll (Input=kernel32.dll, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000000:<flags> [calling]
2842658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
2852658.1eac: supR3HardenedDllNotificationCallback: load 00000000772e0000 LB 0x0011f000 C:\Windows\system32\kernel32.dll [fFlags=0x0]
2862658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
2872658.1eac: supR3HardenedDllNotificationCallback: load 000007fefd4e0000 LB 0x0006b000 C:\Windows\system32\KERNELBASE.dll [fFlags=0x0]
2882658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\KernelBase.dll)
2892658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\KernelBase.dll
2902658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00000000772e0000 'C:\Windows\system32\kernel32.dll'
2912658.1eac: supR3HardNtDisableThreadCreation: pvLdrInitThunk=000000007742c340 pvNtTerminateThread=00000000774517e0
292213c.24cc: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 21 ms.
2932658.1eac: \SystemRoot\System32\ntdll.dll:
2942658.1eac: CreationTime: 2014-10-16T20:00:34.625558000Z
2952658.1eac: LastWriteTime: 2013-08-29T02:16:35.515578900Z
2962658.1eac: ChangeTime: 2015-03-29T06:51:15.574163900Z
2972658.1eac: FileAttributes: 0x20
2982658.1eac: Size: 0x1a6dc0
2992658.1eac: NT Headers: 0xe0
3002658.1eac: Timestamp: 0x521eaf24
3012658.1eac: Machine: 0x8664 - amd64
3022658.1eac: Timestamp: 0x521eaf24
3032658.1eac: Image Version: 6.1
3042658.1eac: SizeOfImage: 0x1a9000 (1740800)
3052658.1eac: Resource Dir: 0x151000 LB 0x560d8
3062658.1eac: ProductName: Microsoft® Windows® Operating System
3072658.1eac: ProductVersion: 6.1.7601.18247
3082658.1eac: FileVersion: 6.1.7601.18247 (win7sp1_gdr.130828-1532)
3092658.1eac: FileDescription: NT Layer DLL
3102658.1eac: \SystemRoot\System32\kernel32.dll:
3112658.1eac: CreationTime: 2014-04-11T19:54:46.040464900Z
3122658.1eac: LastWriteTime: 2014-03-04T09:44:00.336000000Z
3132658.1eac: ChangeTime: 2015-03-29T05:53:06.046888000Z
3142658.1eac: FileAttributes: 0x20
3152658.1eac: Size: 0x11c000
3162658.1eac: NT Headers: 0xe8
3172658.1eac: Timestamp: 0x5315a059
3182658.1eac: Machine: 0x8664 - amd64
3192658.1eac: Timestamp: 0x5315a059
3202658.1eac: Image Version: 6.1
3212658.1eac: SizeOfImage: 0x11f000 (1175552)
3222658.1eac: Resource Dir: 0x116000 LB 0x528
3232658.1eac: ProductName: Microsoft® Windows® Operating System
3242658.1eac: ProductVersion: 6.1.7601.18409
3252658.1eac: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144)
3262658.1eac: FileDescription: Windows NT BASE API Client DLL
3272658.1eac: \SystemRoot\System32\KernelBase.dll:
3282658.1eac: CreationTime: 2014-01-06T17:20:19.520291600Z
3292658.1eac: LastWriteTime: 2013-08-02T02:13:34.580000000Z
3302658.1eac: ChangeTime: 2015-03-29T05:53:06.056888000Z
3312658.1eac: FileAttributes: 0x20
3322658.1eac: Size: 0x67a00
3332658.1eac: NT Headers: 0xe8
3342658.1eac: Timestamp: 0x51fb1677
3352658.1eac: Machine: 0x8664 - amd64
3362658.1eac: Timestamp: 0x51fb1677
3372658.1eac: Image Version: 6.1
3382658.1eac: SizeOfImage: 0x6b000 (438272)
3392658.1eac: Resource Dir: 0x69000 LB 0x530
3402658.1eac: ProductName: Microsoft® Windows® Operating System
3412658.1eac: ProductVersion: 6.1.7601.18229
3422658.1eac: FileVersion: 6.1.7601.18229 (win7sp1_gdr.130801-1533)
3432658.1eac: FileDescription: Windows NT BASE API Client DLL
3442658.1eac: \SystemRoot\System32\apisetschema.dll:
3452658.1eac: CreationTime: 2015-03-15T15:05:43.180376900Z
3462658.1eac: LastWriteTime: 2015-01-29T03:16:19.592000000Z
3472658.1eac: ChangeTime: 2015-03-29T06:51:15.588164700Z
3482658.1eac: FileAttributes: 0x20
3492658.1eac: Size: 0x1a00
3502658.1eac: NT Headers: 0xc0
3512658.1eac: Timestamp: 0x54c9a64c
3522658.1eac: Machine: 0x8664 - amd64
3532658.1eac: Timestamp: 0x54c9a64c
3542658.1eac: Image Version: 6.1
3552658.1eac: SizeOfImage: 0x50000 (327680)
3562658.1eac: Resource Dir: 0x30000 LB 0x3f8
3572658.1eac: ProductName: Microsoft® Windows® Operating System
3582658.1eac: ProductVersion: 6.1.7601.18738
3592658.1eac: FileVersion: 6.1.7601.18738 (win7sp1_gdr.150128-1513)
3602658.1eac: FileDescription: ApiSet Schema DLL
3612658.1eac: NtOpenDirectoryObject failed on \Driver: 0xc0000022
3622658.1eac: supR3HardenedWinFindAdversaries: 0x2020
3632658.1eac: \SystemRoot\System32\drivers\mfeapfk.sys:
3642658.1eac: CreationTime: 2014-01-06T18:38:32.997080800Z
3652658.1eac: LastWriteTime: 2014-08-28T13:58:32.000000000Z
3662658.1eac: ChangeTime: 2015-03-29T06:41:32.737402400Z
3672658.1eac: FileAttributes: 0x20
3682658.1eac: Size: 0x2c548
3692658.1eac: NT Headers: 0xe0
3702658.1eac: Timestamp: 0x53ee4b6e
3712658.1eac: Machine: 0x8664 - amd64
3722658.1eac: Timestamp: 0x53ee4b6e
3732658.1eac: Image Version: 0.0
3742658.1eac: SizeOfImage: 0x2a200 (172544)
3752658.1eac: Resource Dir: 0x29a00 LB 0x340
3762658.1eac: ProductName: SYSCORE
3772658.1eac: FileVersion: SYSCORE.15.1.0.680
3782658.1eac: PrivateBuild: SYSCORE.15.1.0.680 F16
3792658.1eac: FileDescription: Access Protection Filter Driver
3802658.1eac: \SystemRoot\System32\drivers\mfeavfk.sys:
3812658.1eac: CreationTime: 2014-01-06T18:38:32.938074900Z
3822658.1eac: LastWriteTime: 2014-08-28T14:00:14.000000000Z
3832658.1eac: ChangeTime: 2015-03-29T06:51:15.637167500Z
3842658.1eac: FileAttributes: 0x20
3852658.1eac: Size: 0x4c948
3862658.1eac: NT Headers: 0xe8
3872658.1eac: Timestamp: 0x53ee4b7e
3882658.1eac: Machine: 0x8664 - amd64
3892658.1eac: Timestamp: 0x53ee4b7e
3902658.1eac: Image Version: 0.0
3912658.1eac: SizeOfImage: 0x4a300 (303872)
3922658.1eac: Resource Dir: 0x49500 LB 0x718
3932658.1eac: ProductName: SYSCORE
3942658.1eac: FileVersion: SYSCORE.15.1.0.680
3952658.1eac: PrivateBuild: SYSCORE.15.1.0.680 F15,F16,F19
3962658.1eac: FileDescription: Anti-Virus File System Filter Driver
3972658.1eac: \SystemRoot\System32\drivers\mfefirek.sys:
3982658.1eac: CreationTime: 2015-03-26T18:01:49.586511200Z
3992658.1eac: LastWriteTime: 2014-08-28T14:03:42.000000000Z
4002658.1eac: ChangeTime: 2015-03-29T06:51:15.667169200Z
4012658.1eac: FileAttributes: 0x20
4022658.1eac: Size: 0x80810
4032658.1eac: NT Headers: 0xe8
4042658.1eac: Timestamp: 0x53ee4bce
4052658.1eac: Machine: 0x8664 - amd64
4062658.1eac: Timestamp: 0x53ee4bce
4072658.1eac: Image Version: 0.0
4082658.1eac: SizeOfImage: 0x7dd00 (515328)
4092658.1eac: Resource Dir: 0x7b380 LB 0x350
4102658.1eac: ProductName: SYSCORE
4112658.1eac: FileVersion: SYSCORE.15.1.0.680
4122658.1eac: PrivateBuild: SYSCORE.15.1.0.680 F17,F18
4132658.1eac: FileDescription: McAfee Core Firewall Engine Driver
4142658.1eac: \SystemRoot\System32\drivers\mfehidk.sys:
4152658.1eac: CreationTime: 2014-01-06T18:38:32.368017900Z
4162658.1eac: LastWriteTime: 2014-08-28T14:08:02.000000000Z
4172658.1eac: ChangeTime: 2015-03-29T06:51:15.732172900Z
4182658.1eac: FileAttributes: 0x20
4192658.1eac: Size: 0xbff78
4202658.1eac: NT Headers: 0xf0
4212658.1eac: Timestamp: 0x53ee4b36
4222658.1eac: Machine: 0x8664 - amd64
4232658.1eac: Timestamp: 0x53ee4b36
4242658.1eac: Image Version: 0.0
4252658.1eac: SizeOfImage: 0xbce80 (773760)
4262658.1eac: Resource Dir: 0xba880 LB 0x348
4272658.1eac: ProductName: SYSCORE
4282658.1eac: FileVersion: SYSCORE.15.1.0.680
4292658.1eac: PrivateBuild: SYSCORE.15.1.0.680 F14,F15,F16,F18,F20
4302658.1eac: FileDescription: McAfee Link Driver
4312658.1eac: \SystemRoot\System32\drivers\mfewfpk.sys:
4322658.1eac: CreationTime: 2014-01-06T18:38:29.867767900Z
4332658.1eac: LastWriteTime: 2014-08-28T14:17:38.000000000Z
4342658.1eac: ChangeTime: 2015-03-29T06:51:15.789176200Z
4352658.1eac: FileAttributes: 0x20
4362658.1eac: Size: 0x55188
4372658.1eac: NT Headers: 0xf8
4382658.1eac: Timestamp: 0x53ee4b46
4392658.1eac: Machine: 0x8664 - amd64
4402658.1eac: Timestamp: 0x53ee4b46
4412658.1eac: Image Version: 0.0
4422658.1eac: SizeOfImage: 0x52a80 (338560)
4432658.1eac: Resource Dir: 0x51f00 LB 0x348
4442658.1eac: ProductName: SYSCORE
4452658.1eac: FileVersion: SYSCORE.15.1.0.680
4462658.1eac: PrivateBuild: SYSCORE.15.1.0.680 F17,F18
4472658.1eac: FileDescription: Anti-Virus Mini-Firewall Driver
4482658.1eac: \SystemRoot\System32\drivers\dgmaster.sys:
4492658.1eac: CreationTime: 2014-05-13T20:29:41.648599000Z
4502658.1eac: LastWriteTime: 2013-06-11T19:04:28.000000000Z
4512658.1eac: ChangeTime: 2015-03-29T06:51:27.728859100Z
4522658.1eac: FileAttributes: 0x20
4532658.1eac: Size: 0x1556f0
4542658.1eac: NT Headers: 0x108
4552658.1eac: Timestamp: 0x51b766a9
4562658.1eac: Machine: 0x8664 - amd64
4572658.1eac: Timestamp: 0x51b766a9
4582658.1eac: Image Version: 6.1
4592658.1eac: SizeOfImage: 0x16a000 (1482752)
4602658.1eac: Resource Dir: 0x12d000 LB 0x35f80
4612658.1eac: Calling main()
4622658.1eac: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
4632658.1eac: '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
4642658.1eac: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe)
4652658.1eac: SUPR3HardenedMain: Respawn #2
4662658.1eac: supR3HardNtEnableThreadCreation:
4672658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\apphelp.dll)
4682658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\apphelp.dll
4692658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\apphelp.dll (rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000000:<flags> [calling]
4702658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\apphelp.dll [lacks WinVerifyTrust]
4712658.1eac: supR3HardenedDllNotificationCallback: load 000007fefcfc0000 LB 0x00057000 C:\Windows\system32\apphelp.dll [fFlags=0x0]
4722658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\apphelp.dll [lacks WinVerifyTrust]
4732658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefcfc0000 'C:\Windows\system32\apphelp.dll'
4742658.1eac: supR3HardNtDisableThreadCreation: pvLdrInitThunk=000000007742c340 pvNtTerminateThread=00000000774517e0
4752658.1eac: supR3HardenedWinDoReSpawn(2): New child 1430.2530 [kernel32].
4762658.1eac: supR3HardNtChildGatherData: PebBaseAddress=000007fffffda000 cbPeb=0x380
4772658.1eac: supR3HardNtPuChFindNtdll: uNtDllParentAddr=0000000077400000 uNtDllChildAddr=0000000077400000
4782658.1eac: supR3HardenedWinSetupChildInit: uLdrInitThunk=000000007742c340
4792658.1eac: supR3HardenedWinSetupChildInit: Start child.
4802658.1eac: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 25 ms.
4812658.1eac: supR3HardNtChildPurify: Startup delay kludge #1/0: 520 ms, 65 sleeps
4822658.1eac: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
4832658.1eac: *0000000000000000-fffffffffffeffff 0x0001/0x0000 0x0000000
4842658.1eac: *0000000000010000-fffffffffffeffff 0x0004/0x0004 0x0020000
4852658.1eac: *0000000000030000-000000000002efff 0x0040/0x0040 0x0020000 !!
4862658.1eac: supHardNtVpFreeOrReplacePrivateExecMemory: Replacing exec mem at 0000000000030000 (LB 0x1000, 0000000000030000 LB 0x1000)
4872658.1eac: supHardNtVpFreeOrReplacePrivateExecMemory: Free attempt #1 succeeded: 0x0 [0000000000030000/0000000000030000 LB 0/0x1000]
4882658.1eac: supHardNtVpFreeOrReplacePrivateExecMemory: QVM after free 0: [0000000000000000]/0000000000030000 LB 0x10000 s=0x10000 ap=0x0 rp=0x00000000000001
4892658.1eac: supHardNtVpFreeOrReplacePrivateExecMemory: Retrying free...
4902658.1eac: supHardNtVpFreeOrReplacePrivateExecMemory: Free attempt #1 failed: 0xc00000a0 [0000000000030000 LB 0]
4912658.1eac: supHardNtVpFreeOrReplacePrivateExecMemory: Free attempt #2 failed: 0xc00000a0 [0000000000030000 LB 0x1000]
4922658.1eac: Error (rc=-5664):
4932658.1eac: NtFreeVirtualMemory [0000000000030000 LB 0x1000 and 0000000000030000 LB 0x1000] failed: 0xc00000a0
4942658.1eac: 0000000000031000-0000000000021fff 0x0001/0x0000 0x0000000
4952658.1eac: *0000000000040000-000000000003bfff 0x0002/0x0002 0x0040000
4962658.1eac: 0000000000044000-0000000000037fff 0x0001/0x0000 0x0000000
4972658.1eac: *0000000000050000-000000000004efff 0x0004/0x0004 0x0020000
4982658.1eac: 0000000000051000-fffffffffff51fff 0x0001/0x0000 0x0000000
4992658.1eac: *0000000000150000-0000000000053fff 0x0000/0x0004 0x0020000
5002658.1eac: 000000000024c000-0000000000248fff 0x0104/0x0004 0x0020000
5012658.1eac: 000000000024f000-000000000024dfff 0x0004/0x0004 0x0020000
5022658.1eac: 0000000000250000-ffffffff8909ffff 0x0001/0x0000 0x0000000
5032658.1eac: *0000000077400000-0000000077400fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
5042658.1eac: 0000000077401000-0000000077502fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
5052658.1eac: 0000000077503000-0000000077531fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
5062658.1eac: 0000000077532000-0000000077539fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
5072658.1eac: 000000007753a000-000000007753afff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
5082658.1eac: 000000007753b000-000000007753dfff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
5092658.1eac: 000000007753e000-00000000775a8fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\ntdll.dll
5102658.1eac: 00000000775a9000-000000006fb71fff 0x0001/0x0000 0x0000000
5112658.1eac: *000000007efe0000-000000007dfdffff 0x0000/0x0002 0x0020000
5122658.1eac: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000
5132658.1eac: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000
5142658.1eac: 000000007fff0000-ffffffffc070ffff 0x0001/0x0000 0x0000000
5152658.1eac: *000000013f8d0000-000000013f8d0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
5162658.1eac: 000000013f8d1000-000000013f955fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
5172658.1eac: 000000013f956000-000000013f956fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
5182658.1eac: 000000013f957000-000000013f994fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
5192658.1eac: 000000013f995000-000000013f995fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
5202658.1eac: 000000013f996000-000000013f996fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
5212658.1eac: 000000013f997000-000000013f998fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
5222658.1eac: 000000013f999000-000000013f999fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
5232658.1eac: 000000013f99a000-000000013f99afff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
5242658.1eac: 000000013f99b000-000000013f99efff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
5252658.1eac: 000000013f99f000-000000013f9d7fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.exe
5262658.1eac: 000000013f9d8000-fffff8037fc8ffff 0x0001/0x0000 0x0000000
5272658.1eac: *000007feff720000-000007feff720fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume1\Windows\System32\apisetschema.dll
5282658.1eac: 000007feff721000-000007fdfee91fff 0x0001/0x0000 0x0000000
5292658.1eac: *000007fffffb0000-000007fffff8cfff 0x0002/0x0002 0x0040000
5302658.1eac: 000007fffffd3000-000007fffffcbfff 0x0001/0x0000 0x0000000
5312658.1eac: *000007fffffda000-000007fffffd8fff 0x0004/0x0004 0x0020000
5322658.1eac: 000007fffffdb000-000007fffffd7fff 0x0001/0x0000 0x0000000
5332658.1eac: *000007fffffde000-000007fffffdbfff 0x0004/0x0004 0x0020000
5342658.1eac: *000007fffffe0000-000007fffffcffff 0x0001/0x0002 0x0020000
5352658.1eac: Error (rc=-5664):
5362658.1eac: supHardenedWinVerifyProcess failed with Unknown Status -5664 (0xffffe9e0): NtFreeVirtualMemory [0000000000030000 LB 0x1000 and 0000000000030000 LB 0x1000] failed: 0xc00000a0
5372658.1eac: Error -5664 in supR3HardNtChildPurify! (enmWhat=5)
5382658.1eac: supHardenedWinVerifyProcess failed with Unknown Status -5664 (0xffffe9e0): NtFreeVirtualMemory [0000000000030000 LB 0x1000 and 0000000000030000 LB 0x1000] failed: 0xc00000a0
5392658.1eac: supR3HardNtEnableThreadCreation:
5402658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'opengl32.dll'.
5412658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'vboxrt.dll'.
5422658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'msvcp100.dll'.
5432658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'msvcr100.dll'.
5442658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qtcorevbox4.dll'.
5452658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'qtguivbox4.dll'.
5462658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'qtnetworkvbox4.dll'.
5472658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'qtopenglvbox4.dll'.
5482658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'user32.dll'.
5492658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'gdi32.dll'.
5502658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'advapi32.dll'.
5512658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'shell32.dll'.
5522658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #13 'ole32.dll'.
5532658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #14 'oleaut32.dll'.
5542658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #15 'comdlg32.dll'.
5552658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #16 'winmm.dll'.
5562658.1eac: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.dll)
5572658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.dll
5582658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
5592658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume1\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
5602658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcrt.dll'.
5612658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
5622658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\winmm.dll)
5632658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\winmm.dll
5642658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comdlg32.dll'...
5652658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'comdlg32.dll' -> '\Device\HarddiskVolume1\Windows\System32\comdlg32.dll' [rcNtRedir=0xc0150008]
5662658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
5672658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'shlwapi.dll'.
5682658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
5692658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'gdi32.dll'.
5702658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'comctl32.dll'.
5712658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'shell32.dll'.
5722658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\comdlg32.dll)
5732658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\comdlg32.dll
5742658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
5752658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume1\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
5762658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'ole32.dll'.
5772658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcrt.dll'.
5782658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'rpcrt4.dll'.
5792658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'user32.dll'.
5802658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'gdi32.dll'.
5812658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\oleaut32.dll)
5822658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\oleaut32.dll
5832658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
5842658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume1\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
5852658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
5862658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'gdi32.dll'.
5872658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #25 'user32.dll'.
5882658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #26 'rpcrt4.dll'.
5892658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\ole32.dll)
5902658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\ole32.dll
5912658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
5922658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume1\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
5932658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
5942658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #21 'shlwapi.dll'.
5952658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #23 'user32.dll'.
5962658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #24 'gdi32.dll'.
5972658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\shell32.dll)
5982658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\shell32.dll
5992658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
6002658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
6012658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
6022658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'rpcrt4.dll'.
6032658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\advapi32.dll)
6042658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\advapi32.dll
6052658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
6062658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
6072658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
6082658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'lpk.dll'.
6092658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\gdi32.dll)
6102658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\gdi32.dll
6112658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
6122658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
6132658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'gdi32.dll'.
6142658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\user32.dll)
6152658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\user32.dll
6162658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtopenglvbox4.dll'...
6172658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtopenglvbox4.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\qtopenglvbox4.dll' [rcNtRedir=0xc0150008]
6182658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'opengl32.dll'.
6192658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'gdi32.dll'.
6202658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
6212658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'qtguivbox4.dll'.
6222658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qtcorevbox4.dll'.
6232658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcr100.dll'.
6242658.1eac: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtOpenGLVBox4.dll)
6252658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtOpenGLVBox4.dll
6262658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtnetworkvbox4.dll'...
6272658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtnetworkvbox4.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\qtnetworkvbox4.dll' [rcNtRedir=0xc0150008]
6282658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'ws2_32.dll'.
6292658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'qtcorevbox4.dll'.
6302658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'msvcr100.dll'.
6312658.1eac: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtNetworkVBox4.dll)
6322658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtNetworkVBox4.dll
6332658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtguivbox4.dll'...
6342658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtguivbox4.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\qtguivbox4.dll' [rcNtRedir=0xc0150008]
6352658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'.
6362658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'comdlg32.dll'.
6372658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'oleaut32.dll'.
6382658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'imm32.dll'.
6392658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'winmm.dll'.
6402658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'winspool.drv'.
6412658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'ole32.dll'.
6422658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'user32.dll'.
6432658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'advapi32.dll'.
6442658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'shell32.dll'.
6452658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'qtcorevbox4.dll'.
6462658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'msvcp100.dll'.
6472658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'msvcr100.dll'.
6482658.1eac: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll)
6492658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll
6502658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtcorevbox4.dll'...
6512658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtcorevbox4.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\qtcorevbox4.dll' [rcNtRedir=0xc0150008]
6522658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
6532658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'ole32.dll'.
6542658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'.
6552658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'ws2_32.dll'.
6562658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcp100.dll'.
6572658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msvcr100.dll'.
6582658.1eac: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll)
6592658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll
6602658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
6612658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
6622658.1eac: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll)
6632658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll
6642658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
6652658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
6662658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'.
6672658.1eac: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcp100.dll)
6682658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcp100.dll
6692658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'vboxrt.dll'...
6702658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'vboxrt.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\vboxrt.dll' [rcNtRedir=0xc0150008]
6712658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'.
6722658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcp100.dll'.
6732658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ws2_32.dll'.
6742658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'rpcrt4.dll'.
6752658.1eac: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll)
6762658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll
6772658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
6782658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume1\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
6792658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
6802658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'.
6812658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'gdi32.dll'.
6822658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'glu32.dll'.
6832658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'ddraw.dll'.
6842658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'user32.dll'.
6852658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\opengl32.dll)
6862658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\opengl32.dll
6872658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
6882658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
6892658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
6902658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ddraw.dll'...
6912658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'ddraw.dll' -> '\Device\HarddiskVolume1\Windows\System32\ddraw.dll' [rcNtRedir=0xc0150008]
6922658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
6932658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
6942658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'dciman32.dll'.
6952658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'.
6962658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'setupapi.dll'.
6972658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'dwmapi.dll'.
6982658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\ddraw.dll)
6992658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\ddraw.dll
7002658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'glu32.dll'...
7012658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'glu32.dll' -> '\Device\HarddiskVolume1\Windows\System32\glu32.dll' [rcNtRedir=0xc0150008]
7022658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
7032658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'opengl32.dll'.
7042658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
7052658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\glu32.dll)
7062658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\glu32.dll
7072658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
7082658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
7092658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
7102658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
7112658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
7122658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
7132658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
7142658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
7152658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\msvcrt.dll)
7162658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\msvcrt.dll
7172658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
7182658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
7192658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll)
7202658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll
7212658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'...
7222658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume1\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008]
7232658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
7242658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #16 'rpcrt4.dll'.
7252658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #17 'nsi.dll'.
7262658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\ws2_32.dll)
7272658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\ws2_32.dll
7282658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
7292658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
7302658.1eac: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
7312658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
7322658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
7332658.1eac: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
7342658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
7352658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
7362658.1eac: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
7372658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
7382658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
7392658.1eac: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
7402658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
7412658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
7422658.1eac: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
7432658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'...
7442658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume1\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008]
7452658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ws2_32.dll [lacks WinVerifyTrust]
7462658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
7472658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
7482658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
7492658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
7502658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume1\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
7512658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ole32.dll [lacks WinVerifyTrust]
7522658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
7532658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
7542658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
7552658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
7562658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
7572658.1eac: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
7582658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
7592658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
7602658.1eac: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
7612658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtcorevbox4.dll'...
7622658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtcorevbox4.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\qtcorevbox4.dll' [rcNtRedir=0xc0150008]
7632658.1eac: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [lacks WinVerifyTrust]
7642658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
7652658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume1\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
7662658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\shell32.dll [lacks WinVerifyTrust]
7672658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
7682658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
7692658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
7702658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
7712658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
7722658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
7732658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
7742658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume1\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
7752658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ole32.dll [lacks WinVerifyTrust]
7762658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winspool.drv'...
7772658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'winspool.drv' -> '\Device\HarddiskVolume1\Windows\System32\winspool.drv' [rcNtRedir=0xc0150008]
7782658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
7792658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'.
7802658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'user32.dll'.
7812658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\winspool.drv)
7822658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\winspool.drv
7832658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
7842658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume1\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
7852658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\winmm.dll [lacks WinVerifyTrust]
7862658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'imm32.dll'...
7872658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'imm32.dll' -> '\Device\HarddiskVolume1\Windows\System32\imm32.dll' [rcNtRedir=0xc0150008]
7882658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'user32.dll'.
7892658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'.
7902658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msctf.dll'.
7912658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\imm32.dll)
7922658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\imm32.dll
7932658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
7942658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume1\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
7952658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
7962658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comdlg32.dll'...
7972658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'comdlg32.dll' -> '\Device\HarddiskVolume1\Windows\System32\comdlg32.dll' [rcNtRedir=0xc0150008]
7982658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\comdlg32.dll [lacks WinVerifyTrust]
7992658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
8002658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
8012658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
8022658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
8032658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
8042658.1eac: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
8052658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtcorevbox4.dll'...
8062658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtcorevbox4.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\qtcorevbox4.dll' [rcNtRedir=0xc0150008]
8072658.1eac: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [lacks WinVerifyTrust]
8082658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'...
8092658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume1\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008]
8102658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ws2_32.dll [lacks WinVerifyTrust]
8112658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
8122658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
8132658.1eac: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
8142658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtcorevbox4.dll'...
8152658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtcorevbox4.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\qtcorevbox4.dll' [rcNtRedir=0xc0150008]
8162658.1eac: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [lacks WinVerifyTrust]
8172658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtguivbox4.dll'...
8182658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtguivbox4.dll' -> '\Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\qtguivbox4.dll' [rcNtRedir=0xc0150008]
8192658.1eac: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll [lacks WinVerifyTrust]
8202658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
8212658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
8222658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
8232658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
8242658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
8252658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
8262658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
8272658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume1\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
8282658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
8292658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
8302658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
8312658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
8322658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'lpk.dll'...
8332658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'lpk.dll' -> '\Device\HarddiskVolume1\Windows\System32\lpk.dll' [rcNtRedir=0xc0150008]
8342658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'gdi32.dll'.
8352658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'user32.dll'.
8362658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'usp10.dll'.
8372658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\lpk.dll)
8382658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\lpk.dll
8392658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
8402658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
8412658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
8422658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
8432658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
8442658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
8452658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
8462658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
8472658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
8482658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
8492658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
8502658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
8512658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
8522658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
8532658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
8542658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shlwapi.dll'...
8552658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'shlwapi.dll' -> '\Device\HarddiskVolume1\Windows\System32\shlwapi.dll' [rcNtRedir=0xc0150008]
8562658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'gdi32.dll'.
8572658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
8582658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msvcrt.dll'.
8592658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\shlwapi.dll)
8602658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\shlwapi.dll
8612658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
8622658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
8632658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
8642658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
8652658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
8662658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
8672658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
8682658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
8692658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
8702658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
8712658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
8722658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
8732658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
8742658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
8752658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
8762658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
8772658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
8782658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
8792658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
8802658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
8812658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
8822658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
8832658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
8842658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
8852658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
8862658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
8872658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
8882658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
8892658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume1\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
8902658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ole32.dll [lacks WinVerifyTrust]
8912658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
8922658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume1\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
8932658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\shell32.dll [lacks WinVerifyTrust]
8942658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comctl32.dll'...
8952658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'comctl32.dll' -> '\Device\HarddiskVolume1\Windows\System32\comctl32.dll' [rcNtRedir=0x0]
8962658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'advapi32.dll'.
8972658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
8982658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
8992658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\comctl32.dll)
9002658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\comctl32.dll
9012658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
9022658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
9032658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
9042658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9052658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9062658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
9072658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shlwapi.dll'...
9082658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'shlwapi.dll' -> '\Device\HarddiskVolume1\Windows\System32\shlwapi.dll' [rcNtRedir=0xc0150008]
9092658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\shlwapi.dll [lacks WinVerifyTrust]
9102658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9112658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9122658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9132658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9142658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9152658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
9162658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9172658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9182658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9192658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9202658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9212658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
9222658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
9232658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
9242658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
9252658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
9262658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
9272658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
9282658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9292658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9302658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9312658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9322658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9332658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
9342658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
9352658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
9362658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
9372658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'usp10.dll'...
9382658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'usp10.dll' -> '\Device\HarddiskVolume1\Windows\System32\usp10.dll' [rcNtRedir=0xc0150008]
9392658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
9402658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
9412658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'gdi32.dll'.
9422658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\usp10.dll)
9432658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\usp10.dll
9442658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9452658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9462658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
9472658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
9482658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
9492658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
9502658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msctf.dll'...
9512658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msctf.dll' -> '\Device\HarddiskVolume1\Windows\System32\msctf.dll' [rcNtRedir=0xc0150008]
9522658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
9532658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'user32.dll'.
9542658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'gdi32.dll'.
9552658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'imm32.dll'.
9562658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\msctf.dll)
9572658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\msctf.dll
9582658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
9592658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
9602658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
9612658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9622658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9632658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
9642658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9652658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9662658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
9672658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
9682658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
9692658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
9702658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9712658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9722658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9732658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'nsi.dll'...
9742658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'nsi.dll' -> '\Device\HarddiskVolume1\Windows\System32\nsi.dll' [rcNtRedir=0xc0150008]
9752658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\nsi.dll)
9762658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\nsi.dll
9772658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
9782658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
9792658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
9802658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9812658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9822658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9832658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9842658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9852658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
9862658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
9872658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume1\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
9882658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
9892658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9902658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9912658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9922658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'dwmapi.dll'...
9932658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'dwmapi.dll' -> '\Device\HarddiskVolume1\Windows\System32\dwmapi.dll' [rcNtRedir=0xc0150008]
9942658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
9952658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
9962658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
9972658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\dwmapi.dll)
9982658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\dwmapi.dll
9992658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'setupapi.dll'...
10002658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'setupapi.dll' -> '\Device\HarddiskVolume1\Windows\System32\setupapi.dll' [rcNtRedir=0xc0150008]
10012658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'cfgmgr32.dll'.
10022658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'msvcrt.dll'.
10032658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'gdi32.dll'.
10042658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'rpcrt4.dll'.
10052658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'user32.dll'.
10062658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'oleaut32.dll'.
10072658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'devobj.dll'.
10082658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\setupapi.dll)
10092658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\setupapi.dll
10102658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10112658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10122658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10132658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'dciman32.dll'...
10142658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'dciman32.dll' -> '\Device\HarddiskVolume1\Windows\System32\dciman32.dll' [rcNtRedir=0xc0150008]
10152658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
10162658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'gdi32.dll'.
10172658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
10182658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\dciman32.dll)
10192658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\dciman32.dll
10202658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10212658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10222658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
10232658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10242658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10252658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10262658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10272658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10282658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
10292658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10302658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10312658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10322658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10332658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10342658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10352658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'devobj.dll'...
10362658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'devobj.dll' -> '\Device\HarddiskVolume1\Windows\System32\devobj.dll' [rcNtRedir=0xc0150008]
10372658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
10382658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'cfgmgr32.dll'.
10392658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\devobj.dll)
10402658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\devobj.dll
10412658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
10422658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume1\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
10432658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
10442658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10452658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10462658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
10472658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
10482658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
10492658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
10502658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10512658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10522658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10532658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10542658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10552658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10562658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'cfgmgr32.dll'...
10572658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'cfgmgr32.dll' -> '\Device\HarddiskVolume1\Windows\System32\cfgmgr32.dll' [rcNtRedir=0xc0150008]
10582658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
10592658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'rpcrt4.dll'.
10602658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'.
10612658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\cfgmgr32.dll)
10622658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\cfgmgr32.dll
10632658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10642658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10652658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
10662658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10672658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10682658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10692658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10702658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10712658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10722658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'imm32.dll'...
10732658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'imm32.dll' -> '\Device\HarddiskVolume1\Windows\System32\imm32.dll' [rcNtRedir=0xc0150008]
10742658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\imm32.dll [lacks WinVerifyTrust]
10752658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10762658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10772658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10782658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10792658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10802658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
10812658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10822658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10832658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10842658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10852658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10862658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10872658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10882658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10892658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
10902658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10912658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10922658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10932658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
10942658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
10952658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
10962658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
10972658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
10982658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
10992658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
11002658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
11012658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
11022658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'cfgmgr32.dll'...
11032658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'cfgmgr32.dll' -> '\Device\HarddiskVolume1\Windows\System32\cfgmgr32.dll' [rcNtRedir=0xc0150008]
11042658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\cfgmgr32.dll [lacks WinVerifyTrust]
11052658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
11062658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
11072658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
11082658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VirtualBox.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007258b0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32 [calling]
11092658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.dll [lacks WinVerifyTrust]
11102658.1eac: supR3HardenedDllNotificationCallback: load 000007fedd810000 LB 0x00875000 C:\Program Files\Oracle\VirtualBox\VirtualBox.dll [fFlags=0x0]
11112658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VirtualBox.dll [lacks WinVerifyTrust]
11122658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
11132658.1eac: supR3HardenedDllNotificationCallback: load 000007fee9940000 LB 0x0011d000 C:\Windows\system32\OPENGL32.dll [fFlags=0x0]
11142658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
11152658.1eac: supR3HardenedDllNotificationCallback: load 000007feff5d0000 LB 0x0009f000 C:\Windows\system32\msvcrt.dll [fFlags=0x0]
11162658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
11172658.1eac: supR3HardenedDllNotificationCallback: load 000007fefe530000 LB 0x000db000 C:\Windows\system32\ADVAPI32.dll [fFlags=0x0]
11182658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
11192658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msvcrt.dll'.
11202658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #14 'rpcrt4.dll'.
11212658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\sechost.dll)
11222658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\sechost.dll
11232658.1eac: supR3HardenedDllNotificationCallback: load 000007feff670000 LB 0x0001f000 C:\Windows\SYSTEM32\sechost.dll [fFlags=0x0]
11242658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\sechost.dll [lacks WinVerifyTrust]
11252658.1eac: supR3HardenedDllNotificationCallback: load 000007fefdcf0000 LB 0x0012d000 C:\Windows\system32\RPCRT4.dll [fFlags=0x0]
11262658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
11272658.1eac: supR3HardenedDllNotificationCallback: load 000007fefd9a0000 LB 0x00067000 C:\Windows\system32\GDI32.dll [fFlags=0x0]
11282658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
11292658.1eac: supR3HardenedDllNotificationCallback: load 00000000771e0000 LB 0x000fa000 C:\Windows\system32\USER32.dll [fFlags=0x0]
11302658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
11312658.1eac: supR3HardenedDllNotificationCallback: load 000007feff5a0000 LB 0x0000e000 C:\Windows\system32\LPK.dll [fFlags=0x0]
11322658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\lpk.dll [lacks WinVerifyTrust]
11332658.1eac: supR3HardenedDllNotificationCallback: load 000007fefdc20000 LB 0x000c9000 C:\Windows\system32\USP10.dll [fFlags=0x0]
11342658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\usp10.dll [lacks WinVerifyTrust]
11352658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\glu32.dll [lacks WinVerifyTrust]
11362658.1eac: supR3HardenedDllNotificationCallback: load 000007fee9b90000 LB 0x0002d000 C:\Windows\system32\GLU32.dll [fFlags=0x0]
11372658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\glu32.dll [lacks WinVerifyTrust]
11382658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ddraw.dll [lacks WinVerifyTrust]
11392658.1eac: supR3HardenedDllNotificationCallback: load 000007fee8b10000 LB 0x000f1000 C:\Windows\system32\DDRAW.dll [fFlags=0x0]
11402658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ddraw.dll [lacks WinVerifyTrust]
11412658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\dciman32.dll [lacks WinVerifyTrust]
11422658.1eac: supR3HardenedDllNotificationCallback: load 000007feec000000 LB 0x00008000 C:\Windows\system32\DCIMAN32.dll [fFlags=0x0]
11432658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\dciman32.dll [lacks WinVerifyTrust]
11442658.1eac: supR3HardenedDllNotificationCallback: load 000007fefde20000 LB 0x001d7000 C:\Windows\system32\SETUPAPI.dll [fFlags=0x0]
11452658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\setupapi.dll [lacks WinVerifyTrust]
11462658.1eac: supR3HardenedDllNotificationCallback: load 000007fefd480000 LB 0x00036000 C:\Windows\system32\CFGMGR32.dll [fFlags=0x0]
11472658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\cfgmgr32.dll [lacks WinVerifyTrust]
11482658.1eac: supR3HardenedDllNotificationCallback: load 000007fefd690000 LB 0x000d7000 C:\Windows\system32\OLEAUT32.dll [fFlags=0x0]
11492658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
11502658.1eac: supR3HardenedDllNotificationCallback: load 000007fefda10000 LB 0x00203000 C:\Windows\system32\ole32.dll [fFlags=0x0]
11512658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ole32.dll [lacks WinVerifyTrust]
11522658.1eac: supR3HardenedDllNotificationCallback: load 000007fefd280000 LB 0x0001a000 C:\Windows\system32\DEVOBJ.dll [fFlags=0x0]
11532658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\devobj.dll [lacks WinVerifyTrust]
11542658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\dwmapi.dll [lacks WinVerifyTrust]
11552658.1eac: supR3HardenedDllNotificationCallback: load 000007fefaef0000 LB 0x00018000 C:\Windows\system32\dwmapi.dll [fFlags=0x0]
11562658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\dwmapi.dll [lacks WinVerifyTrust]
11572658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11582658.1eac: supR3HardenedDllNotificationCallback: load 000007fede090000 LB 0x00532000 C:\Program Files\Oracle\VirtualBox\VBoxRT.dll [fFlags=0x0]
11592658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11602658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
11612658.1eac: supR3HardenedDllNotificationCallback: load 000000005b5b0000 LB 0x000d2000 C:\Program Files\Oracle\VirtualBox\MSVCR100.dll [fFlags=0x0]
11622658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
11632658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
11642658.1eac: supR3HardenedDllNotificationCallback: load 000000005b6d0000 LB 0x00098000 C:\Program Files\Oracle\VirtualBox\MSVCP100.dll [fFlags=0x0]
11652658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
11662658.1eac: supR3HardenedDllNotificationCallback: load 000007fefe610000 LB 0x0004d000 C:\Windows\system32\WS2_32.dll [fFlags=0x0]
11672658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ws2_32.dll [lacks WinVerifyTrust]
11682658.1eac: supR3HardenedDllNotificationCallback: load 000007fefe2d0000 LB 0x00008000 C:\Windows\system32\NSI.dll [fFlags=0x0]
11692658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\nsi.dll [lacks WinVerifyTrust]
11702658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [lacks WinVerifyTrust]
11712658.1eac: supR3HardenedDllNotificationCallback: load 000000005b2d0000 LB 0x002de000 C:\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [fFlags=0x0]
11722658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [lacks WinVerifyTrust]
11732658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll [lacks WinVerifyTrust]
11742658.1eac: supR3HardenedDllNotificationCallback: load 000000005a960000 LB 0x00969000 C:\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll [fFlags=0x0]
11752658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll [lacks WinVerifyTrust]
11762658.1eac: supR3HardenedDllNotificationCallback: load 000007feff480000 LB 0x00097000 C:\Windows\system32\COMDLG32.dll [fFlags=0x0]
11772658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\comdlg32.dll [lacks WinVerifyTrust]
11782658.1eac: supR3HardenedDllNotificationCallback: load 000007feff690000 LB 0x00071000 C:\Windows\system32\SHLWAPI.dll [fFlags=0x0]
11792658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\shlwapi.dll [lacks WinVerifyTrust]
11802658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'advapi32.dll'.
11812658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
11822658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
11832658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll)
11842658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll
11852658.1eac: supR3HardenedDllNotificationCallback: load 000007fef9bd0000 LB 0x000a0000 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\COMCTL32.dll [fFlags=0x0]
11862658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll [lacks WinVerifyTrust]
11872658.1eac: supR3HardenedDllNotificationCallback: load 000007fefe660000 LB 0x00d89000 C:\Windows\system32\SHELL32.dll [fFlags=0x0]
11882658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\shell32.dll [lacks WinVerifyTrust]
11892658.1eac: supR3HardenedDllNotificationCallback: load 000007feff3f0000 LB 0x0002e000 C:\Windows\system32\IMM32.dll [fFlags=0x0]
11902658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\imm32.dll [lacks WinVerifyTrust]
11912658.1eac: supR3HardenedDllNotificationCallback: load 000007fefd580000 LB 0x00109000 C:\Windows\system32\MSCTF.dll [fFlags=0x0]
11922658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msctf.dll [lacks WinVerifyTrust]
11932658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\winmm.dll [lacks WinVerifyTrust]
11942658.1eac: supR3HardenedDllNotificationCallback: load 000007fefaff0000 LB 0x0003b000 C:\Windows\system32\WINMM.dll [fFlags=0x0]
11952658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\winmm.dll [lacks WinVerifyTrust]
11962658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\winspool.drv [lacks WinVerifyTrust]
11972658.1eac: supR3HardenedDllNotificationCallback: load 000007fefa900000 LB 0x00071000 C:\Windows\system32\WINSPOOL.DRV [fFlags=0x0]
11982658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\winspool.drv [lacks WinVerifyTrust]
11992658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtNetworkVBox4.dll [lacks WinVerifyTrust]
12002658.1eac: supR3HardenedDllNotificationCallback: load 000000005a850000 LB 0x00105000 C:\Program Files\Oracle\VirtualBox\QtNetworkVBox4.dll [fFlags=0x0]
12012658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtNetworkVBox4.dll [lacks WinVerifyTrust]
12022658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtOpenGLVBox4.dll [lacks WinVerifyTrust]
12032658.1eac: supR3HardenedDllNotificationCallback: load 000000005a770000 LB 0x000dc000 C:\Program Files\Oracle\VirtualBox\QtOpenGLVBox4.dll [fFlags=0x0]
12042658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\QtOpenGLVBox4.dll [lacks WinVerifyTrust]
12052658.1eac: \Device\HarddiskVolume1\Windows\System32\nvinitx.dll: Owner is administrators group.
12062658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'user32.dll'.
12072658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'advapi32.dll'.
12082658.1eac: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\nvinitx.dll)
12092658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\nvinitx.dll
12102658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
12112658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
12122658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
12132658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
12142658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
12152658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
12162658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
12172658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
12182658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
12192658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
12202658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
12212658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
12222658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
12232658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
12242658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
12252658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
12262658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
12272658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
12282658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
12292658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
12302658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
12312658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\nvinitx.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000725ff0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.; [calling]
12322658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\nvinitx.dll [lacks WinVerifyTrust]
12332658.1eac: supR3HardenedDllNotificationCallback: load 000007fefd0f0000 LB 0x00032000 C:\Windows\system32\nvinitx.dll [fFlags=0x0]
12342658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\nvinitx.dll [lacks WinVerifyTrust]
12352658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd0f0000 'C:\Windows\system32\nvinitx.dll'
12362658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
12372658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd9a0000 'C:\Windows\system32\gdi32.dll'
12382658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-Win-Core-LocalRegistry-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
12392658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00000000772e0000 'API-MS-Win-Core-LocalRegistry-L1-1-0.dll'
12402658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12412658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
12422658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12432658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12442658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
12452658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12462658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12472658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
12482658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12492658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12502658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
12512658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12522658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12532658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
12542658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12552658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12562658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
12572658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12582658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12592658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12602658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12612658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12622658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12632658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12642658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12652658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12662658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12672658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12682658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12692658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12702658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12712658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12722658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12732658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
12742658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12752658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12762658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12772658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12782658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12792658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12802658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12812658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12822658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12832658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12842658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12852658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12862658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12872658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12882658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12892658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12902658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12912658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12922658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12932658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12942658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12952658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12962658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12972658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12982658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12992658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
13002658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
13012658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
13022658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
13032658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
13042658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
13052658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
13062658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
13072658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
13082658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
13092658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
13102658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
13112658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fede090000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
13122658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\imm32.dll [lacks WinVerifyTrust]
13132658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\imm32.dll (Input=imm32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
13142658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007feff3f0000 'C:\Windows\system32\imm32.dll'
13152658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedd810000 'C:\Program Files\Oracle\VirtualBox\VirtualBox.dll'
13162658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\winmm.dll [lacks WinVerifyTrust]
13172658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\winmm.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
13182658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefaff0000 'C:\Windows\system32\winmm.dll'
13192658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
13202658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'user32.dll'.
13212658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'gdi32.dll'.
13222658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\uxtheme.dll)
13232658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\uxtheme.dll
13242658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
13252658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
13262658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
13272658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
13282658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
13292658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
13302658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
13312658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
13322658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
13332658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007aef90:C:\Windows\system32;;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
13342658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
13352658.1eac: supR3HardenedDllNotificationCallback: load 000007fefb920000 LB 0x00056000 C:\Windows\system32\uxtheme.dll [fFlags=0x0]
13362658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
13372658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefb920000 'C:\Windows\system32\uxtheme.dll'
13382658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
13392658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007aef90:C:\Windows\system32;;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
13402658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefb920000 'C:\Windows\system32\uxtheme.dll'
13412658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\dwmapi.dll [lacks WinVerifyTrust]
13422658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\dwmapi.dll (Input=dwmapi.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
13432658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefaef0000 'C:\Windows\system32\dwmapi.dll'
13442658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\cryptbase.dll)
13452658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\cryptbase.dll
13462658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\CRYPTBASE.dll (Input=CRYPTBASE.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
13472658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\cryptbase.dll [lacks WinVerifyTrust]
13482658.1eac: supR3HardenedDllNotificationCallback: load 000007fefd020000 LB 0x0000f000 C:\Windows\system32\CRYPTBASE.dll [fFlags=0x0]
13492658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\cryptbase.dll [lacks WinVerifyTrust]
13502658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd020000 'C:\Windows\system32\CRYPTBASE.dll'
13512658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\shell32.dll [lacks WinVerifyTrust]
13522658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\shell32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
13532658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe660000 'C:\Windows\system32\shell32.dll'
13542658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
13552658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\kernel32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
13562658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00000000772e0000 'C:\Windows\system32\kernel32.dll'
13572658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
13582658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
13592658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefb920000 'C:\Windows\system32\uxtheme.dll'
13602658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
13612658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
13622658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefb920000 'C:\Windows\system32\uxtheme.dll'
13632658.1eac: supR3HardenedMonitor_LdrLoadDll: error opening 'C:\Windows\system32\wintab32.dll': 0 (NtPath=\??\C:\Windows\system32\wintab32.dll; Input=C:\Windows\system32\wintab32.dll; rcNtGetDll=0x0
13642658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wintab32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
13652658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000135 'C:\Windows\system32\wintab32.dll'
13662658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
13672658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00000000771e0000 'C:\Windows\system32\user32.dll'
13682658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
13692658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
13702658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefb920000 'C:\Windows\system32\uxtheme.dll'
13712658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
13722658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00000000771e0000 'C:\Windows\system32\user32.dll'
13732658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
13742658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd9a0000 'C:\Windows\system32\gdi32.dll'
13752658.1eac: supR3HardenedMonitor_LdrLoadDll: error opening 'C:\Windows\system32\wintab32.dll': 2147943568 (NtPath=\??\C:\Windows\system32\wintab32.dll; Input=C:\Windows\system32\wintab32.dll; rcNtGetDll=0x0
13762658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wintab32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
13772658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000135 'C:\Windows\system32\wintab32.dll'
13782658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
13792658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00000000771e0000 'C:\Windows\system32\user32.dll'
13802658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
13812658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'advapi32.dll'.
13822658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'shell32.dll'.
13832658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'ole32.dll'.
13842658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'oleaut32.dll'.
13852658.1eac: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Program Files\WIDCOMM\Bluetooth Software\BtMmHook.dll)
13862658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Program Files\WIDCOMM\Bluetooth Software\BtMmHook.dll
13872658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
13882658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume1\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
13892658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
13902658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
13912658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume1\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
13922658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ole32.dll [lacks WinVerifyTrust]
13932658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
13942658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume1\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
13952658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\shell32.dll [lacks WinVerifyTrust]
13962658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
13972658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
13982658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
13992658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
14002658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
14012658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
14022658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\WIDCOMM\Bluetooth Software\btmmhook.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000029c0090:C:\Program Files\WIDCOMM\Bluetooth Software;;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
14032658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\WIDCOMM\Bluetooth Software\BtMmHook.dll [lacks WinVerifyTrust]
14042658.1eac: supR3HardenedDllNotificationCallback: load 000007fee3e20000 LB 0x0003f000 C:\Program Files\WIDCOMM\Bluetooth Software\btmmhook.dll [fFlags=0x0]
14052658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\WIDCOMM\Bluetooth Software\BtMmHook.dll [lacks WinVerifyTrust]
14062658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\psapi.dll)
14072658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\psapi.dll
14082658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\PSAPI.DLL (Input=PSAPI.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
14092658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\psapi.dll [lacks WinVerifyTrust]
14102658.1eac: supR3HardenedDllNotificationCallback: load 00000000775d0000 LB 0x00007000 C:\Windows\system32\PSAPI.DLL [fFlags=0x0]
14112658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\psapi.dll [lacks WinVerifyTrust]
14122658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00000000775d0000 'C:\Windows\system32\PSAPI.DLL'
14132658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee3e20000 'C:\Program Files\WIDCOMM\Bluetooth Software\btmmhook.dll'
14142658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\winmm.dll [lacks WinVerifyTrust]
14152658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\WINMM.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
14162658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefaff0000 'C:\Windows\system32\WINMM.dll'
14172658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ole32.dll [lacks WinVerifyTrust]
14182658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
14192658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\ole32.dll (Input=ole32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
14202658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\kernel32.dll (Input=kernel32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
14212658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefda10000 'C:\Windows\system32\ole32.dll'
14222658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00000000772e0000 'C:\Windows\system32\kernel32.dll'
14232658.1714: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-WIN-Service-Management-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
14242658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007feff670000 'API-MS-WIN-Service-Management-L1-1-0.dll'
14252658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
14262658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefdcf0000 'C:\Windows\system32\rpcrt4.dll'
14272658.1714: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-WIN-Service-winsvc-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
14282658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007feff670000 'API-MS-WIN-Service-winsvc-L1-1-0.dll'
14292658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
14302658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefdcf0000 'C:\Windows\system32\RPCRT4.dll'
14312658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ole32.dll [lacks WinVerifyTrust]
14322658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
14332658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
14342658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'user32.dll'.
14352658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'rpcrt4.dll'.
14362658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'propsys.dll'.
14372658.1714: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\MMDevAPI.dll)
14382658.1714: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\MMDevAPI.dll
14392658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'propsys.dll'...
14402658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
14412658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
14422658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\ole32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
14432658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'propsys.dll' -> '\Device\HarddiskVolume1\Windows\System32\propsys.dll' [rcNtRedir=0xc0150008]
14442658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefda10000 'C:\Windows\system32\ole32.dll'
14452658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ole32.dll [lacks WinVerifyTrust]
14462658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\ole32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
14472658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefda10000 'C:\Windows\system32\ole32.dll'
14482658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
14492658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ole32.dll'.
14502658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'oleaut32.dll'.
14512658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'user32.dll'.
14522658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'rpcrt4.dll'.
14532658.1714: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\propsys.dll)
14542658.1714: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\propsys.dll
14552658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
14562658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
14572658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
14582658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
14592658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
14602658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
14612658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
14622658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
14632658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
14642658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
14652658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
14662658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
14672658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
14682658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume1\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
14692658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
14702658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
14712658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume1\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
14722658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ole32.dll [lacks WinVerifyTrust]
14732658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
14742658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
14752658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
14762658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\MMDevAPI.DLL (Input=MMDevAPI.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
14772658.1714: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
14782658.1714: supR3HardenedDllNotificationCallback: load 000007fefb2a0000 LB 0x0004b000 C:\Windows\system32\MMDevAPI.DLL [fFlags=0x0]
14792658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
14802658.1714: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\propsys.dll [lacks WinVerifyTrust]
14812658.1714: supR3HardenedDllNotificationCallback: load 000007fefb170000 LB 0x0012c000 C:\Windows\system32\PROPSYS.dll [fFlags=0x0]
14822658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\propsys.dll [lacks WinVerifyTrust]
14832658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
14842658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe530000 'C:\Windows\system32\ADVAPI32.dll'
14852658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefb2a0000 'C:\Windows\system32\MMDevAPI.DLL'
14862658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
14872658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'.
14882658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'ole32.dll'.
14892658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'user32.dll'.
14902658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'winmm.dll'.
14912658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'ksuser.dll'.
14922658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'mmdevapi.dll'.
14932658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'avrt.dll'.
14942658.1714: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\wdmaud.drv)
14952658.1714: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\wdmaud.drv
14962658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'avrt.dll'...
14972658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'avrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\avrt.dll' [rcNtRedir=0xc0150008]
14982658.1714: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\avrt.dll)
14992658.1714: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\avrt.dll
15002658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mmdevapi.dll'...
15012658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'mmdevapi.dll' -> '\Device\HarddiskVolume1\Windows\System32\mmdevapi.dll' [rcNtRedir=0xc0150008]
15022658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
15032658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ksuser.dll'...
15042658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'ksuser.dll' -> '\Device\HarddiskVolume1\Windows\System32\ksuser.dll' [rcNtRedir=0xc0150008]
15052658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
15062658.1714: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\ksuser.dll)
15072658.1714: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\ksuser.dll
15082658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
15092658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume1\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
15102658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\winmm.dll [lacks WinVerifyTrust]
15112658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
15122658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
15132658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
15142658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
15152658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume1\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
15162658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ole32.dll [lacks WinVerifyTrust]
15172658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
15182658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
15192658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
15202658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
15212658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
15222658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
15232658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
15242658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
15252658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
15262658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
15272658.1714: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
15282658.1714: supR3HardenedDllNotificationCallback: load 000007fee17c0000 LB 0x0003b000 C:\Windows\system32\wdmaud.drv [fFlags=0x0]
15292658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
15302658.1714: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ksuser.dll [lacks WinVerifyTrust]
15312658.1714: supR3HardenedDllNotificationCallback: load 0000000067670000 LB 0x00006000 C:\Windows\system32\ksuser.dll [fFlags=0x0]
15322658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ksuser.dll [lacks WinVerifyTrust]
15332658.1714: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\avrt.dll [lacks WinVerifyTrust]
15342658.1714: supR3HardenedDllNotificationCallback: load 000007fefafc0000 LB 0x00009000 C:\Windows\system32\AVRT.dll [fFlags=0x0]
15352658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\avrt.dll [lacks WinVerifyTrust]
15362658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee17c0000 'C:\Windows\system32\wdmaud.drv'
15372658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
15382658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
15392658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee17c0000 'C:\Windows\system32\wdmaud.drv'
15402658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
15412658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'ole32.dll'.
15422658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
15432658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'advapi32.dll'.
15442658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'oleaut32.dll'.
15452658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'rpcrt4.dll'.
15462658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\clbcatq.dll)
15472658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\clbcatq.dll
15482658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
15492658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
15502658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
15512658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
15522658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume1\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
15532658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
15542658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
15552658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
15562658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
15572658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee17c0000 'C:\Windows\system32\wdmaud.drv'
15582658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
15592658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
15602658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
15612658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
15622658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
15632658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\MMDEVAPI.DLL (Input=MMDEVAPI.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
15642658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefb2a0000 'C:\Windows\system32\MMDEVAPI.DLL'
15652658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
15662658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
15672658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ole32.dll [lacks WinVerifyTrust]
15682658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume1\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
15692658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ole32.dll [lacks WinVerifyTrust]
15702658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefda10000 'C:\Windows\system32\ole32.dll'
15712658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
15722658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\setupapi.dll [lacks WinVerifyTrust]
15732658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
15742658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\SETUPAPI.dll (Input=SETUPAPI.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
15752658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
15762658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefde20000 'C:\Windows\system32\SETUPAPI.dll'
15772658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\CLBCatQ.DLL (Input=CLBCatQ.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
15782658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\clbcatq.dll [lacks WinVerifyTrust]
15792658.1eac: supR3HardenedDllNotificationCallback: load 000007fefd770000 LB 0x00099000 C:\Windows\system32\CLBCatQ.DLL [fFlags=0x0]
15802658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\clbcatq.dll [lacks WinVerifyTrust]
15812658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd770000 'C:\Windows\system32\CLBCatQ.DLL'
15822658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
15832658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
15842658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee17c0000 'C:\Windows\system32\wdmaud.drv'
15852658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
15862658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
15872658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee17c0000 'C:\Windows\system32\wdmaud.drv'
15882658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\shlwapi.dll [lacks WinVerifyTrust]
15892658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msctf.dll [lacks WinVerifyTrust]
15902658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\SHLWAPI.dll (Input=SHLWAPI.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
15912658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007feff690000 'C:\Windows\system32\SHLWAPI.dll'
15922658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\MSCTF.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000002a081d0:C:\Windows\system32;;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
15932658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd580000 'C:\Windows\system32\MSCTF.dll'
15942658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ole32.dll [lacks WinVerifyTrust]
15952658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefda10000 'C:\Windows\system32\ole32.dll'
15962658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
15972658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'.
15982658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'ole32.dll'.
15992658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'oleaut32.dll'.
16002658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'user32.dll'.
16012658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'rpcrt4.dll'.
16022658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'mmdevapi.dll'.
16032658.1714: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\AudioSes.dll)
16042658.1714: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\AudioSes.dll
16052658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mmdevapi.dll'...
16062658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'mmdevapi.dll' -> '\Device\HarddiskVolume1\Windows\System32\mmdevapi.dll' [rcNtRedir=0xc0150008]
16072658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
16082658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
16092658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
16102658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
16112658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
16122658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
16132658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
16142658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
16152658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume1\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
16162658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
16172658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
16182658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume1\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
16192658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\ole32.dll [lacks WinVerifyTrust]
16202658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
16212658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
16222658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
16232658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
16242658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
16252658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
16262658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\AUDIOSES.DLL (Input=AUDIOSES.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
16272658.1714: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\AudioSes.dll [lacks WinVerifyTrust]
16282658.1714: supR3HardenedDllNotificationCallback: load 000007fefa8b0000 LB 0x0004f000 C:\Windows\system32\AUDIOSES.DLL [fFlags=0x0]
16292658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\AudioSes.dll [lacks WinVerifyTrust]
16302658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefa8b0000 'C:\Windows\system32\AUDIOSES.DLL'
16312658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
16322658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
16332658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee17c0000 'C:\Windows\system32\wdmaud.drv'
16342658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
16352658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
16362658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee17c0000 'C:\Windows\system32\wdmaud.drv'
16372658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
16382658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee17c0000 'C:\Windows\system32\wdmaud.drv'
16392658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
16402658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee17c0000 'C:\Windows\system32\wdmaud.drv'
16412658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
16422658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee17c0000 'C:\Windows\system32\wdmaud.drv'
16432658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
16442658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee17c0000 'C:\Windows\system32\wdmaud.drv'
16452658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
16462658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
16472658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'winmm.dll'.
16482658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msacm32.dll'.
16492658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'mmdevapi.dll'.
16502658.1714: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\msacm32.drv)
16512658.1714: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\msacm32.drv
16522658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mmdevapi.dll'...
16532658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'mmdevapi.dll' -> '\Device\HarddiskVolume1\Windows\System32\mmdevapi.dll' [rcNtRedir=0xc0150008]
16542658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
16552658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msacm32.dll'...
16562658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'msacm32.dll' -> '\Device\HarddiskVolume1\Windows\System32\msacm32.dll' [rcNtRedir=0xc0150008]
16572658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
16582658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'.
16592658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
16602658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'.
16612658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'winmm.dll'.
16622658.1714: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\msacm32.dll)
16632658.1714: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\msacm32.dll
16642658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
16652658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume1\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
16662658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\winmm.dll [lacks WinVerifyTrust]
16672658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
16682658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
16692658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
16702658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
16712658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
16722658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
16732658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
16742658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume1\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
16752658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\winmm.dll [lacks WinVerifyTrust]
16762658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
16772658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
16782658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
16792658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
16802658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
16812658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
16822658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
16832658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
16842658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
16852658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
16862658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
16872658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
16882658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
16892658.1714: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
16902658.1714: supR3HardenedDllNotificationCallback: load 000007fee1c20000 LB 0x0000a000 C:\Windows\system32\msacm32.drv [fFlags=0x0]
16912658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
16922658.1714: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msacm32.dll [lacks WinVerifyTrust]
16932658.1714: supR3HardenedDllNotificationCallback: load 000007fee17a0000 LB 0x00018000 C:\Windows\system32\MSACM32.dll [fFlags=0x0]
16942658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msacm32.dll [lacks WinVerifyTrust]
16952658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee1c20000 'C:\Windows\system32\msacm32.drv'
16962658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
16972658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
16982658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee1c20000 'C:\Windows\system32\msacm32.drv'
16992658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
17002658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
17012658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee1c20000 'C:\Windows\system32\msacm32.drv'
17022658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
17032658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
17042658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee1c20000 'C:\Windows\system32\msacm32.drv'
17052658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
17062658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
17072658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee1c20000 'C:\Windows\system32\msacm32.drv'
17082658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
17092658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
17102658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee1c20000 'C:\Windows\system32\msacm32.drv'
17112658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
17122658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
17132658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee1c20000 'C:\Windows\system32\msacm32.drv'
17142658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
17152658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee1c20000 'C:\Windows\system32\msacm32.drv'
17162658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
17172658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee1c20000 'C:\Windows\system32\msacm32.drv'
17182658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
17192658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee1c20000 'C:\Windows\system32\msacm32.drv'
17202658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
17212658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
17222658.1714: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'winmm.dll'.
17232658.1714: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\midimap.dll)
17242658.1714: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\midimap.dll
17252658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
17262658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume1\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
17272658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\winmm.dll [lacks WinVerifyTrust]
17282658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
17292658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
17302658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
17312658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
17322658.1714: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
17332658.1714: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
17342658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
17352658.1714: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\midimap.dll [lacks WinVerifyTrust]
17362658.1714: supR3HardenedDllNotificationCallback: load 000007fee1c10000 LB 0x00009000 C:\Windows\system32\midimap.dll [fFlags=0x0]
17372658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\midimap.dll [lacks WinVerifyTrust]
17382658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee1c10000 'C:\Windows\system32\midimap.dll'
17392658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\midimap.dll [lacks WinVerifyTrust]
17402658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
17412658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee1c10000 'C:\Windows\system32\midimap.dll'
17422658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\midimap.dll [lacks WinVerifyTrust]
17432658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
17442658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee1c10000 'C:\Windows\system32\midimap.dll'
17452658.1714: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\midimap.dll [lacks WinVerifyTrust]
17462658.1714: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
17472658.1714: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee1c10000 'C:\Windows\system32\midimap.dll'
17482658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
17492658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\OLEAUT32.DLL (Input=OLEAUT32.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
17502658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd690000 'C:\Windows\system32\OLEAUT32.DLL'
17512658.718: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\AudioSes.dll [lacks WinVerifyTrust]
17522658.718: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\audioses.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000002a19a40:C:\Windows\System32;;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
17532658.718: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefa8b0000 'C:\Windows\System32\audioses.dll'
17542658.15c4: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\cfgmgr32.dll [lacks WinVerifyTrust]
17552658.15c4: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\CFGMGR32.dll (Input=CFGMGR32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
17562658.15c4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd480000 'C:\Windows\system32\CFGMGR32.dll'
17572658.718: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
17582658.718: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd690000 'C:\Windows\system32\OLEAUT32.dll'
17592658.1eac: supR3HardenedMonitor_LdrLoadDll: 'C:\Windows\system32\comctl32.dll' -> 'C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll' [redir]
17602658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll [lacks WinVerifyTrust]
17612658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll (Input=C:\Windows\system32\comctl32.dll, rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
17622658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9bd0000 'C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll'
17632658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
17642658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
17652658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'.
17662658.1eac: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll)
17672658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll
17682658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
17692658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
17702658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
17712658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
17722658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
17732658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
17742658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
17752658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
17762658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\user32.dll [lacks WinVerifyTrust]
17772658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000002a15040:C:\Program Files\WIDCOMM\Bluetooth Software;;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
17782658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll [lacks WinVerifyTrust]
17792658.1eac: supR3HardenedDllNotificationCallback: load 000007fee5fa0000 LB 0x00024000 C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll [fFlags=0x0]
17802658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll [lacks WinVerifyTrust]
17812658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee5fa0000 'C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll'
17822658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
17832658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'crypt32.dll'.
17842658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msasn1.dll'.
17852658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'rpcrt4.dll'.
17862658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\wintrust.dll)
17872658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\wintrust.dll
17882658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
17892658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
17902658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
17912658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msasn1.dll'...
17922658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msasn1.dll' -> '\Device\HarddiskVolume1\Windows\System32\msasn1.dll' [rcNtRedir=0xc0150008]
17932658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\msasn1.dll)
17942658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\msasn1.dll
17952658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'crypt32.dll'...
17962658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'crypt32.dll' -> '\Device\HarddiskVolume1\Windows\System32\crypt32.dll' [rcNtRedir=0xc0150008]
17972658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
17982658.1eac: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msasn1.dll'.
17992658.1eac: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume1\Windows\System32\crypt32.dll)
18002658.1eac: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\crypt32.dll
18012658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
18022658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
18032658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
18042658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msasn1.dll'...
18052658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msasn1.dll' -> '\Device\HarddiskVolume1\Windows\System32\msasn1.dll' [rcNtRedir=0xc0150008]
18062658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msasn1.dll [lacks WinVerifyTrust]
18072658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
18082658.1eac: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
18092658.1eac: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
18102658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\WINTRUST.dll (Input=WINTRUST.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
18112658.1eac: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
18122658.1eac: supR3HardenedDllNotificationCallback: load 000007fefd440000 LB 0x00039000 C:\Windows\system32\WINTRUST.dll [fFlags=0x0]
18132658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
18142658.1eac: supR3HardenedDllNotificationCallback: load 000007fefd2d0000 LB 0x0016c000 C:\Windows\system32\CRYPT32.dll [fFlags=0x0]
18152658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\crypt32.dll [lacks WinVerifyTrust]
18162658.1eac: supR3HardenedDllNotificationCallback: load 000007fefd1c0000 LB 0x0000f000 C:\Windows\system32\MSASN1.dll [fFlags=0x0]
18172658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\msasn1.dll [lacks WinVerifyTrust]
18182658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd440000 'C:\Windows\system32\WINTRUST.dll'
18192658.1eac: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume1\Windows\System32\psapi.dll [lacks WinVerifyTrust]
18202658.1eac: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\PSAPI.DLL (Input=PSAPI.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000007a7530:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32\NV;C:\Windows\system32;C:\Windows\system;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Dell\DW WLAN Card;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\IBM\RationalSDLC\common;C:\Program Files (x86)\RSA SecurID Token Common;C:\Program Files (x86)\CA\SC\CAWIN\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\Program Files (x86)\CA\DSM\bin;C:\PROGRA~2\CA\SC\CAM\bin;C:\Program Files (x86)\IBM\RationalSDLC\ClearCase\bin;C:\Program Files (x86)\IBM\gsk8\lib;C:\Program Files (x86)\IBM\gsk8\bin;C:\Program Files\Collaborator Client;C:\Program Files\Perforce;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;.;;.;;.; [calling]
18212658.1eac: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00000000775d0000 'C:\Windows\system32\PSAPI.DLL'
1822213c.24cc: supR3HardNtChildWaitFor[1]: Quitting: ExitCode=0x1 (rcNtWait=0x0, rcNt1=0x0, rcNt2=0x103, rcNt3=0x103, 375855 ms, the end);

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy