VirtualBox

Ticket #17440: VBoxHardening.log

File VBoxHardening.log, 198.6 KB (added by mdr, 7 years ago)

VBHardening log for one of the machines

Line 
12c70.2ca4: Log file opened: 5.2.4r119785 g_hStartupLog=0000000000000080 g_uNtVerCombined=0x611db110
22c70.2ca4: \SystemRoot\System32\ntdll.dll:
32c70.2ca4: CreationTime: 2017-11-07T19:42:30.867566600Z
42c70.2ca4: LastWriteTime: 2017-09-13T15:31:56.094569800Z
52c70.2ca4: ChangeTime: 2017-11-08T20:23:14.680033500Z
62c70.2ca4: FileAttributes: 0x20
72c70.2ca4: Size: 0x1a7100
82c70.2ca4: NT Headers: 0xe0
92c70.2ca4: Timestamp: 0x59b94ee4
102c70.2ca4: Machine: 0x8664 - amd64
112c70.2ca4: Timestamp: 0x59b94ee4
122c70.2ca4: Image Version: 6.1
132c70.2ca4: SizeOfImage: 0x1aa000 (1744896)
142c70.2ca4: Resource Dir: 0x14e000 LB 0x5a028
152c70.2ca4: [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
162c70.2ca4: [Raw version resource data: 0x14e0f0 LB 0x380, codepage 0x0 (reserved 0x0)]
172c70.2ca4: ProductName: Microsoft® Windows® Operating System
182c70.2ca4: ProductVersion: 6.1.7601.23915
192c70.2ca4: FileVersion: 6.1.7601.23915 (win7sp1_ldr.170913-0600)
202c70.2ca4: FileDescription: NT Layer DLL
212c70.2ca4: \SystemRoot\System32\kernel32.dll:
222c70.2ca4: CreationTime: 2017-11-07T19:42:30.368405000Z
232c70.2ca4: LastWriteTime: 2017-09-13T15:27:59.681000000Z
242c70.2ca4: ChangeTime: 2017-11-08T20:23:15.381939000Z
252c70.2ca4: FileAttributes: 0x20
262c70.2ca4: Size: 0x11c000
272c70.2ca4: NT Headers: 0xe0
282c70.2ca4: Timestamp: 0x59b94f29
292c70.2ca4: Machine: 0x8664 - amd64
302c70.2ca4: Timestamp: 0x59b94f29
312c70.2ca4: Image Version: 6.1
322c70.2ca4: SizeOfImage: 0x11f000 (1175552)
332c70.2ca4: Resource Dir: 0x116000 LB 0x528
342c70.2ca4: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
352c70.2ca4: [Raw version resource data: 0x1160b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
362c70.2ca4: ProductName: Microsoft® Windows® Operating System
372c70.2ca4: ProductVersion: 6.1.7601.23915
382c70.2ca4: FileVersion: 6.1.7601.23915 (win7sp1_ldr.170913-0600)
392c70.2ca4: FileDescription: Windows NT BASE API Client DLL
402c70.2ca4: \SystemRoot\System32\KernelBase.dll:
412c70.2ca4: CreationTime: 2017-11-07T19:42:46.559959400Z
422c70.2ca4: LastWriteTime: 2017-09-13T15:27:59.681000000Z
432c70.2ca4: ChangeTime: 2017-11-08T20:23:15.366341100Z
442c70.2ca4: FileAttributes: 0x20
452c70.2ca4: Size: 0x66800
462c70.2ca4: NT Headers: 0xe8
472c70.2ca4: Timestamp: 0x59b94f2a
482c70.2ca4: Machine: 0x8664 - amd64
492c70.2ca4: Timestamp: 0x59b94f2a
502c70.2ca4: Image Version: 6.1
512c70.2ca4: SizeOfImage: 0x6a000 (434176)
522c70.2ca4: Resource Dir: 0x68000 LB 0x530
532c70.2ca4: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
542c70.2ca4: [Raw version resource data: 0x680b0 LB 0x3ac, codepage 0x0 (reserved 0x0)]
552c70.2ca4: ProductName: Microsoft® Windows® Operating System
562c70.2ca4: ProductVersion: 6.1.7601.23915
572c70.2ca4: FileVersion: 6.1.7601.23915 (win7sp1_ldr.170913-0600)
582c70.2ca4: FileDescription: Windows NT BASE API Client DLL
592c70.2ca4: \SystemRoot\System32\apisetschema.dll:
602c70.2ca4: CreationTime: 2017-11-07T19:42:46.669151000Z
612c70.2ca4: LastWriteTime: 2017-09-13T15:27:55.360000000Z
622c70.2ca4: ChangeTime: 2017-11-08T20:23:14.648837700Z
632c70.2ca4: FileAttributes: 0x20
642c70.2ca4: Size: 0x1a00
652c70.2ca4: NT Headers: 0xc0
662c70.2ca4: Timestamp: 0x59b94ec4
672c70.2ca4: Machine: 0x8664 - amd64
682c70.2ca4: Timestamp: 0x59b94ec4
692c70.2ca4: Image Version: 6.1
702c70.2ca4: SizeOfImage: 0x50000 (327680)
712c70.2ca4: Resource Dir: 0x30000 LB 0x3f8
722c70.2ca4: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
732c70.2ca4: [Raw version resource data: 0x30060 LB 0x398, codepage 0x0 (reserved 0x0)]
742c70.2ca4: ProductName: Microsoft® Windows® Operating System
752c70.2ca4: ProductVersion: 6.1.7601.23915
762c70.2ca4: FileVersion: 6.1.7601.23915 (win7sp1_ldr.170913-0600)
772c70.2ca4: FileDescription: ApiSet Schema DLL
782c70.2ca4: supR3HardenedWinFindAdversaries: 0x10000
792c70.2ca4: \SystemRoot\System32\drivers\privman.sys:
802c70.2ca4: CreationTime: 2017-11-01T22:39:01.378401700Z
812c70.2ca4: LastWriteTime: 2017-06-22T18:55:22.000000000Z
822c70.2ca4: ChangeTime: 2018-01-09T19:34:47.393600100Z
832c70.2ca4: FileAttributes: 0x20
842c70.2ca4: Size: 0x10630
852c70.2ca4: NT Headers: 0x100
862c70.2ca4: Timestamp: 0x594be0d5
872c70.2ca4: Machine: 0x8664 - amd64
882c70.2ca4: Timestamp: 0x594be0d5
892c70.2ca4: Image Version: 6.1
902c70.2ca4: SizeOfImage: 0xf000 (61440)
912c70.2ca4: Resource Dir: 0xb000 LB 0x2fa8
922c70.2ca4: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x0)]
932c70.2ca4: [Raw version resource data: 0xb0a0 LB 0x33c, codepage 0x0 (reserved 0x0)]
942c70.2ca4: ProductName: PowerBroker for Windows
952c70.2ca4: ProductVersion: 7.3.0.0
962c70.2ca4: FileVersion: 7.3.0.0
972c70.2ca4: FileDescription: PowerBroker for Windows
982c70.2ca4: \SystemRoot\System32\privman64.dll:
992c70.2ca4: CreationTime: 2017-06-22T16:52:44.000000000Z
1002c70.2ca4: LastWriteTime: 2017-06-22T16:52:44.000000000Z
1012c70.2ca4: ChangeTime: 2018-01-09T19:34:47.393600100Z
1022c70.2ca4: FileAttributes: 0x20
1032c70.2ca4: Size: 0x39100
1042c70.2ca4: NT Headers: 0xf8
1052c70.2ca4: Timestamp: 0x594be02a
1062c70.2ca4: Machine: 0x8664 - amd64
1072c70.2ca4: Timestamp: 0x594be02a
1082c70.2ca4: Image Version: 0.0
1092c70.2ca4: SizeOfImage: 0x3a000 (237568)
1102c70.2ca4: Resource Dir: 0x38000 LB 0x578
1112c70.2ca4: [Version info resource found at 0x80! (ID/Name: 0x1; SubID/SubName: 0x0)]
1122c70.2ca4: [Raw version resource data: 0x380a0 LB 0x37c, codepage 0x4e4 (reserved 0x0)]
1132c70.2ca4: ProductName: PowerBroker for Windows
1142c70.2ca4: ProductVersion: 7.3.0.0
1152c70.2ca4: FileVersion: 7.3.0.0
1162c70.2ca4: FileDescription: BeyondTrust PowerBroker for Windows DLL
1172c70.2ca4: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
1182c70.2ca4: Calling main()
1192c70.2ca4: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
1202c70.2ca4: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
1212c70.2ca4: SUPR3HardenedMain: Respawn #1
1222c70.2ca4: System32: \Device\HarddiskVolume2\Windows\System32
1232c70.2ca4: WinSxS: \Device\HarddiskVolume2\Windows\winsxs
1242c70.2ca4: KnownDllPath: C:\Windows\system32
1252c70.2ca4: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
1262c70.2ca4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe)
1272c70.2ca4: supR3HardNtEnableThreadCreation:
1282c70.2ca4: supR3HardNtDisableThreadCreation: pvLdrInitThunk=0000000076d6a360 pvNtTerminateThread=0000000076d8c260
1292c70.2ca4: supR3HardenedWinDoReSpawn(1): New child 2cc8.1928 [kernel32].
1302c70.2ca4: supR3HardNtChildGatherData: PebBaseAddress=000007fffffd5000 cbPeb=0x380
1312c70.2ca4: supR3HardNtPuChFindNtdll: uNtDllParentAddr=0000000076d40000 uNtDllChildAddr=0000000076d40000
1322c70.2ca4: supR3HardenedWinSetupChildInit: uLdrInitThunk=0000000076d6a360
1332c70.2ca4: supR3HardenedWinSetupChildInit: Start child.
1342c70.2ca4: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 0 ms.
1352c70.2ca4: supR3HardNtChildPurify: Startup delay kludge #1/0: 520 ms, 65 sleeps
1362c70.2ca4: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
1372c70.2ca4: *0000000000000000-000000000000ffff 0x0001/0x0000 0x0000000
1382c70.2ca4: *0000000000010000-000000000002ffff 0x0004/0x0004 0x0020000
1392c70.2ca4: *0000000000030000-0000000000033fff 0x0002/0x0002 0x0040000
1402c70.2ca4: 0000000000034000-000000000003ffff 0x0001/0x0000 0x0000000
1412c70.2ca4: *0000000000040000-0000000000040fff 0x0004/0x0004 0x0020000
1422c70.2ca4: 0000000000041000-000000000004ffff 0x0001/0x0000 0x0000000
1432c70.2ca4: *0000000000050000-0000000000050fff 0x0004/0x0004 0x0020000
1442c70.2ca4: 0000000000051000-00000000001affff 0x0001/0x0000 0x0000000
1452c70.2ca4: *00000000001b0000-00000000002abfff 0x0000/0x0004 0x0020000
1462c70.2ca4: 00000000002ac000-00000000002adfff 0x0104/0x0004 0x0020000
1472c70.2ca4: 00000000002ae000-00000000002affff 0x0004/0x0004 0x0020000
1482c70.2ca4: 00000000002b0000-0000000076d3ffff 0x0001/0x0000 0x0000000
1492c70.2ca4: *0000000076d40000-0000000076d40fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1502c70.2ca4: 0000000076d41000-0000000076e3dfff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1512c70.2ca4: 0000000076e3e000-0000000076e6cfff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1522c70.2ca4: 0000000076e6d000-0000000076e76fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1532c70.2ca4: 0000000076e77000-0000000076e77fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1542c70.2ca4: 0000000076e78000-0000000076e7afff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1552c70.2ca4: 0000000076e7b000-0000000076ee9fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1562c70.2ca4: 0000000076eea000-000000007efdffff 0x0001/0x0000 0x0000000
1572c70.2ca4: *000000007efe0000-000000007ffdffff 0x0000/0x0002 0x0020000
1582c70.2ca4: *000000007ffe0000-000000007ffe0fff 0x0002/0x0002 0x0020000
1592c70.2ca4: 000000007ffe1000-000000007ffeffff 0x0000/0x0002 0x0020000
1602c70.2ca4: 000000007fff0000-000000013f1effff 0x0001/0x0000 0x0000000
1612c70.2ca4: *000000013f1f0000-000000013f1f0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1622c70.2ca4: 000000013f1f1000-000000013f261fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1632c70.2ca4: 000000013f262000-000000013f262fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1642c70.2ca4: 000000013f263000-000000013f2a8fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1652c70.2ca4: 000000013f2a9000-000000013f2a9fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1662c70.2ca4: 000000013f2aa000-000000013f2aafff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1672c70.2ca4: 000000013f2ab000-000000013f2affff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1682c70.2ca4: 000000013f2b0000-000000013f2b0fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1692c70.2ca4: 000000013f2b1000-000000013f2b1fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1702c70.2ca4: 000000013f2b2000-000000013f2b5fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1712c70.2ca4: 000000013f2b6000-000000013f2fdfff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1722c70.2ca4: 000000013f2fe000-000007feff05ffff 0x0001/0x0000 0x0000000
1732c70.2ca4: *000007feff060000-000007feff060fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\apisetschema.dll
1742c70.2ca4: 000007feff061000-000007fffffaffff 0x0001/0x0000 0x0000000
1752c70.2ca4: *000007fffffb0000-000007fffffd2fff 0x0002/0x0002 0x0040000
1762c70.2ca4: 000007fffffd3000-000007fffffd4fff 0x0001/0x0000 0x0000000
1772c70.2ca4: *000007fffffd5000-000007fffffd5fff 0x0004/0x0004 0x0020000
1782c70.2ca4: 000007fffffd6000-000007fffffddfff 0x0001/0x0000 0x0000000
1792c70.2ca4: *000007fffffde000-000007fffffdffff 0x0004/0x0004 0x0020000
1802c70.2ca4: *000007fffffe0000-000007fffffeffff 0x0001/0x0002 0x0020000
1812c70.2ca4: apisetschema.dll: timestamp 0x59b94ec4 (rc=VINF_SUCCESS)
1822c70.2ca4: VirtualBox.exe: timestamp 0x5a37e337 (rc=VINF_SUCCESS)
1832c70.2ca4: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
1842c70.2ca4: '\Device\HarddiskVolume2\Windows\System32\apisetschema.dll' has no imports
1852c70.2ca4: '\Device\HarddiskVolume2\Windows\System32\ntdll.dll' has no imports
1862c70.2ca4: supR3HardNtChildPurify: Done after 575 ms and 0 fixes (loop #0).
1872cc8.1928: Log file opened: 5.2.4r119785 g_hStartupLog=0000000000000004 g_uNtVerCombined=0x611db100
1882cc8.1928: supR3HardenedVmProcessInit: uNtDllAddr=0000000076d40000 g_uNtVerCombined=0x611db100
1892cc8.1928: ntdll.dll: timestamp 0x59b94ee4 (rc=VINF_SUCCESS)
1902cc8.1928: New simple heap: #1 00000000002b0000 LB 0x400000 (for 1744896 allocation)
1912c70.2ca4: supR3HardNtEnableThreadCreation:
1922cc8.1928: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
1932cc8.1928: System32: \Device\HarddiskVolume2\Windows\System32
1942cc8.1928: WinSxS: \Device\HarddiskVolume2\Windows\winsxs
1952cc8.1928: KnownDllPath: C:\Windows\system32
1962cc8.1928: supR3HardenedVmProcessInit: Opening vboxdrv stub...
1972cc8.1928: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
1982cc8.1928: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
1992cc8.1928: Registered Dll notification callback with NTDLL.
2002cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\kernel32.dll)
2012cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\kernel32.dll
2022cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\kernel32.dll (Input=kernel32.dll, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000000:<flags> [calling]
2032cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
2042cc8.1928: supR3HardenedDllNotificationCallback: load 0000000076c20000 LB 0x0011f000 C:\Windows\system32\kernel32.dll [fFlags=0x0]
2052cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
2062cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefcb10000 LB 0x0006a000 C:\Windows\system32\KERNELBASE.dll [fFlags=0x0]
2072cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\KernelBase.dll)
2082cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\KernelBase.dll
2092cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000076c20000 'C:\Windows\system32\kernel32.dll'
2102cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'rpcrt4.dll'.
2112cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'version.dll'.
2122cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
2132cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'advapi32.dll'.
2142cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'shell32.dll'.
2152cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'shlwapi.dll'.
2162cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'userenv.dll'.
2172cc8.1928: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\privman64.dll)
2182cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\privman64.dll
2192cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'userenv.dll'...
2202cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'userenv.dll' -> '\Device\HarddiskVolume2\Windows\System32\userenv.dll' [rcNtRedir=0xc0150008]
2212cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
2222cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #17 'rpcrt4.dll'.
2232cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #18 'profapi.dll'.
2242cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\userenv.dll)
2252cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\userenv.dll
2262cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shlwapi.dll'...
2272cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'shlwapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\shlwapi.dll' [rcNtRedir=0xc0150008]
2282cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'gdi32.dll'.
2292cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
2302cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msvcrt.dll'.
2312cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\shlwapi.dll)
2322cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\shlwapi.dll
2332cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
2342cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
2352cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
2362cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #21 'shlwapi.dll'.
2372cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #23 'user32.dll'.
2382cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #24 'gdi32.dll'.
2392cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\shell32.dll)
2402cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\shell32.dll
2412cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
2422cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
2432cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
2442cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'rpcrt4.dll'.
2452cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\advapi32.dll)
2462cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\advapi32.dll
2472cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
2482cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
2492cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'gdi32.dll'.
2502cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\user32.dll)
2512cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\user32.dll
2522cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'version.dll'...
2532cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'version.dll' -> '\Device\HarddiskVolume2\Windows\System32\version.dll' [rcNtRedir=0xc0150008]
2542cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcrt.dll'.
2552cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\version.dll)
2562cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\version.dll
2572cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
2582cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
2592cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll)
2602cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll
2612cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
2622cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
2632cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\msvcrt.dll)
2642cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\msvcrt.dll
2652cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
2662cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
2672cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
2682cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'lpk.dll'.
2692cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\gdi32.dll)
2702cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\gdi32.dll
2712cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
2722cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
2732cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
2742cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
2752cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
2762cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
2772cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
2782cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
2792cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
2802cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
2812cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
2822cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
2832cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shlwapi.dll'...
2842cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'shlwapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\shlwapi.dll' [rcNtRedir=0xc0150008]
2852cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shlwapi.dll [lacks WinVerifyTrust]
2862cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
2872cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
2882cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
2892cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
2902cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
2912cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
2922cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
2932cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
2942cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
2952cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
2962cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
2972cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
2982cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'profapi.dll'...
2992cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'profapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\profapi.dll' [rcNtRedir=0xc0150008]
3002cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3012cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\profapi.dll)
3022cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\profapi.dll
3032cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3042cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3052cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3062cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3072cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3082cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3092cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3102cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3112cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3122cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'lpk.dll'...
3132cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'lpk.dll' -> '\Device\HarddiskVolume2\Windows\System32\lpk.dll' [rcNtRedir=0xc0150008]
3142cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'gdi32.dll'.
3152cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'user32.dll'.
3162cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'usp10.dll'.
3172cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\lpk.dll)
3182cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\lpk.dll
3192cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3202cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3212cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
3222cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'usp10.dll'...
3232cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'usp10.dll' -> '\Device\HarddiskVolume2\Windows\System32\usp10.dll' [rcNtRedir=0xc0150008]
3242cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3252cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
3262cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'gdi32.dll'.
3272cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\usp10.dll)
3282cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\usp10.dll
3292cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3302cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3312cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
3322cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3332cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3342cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3352cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3362cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3372cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3382cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3392cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3402cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
3412cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3422cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3432cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3442cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\privman64.dll (Input=privman64.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002af421:<flags> [calling]
3452cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\privman64.dll [lacks WinVerifyTrust]
3462cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefc960000 LB 0x0003a000 C:\Windows\system32\privman64.dll [fFlags=0x0]
3472cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\privman64.dll [lacks WinVerifyTrust]
3482cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefdd10000 LB 0x0012d000 C:\Windows\system32\RPCRT4.dll [fFlags=0x0]
3492cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3502cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\version.dll [lacks WinVerifyTrust]
3512cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefc8b0000 LB 0x0000c000 C:\Windows\system32\VERSION.dll [fFlags=0x0]
3522cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\version.dll [lacks WinVerifyTrust]
3532cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefe060000 LB 0x0009f000 C:\Windows\system32\msvcrt.dll [fFlags=0x0]
3542cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3552cc8.1928: supR3HardenedDllNotificationCallback: load 0000000076b20000 LB 0x000fa000 C:\Windows\system32\USER32.dll [fFlags=0x0]
3562cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
3572cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefde40000 LB 0x00067000 C:\Windows\system32\GDI32.dll [fFlags=0x0]
3582cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3592cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefe7d0000 LB 0x0000e000 C:\Windows\system32\LPK.dll [fFlags=0x0]
3602cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\lpk.dll [lacks WinVerifyTrust]
3612cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefdf90000 LB 0x000cb000 C:\Windows\system32\USP10.dll [fFlags=0x0]
3622cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\usp10.dll [lacks WinVerifyTrust]
3632cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefdeb0000 LB 0x000db000 C:\Windows\system32\ADVAPI32.dll [fFlags=0x0]
3642cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
3652cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msvcrt.dll'.
3662cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #14 'rpcrt4.dll'.
3672cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\sechost.dll)
3682cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\sechost.dll
3692cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefef30000 LB 0x0001f000 C:\Windows\SYSTEM32\sechost.dll [fFlags=0x0]
3702cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\sechost.dll [lacks WinVerifyTrust]
3712cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefcea0000 LB 0x00d8a000 C:\Windows\system32\SHELL32.dll [fFlags=0x0]
3722cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
3732cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefefd0000 LB 0x00071000 C:\Windows\system32\SHLWAPI.dll [fFlags=0x0]
3742cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shlwapi.dll [lacks WinVerifyTrust]
3752cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefcba0000 LB 0x0001e000 C:\Windows\system32\USERENV.dll [fFlags=0x0]
3762cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\userenv.dll [lacks WinVerifyTrust]
3772cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefca40000 LB 0x0000f000 C:\Windows\system32\profapi.dll [fFlags=0x0]
3782cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\profapi.dll [lacks WinVerifyTrust]
3792cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3802cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3812cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3822cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3832cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3842cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3852cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3862cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\gdi32.dll (Input=gdi32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002ae921:<flags> [calling]
3872cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefde40000 'C:\Windows\system32\gdi32.dll'
3882cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'user32.dll'.
3892cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'.
3902cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msctf.dll'.
3912cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\imm32.dll)
3922cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\imm32.dll
3932cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msctf.dll'...
3942cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msctf.dll' -> '\Device\HarddiskVolume2\Windows\System32\msctf.dll' [rcNtRedir=0xc0150008]
3952cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3962cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'user32.dll'.
3972cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'gdi32.dll'.
3982cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'imm32.dll'.
3992cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\msctf.dll)
4002cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\msctf.dll
4012cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
4022cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
4032cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
4042cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
4052cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
4062cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
4072cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'imm32.dll'...
4082cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'imm32.dll' -> '\Device\HarddiskVolume2\Windows\System32\imm32.dll' [rcNtRedir=0xc0150008]
4092cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\imm32.dll [lacks WinVerifyTrust]
4102cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
4112cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
4122cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
4132cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
4142cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
4152cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
4162cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
4172cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
4182cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
4192cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\IMM32.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002ae261:<flags> [calling]
4202cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\imm32.dll [lacks WinVerifyTrust]
4212cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefef50000 LB 0x0002e000 C:\Windows\system32\IMM32.DLL [fFlags=0x0]
4222cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\imm32.dll [lacks WinVerifyTrust]
4232cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefeaf0000 LB 0x00109000 C:\Windows\system32\MSCTF.dll [fFlags=0x0]
4242cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msctf.dll [lacks WinVerifyTrust]
4252cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefef50000 'C:\Windows\system32\IMM32.DLL'
4262cc8.1928: supR3HardenedMonitor_LdrLoadDll: error opening 'C:\Program.dll': 5 (NtPath=\??\C:\Program.dll; Input=C:\Program; rcNtGetDll=0x0
4272cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000034 'C:\Program.dll'
4282cc8.1928: supR3HardenedMonitor_LdrLoadDll: error opening 'C:\Windows\system32\Files.dll': 2 (NtPath=\??\C:\Windows\system32\Files.dll; Input=Files; rcNtGetDll=0xc0000135
4292cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000034 'C:\Windows\system32\Files.dll'
4302cc8.1928: Error (rc=0):
4312cc8.1928: supR3HardenedMonitor_LdrLoadDll: relative name not permitted: (x86)\Sophos\SOPHOS~1\SOPHOS~2.DLL
4322cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000033
4332cc8.1928: supR3HardenedMonitor_LdrLoadDll: error opening 'C:\Program.dll': 123 (NtPath=\??\C:\Program.dll; Input=C:\Program; rcNtGetDll=0x0
4342cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000034 'C:\Program.dll'
4352cc8.1928: supR3HardenedMonitor_LdrLoadDll: error opening 'C:\Windows\system32\Files.dll': 2 (NtPath=\??\C:\Windows\system32\Files.dll; Input=Files; rcNtGetDll=0xc0000135
4362cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000034 'C:\Windows\system32\Files.dll'
4372cc8.1928: Error (rc=0):
4382cc8.1928: supR3HardenedMonitor_LdrLoadDll: relative name not permitted: (x86)\Sophos\SOPHOS~1\SOPHOS~2.DLL
4392cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000033
4402cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
4412cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\kernel32.dll (Input=kernel32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002ae5c1:<flags> [calling]
4422cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000076c20000 'C:\Windows\system32\kernel32.dll'
4432cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefc960000 'C:\Windows\system32\privman64.dll'
4442cc8.1928: supR3HardNtDisableThreadCreation: pvLdrInitThunk=0000000076d6a360 pvNtTerminateThread=0000000076d8c260
4452c70.2ca4: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 42 ms.
4462cc8.1928: \SystemRoot\System32\ntdll.dll:
4472cc8.1928: CreationTime: 2017-11-07T19:42:30.867566600Z
4482cc8.1928: LastWriteTime: 2017-09-13T15:31:56.094569800Z
4492cc8.1928: ChangeTime: 2017-11-08T20:23:14.680033500Z
4502cc8.1928: FileAttributes: 0x20
4512cc8.1928: Size: 0x1a7100
4522cc8.1928: NT Headers: 0xe0
4532cc8.1928: Timestamp: 0x59b94ee4
4542cc8.1928: Machine: 0x8664 - amd64
4552cc8.1928: Timestamp: 0x59b94ee4
4562cc8.1928: Image Version: 6.1
4572cc8.1928: SizeOfImage: 0x1aa000 (1744896)
4582cc8.1928: Resource Dir: 0x14e000 LB 0x5a028
4592cc8.1928: [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
4602cc8.1928: [Raw version resource data: 0x14e0f0 LB 0x380, codepage 0x0 (reserved 0x0)]
4612cc8.1928: ProductName: Microsoft® Windows® Operating System
4622cc8.1928: ProductVersion: 6.1.7601.23915
4632cc8.1928: FileVersion: 6.1.7601.23915 (win7sp1_ldr.170913-0600)
4642cc8.1928: FileDescription: NT Layer DLL
4652cc8.1928: \SystemRoot\System32\kernel32.dll:
4662cc8.1928: CreationTime: 2017-11-07T19:42:30.368405000Z
4672cc8.1928: LastWriteTime: 2017-09-13T15:27:59.681000000Z
4682cc8.1928: ChangeTime: 2017-11-08T20:23:15.381939000Z
4692cc8.1928: FileAttributes: 0x20
4702cc8.1928: Size: 0x11c000
4712cc8.1928: NT Headers: 0xe0
4722cc8.1928: Timestamp: 0x59b94f29
4732cc8.1928: Machine: 0x8664 - amd64
4742cc8.1928: Timestamp: 0x59b94f29
4752cc8.1928: Image Version: 6.1
4762cc8.1928: SizeOfImage: 0x11f000 (1175552)
4772cc8.1928: Resource Dir: 0x116000 LB 0x528
4782cc8.1928: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
4792cc8.1928: [Raw version resource data: 0x1160b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
4802cc8.1928: ProductName: Microsoft® Windows® Operating System
4812cc8.1928: ProductVersion: 6.1.7601.23915
4822cc8.1928: FileVersion: 6.1.7601.23915 (win7sp1_ldr.170913-0600)
4832cc8.1928: FileDescription: Windows NT BASE API Client DLL
4842cc8.1928: \SystemRoot\System32\KernelBase.dll:
4852cc8.1928: CreationTime: 2017-11-07T19:42:46.559959400Z
4862cc8.1928: LastWriteTime: 2017-09-13T15:27:59.681000000Z
4872cc8.1928: ChangeTime: 2017-11-08T20:23:15.366341100Z
4882cc8.1928: FileAttributes: 0x20
4892cc8.1928: Size: 0x66800
4902cc8.1928: NT Headers: 0xe8
4912cc8.1928: Timestamp: 0x59b94f2a
4922cc8.1928: Machine: 0x8664 - amd64
4932cc8.1928: Timestamp: 0x59b94f2a
4942cc8.1928: Image Version: 6.1
4952cc8.1928: SizeOfImage: 0x6a000 (434176)
4962cc8.1928: Resource Dir: 0x68000 LB 0x530
4972cc8.1928: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
4982cc8.1928: [Raw version resource data: 0x680b0 LB 0x3ac, codepage 0x0 (reserved 0x0)]
4992cc8.1928: ProductName: Microsoft® Windows® Operating System
5002cc8.1928: ProductVersion: 6.1.7601.23915
5012cc8.1928: FileVersion: 6.1.7601.23915 (win7sp1_ldr.170913-0600)
5022cc8.1928: FileDescription: Windows NT BASE API Client DLL
5032cc8.1928: \SystemRoot\System32\apisetschema.dll:
5042cc8.1928: CreationTime: 2017-11-07T19:42:46.669151000Z
5052cc8.1928: LastWriteTime: 2017-09-13T15:27:55.360000000Z
5062cc8.1928: ChangeTime: 2017-11-08T20:23:14.648837700Z
5072cc8.1928: FileAttributes: 0x20
5082cc8.1928: Size: 0x1a00
5092cc8.1928: NT Headers: 0xc0
5102cc8.1928: Timestamp: 0x59b94ec4
5112cc8.1928: Machine: 0x8664 - amd64
5122cc8.1928: Timestamp: 0x59b94ec4
5132cc8.1928: Image Version: 6.1
5142cc8.1928: SizeOfImage: 0x50000 (327680)
5152cc8.1928: Resource Dir: 0x30000 LB 0x3f8
5162cc8.1928: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
5172cc8.1928: [Raw version resource data: 0x30060 LB 0x398, codepage 0x0 (reserved 0x0)]
5182cc8.1928: ProductName: Microsoft® Windows® Operating System
5192cc8.1928: ProductVersion: 6.1.7601.23915
5202cc8.1928: FileVersion: 6.1.7601.23915 (win7sp1_ldr.170913-0600)
5212cc8.1928: FileDescription: ApiSet Schema DLL
5222cc8.1928: supR3HardenedWinFindAdversaries: 0x10000
5232cc8.1928: \SystemRoot\System32\drivers\privman.sys:
5242cc8.1928: CreationTime: 2017-11-01T22:39:01.378401700Z
5252cc8.1928: LastWriteTime: 2017-06-22T18:55:22.000000000Z
5262cc8.1928: ChangeTime: 2018-01-09T19:34:47.393600100Z
5272cc8.1928: FileAttributes: 0x20
5282cc8.1928: Size: 0x10630
5292cc8.1928: NT Headers: 0x100
5302cc8.1928: Timestamp: 0x594be0d5
5312cc8.1928: Machine: 0x8664 - amd64
5322cc8.1928: Timestamp: 0x594be0d5
5332cc8.1928: Image Version: 6.1
5342cc8.1928: SizeOfImage: 0xf000 (61440)
5352cc8.1928: Resource Dir: 0xb000 LB 0x2fa8
5362cc8.1928: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x0)]
5372cc8.1928: [Raw version resource data: 0xb0a0 LB 0x33c, codepage 0x0 (reserved 0x0)]
5382cc8.1928: ProductName: PowerBroker for Windows
5392cc8.1928: ProductVersion: 7.3.0.0
5402cc8.1928: FileVersion: 7.3.0.0
5412cc8.1928: FileDescription: PowerBroker for Windows
5422cc8.1928: \SystemRoot\System32\privman64.dll:
5432cc8.1928: CreationTime: 2017-06-22T16:52:44.000000000Z
5442cc8.1928: LastWriteTime: 2017-06-22T16:52:44.000000000Z
5452cc8.1928: ChangeTime: 2018-01-09T19:34:47.393600100Z
5462cc8.1928: FileAttributes: 0x20
5472cc8.1928: Size: 0x39100
5482cc8.1928: NT Headers: 0xf8
5492cc8.1928: Timestamp: 0x594be02a
5502cc8.1928: Machine: 0x8664 - amd64
5512cc8.1928: Timestamp: 0x594be02a
5522cc8.1928: Image Version: 0.0
5532cc8.1928: SizeOfImage: 0x3a000 (237568)
5542cc8.1928: Resource Dir: 0x38000 LB 0x578
5552cc8.1928: [Version info resource found at 0x80! (ID/Name: 0x1; SubID/SubName: 0x0)]
5562cc8.1928: [Raw version resource data: 0x380a0 LB 0x37c, codepage 0x4e4 (reserved 0x0)]
5572cc8.1928: ProductName: PowerBroker for Windows
5582cc8.1928: ProductVersion: 7.3.0.0
5592cc8.1928: FileVersion: 7.3.0.0
5602cc8.1928: FileDescription: BeyondTrust PowerBroker for Windows DLL
5612cc8.1928: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
5622cc8.1928: Calling main()
5632cc8.1928: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
5642cc8.1928: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
5652cc8.1928: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
5662cc8.1928: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe)
5672cc8.1928: SUPR3HardenedMain: Respawn #2
5682cc8.1928: Error (rc=-5640):
5692cc8.1928: More than one thread in process
5702cc8.1928: Error -5640 in supR3HardenedWinReSpawn! (enmWhat=1)
5712cc8.1928: More than one thread in process
5722cc8.1928: supR3HardNtEnableThreadCreation:
5732cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'opengl32.dll'.
5742cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'vboxrt.dll'.
5752cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'msvcp100.dll'.
5762cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'msvcr100.dll'.
5772cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qt5corevbox.dll'.
5782cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'qt5guivbox.dll'.
5792cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'qt5widgetsvbox.dll'.
5802cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'qt5printsupportvbox.dll'.
5812cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'qt5openglvbox.dll'.
5822cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'user32.dll'.
5832cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'advapi32.dll'.
5842cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'shell32.dll'.
5852cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #13 'ole32.dll'.
5862cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #14 'oleaut32.dll'.
5872cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #15 'winmm.dll'.
5882cc8.1928: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.dll)
5892cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.dll
5902cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
5912cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
5922cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcrt.dll'.
5932cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
5942cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\winmm.dll)
5952cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\winmm.dll
5962cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
5972cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
5982cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'ole32.dll'.
5992cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcrt.dll'.
6002cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'rpcrt4.dll'.
6012cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'user32.dll'.
6022cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'gdi32.dll'.
6032cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\oleaut32.dll)
6042cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\oleaut32.dll
6052cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
6062cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
6072cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
6082cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'gdi32.dll'.
6092cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #25 'user32.dll'.
6102cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #26 'rpcrt4.dll'.
6112cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\ole32.dll)
6122cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ole32.dll
6132cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
6142cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
6152cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
6162cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
6172cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
6182cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
6192cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
6202cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
6212cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
6222cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5openglvbox.dll'...
6232cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5openglvbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5openglvbox.dll' [rcNtRedir=0xc0150008]
6242cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'qt5widgetsvbox.dll'.
6252cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'qt5guivbox.dll'.
6262cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'qt5corevbox.dll'.
6272cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'msvcr100.dll'.
6282cc8.1928: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5OpenGLVBox.dll)
6292cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5OpenGLVBox.dll
6302cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5printsupportvbox.dll'...
6312cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5printsupportvbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5printsupportvbox.dll' [rcNtRedir=0xc0150008]
6322cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'.
6332cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
6342cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'qt5widgetsvbox.dll'.
6352cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'qt5guivbox.dll'.
6362cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qt5corevbox.dll'.
6372cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'winspool.drv'.
6382cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'comdlg32.dll'.
6392cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'msvcr100.dll'.
6402cc8.1928: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5PrintSupportVBox.dll)
6412cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5PrintSupportVBox.dll
6422cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5widgetsvbox.dll'...
6432cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5widgetsvbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5widgetsvbox.dll' [rcNtRedir=0xc0150008]
6442cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'.
6452cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
6462cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'qt5guivbox.dll'.
6472cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'qt5corevbox.dll'.
6482cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'shell32.dll'.
6492cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcp100.dll'.
6502cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msvcr100.dll'.
6512cc8.1928: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll)
6522cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll
6532cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
6542cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5guivbox.dll' [rcNtRedir=0xc0150008]
6552cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'ole32.dll'.
6562cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'opengl32.dll'.
6572cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
6582cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
6592cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qt5corevbox.dll'.
6602cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcp100.dll'.
6612cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msvcr100.dll'.
6622cc8.1928: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll)
6632cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll
6642cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
6652cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
6662cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
6672cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'shell32.dll'.
6682cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ole32.dll'.
6692cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'advapi32.dll'.
6702cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'ws2_32.dll'.
6712cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'mpr.dll'.
6722cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'msvcp100.dll'.
6732cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'msvcr100.dll'.
6742cc8.1928: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll)
6752cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll
6762cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
6772cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
6782cc8.1928: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll)
6792cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll
6802cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
6812cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
6822cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'.
6832cc8.1928: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll)
6842cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll
6852cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'vboxrt.dll'...
6862cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'vboxrt.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\vboxrt.dll' [rcNtRedir=0xc0150008]
6872cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'.
6882cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcp100.dll'.
6892cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ws2_32.dll'.
6902cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'rpcrt4.dll'.
6912cc8.1928: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll)
6922cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll
6932cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
6942cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
6952cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
6962cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'.
6972cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'gdi32.dll'.
6982cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'glu32.dll'.
6992cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'ddraw.dll'.
7002cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'user32.dll'.
7012cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\opengl32.dll)
7022cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\opengl32.dll
7032cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
7042cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
7052cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
7062cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ddraw.dll'...
7072cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'ddraw.dll' -> '\Device\HarddiskVolume2\Windows\System32\ddraw.dll' [rcNtRedir=0xc0150008]
7082cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
7092cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
7102cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'dciman32.dll'.
7112cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'.
7122cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'setupapi.dll'.
7132cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'dwmapi.dll'.
7142cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\ddraw.dll)
7152cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ddraw.dll
7162cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'glu32.dll'...
7172cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'glu32.dll' -> '\Device\HarddiskVolume2\Windows\System32\glu32.dll' [rcNtRedir=0xc0150008]
7182cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
7192cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'opengl32.dll'.
7202cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
7212cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\glu32.dll)
7222cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\glu32.dll
7232cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
7242cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
7252cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
7262cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
7272cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
7282cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
7292cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
7302cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
7312cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
7322cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
7332cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
7342cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
7352cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'...
7362cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008]
7372cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
7382cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #16 'rpcrt4.dll'.
7392cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #17 'nsi.dll'.
7402cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\ws2_32.dll)
7412cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ws2_32.dll
7422cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
7432cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
7442cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
7452cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
7462cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
7472cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
7482cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
7492cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
7502cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
7512cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
7522cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
7532cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
7542cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
7552cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
7562cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
7572cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mpr.dll'...
7582cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'mpr.dll' -> '\Device\HarddiskVolume2\Windows\System32\mpr.dll' [rcNtRedir=0xc0150008]
7592cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\mpr.dll)
7602cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\mpr.dll
7612cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'...
7622cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008]
7632cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ws2_32.dll [lacks WinVerifyTrust]
7642cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
7652cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
7662cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
7672cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
7682cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
7692cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
7702cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
7712cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
7722cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
7732cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
7742cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
7752cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
7762cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
7772cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
7782cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
7792cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
7802cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
7812cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
7822cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
7832cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
7842cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
7852cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
7862cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
7872cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
7882cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
7892cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
7902cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
7912cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
7922cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
7932cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
7942cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
7952cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
7962cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
7972cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
7982cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
7992cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
8002cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
8012cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
8022cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
8032cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
8042cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
8052cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
8062cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
8072cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
8082cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
8092cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
8102cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5guivbox.dll' [rcNtRedir=0xc0150008]
8112cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
8122cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
8132cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
8142cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
8152cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
8162cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
8172cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
8182cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
8192cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
8202cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
8212cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comdlg32.dll'...
8222cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'comdlg32.dll' -> '\Device\HarddiskVolume2\Windows\System32\comdlg32.dll' [rcNtRedir=0xc0150008]
8232cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
8242cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'shlwapi.dll'.
8252cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
8262cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'gdi32.dll'.
8272cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'comctl32.dll'.
8282cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'shell32.dll'.
8292cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\comdlg32.dll)
8302cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\comdlg32.dll
8312cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winspool.drv'...
8322cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'winspool.drv' -> '\Device\HarddiskVolume2\Windows\System32\winspool.drv' [rcNtRedir=0xc0150008]
8332cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
8342cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'.
8352cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'user32.dll'.
8362cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\winspool.drv)
8372cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\winspool.drv
8382cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
8392cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
8402cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
8412cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
8422cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5guivbox.dll' [rcNtRedir=0xc0150008]
8432cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
8442cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5widgetsvbox.dll'...
8452cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5widgetsvbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5widgetsvbox.dll' [rcNtRedir=0xc0150008]
8462cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll [lacks WinVerifyTrust]
8472cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
8482cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
8492cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
8502cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
8512cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
8522cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
8532cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
8542cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
8552cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
8562cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
8572cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
8582cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
8592cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
8602cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5guivbox.dll' [rcNtRedir=0xc0150008]
8612cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
8622cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5widgetsvbox.dll'...
8632cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5widgetsvbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5widgetsvbox.dll' [rcNtRedir=0xc0150008]
8642cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll [lacks WinVerifyTrust]
8652cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
8662cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
8672cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
8682cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
8692cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
8702cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
8712cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
8722cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
8732cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
8742cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
8752cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
8762cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
8772cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
8782cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
8792cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
8802cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
8812cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
8822cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
8832cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
8842cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
8852cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
8862cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
8872cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
8882cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
8892cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
8902cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
8912cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
8922cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
8932cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
8942cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
8952cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
8962cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
8972cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
8982cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
8992cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9002cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
9012cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
9022cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
9032cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
9042cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9052cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9062cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9072cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
9082cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
9092cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
9102cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comctl32.dll'...
9112cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'comctl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\comctl32.dll' [rcNtRedir=0x0]
9122cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'advapi32.dll'.
9132cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
9142cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
9152cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\comctl32.dll)
9162cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\comctl32.dll
9172cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
9182cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
9192cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
9202cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9212cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9222cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
9232cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shlwapi.dll'...
9242cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'shlwapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\shlwapi.dll' [rcNtRedir=0xc0150008]
9252cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shlwapi.dll [lacks WinVerifyTrust]
9262cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9272cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9282cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9292cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'nsi.dll'...
9302cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'nsi.dll' -> '\Device\HarddiskVolume2\Windows\System32\nsi.dll' [rcNtRedir=0xc0150008]
9312cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\nsi.dll)
9322cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\nsi.dll
9332cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
9342cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
9352cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
9362cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9372cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9382cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9392cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9402cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9412cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
9422cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
9432cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
9442cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
9452cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9462cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9472cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9482cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'dwmapi.dll'...
9492cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'dwmapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\dwmapi.dll' [rcNtRedir=0xc0150008]
9502cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
9512cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
9522cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
9532cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\dwmapi.dll)
9542cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\dwmapi.dll
9552cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'setupapi.dll'...
9562cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'setupapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\setupapi.dll' [rcNtRedir=0xc0150008]
9572cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'cfgmgr32.dll'.
9582cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'msvcrt.dll'.
9592cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'gdi32.dll'.
9602cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'rpcrt4.dll'.
9612cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'user32.dll'.
9622cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'oleaut32.dll'.
9632cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'devobj.dll'.
9642cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\setupapi.dll)
9652cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\setupapi.dll
9662cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
9672cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
9682cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
9692cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'dciman32.dll'...
9702cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'dciman32.dll' -> '\Device\HarddiskVolume2\Windows\System32\dciman32.dll' [rcNtRedir=0xc0150008]
9712cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
9722cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'gdi32.dll'.
9732cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
9742cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\dciman32.dll)
9752cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\dciman32.dll
9762cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9772cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9782cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
9792cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9802cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9812cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9822cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9832cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9842cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
9852cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
9862cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
9872cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
9882cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
9892cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
9902cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
9912cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'devobj.dll'...
9922cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'devobj.dll' -> '\Device\HarddiskVolume2\Windows\System32\devobj.dll' [rcNtRedir=0xc0150008]
9932cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
9942cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'cfgmgr32.dll'.
9952cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\devobj.dll)
9962cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\devobj.dll
9972cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
9982cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
9992cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
10002cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10012cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10022cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
10032cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
10042cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
10052cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
10062cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10072cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10082cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10092cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10102cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10112cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10122cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'cfgmgr32.dll'...
10132cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'cfgmgr32.dll' -> '\Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll' [rcNtRedir=0xc0150008]
10142cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
10152cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'rpcrt4.dll'.
10162cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'.
10172cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll)
10182cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll
10192cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10202cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10212cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
10222cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10232cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10242cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10252cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10262cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10272cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10282cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10292cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10302cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
10312cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10322cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10332cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10342cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
10352cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
10362cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
10372cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
10382cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
10392cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
10402cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
10412cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
10422cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
10432cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10442cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10452cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10462cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'cfgmgr32.dll'...
10472cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'cfgmgr32.dll' -> '\Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll' [rcNtRedir=0xc0150008]
10482cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll [lacks WinVerifyTrust]
10492cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10502cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10512cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10522cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VirtualBox.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002abc11:<flags> [calling]
10532cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.dll [lacks WinVerifyTrust]
10542cc8.1928: supR3HardenedDllNotificationCallback: load 000007fedc0e0000 LB 0x00a33000 C:\Program Files\Oracle\VirtualBox\VirtualBox.dll [fFlags=0x0]
10552cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.dll [lacks WinVerifyTrust]
10562cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
10572cc8.1928: supR3HardenedDllNotificationCallback: load 000007fee5960000 LB 0x0011d000 C:\Windows\system32\OPENGL32.dll [fFlags=0x0]
10582cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
10592cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\glu32.dll [lacks WinVerifyTrust]
10602cc8.1928: supR3HardenedDllNotificationCallback: load 000007fef7620000 LB 0x0002d000 C:\Windows\system32\GLU32.dll [fFlags=0x0]
10612cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\glu32.dll [lacks WinVerifyTrust]
10622cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ddraw.dll [lacks WinVerifyTrust]
10632cc8.1928: supR3HardenedDllNotificationCallback: load 000007fee5860000 LB 0x000f1000 C:\Windows\system32\DDRAW.dll [fFlags=0x0]
10642cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ddraw.dll [lacks WinVerifyTrust]
10652cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\dciman32.dll [lacks WinVerifyTrust]
10662cc8.1928: supR3HardenedDllNotificationCallback: load 000007fef7610000 LB 0x00008000 C:\Windows\system32\DCIMAN32.dll [fFlags=0x0]
10672cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\dciman32.dll [lacks WinVerifyTrust]
10682cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefe3d0000 LB 0x001d7000 C:\Windows\system32\SETUPAPI.dll [fFlags=0x0]
10692cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\setupapi.dll [lacks WinVerifyTrust]
10702cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefcbf0000 LB 0x00036000 C:\Windows\system32\CFGMGR32.dll [fFlags=0x0]
10712cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll [lacks WinVerifyTrust]
10722cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefea10000 LB 0x000da000 C:\Windows\system32\OLEAUT32.dll [fFlags=0x0]
10732cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
10742cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefe5b0000 LB 0x001fc000 C:\Windows\system32\ole32.dll [fFlags=0x0]
10752cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
10762cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefcbc0000 LB 0x0001a000 C:\Windows\system32\DEVOBJ.dll [fFlags=0x0]
10772cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\devobj.dll [lacks WinVerifyTrust]
10782cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\dwmapi.dll [lacks WinVerifyTrust]
10792cc8.1928: supR3HardenedDllNotificationCallback: load 000007fef74b0000 LB 0x00018000 C:\Windows\system32\dwmapi.dll [fFlags=0x0]
10802cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\dwmapi.dll [lacks WinVerifyTrust]
10812cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
10822cc8.1928: supR3HardenedDllNotificationCallback: load 000007fedcb20000 LB 0x00590000 C:\Program Files\Oracle\VirtualBox\VBoxRT.dll [fFlags=0x0]
10832cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
10842cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
10852cc8.1928: supR3HardenedDllNotificationCallback: load 0000000071c40000 LB 0x000d2000 C:\Program Files\Oracle\VirtualBox\MSVCR100.dll [fFlags=0x0]
10862cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
10872cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
10882cc8.1928: supR3HardenedDllNotificationCallback: load 0000000071ba0000 LB 0x00098000 C:\Program Files\Oracle\VirtualBox\MSVCP100.dll [fFlags=0x0]
10892cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
10902cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefef80000 LB 0x0004d000 C:\Windows\system32\WS2_32.dll [fFlags=0x0]
10912cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ws2_32.dll [lacks WinVerifyTrust]
10922cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefce90000 LB 0x00008000 C:\Windows\system32\NSI.dll [fFlags=0x0]
10932cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\nsi.dll [lacks WinVerifyTrust]
10942cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
10952cc8.1928: supR3HardenedDllNotificationCallback: load 0000000054a20000 LB 0x00565000 C:\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [fFlags=0x0]
10962cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
10972cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\mpr.dll [lacks WinVerifyTrust]
10982cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefb220000 LB 0x00018000 C:\Windows\system32\MPR.dll [fFlags=0x0]
10992cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\mpr.dll [lacks WinVerifyTrust]
11002cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
11012cc8.1928: supR3HardenedDllNotificationCallback: load 000007fedbae0000 LB 0x005f7000 C:\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [fFlags=0x0]
11022cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
11032cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll [lacks WinVerifyTrust]
11042cc8.1928: supR3HardenedDllNotificationCallback: load 00000000544b0000 LB 0x00561000 C:\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll [fFlags=0x0]
11052cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll [lacks WinVerifyTrust]
11062cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5PrintSupportVBox.dll [lacks WinVerifyTrust]
11072cc8.1928: supR3HardenedDllNotificationCallback: load 000007fee7350000 LB 0x00051000 C:\Program Files\Oracle\VirtualBox\Qt5PrintSupportVBox.dll [fFlags=0x0]
11082cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5PrintSupportVBox.dll [lacks WinVerifyTrust]
11092cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winspool.drv [lacks WinVerifyTrust]
11102cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefb0f0000 LB 0x00071000 C:\Windows\system32\WINSPOOL.DRV [fFlags=0x0]
11112cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winspool.drv [lacks WinVerifyTrust]
11122cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefcdf0000 LB 0x00097000 C:\Windows\system32\COMDLG32.dll [fFlags=0x0]
11132cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\comdlg32.dll [lacks WinVerifyTrust]
11142cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'advapi32.dll'.
11152cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
11162cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
11172cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18837_none_a4d981ff711297b6\comctl32.dll)
11182cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18837_none_a4d981ff711297b6\comctl32.dll
11192cc8.1928: supR3HardenedDllNotificationCallback: load 000007feeb770000 LB 0x000a0000 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18837_none_a4d981ff711297b6\COMCTL32.dll [fFlags=0x0]
11202cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18837_none_a4d981ff711297b6\comctl32.dll [lacks WinVerifyTrust]
11212cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5OpenGLVBox.dll [lacks WinVerifyTrust]
11222cc8.1928: supR3HardenedDllNotificationCallback: load 0000000071e10000 LB 0x00054000 C:\Program Files\Oracle\VirtualBox\Qt5OpenGLVBox.dll [fFlags=0x0]
11232cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5OpenGLVBox.dll [lacks WinVerifyTrust]
11242cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
11252cc8.1928: supR3HardenedDllNotificationCallback: load 000007fef75a0000 LB 0x0003b000 C:\Windows\system32\WINMM.dll [fFlags=0x0]
11262cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
11272cc8.1928: supR3HardenedIsApiSetDll: '<NULL>' -> true
11282cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-Win-Core-LocalRegistry-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000002aad51:<flags> [calling]
11292cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000076c20000 'API-MS-Win-Core-LocalRegistry-L1-1-0.dll'
11302cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11312cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
11322cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
11332cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
11342cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
11352cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
11362cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
11372cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
11382cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
11392cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
11402cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a9351:<flags> [calling]
11412cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11422cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11432cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a9351:<flags> [calling]
11442cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11452cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11462cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a9351:<flags> [calling]
11472cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11482cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11492cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a9351:<flags> [calling]
11502cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11512cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11522cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a9351:<flags> [calling]
11532cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11542cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11552cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a9351:<flags> [calling]
11562cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11572cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11582cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11592cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11602cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11612cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11622cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11632cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11642cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11652cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11662cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11672cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11682cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11692cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11702cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11712cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11722cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a9351:<flags> [calling]
11732cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11742cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11752cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11762cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11772cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11782cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11792cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11802cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11812cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11822cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11832cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11842cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11852cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11862cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11872cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11882cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11892cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11902cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11912cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11922cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11932cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11942cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11952cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11962cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11972cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11982cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11992cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12002cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12012cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12022cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12032cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12042cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12052cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a9351:<flags> [calling]
12062cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12072cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12082cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12092cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12102cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedcb20000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12112cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\imm32.dll [lacks WinVerifyTrust]
12122cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\imm32.dll (Input=imm32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002ab1e1:<flags> [calling]
12132cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefef50000 'C:\Windows\system32\imm32.dll'
12142cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
12152cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\ADVAPI32.DLL (Input=ADVAPI32.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002ab0c1:<flags> [calling]
12162cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefdeb0000 'C:\Windows\system32\ADVAPI32.DLL'
12172cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\cryptbase.dll)
12182cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\cryptbase.dll
12192cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\cryptbase.dll (Input=cryptbase.dll, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000000:<flags> [calling]
12202cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\cryptbase.dll [lacks WinVerifyTrust]
12212cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefc880000 LB 0x0000f000 C:\Windows\system32\cryptbase.dll [fFlags=0x0]
12222cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\cryptbase.dll [lacks WinVerifyTrust]
12232cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefc880000 'C:\Windows\system32\cryptbase.dll'
12242cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fedc0e0000 'C:\Program Files\Oracle\VirtualBox\VirtualBox.dll'
12252cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
12262cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\ole32.dll (Input=ole32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a8581:<flags> [calling]
12272cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe5b0000 'C:\Windows\system32\ole32.dll'
12282cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
12292cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefdeb0000 'C:\Windows\system32\ADVAPI32.dll'
12302cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\profapi.dll [lacks WinVerifyTrust]
12312cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\profapi.dll (Input=profapi.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a6c61:<flags> [calling]
12322cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefca40000 'C:\Windows\system32\profapi.dll'
12332cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'.
12342cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'ole32.dll'.
12352cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
12362cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'imm32.dll'.
12372cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'winmm.dll'.
12382cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'oleaut32.dll'.
12392cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'shell32.dll'.
12402cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'advapi32.dll'.
12412cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'qt5guivbox.dll'.
12422cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'qt5corevbox.dll'.
12432cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'msvcr100.dll'.
12442cc8.1928: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\platforms\qwindows.dll)
12452cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\platforms\qwindows.dll
12462cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
12472cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
12482cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
12492cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
12502cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
12512cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
12522cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
12532cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5guivbox.dll' [rcNtRedir=0xc0150008]
12542cc8.1928: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
12552cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
12562cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
12572cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
12582cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
12592cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
12602cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
12612cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
12622cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
12632cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
12642cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
12652cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
12662cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
12672cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'imm32.dll'...
12682cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'imm32.dll' -> '\Device\HarddiskVolume2\Windows\System32\imm32.dll' [rcNtRedir=0xc0150008]
12692cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\imm32.dll [lacks WinVerifyTrust]
12702cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
12712cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
12722cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
12732cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
12742cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
12752cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
12762cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
12772cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
12782cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
12792cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\platforms\qwindows.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a8f51:<flags> [calling]
12802cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\platforms\qwindows.dll [lacks WinVerifyTrust]
12812cc8.1928: supR3HardenedDllNotificationCallback: load 000007fee0350000 LB 0x0012e000 C:\Program Files\Oracle\VirtualBox\platforms\qwindows.dll [fFlags=0x0]
12822cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\platforms\qwindows.dll [lacks WinVerifyTrust]
12832cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee0350000 'C:\Program Files\Oracle\VirtualBox\platforms\qwindows.dll'
12842cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\cryptbase.dll [lacks WinVerifyTrust]
12852cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\CRYPTBASE.dll (Input=CRYPTBASE.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a8e81:<flags> [calling]
12862cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefc880000 'C:\Windows\system32\CRYPTBASE.dll'
12872cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
12882cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'user32.dll'.
12892cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'gdi32.dll'.
12902cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\uxtheme.dll)
12912cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\uxtheme.dll
12922cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
12932cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
12942cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
12952cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
12962cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
12972cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
12982cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
12992cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
13002cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
13012cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a8951:<flags> [calling]
13022cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
13032cc8.1928: supR3HardenedDllNotificationCallback: load 000007fef7900000 LB 0x00056000 C:\Windows\system32\uxtheme.dll [fFlags=0x0]
13042cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
13052cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef7900000 'C:\Windows\system32\uxtheme.dll'
13062cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
13072cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a8391:<flags> [calling]
13082cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef7900000 'C:\Windows\system32\uxtheme.dll'
13092cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
13102cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000076b20000 'C:\Windows\system32\user32.dll'
13112cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
13122cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\shell32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a9191:<flags> [calling]
13132cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefcea0000 'C:\Windows\system32\shell32.dll'
13142cc8.1928: supR3HardenedMonitor_LdrLoadDll: error opening 'C:\Windows\system32\wintab32.dll': 127 (NtPath=\??\C:\Windows\system32\wintab32.dll; Input=C:\Windows\system32\wintab32.dll; rcNtGetDll=0x0
13152cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000034 'C:\Windows\system32\wintab32.dll'
13162cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
13172cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\winmm.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a95b1:<flags> [calling]
13182cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef75a0000 'C:\Windows\system32\winmm.dll'
13192cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
13202cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\winmm.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a95b1:<flags> [calling]
13212cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef75a0000 'C:\Windows\system32\winmm.dll'
13222cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
13232cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\shell32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a9891:<flags> [calling]
13242cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefcea0000 'C:\Windows\system32\shell32.dll'
13252cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
13262cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a9861:<flags> [calling]
13272cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef7900000 'C:\Windows\system32\uxtheme.dll'
13282cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
13292cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefde40000 'C:\Windows\system32\gdi32.dll'
13302cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
13312cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefdd10000 'C:\Windows\system32\rpcrt4.dll'
13322cc8.1928: supR3HardenedIsApiSetDll: '<NULL>' -> true
13332cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-Win-Security-LSALookup-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000002a8401:<flags> [calling]
13342cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefef30000 'API-MS-Win-Security-LSALookup-L1-1-0.dll'
13352cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
13362cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefdeb0000 'C:\Windows\system32\ADVAPI32.dll'
13372cc8.1928: supR3HardenedIsApiSetDll: '<NULL>' -> true
13382cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-Win-Security-LSALookup-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=00000000002a8cc1:<flags> [calling]
13392cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefef30000 'API-MS-Win-Security-LSALookup-L1-1-0.dll'
13402cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\cryptsp.dll)
13412cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\cryptsp.dll
13422cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\CRYPTSP.dll (Input=CRYPTSP.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a8f01:<flags> [calling]
13432cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\cryptsp.dll [lacks WinVerifyTrust]
13442cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefc2c0000 LB 0x00018000 C:\Windows\system32\CRYPTSP.dll [fFlags=0x0]
13452cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\cryptsp.dll [lacks WinVerifyTrust]
13462cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefc2c0000 'C:\Windows\system32\CRYPTSP.dll'
13472cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
13482cc8.1928: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\rsaenh.dll)
13492cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\rsaenh.dll
13502cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
13512cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
13522cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
13532cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\rsaenh.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a8e11:<flags> [calling]
13542cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rsaenh.dll [lacks WinVerifyTrust]
13552cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefbf70000 LB 0x00047000 C:\Windows\system32\rsaenh.dll [fFlags=0x0]
13562cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rsaenh.dll [lacks WinVerifyTrust]
13572cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefbf70000 'C:\Windows\system32\rsaenh.dll'
13582cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
13592cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefdeb0000 'C:\Windows\system32\ADVAPI32.dll'
13602cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\cryptbase.dll [lacks WinVerifyTrust]
13612cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\CRYPTBASE.dll (Input=CRYPTBASE.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a8a21:<flags> [calling]
13622cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefc880000 'C:\Windows\system32\CRYPTBASE.dll'
13632cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #13 'rpcrt4.dll'.
13642cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\RpcRtRemote.dll)
13652cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\RpcRtRemote.dll
13662cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
13672cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
13682cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
13692cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\RpcRtRemote.dll (Input=RpcRtRemote.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a8ac1:<flags> [calling]
13702cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\RpcRtRemote.dll [lacks WinVerifyTrust]
13712cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefc890000 LB 0x00014000 C:\Windows\system32\RpcRtRemote.dll [fFlags=0x0]
13722cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\RpcRtRemote.dll [lacks WinVerifyTrust]
13732cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefc890000 'C:\Windows\system32\RpcRtRemote.dll'
13742cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
13752cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\WINMM.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387f221:<flags> [calling]
13762cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef75a0000 'C:\Windows\system32\WINMM.dll'
13772cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
13782cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\ole32.dll (Input=ole32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387f581:<flags> [calling]
13792cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe5b0000 'C:\Windows\system32\ole32.dll'
13802cc8.189c: supR3HardenedIsApiSetDll: '<NULL>' -> true
13812cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-WIN-Service-Management-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=000000000387f161:<flags> [calling]
13822cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefef30000 'API-MS-WIN-Service-Management-L1-1-0.dll'
13832cc8.189c: supR3HardenedIsApiSetDll: '<NULL>' -> true
13842cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-WIN-Service-winsvc-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=000000000387f161:<flags> [calling]
13852cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefef30000 'API-MS-WIN-Service-winsvc-L1-1-0.dll'
13862cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
13872cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefdd10000 'C:\Windows\system32\RPCRT4.dll'
13882cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
13892cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'user32.dll'.
13902cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'rpcrt4.dll'.
13912cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'propsys.dll'.
13922cc8.189c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll)
13932cc8.189c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll
13942cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'propsys.dll'...
13952cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'propsys.dll' -> '\Device\HarddiskVolume2\Windows\System32\propsys.dll' [rcNtRedir=0xc0150008]
13962cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
13972cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ole32.dll'.
13982cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'oleaut32.dll'.
13992cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'user32.dll'.
14002cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'rpcrt4.dll'.
14012cc8.189c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\propsys.dll)
14022cc8.189c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\propsys.dll
14032cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
14042cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
14052cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
14062cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
14072cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
14082cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
14092cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
14102cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
14112cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
14122cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
14132cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
14142cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
14152cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
14162cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
14172cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
14182cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
14192cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
14202cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
14212cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
14222cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
14232cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
14242cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
14252cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
14262cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe5b0000 'C:\Windows\system32\ole32.dll'
14272cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
14282cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
14292cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\MMDevAPI.DLL (Input=MMDevAPI.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387f1c1:<flags> [calling]
14302cc8.189c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
14312cc8.189c: supR3HardenedDllNotificationCallback: load 000007fef8a40000 LB 0x0004b000 C:\Windows\system32\MMDevAPI.DLL [fFlags=0x0]
14322cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
14332cc8.189c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\propsys.dll [lacks WinVerifyTrust]
14342cc8.189c: supR3HardenedDllNotificationCallback: load 000007fef8910000 LB 0x0012c000 C:\Windows\system32\PROPSYS.dll [fFlags=0x0]
14352cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\propsys.dll [lacks WinVerifyTrust]
14362cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
14372cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefdeb0000 'C:\Windows\system32\ADVAPI32.dll'
14382cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef8a40000 'C:\Windows\system32\MMDevAPI.DLL'
14392cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
14402cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'.
14412cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'ole32.dll'.
14422cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'user32.dll'.
14432cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'winmm.dll'.
14442cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'ksuser.dll'.
14452cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'mmdevapi.dll'.
14462cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'avrt.dll'.
14472cc8.189c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\wdmaud.drv)
14482cc8.189c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\wdmaud.drv
14492cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'avrt.dll'...
14502cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'avrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\avrt.dll' [rcNtRedir=0xc0150008]
14512cc8.189c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\avrt.dll)
14522cc8.189c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\avrt.dll
14532cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mmdevapi.dll'...
14542cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'mmdevapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\mmdevapi.dll' [rcNtRedir=0xc0150008]
14552cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
14562cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ksuser.dll'...
14572cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ksuser.dll' -> '\Device\HarddiskVolume2\Windows\System32\ksuser.dll' [rcNtRedir=0xc0150008]
14582cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
14592cc8.189c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\ksuser.dll)
14602cc8.189c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ksuser.dll
14612cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
14622cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
14632cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
14642cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
14652cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
14662cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
14672cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
14682cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
14692cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
14702cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
14712cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
14722cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
14732cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
14742cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
14752cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
14762cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
14772cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
14782cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
14792cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387ed31:<flags> [calling]
14802cc8.189c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
14812cc8.189c: supR3HardenedDllNotificationCallback: load 000007fee4840000 LB 0x0003b000 C:\Windows\system32\wdmaud.drv [fFlags=0x0]
14822cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
14832cc8.189c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ksuser.dll [lacks WinVerifyTrust]
14842cc8.189c: supR3HardenedDllNotificationCallback: load 0000000072230000 LB 0x00006000 C:\Windows\system32\ksuser.dll [fFlags=0x0]
14852cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ksuser.dll [lacks WinVerifyTrust]
14862cc8.189c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\avrt.dll [lacks WinVerifyTrust]
14872cc8.189c: supR3HardenedDllNotificationCallback: load 000007fef8900000 LB 0x00009000 C:\Windows\system32\AVRT.dll [fFlags=0x0]
14882cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\avrt.dll [lacks WinVerifyTrust]
14892cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee4840000 'C:\Windows\system32\wdmaud.drv'
14902cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
14912cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387ed31:<flags> [calling]
14922cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee4840000 'C:\Windows\system32\wdmaud.drv'
14932cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
14942cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387eee1:<flags> [calling]
14952cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee4840000 'C:\Windows\system32\wdmaud.drv'
14962cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
14972cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\MMDEVAPI.DLL (Input=MMDEVAPI.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387f071:<flags> [calling]
14982cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef8a40000 'C:\Windows\system32\MMDEVAPI.DLL'
14992cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
15002cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe5b0000 'C:\Windows\system32\ole32.dll'
15012cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\setupapi.dll [lacks WinVerifyTrust]
15022cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\SETUPAPI.dll (Input=SETUPAPI.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387ee11:<flags> [calling]
15032cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe3d0000 'C:\Windows\system32\SETUPAPI.dll'
15042cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
15052cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387eee1:<flags> [calling]
15062cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee4840000 'C:\Windows\system32\wdmaud.drv'
15072cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
15082cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387eee1:<flags> [calling]
15092cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee4840000 'C:\Windows\system32\wdmaud.drv'
15102cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shlwapi.dll [lacks WinVerifyTrust]
15112cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\SHLWAPI.dll (Input=SHLWAPI.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387e7b1:<flags> [calling]
15122cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefefd0000 'C:\Windows\system32\SHLWAPI.dll'
15132cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
15142cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe5b0000 'C:\Windows\system32\ole32.dll'
15152cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
15162cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'.
15172cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'ole32.dll'.
15182cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'oleaut32.dll'.
15192cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'user32.dll'.
15202cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'rpcrt4.dll'.
15212cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'mmdevapi.dll'.
15222cc8.189c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\AudioSes.dll)
15232cc8.189c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\AudioSes.dll
15242cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mmdevapi.dll'...
15252cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'mmdevapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\mmdevapi.dll' [rcNtRedir=0xc0150008]
15262cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
15272cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
15282cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
15292cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
15302cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
15312cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
15322cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
15332cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
15342cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
15352cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
15362cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
15372cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
15382cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
15392cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
15402cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
15412cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
15422cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
15432cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
15442cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
15452cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\AUDIOSES.DLL (Input=AUDIOSES.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387eef1:<flags> [calling]
15462cc8.189c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\AudioSes.dll [lacks WinVerifyTrust]
15472cc8.189c: supR3HardenedDllNotificationCallback: load 000007fef7460000 LB 0x0004f000 C:\Windows\system32\AUDIOSES.DLL [fFlags=0x0]
15482cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\AudioSes.dll [lacks WinVerifyTrust]
15492cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef7460000 'C:\Windows\system32\AUDIOSES.DLL'
15502cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
15512cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387eee1:<flags> [calling]
15522cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee4840000 'C:\Windows\system32\wdmaud.drv'
15532cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
15542cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387eee1:<flags> [calling]
15552cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee4840000 'C:\Windows\system32\wdmaud.drv'
15562cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust]
15572cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee4840000 'C:\Windows\system32\wdmaud.drv'
15582cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
15592cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
15602cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'winmm.dll'.
15612cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msacm32.dll'.
15622cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'mmdevapi.dll'.
15632cc8.189c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\msacm32.drv)
15642cc8.189c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\msacm32.drv
15652cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mmdevapi.dll'...
15662cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'mmdevapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\mmdevapi.dll' [rcNtRedir=0xc0150008]
15672cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust]
15682cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msacm32.dll'...
15692cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msacm32.dll' -> '\Device\HarddiskVolume2\Windows\System32\msacm32.dll' [rcNtRedir=0xc0150008]
15702cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
15712cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'.
15722cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
15732cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'.
15742cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'winmm.dll'.
15752cc8.189c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\msacm32.dll)
15762cc8.189c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\msacm32.dll
15772cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
15782cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
15792cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
15802cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
15812cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
15822cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
15832cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
15842cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
15852cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
15862cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
15872cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
15882cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
15892cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
15902cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
15912cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
15922cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
15932cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
15942cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
15952cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
15962cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
15972cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
15982cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
15992cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
16002cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
16012cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387ece1:<flags> [calling]
16022cc8.189c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
16032cc8.189c: supR3HardenedDllNotificationCallback: load 000007fef74d0000 LB 0x0000a000 C:\Windows\system32\msacm32.drv [fFlags=0x0]
16042cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
16052cc8.189c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.dll [lacks WinVerifyTrust]
16062cc8.189c: supR3HardenedDllNotificationCallback: load 000007fee7f60000 LB 0x00018000 C:\Windows\system32\MSACM32.dll [fFlags=0x0]
16072cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.dll [lacks WinVerifyTrust]
16082cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef74d0000 'C:\Windows\system32\msacm32.drv'
16092cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
16102cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387e6e1:<flags> [calling]
16112cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef74d0000 'C:\Windows\system32\msacm32.drv'
16122cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
16132cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387e6e1:<flags> [calling]
16142cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef74d0000 'C:\Windows\system32\msacm32.drv'
16152cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
16162cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387e6e1:<flags> [calling]
16172cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef74d0000 'C:\Windows\system32\msacm32.drv'
16182cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
16192cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387e6e1:<flags> [calling]
16202cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef74d0000 'C:\Windows\system32\msacm32.drv'
16212cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
16222cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387e6e1:<flags> [calling]
16232cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef74d0000 'C:\Windows\system32\msacm32.drv'
16242cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
16252cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387e6e1:<flags> [calling]
16262cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef74d0000 'C:\Windows\system32\msacm32.drv'
16272cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
16282cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef74d0000 'C:\Windows\system32\msacm32.drv'
16292cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
16302cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef74d0000 'C:\Windows\system32\msacm32.drv'
16312cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust]
16322cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef74d0000 'C:\Windows\system32\msacm32.drv'
16332cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
16342cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
16352cc8.189c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'winmm.dll'.
16362cc8.189c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\midimap.dll)
16372cc8.189c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\midimap.dll
16382cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
16392cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
16402cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
16412cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
16422cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
16432cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
16442cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
16452cc8.189c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
16462cc8.189c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
16472cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387ece1:<flags> [calling]
16482cc8.189c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\midimap.dll [lacks WinVerifyTrust]
16492cc8.189c: supR3HardenedDllNotificationCallback: load 000007fef6600000 LB 0x00009000 C:\Windows\system32\midimap.dll [fFlags=0x0]
16502cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\midimap.dll [lacks WinVerifyTrust]
16512cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef6600000 'C:\Windows\system32\midimap.dll'
16522cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\midimap.dll [lacks WinVerifyTrust]
16532cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387e6b1:<flags> [calling]
16542cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef6600000 'C:\Windows\system32\midimap.dll'
16552cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\midimap.dll [lacks WinVerifyTrust]
16562cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387e6b1:<flags> [calling]
16572cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef6600000 'C:\Windows\system32\midimap.dll'
16582cc8.189c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\midimap.dll [lacks WinVerifyTrust]
16592cc8.189c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000387ece1:<flags> [calling]
16602cc8.189c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef6600000 'C:\Windows\system32\midimap.dll'
16612cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
16622cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef75a0000 'C:\Windows\system32\WINMM.dll'
16632cc8.1ad8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
16642cc8.1ad8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'ole32.dll'.
16652cc8.1ad8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
16662cc8.1ad8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'advapi32.dll'.
16672cc8.1ad8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'oleaut32.dll'.
16682cc8.1ad8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'rpcrt4.dll'.
16692cc8.1ad8: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\clbcatq.dll)
16702cc8.1ad8: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\clbcatq.dll
16712cc8.1ad8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
16722cc8.1ad8: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
16732cc8.1ad8: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
16742cc8.1ad8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
16752cc8.1ad8: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
16762cc8.1ad8: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
16772cc8.1ad8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
16782cc8.1ad8: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
16792cc8.1ad8: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
16802cc8.1ad8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
16812cc8.1ad8: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
16822cc8.1ad8: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
16832cc8.1ad8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
16842cc8.1ad8: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
16852cc8.1ad8: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
16862cc8.1ad8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
16872cc8.1ad8: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
16882cc8.1ad8: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
16892cc8.1ad8: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\CLBCatQ.DLL (Input=CLBCatQ.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000003f3ebe1:<flags> [calling]
16902cc8.1ad8: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\clbcatq.dll [lacks WinVerifyTrust]
16912cc8.1ad8: supR3HardenedDllNotificationCallback: load 000007fefe970000 LB 0x00099000 C:\Windows\system32\CLBCatQ.DLL [fFlags=0x0]
16922cc8.1ad8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\clbcatq.dll [lacks WinVerifyTrust]
16932cc8.1ad8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe970000 'C:\Windows\system32\CLBCatQ.DLL'
16942cc8.1ad8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\AudioSes.dll [lacks WinVerifyTrust]
16952cc8.1ad8: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\audioses.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000003f3d8d1:<flags> [calling]
16962cc8.1ad8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef7460000 'C:\Windows\System32\audioses.dll'
16972cc8.b74: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll [lacks WinVerifyTrust]
16982cc8.b74: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\CFGMGR32.dll (Input=CFGMGR32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000003e0f321:<flags> [calling]
16992cc8.b74: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefcbf0000 'C:\Windows\system32\CFGMGR32.dll'
17002cc8.1ad8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
17012cc8.1ad8: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\OLEAUT32.dll (Input=OLEAUT32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000003f3f621:<flags> [calling]
17022cc8.1ad8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefea10000 'C:\Windows\system32\OLEAUT32.dll'
17032cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
17042cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'crypt32.dll'.
17052cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msasn1.dll'.
17062cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'rpcrt4.dll'.
17072cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\wintrust.dll)
17082cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\wintrust.dll
17092cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
17102cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
17112cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
17122cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msasn1.dll'...
17132cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msasn1.dll' -> '\Device\HarddiskVolume2\Windows\System32\msasn1.dll' [rcNtRedir=0xc0150008]
17142cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\msasn1.dll)
17152cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\msasn1.dll
17162cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'crypt32.dll'...
17172cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'crypt32.dll' -> '\Device\HarddiskVolume2\Windows\System32\crypt32.dll' [rcNtRedir=0xc0150008]
17182cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
17192cc8.1928: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msasn1.dll'.
17202cc8.1928: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\crypt32.dll)
17212cc8.1928: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\crypt32.dll
17222cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
17232cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
17242cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
17252cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msasn1.dll'...
17262cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msasn1.dll' -> '\Device\HarddiskVolume2\Windows\System32\msasn1.dll' [rcNtRedir=0xc0150008]
17272cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msasn1.dll [lacks WinVerifyTrust]
17282cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
17292cc8.1928: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
17302cc8.1928: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
17312cc8.1928: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\WINTRUST.dll (Input=WINTRUST.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000002a9371:<flags> [calling]
17322cc8.1928: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
17332cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefcc30000 LB 0x0003b000 C:\Windows\system32\WINTRUST.dll [fFlags=0x0]
17342cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
17352cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefcc80000 LB 0x0016d000 C:\Windows\system32\CRYPT32.dll [fFlags=0x0]
17362cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\crypt32.dll [lacks WinVerifyTrust]
17372cc8.1928: supR3HardenedDllNotificationCallback: load 000007fefca30000 LB 0x0000f000 C:\Windows\system32\MSASN1.dll [fFlags=0x0]
17382cc8.1928: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msasn1.dll [lacks WinVerifyTrust]
17392cc8.1928: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefcc30000 'C:\Windows\system32\WINTRUST.dll'
17402c70.2ca4: supR3HardNtChildWaitFor[1]: Quitting: ExitCode=0x1 (rcNtWait=0x0, rcNt1=0x0, rcNt2=0x103, rcNt3=0x103, 2668 ms, the end);

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy