VirtualBox

Ticket #17601: VBoxHardening.log

File VBoxHardening.log, 158.3 KB (added by yotama, 7 years ago)
Line 
127c0.5fc: Log file opened: 5.2.8r121009 g_hStartupLog=00000000000001b4 g_uNtVerCombined=0xa03fab00
227c0.5fc: \SystemRoot\System32\ntdll.dll:
327c0.5fc: CreationTime: 2018-02-16T15:54:21.665969200Z
427c0.5fc: LastWriteTime: 2018-02-10T06:15:34.902092600Z
527c0.5fc: ChangeTime: 2018-02-19T11:04:38.408972300Z
627c0.5fc: FileAttributes: 0x20
727c0.5fc: Size: 0x1dd100
827c0.5fc: NT Headers: 0xe0
927c0.5fc: Timestamp: 0xeffc9126
1027c0.5fc: Machine: 0x8664 - amd64
1127c0.5fc: Timestamp: 0xeffc9126
1227c0.5fc: Image Version: 10.0
1327c0.5fc: SizeOfImage: 0x1e0000 (1966080)
1427c0.5fc: Resource Dir: 0x174000 LB 0x6a1d8
1527c0.5fc: [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
1627c0.5fc: [Raw version resource data: 0x1740f0 LB 0x380, codepage 0x0 (reserved 0x0)]
1727c0.5fc: ProductName: Microsoft® Windows® Operating System
1827c0.5fc: ProductVersion: 10.0.16299.248
1927c0.5fc: FileVersion: 10.0.16299.248 (WinBuild.160101.0800)
2027c0.5fc: FileDescription: NT Layer DLL
2127c0.5fc: \SystemRoot\System32\kernel32.dll:
2227c0.5fc: CreationTime: 2017-09-29T13:42:04.954227600Z
2327c0.5fc: LastWriteTime: 2017-09-29T13:42:04.954227600Z
2427c0.5fc: ChangeTime: 2017-11-22T16:33:08.352730100Z
2527c0.5fc: FileAttributes: 0x20
2627c0.5fc: Size: 0xab868
2727c0.5fc: NT Headers: 0xe8
2827c0.5fc: Timestamp: 0xc2cf900
2927c0.5fc: Machine: 0x8664 - amd64
3027c0.5fc: Timestamp: 0xc2cf900
3127c0.5fc: Image Version: 10.0
3227c0.5fc: SizeOfImage: 0xae000 (712704)
3327c0.5fc: Resource Dir: 0xac000 LB 0x520
3427c0.5fc: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
3527c0.5fc: [Raw version resource data: 0xac0b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
3627c0.5fc: ProductName: Microsoft® Windows® Operating System
3727c0.5fc: ProductVersion: 10.0.16299.15
3827c0.5fc: FileVersion: 10.0.16299.15 (WinBuild.160101.0800)
3927c0.5fc: FileDescription: Windows NT BASE API Client DLL
4027c0.5fc: \SystemRoot\System32\KernelBase.dll:
4127c0.5fc: CreationTime: 2018-02-16T15:53:30.525154600Z
4227c0.5fc: LastWriteTime: 2018-02-10T06:15:53.408982400Z
4327c0.5fc: ChangeTime: 2018-02-19T11:04:34.845920900Z
4427c0.5fc: FileAttributes: 0x20
4527c0.5fc: Size: 0x266000
4627c0.5fc: NT Headers: 0xf0
4727c0.5fc: Timestamp: 0x4414ec23
4827c0.5fc: Machine: 0x8664 - amd64
4927c0.5fc: Timestamp: 0x4414ec23
5027c0.5fc: Image Version: 10.0
5127c0.5fc: SizeOfImage: 0x266000 (2514944)
5227c0.5fc: Resource Dir: 0x245000 LB 0x548
5327c0.5fc: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
5427c0.5fc: [Raw version resource data: 0x2450b0 LB 0x3bc, codepage 0x0 (reserved 0x0)]
5527c0.5fc: ProductName: Microsoft® Windows® Operating System
5627c0.5fc: ProductVersion: 10.0.16299.248
5727c0.5fc: FileVersion: 10.0.16299.248 (WinBuild.160101.0800)
5827c0.5fc: FileDescription: Windows NT BASE API Client DLL
5927c0.5fc: \SystemRoot\System32\apisetschema.dll:
6027c0.5fc: CreationTime: 2017-09-29T13:42:07.095026600Z
6127c0.5fc: LastWriteTime: 2017-09-29T13:42:07.095026600Z
6227c0.5fc: ChangeTime: 2018-02-16T16:09:21.698420900Z
6327c0.5fc: FileAttributes: 0x20
6427c0.5fc: Size: 0x1b398
6527c0.5fc: NT Headers: 0xc8
6627c0.5fc: Timestamp: 0xf30abf31
6727c0.5fc: Machine: 0x8664 - amd64
6827c0.5fc: Timestamp: 0xf30abf31
6927c0.5fc: Image Version: 10.0
7027c0.5fc: SizeOfImage: 0x1c000 (114688)
7127c0.5fc: Resource Dir: 0x1b000 LB 0x408
7227c0.5fc: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
7327c0.5fc: [Raw version resource data: 0x1b060 LB 0x3a8, codepage 0x0 (reserved 0x0)]
7427c0.5fc: ProductName: Microsoft® Windows® Operating System
7527c0.5fc: ProductVersion: 10.0.16299.15
7627c0.5fc: FileVersion: 10.0.16299.15 (WinBuild.160101.0800)
7727c0.5fc: FileDescription: ApiSet Schema DLL
7827c0.5fc: NtOpenDirectoryObject failed on \Driver: 0xc0000022
7927c0.5fc: supR3HardenedWinFindAdversaries: 0x1008
8027c0.5fc: \SystemRoot\System32\drivers\tmcomm.sys:
8127c0.5fc: CreationTime: 2017-01-02T13:11:18.436528800Z
8227c0.5fc: LastWriteTime: 2016-09-29T09:27:10.000000000Z
8327c0.5fc: ChangeTime: 2017-11-22T16:45:09.934551100Z
8427c0.5fc: FileAttributes: 0x20
8527c0.5fc: Size: 0x6a4e0
8627c0.5fc: NT Headers: 0xf8
8727c0.5fc: Timestamp: 0x57bba895
8827c0.5fc: Machine: 0x8664 - amd64
8927c0.5fc: Timestamp: 0x57bba895
9027c0.5fc: Image Version: 10.0
9127c0.5fc: SizeOfImage: 0x6c000 (442368)
9227c0.5fc: Resource Dir: 0x6a000 LB 0x568
9327c0.5fc: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
9427c0.5fc: [Raw version resource data: 0x6a060 LB 0x504, codepage 0x0 (reserved 0x0)]
9527c0.5fc: ProductName: Trend Micro Eyes
9627c0.5fc: ProductVersion: 7.0
9727c0.5fc: FileVersion: 7.0.0.1101
9827c0.5fc: SpecialBuild: 1101
9927c0.5fc: PrivateBuild: Build 1101 - 8/23/2016
10027c0.5fc: FileDescription: TrendMicro Common Module
10127c0.5fc: \SystemRoot\System32\drivers\tmactmon.sys:
10227c0.5fc: CreationTime: 2017-01-02T13:11:18.405539500Z
10327c0.5fc: LastWriteTime: 2016-09-29T09:27:20.000000000Z
10427c0.5fc: ChangeTime: 2017-11-22T16:45:09.934551100Z
10527c0.5fc: FileAttributes: 0x20
10627c0.5fc: Size: 0x1fad8
10727c0.5fc: NT Headers: 0xe0
10827c0.5fc: Timestamp: 0x57e8f5ac
10927c0.5fc: Machine: 0x8664 - amd64
11027c0.5fc: Timestamp: 0x57e8f5ac
11127c0.5fc: Image Version: 6.0
11227c0.5fc: SizeOfImage: 0x24000 (147456)
11327c0.5fc: Resource Dir: 0x22000 LB 0x590
11427c0.5fc: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
11527c0.5fc: [Raw version resource data: 0x22060 LB 0x52c, codepage 0x0 (reserved 0x0)]
11627c0.5fc: ProductName: Trend Micro AEGIS
11727c0.5fc: ProductVersion: 2.976
11827c0.5fc: FileVersion: 2.976.0.1159
11927c0.5fc: SpecialBuild: 1159
12027c0.5fc: PrivateBuild: Build 1159 - 9/26/2016
12127c0.5fc: FileDescription: TrendMicro Activity Monitor Module
12227c0.5fc: \SystemRoot\System32\drivers\tmevtmgr.sys:
12327c0.5fc: CreationTime: 2017-01-02T13:11:19.700647600Z
12427c0.5fc: LastWriteTime: 2016-09-29T09:25:04.000000000Z
12527c0.5fc: ChangeTime: 2017-11-22T16:45:09.934551100Z
12627c0.5fc: FileAttributes: 0x20
12727c0.5fc: Size: 0x166e0
12827c0.5fc: NT Headers: 0xe0
12927c0.5fc: Timestamp: 0x57e8f5aa
13027c0.5fc: Machine: 0x8664 - amd64
13127c0.5fc: Timestamp: 0x57e8f5aa
13227c0.5fc: Image Version: 6.0
13327c0.5fc: SizeOfImage: 0x17000 (94208)
13427c0.5fc: Resource Dir: 0x15000 LB 0x590
13527c0.5fc: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
13627c0.5fc: [Raw version resource data: 0x15060 LB 0x52c, codepage 0x0 (reserved 0x0)]
13727c0.5fc: ProductName: Trend Micro AEGIS
13827c0.5fc: ProductVersion: 2.976
13927c0.5fc: FileVersion: 2.976.0.1159
14027c0.5fc: SpecialBuild: 1159
14127c0.5fc: PrivateBuild: Build 1159 - 9/26/2016
14227c0.5fc: FileDescription: TrendMicro Event Management Module
14327c0.5fc: \SystemRoot\System32\drivers\tmeevw.sys:
14427c0.5fc: CreationTime: 2017-01-02T13:11:18.508537100Z
14527c0.5fc: LastWriteTime: 2016-07-15T04:48:26.000000000Z
14627c0.5fc: ChangeTime: 2017-11-22T16:45:09.934551100Z
14727c0.5fc: FileAttributes: 0x20
14827c0.5fc: Size: 0x22ee0
14927c0.5fc: NT Headers: 0xf8
15027c0.5fc: Timestamp: 0x578312e1
15127c0.5fc: Machine: 0x8664 - amd64
15227c0.5fc: Timestamp: 0x578312e1
15327c0.5fc: Image Version: 10.0
15427c0.5fc: SizeOfImage: 0x23000 (143360)
15527c0.5fc: Resource Dir: 0x1d000 LB 0x4e00
15627c0.5fc: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
15727c0.5fc: [Raw version resource data: 0x2190c LB 0x4f4, codepage 0x4e4 (reserved 0x0)]
15827c0.5fc: ProductName: Trend Micro EagleEye
15927c0.5fc: ProductVersion: 3.0
16027c0.5fc: FileVersion: 3.0.0.1002
16127c0.5fc: SpecialBuild: 1002
16227c0.5fc: PrivateBuild: Build 1002 - 7/11/2016
16327c0.5fc: FileDescription: Trend Micro EagleEye Driver (VW) (amd64-fre)
16427c0.5fc: \SystemRoot\System32\drivers\vsdatant.sys:
16527c0.5fc: CreationTime: 2017-11-24T14:29:12.000000000Z
16627c0.5fc: LastWriteTime: 2017-11-24T14:29:12.000000000Z
16727c0.5fc: ChangeTime: 2018-02-21T17:29:38.232739500Z
16827c0.5fc: FileAttributes: 0x20
16927c0.5fc: Size: 0x75430
17027c0.5fc: NT Headers: 0xf8
17127c0.5fc: Timestamp: 0x5a153960
17227c0.5fc: Machine: 0x8664 - amd64
17327c0.5fc: Timestamp: 0x5a153960
17427c0.5fc: Image Version: 6.1
17527c0.5fc: SizeOfImage: 0x9a000 (630784)
17627c0.5fc: Resource Dir: 0x98000 LB 0x3d8
17727c0.5fc: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
17827c0.5fc: [Raw version resource data: 0x98060 LB 0x374, codepage 0x0 (reserved 0x0)]
17927c0.5fc: ProductName: End Point Security
18027c0.5fc: ProductVersion: E80.64
18127c0.5fc: FileVersion: 926000784
18227c0.5fc: FileDescription: ZoneAlarm Firewalling Driver
18327c0.5fc: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
18427c0.5fc: Calling main()
18527c0.5fc: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
18627c0.5fc: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
18727c0.5fc: SUPR3HardenedMain: Respawn #1
18827c0.5fc: System32: \Device\HarddiskVolume2\Windows\System32
18927c0.5fc: WinSxS: \Device\HarddiskVolume2\Windows\WinSxS
19027c0.5fc: KnownDllPath: C:\WINDOWS\System32
19127c0.5fc: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
19227c0.5fc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe)
19327c0.5fc: supR3HardNtEnableThreadCreation:
19427c0.5fc: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007fff207991e0 pvNtTerminateThread=00007fff207c08d0
19527c0.5fc: supR3HardenedWinDoReSpawn(1): New child 1c24.2180 [kernel32].
19627c0.5fc: supR3HardNtChildGatherData: PebBaseAddress=000000000104f000 cbPeb=0x388
19727c0.5fc: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00007fff20720000 uNtDllChildAddr=00007fff20720000
19827c0.5fc: supR3HardenedWinSetupChildInit: uLdrInitThunk=00007fff207991e0
19927c0.5fc: supR3HardenedWinSetupChildInit: Start child.
20027c0.5fc: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 1 ms.
20127c0.5fc: supR3HardNtChildPurify: Startup delay kludge #1/0: 513 ms, 53 sleeps
20227c0.5fc: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
20327c0.5fc: *0000000000000000-0000000000fdffff 0x0001/0x0000 0x0000000
20427c0.5fc: *0000000000fe0000-0000000000ffffff 0x0004/0x0004 0x0020000
20527c0.5fc: *0000000001000000-000000000104efff 0x0000/0x0004 0x0020000
20627c0.5fc: 000000000104f000-0000000001051fff 0x0004/0x0004 0x0020000
20727c0.5fc: 0000000001052000-00000000011fffff 0x0000/0x0004 0x0020000
20827c0.5fc: *0000000001200000-0000000001218fff 0x0002/0x0002 0x0040000
20927c0.5fc: 0000000001219000-000000000121ffff 0x0001/0x0000 0x0000000
21027c0.5fc: *0000000001220000-000000000131afff 0x0000/0x0004 0x0020000
21127c0.5fc: 000000000131b000-000000000131dfff 0x0104/0x0004 0x0020000
21227c0.5fc: 000000000131e000-000000000131ffff 0x0004/0x0004 0x0020000
21327c0.5fc: *0000000001320000-0000000001323fff 0x0002/0x0002 0x0040000
21427c0.5fc: 0000000001324000-000000000132ffff 0x0001/0x0000 0x0000000
21527c0.5fc: *0000000001330000-0000000001330fff 0x0004/0x0004 0x0020000
21627c0.5fc: 0000000001331000-000000007ffdffff 0x0001/0x0000 0x0000000
21727c0.5fc: *000000007ffe0000-000000007ffe0fff 0x0002/0x0002 0x0020000
21827c0.5fc: *000000007ffe1000-000000007ffeffff 0x0000/0x0002 0x0020000
21927c0.5fc: 000000007fff0000-00007ff77510ffff 0x0001/0x0000 0x0000000
22027c0.5fc: *00007ff775110000-00007ff775132fff 0x0002/0x0002 0x0040000
22127c0.5fc: 00007ff775133000-00007ff7751bffff 0x0001/0x0000 0x0000000
22227c0.5fc: *00007ff7751c0000-00007ff7751c0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
22327c0.5fc: 00007ff7751c1000-00007ff775231fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
22427c0.5fc: 00007ff775232000-00007ff775232fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
22527c0.5fc: 00007ff775233000-00007ff775278fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
22627c0.5fc: 00007ff775279000-00007ff775279fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
22727c0.5fc: 00007ff77527a000-00007ff77527afff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
22827c0.5fc: 00007ff77527b000-00007ff77527ffff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
22927c0.5fc: 00007ff775280000-00007ff775280fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
23027c0.5fc: 00007ff775281000-00007ff775281fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
23127c0.5fc: 00007ff775282000-00007ff775285fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
23227c0.5fc: 00007ff775286000-00007ff7752cdfff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
23327c0.5fc: 00007ff7752ce000-00007fff2071ffff 0x0001/0x0000 0x0000000
23427c0.5fc: *00007fff20720000-00007fff20720fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
23527c0.5fc: 00007fff20721000-00007fff20832fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
23627c0.5fc: 00007fff20833000-00007fff20878fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
23727c0.5fc: 00007fff20879000-00007fff20880fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
23827c0.5fc: 00007fff20881000-00007fff2088efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
23927c0.5fc: 00007fff2088f000-00007fff2088ffff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
24027c0.5fc: 00007fff20890000-00007fff20892fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
24127c0.5fc: 00007fff20893000-00007fff208fffff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
24227c0.5fc: 00007fff20900000-00007ffffffdffff 0x0001/0x0000 0x0000000
24327c0.5fc: *00007ffffffe0000-00007ffffffeffff 0x0001/0x0002 0x0020000
24427c0.5fc: VirtualBox.exe: timestamp 0x5a942b95 (rc=VINF_SUCCESS)
24527c0.5fc: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
24627c0.5fc: '\Device\HarddiskVolume2\Windows\System32\ntdll.dll' has no imports
24727c0.5fc: supR3HardNtChildPurify: Done after 561 ms and 0 fixes (loop #0).
24827c0.5fc: supR3HardNtEnableThreadCreation:
2491c24.2180: Log file opened: 5.2.8r121009 g_hStartupLog=0000000000000004 g_uNtVerCombined=0xa03fab00
2501c24.2180: supR3HardenedVmProcessInit: uNtDllAddr=00007fff20720000 g_uNtVerCombined=0xa03fab00
2511c24.2180: ntdll.dll: timestamp 0xeffc9126 (rc=VINF_SUCCESS)
2521c24.2180: New simple heap: #1 0000000001440000 LB 0x400000 (for 1966080 allocation)
2531c24.2180: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
2541c24.2180: System32: \Device\HarddiskVolume2\Windows\System32
2551c24.2180: WinSxS: \Device\HarddiskVolume2\Windows\WinSxS
2561c24.2180: KnownDllPath: C:\WINDOWS\System32
2571c24.2180: supR3HardenedVmProcessInit: Opening vboxdrv stub...
2581c24.2180: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
2591c24.2180: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
2601c24.2180: Registered Dll notification callback with NTDLL.
2611c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\kernel32.dll)
2621c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\kernel32.dll
2631c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\KERNEL32.DLL (Input=KERNEL32.DLL, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000004001:<flags> [calling]
2641c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1d980000 LB 0x00266000 C:\WINDOWS\System32\KERNELBASE.dll [fFlags=0x0]
2651c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\KernelBase.dll)
2661c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\KernelBase.dll
2671c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1f0e0000 LB 0x000ae000 C:\WINDOWS\System32\KERNEL32.DLL [fFlags=0x0]
2681c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
2691c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1f0e0000 'C:\WINDOWS\System32\KERNEL32.DLL'
2701c24.2180: supR3HardenedDllNotificationCallback: load 00007ff7751c0000 LB 0x0010e000 C:\Program Files\Oracle\VirtualBox\VirtualBox.exe [fFlags=0x0]
2711c24.2180: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
2721c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe)
2731c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
2741c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'advapi32.dll'.
2751c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'shell32.dll'.
2761c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'dnsapi.dll'.
2771c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\QIPCAP64.dll)
2781c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\QIPCAP64.dll
2791c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'dnsapi.dll'...
2801c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'dnsapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\dnsapi.dll' [rcNtRedir=0xc0150008]
2811c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #23 'ws2_32.dll'.
2821c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #25 'nsi.dll'.
2831c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\dnsapi.dll)
2841c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\dnsapi.dll
2851c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
2861c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
2871c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
2881c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #73 'user32.dll'.
2891c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #75 'gdi32.dll'.
2901c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\shell32.dll)
2911c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\shell32.dll
2921c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
2931c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
2941c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
2951c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'sechost.dll'.
2961c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #27 'rpcrt4.dll'.
2971c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\advapi32.dll)
2981c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\advapi32.dll
2991c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3001c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3011c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll)
3021c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll
3031c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'sechost.dll'...
3041c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'sechost.dll' -> '\Device\HarddiskVolume2\Windows\System32\sechost.dll' [rcNtRedir=0xc0150008]
3051c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'rpcrt4.dll'.
3061c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\sechost.dll)
3071c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\sechost.dll
3081c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3091c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3101c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\msvcrt.dll)
3111c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\msvcrt.dll
3121c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3131c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3141c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\gdi32.dll)
3151c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\gdi32.dll
3161c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
3171c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
3181c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'win32u.dll'.
3191c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #34 'gdi32.dll'.
3201c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\user32.dll)
3211c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\user32.dll
3221c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
3231c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
3241c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3251c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'nsi.dll'...
3261c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'nsi.dll' -> '\Device\HarddiskVolume2\Windows\System32\nsi.dll' [rcNtRedir=0xc0150008]
3271c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\nsi.dll)
3281c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\nsi.dll
3291c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'...
3301c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008]
3311c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #26 'rpcrt4.dll'.
3321c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\ws2_32.dll)
3331c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ws2_32.dll
3341c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3351c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3361c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3371c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
3381c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
3391c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3401c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
3411c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume2\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
3421c24.2180: '\Device\HarddiskVolume2\Windows\System32\win32u.dll' has no imports
3431c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\win32u.dll)
3441c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\win32u.dll
3451c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
3461c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
3471c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3481c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\QIPCAP64.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
3491c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\QIPCAP64.dll [lacks WinVerifyTrust]
3501c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\dnsapi.dll [lacks WinVerifyTrust]
3511c24.2180: supR3HardenedDllNotificationCallback: load 00007fff20210000 LB 0x0009d000 C:\WINDOWS\System32\msvcrt.dll [fFlags=0x0]
3521c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
3531c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1f250000 LB 0x0011f000 C:\WINDOWS\System32\RPCRT4.dll [fFlags=0x0]
3541c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
3551c24.2180: supR3HardenedDllNotificationCallback: load 00007fff20310000 LB 0x0005b000 C:\WINDOWS\System32\sechost.dll [fFlags=0x0]
3561c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\sechost.dll [lacks WinVerifyTrust]
3571c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1f030000 LB 0x000a1000 C:\WINDOWS\System32\ADVAPI32.dll [fFlags=0x0]
3581c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
3591c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1cba0000 LB 0x000f6000 C:\WINDOWS\System32\ucrtbase.dll [fFlags=0x0]
3601c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\ucrtbase.dll)
3611c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ucrtbase.dll
3621c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1d490000 LB 0x0004a000 C:\WINDOWS\System32\cfgmgr32.dll [fFlags=0x0]
3631c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll)
3641c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll
3651c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1d4e0000 LB 0x00072000 C:\WINDOWS\System32\bcryptPrimitives.dll [fFlags=0x0]
3661c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\bcryptprimitives.dll)
3671c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\bcryptprimitives.dll
3681c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1f440000 LB 0x00308000 C:\WINDOWS\System32\combase.dll [fFlags=0x0]
3691c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'rpcrt4.dll'.
3701c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #45 'bcryptprimitives.dll'.
3711c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\combase.dll)
3721c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\combase.dll
3731c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1f7c0000 LB 0x000a6000 C:\WINDOWS\System32\shcore.dll [fFlags=0x0]
3741c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
3751c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #37 'rpcrt4.dll'.
3761c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #44 'combase.dll'.
3771c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\SHCore.dll)
3781c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\SHCore.dll
3791c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1d3f0000 LB 0x0009b000 C:\WINDOWS\System32\msvcp_win.dll [fFlags=0x0]
3801c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\msvcp_win.dll)
3811c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\msvcp_win.dll
3821c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1cb20000 LB 0x00020000 C:\WINDOWS\System32\win32u.dll [fFlags=0x0]
3831c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\win32u.dll [lacks WinVerifyTrust]
3841c24.2180: supR3HardenedDllNotificationCallback: load 00007fff20560000 LB 0x0018f000 C:\WINDOWS\System32\USER32.dll [fFlags=0x0]
3851c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
3861c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1d730000 LB 0x00193000 C:\WINDOWS\System32\gdi32full.dll [fFlags=0x0]
3871c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcp_win.dll'.
3881c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #33 'gdi32.dll'.
3891c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #35 'user32.dll'.
3901c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #36 'win32u.dll'.
3911c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\gdi32full.dll)
3921c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\gdi32full.dll
3931c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1fb90000 LB 0x00028000 C:\WINDOWS\System32\GDI32.dll [fFlags=0x0]
3941c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
3951c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1f370000 LB 0x00051000 C:\WINDOWS\System32\shlwapi.dll [fFlags=0x0]
3961c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcrt.dll'.
3971c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #45 'gdi32.dll'.
3981c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #46 'user32.dll'.
3991c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\shlwapi.dll)
4001c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\shlwapi.dll
4011c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1ca90000 LB 0x00011000 C:\WINDOWS\System32\kernel.appcore.dll [fFlags=0x0]
4021c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'msvcrt.dll'.
4031c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'rpcrt4.dll'.
4041c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\kernel.appcore.dll)
4051c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\kernel.appcore.dll
4061c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1cad0000 LB 0x0004c000 C:\WINDOWS\System32\powrprof.dll [fFlags=0x0]
4071c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'rpcrt4.dll'.
4081c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\powrprof.dll)
4091c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\powrprof.dll
4101c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1cab0000 LB 0x0001b000 C:\WINDOWS\System32\profapi.dll [fFlags=0x0]
4111c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\profapi.dll)
4121c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\profapi.dll
4131c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1cca0000 LB 0x00747000 C:\WINDOWS\System32\windows.storage.dll [fFlags=0x0]
4141c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
4151c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'rpcrt4.dll'.
4161c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #55 'combase.dll'.
4171c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #75 'profapi.dll'.
4181c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\windows.storage.dll)
4191c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\windows.storage.dll
4201c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1dbf0000 LB 0x01436000 C:\WINDOWS\System32\SHELL32.dll [fFlags=0x0]
4211c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
4221c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1f750000 LB 0x0006c000 C:\WINDOWS\System32\WS2_32.dll [fFlags=0x0]
4231c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\ws2_32.dll [lacks WinVerifyTrust]
4241c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1f870000 LB 0x00008000 C:\WINDOWS\System32\NSI.dll [fFlags=0x0]
4251c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\nsi.dll [lacks WinVerifyTrust]
4261c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1c0d0000 LB 0x000b6000 C:\WINDOWS\SYSTEM32\DNSAPI.dll [fFlags=0x0]
4271c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\dnsapi.dll [lacks WinVerifyTrust]
4281c24.2180: supR3HardenedDllNotificationCallback: load 0000000068000000 LB 0x00056000 C:\WINDOWS\System32\QIPCAP64.dll [fFlags=0x0]
4291c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\QIPCAP64.dll [lacks WinVerifyTrust]
4301c24.2180: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-synch-l1-2-0) -> 0x0, fPresent=1
4311c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-synch-l1-2-0 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
4321c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1d980000 'api-ms-win-core-synch-l1-2-0'
4331c24.2180: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-fibers-l1-1-1) -> 0x0, fPresent=1
4341c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-fibers-l1-1-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
4351c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1d980000 'api-ms-win-core-fibers-l1-1-1'
4361c24.2180: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-fibers-l1-1-1) -> 0x0, fPresent=1
4371c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-fibers-l1-1-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
4381c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1d980000 'api-ms-win-core-fibers-l1-1-1'
4391c24.2180: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-synch-l1-2-0) -> 0x0, fPresent=1
4401c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-synch-l1-2-0 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
4411c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1d980000 'api-ms-win-core-synch-l1-2-0'
4421c24.2180: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-localization-l1-2-1) -> 0x0, fPresent=1
4431c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-localization-l1-2-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
4441c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1d980000 'api-ms-win-core-localization-l1-2-1'
4451c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
4461c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'profapi.dll'...
4471c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'profapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\profapi.dll' [rcNtRedir=0xc0150008]
4481c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\profapi.dll [lacks WinVerifyTrust]
4491c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
4501c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume2\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
4511c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\combase.dll [lacks WinVerifyTrust]
4521c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
4531c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
4541c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
4551c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
4561c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
4571c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
4581c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
4591c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
4601c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
4611c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
4621c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
4631c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
4641c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
4651c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
4661c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
4671c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
4681c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
4691c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
4701c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
4711c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
4721c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
4731c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
4741c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
4751c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
4761c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
4771c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume2\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
4781c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\win32u.dll [lacks WinVerifyTrust]
4791c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
4801c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
4811c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
4821c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
4831c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
4841c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
4851c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp_win.dll'...
4861c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp_win.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcp_win.dll' [rcNtRedir=0xc0150008]
4871c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcp_win.dll [lacks WinVerifyTrust]
4881c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
4891c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume2\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
4901c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\combase.dll [lacks WinVerifyTrust]
4911c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
4921c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
4931c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
4941c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
4951c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
4961c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
4971c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcryptprimitives.dll'...
4981c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcryptprimitives.dll' -> '\Device\HarddiskVolume2\Windows\System32\bcryptprimitives.dll' [rcNtRedir=0xc0150008]
4991c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\bcryptprimitives.dll [lacks WinVerifyTrust]
5001c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
5011c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
5021c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
5031c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\kernel32.dll (Input=kernel32, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
5041c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1f0e0000 'C:\WINDOWS\System32\kernel32.dll'
5051c24.2180: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-string-l1-1-0) -> 0x0, fPresent=1
5061c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-string-l1-1-0 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
5071c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1d980000 'api-ms-win-core-string-l1-1-0'
5081c24.2180: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-datetime-l1-1-1) -> 0x0, fPresent=1
5091c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-datetime-l1-1-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
5101c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1d980000 'api-ms-win-core-datetime-l1-1-1'
5111c24.2180: supR3HardenedIsApiSetDll: ApiSetQueryApiSetPresence(api-ms-win-core-localization-obsolete-l1-2-0) -> 0x0, fPresent=1
5121c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-localization-obsolete-l1-2-0 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
5131c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1d980000 'api-ms-win-core-localization-obsolete-l1-2-0'
5141c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'user32.dll'.
5151c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #26 'win32u.dll'.
5161c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\imm32.dll)
5171c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\imm32.dll
5181c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
5191c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume2\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
5201c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\win32u.dll [lacks WinVerifyTrust]
5211c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
5221c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
5231c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
5241c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\IMM32.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000009:<flags> [calling]
5251c24.2180: supR3HardenedDllNotificationCallback: load 00007fff201e0000 LB 0x0002d000 C:\WINDOWS\System32\IMM32.DLL [fFlags=0x0]
5261c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\imm32.dll [lacks WinVerifyTrust]
5271c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff201e0000 'C:\WINDOWS\system32\IMM32.DLL'
5281c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\IPHLPAPI.DLL)
5291c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\IPHLPAPI.DLL
5301c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1c090000 LB 0x00039000 C:\WINDOWS\SYSTEM32\IPHLPAPI.DLL [fFlags=0x0]
5311c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\IPHLPAPI.DLL [lacks WinVerifyTrust]
5321c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000068000000 'C:\WINDOWS\System32\QIPCAP64.dll'
5331c24.2180: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007fff207991e0 pvNtTerminateThread=00007fff207c08d0
53427c0.5fc: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 896 ms.
5351c24.2180: \SystemRoot\System32\ntdll.dll:
5361c24.2180: CreationTime: 2018-02-16T15:54:21.665969200Z
5371c24.2180: LastWriteTime: 2018-02-10T06:15:34.902092600Z
5381c24.2180: ChangeTime: 2018-02-19T11:04:38.408972300Z
5391c24.2180: FileAttributes: 0x20
5401c24.2180: Size: 0x1dd100
5411c24.2180: NT Headers: 0xe0
5421c24.2180: Timestamp: 0xeffc9126
5431c24.2180: Machine: 0x8664 - amd64
5441c24.2180: Timestamp: 0xeffc9126
5451c24.2180: Image Version: 10.0
5461c24.2180: SizeOfImage: 0x1e0000 (1966080)
5471c24.2180: Resource Dir: 0x174000 LB 0x6a1d8
5481c24.2180: [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
5491c24.2180: [Raw version resource data: 0x1740f0 LB 0x380, codepage 0x0 (reserved 0x0)]
5501c24.2180: ProductName: Microsoft® Windows® Operating System
5511c24.2180: ProductVersion: 10.0.16299.248
5521c24.2180: FileVersion: 10.0.16299.248 (WinBuild.160101.0800)
5531c24.2180: FileDescription: NT Layer DLL
5541c24.2180: \SystemRoot\System32\kernel32.dll:
5551c24.2180: CreationTime: 2017-09-29T13:42:04.954227600Z
5561c24.2180: LastWriteTime: 2017-09-29T13:42:04.954227600Z
5571c24.2180: ChangeTime: 2017-11-22T16:33:08.352730100Z
5581c24.2180: FileAttributes: 0x20
5591c24.2180: Size: 0xab868
5601c24.2180: NT Headers: 0xe8
5611c24.2180: Timestamp: 0xc2cf900
5621c24.2180: Machine: 0x8664 - amd64
5631c24.2180: Timestamp: 0xc2cf900
5641c24.2180: Image Version: 10.0
5651c24.2180: SizeOfImage: 0xae000 (712704)
5661c24.2180: Resource Dir: 0xac000 LB 0x520
5671c24.2180: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
5681c24.2180: [Raw version resource data: 0xac0b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
5691c24.2180: ProductName: Microsoft® Windows® Operating System
5701c24.2180: ProductVersion: 10.0.16299.15
5711c24.2180: FileVersion: 10.0.16299.15 (WinBuild.160101.0800)
5721c24.2180: FileDescription: Windows NT BASE API Client DLL
5731c24.2180: \SystemRoot\System32\KernelBase.dll:
5741c24.2180: CreationTime: 2018-02-16T15:53:30.525154600Z
5751c24.2180: LastWriteTime: 2018-02-10T06:15:53.408982400Z
5761c24.2180: ChangeTime: 2018-02-19T11:04:34.845920900Z
5771c24.2180: FileAttributes: 0x20
5781c24.2180: Size: 0x266000
5791c24.2180: NT Headers: 0xf0
5801c24.2180: Timestamp: 0x4414ec23
5811c24.2180: Machine: 0x8664 - amd64
5821c24.2180: Timestamp: 0x4414ec23
5831c24.2180: Image Version: 10.0
5841c24.2180: SizeOfImage: 0x266000 (2514944)
5851c24.2180: Resource Dir: 0x245000 LB 0x548
5861c24.2180: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
5871c24.2180: [Raw version resource data: 0x2450b0 LB 0x3bc, codepage 0x0 (reserved 0x0)]
5881c24.2180: ProductName: Microsoft® Windows® Operating System
5891c24.2180: ProductVersion: 10.0.16299.248
5901c24.2180: FileVersion: 10.0.16299.248 (WinBuild.160101.0800)
5911c24.2180: FileDescription: Windows NT BASE API Client DLL
5921c24.2180: \SystemRoot\System32\apisetschema.dll:
5931c24.2180: CreationTime: 2017-09-29T13:42:07.095026600Z
5941c24.2180: LastWriteTime: 2017-09-29T13:42:07.095026600Z
5951c24.2180: ChangeTime: 2018-02-16T16:09:21.698420900Z
5961c24.2180: FileAttributes: 0x20
5971c24.2180: Size: 0x1b398
5981c24.2180: NT Headers: 0xc8
5991c24.2180: Timestamp: 0xf30abf31
6001c24.2180: Machine: 0x8664 - amd64
6011c24.2180: Timestamp: 0xf30abf31
6021c24.2180: Image Version: 10.0
6031c24.2180: SizeOfImage: 0x1c000 (114688)
6041c24.2180: Resource Dir: 0x1b000 LB 0x408
6051c24.2180: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
6061c24.2180: [Raw version resource data: 0x1b060 LB 0x3a8, codepage 0x0 (reserved 0x0)]
6071c24.2180: ProductName: Microsoft® Windows® Operating System
6081c24.2180: ProductVersion: 10.0.16299.15
6091c24.2180: FileVersion: 10.0.16299.15 (WinBuild.160101.0800)
6101c24.2180: FileDescription: ApiSet Schema DLL
6111c24.2180: NtOpenDirectoryObject failed on \Driver: 0xc0000022
6121c24.2180: supR3HardenedWinFindAdversaries: 0x1008
6131c24.2180: \SystemRoot\System32\drivers\tmcomm.sys:
6141c24.2180: CreationTime: 2017-01-02T13:11:18.436528800Z
6151c24.2180: LastWriteTime: 2016-09-29T09:27:10.000000000Z
6161c24.2180: ChangeTime: 2017-11-22T16:45:09.934551100Z
6171c24.2180: FileAttributes: 0x20
6181c24.2180: Size: 0x6a4e0
6191c24.2180: NT Headers: 0xf8
6201c24.2180: Timestamp: 0x57bba895
6211c24.2180: Machine: 0x8664 - amd64
6221c24.2180: Timestamp: 0x57bba895
6231c24.2180: Image Version: 10.0
6241c24.2180: SizeOfImage: 0x6c000 (442368)
6251c24.2180: Resource Dir: 0x6a000 LB 0x568
6261c24.2180: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
6271c24.2180: [Raw version resource data: 0x6a060 LB 0x504, codepage 0x0 (reserved 0x0)]
6281c24.2180: ProductName: Trend Micro Eyes
6291c24.2180: ProductVersion: 7.0
6301c24.2180: FileVersion: 7.0.0.1101
6311c24.2180: SpecialBuild: 1101
6321c24.2180: PrivateBuild: Build 1101 - 8/23/2016
6331c24.2180: FileDescription: TrendMicro Common Module
6341c24.2180: \SystemRoot\System32\drivers\tmactmon.sys:
6351c24.2180: CreationTime: 2017-01-02T13:11:18.405539500Z
6361c24.2180: LastWriteTime: 2016-09-29T09:27:20.000000000Z
6371c24.2180: ChangeTime: 2017-11-22T16:45:09.934551100Z
6381c24.2180: FileAttributes: 0x20
6391c24.2180: Size: 0x1fad8
6401c24.2180: NT Headers: 0xe0
6411c24.2180: Timestamp: 0x57e8f5ac
6421c24.2180: Machine: 0x8664 - amd64
6431c24.2180: Timestamp: 0x57e8f5ac
6441c24.2180: Image Version: 6.0
6451c24.2180: SizeOfImage: 0x24000 (147456)
6461c24.2180: Resource Dir: 0x22000 LB 0x590
6471c24.2180: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
6481c24.2180: [Raw version resource data: 0x22060 LB 0x52c, codepage 0x0 (reserved 0x0)]
6491c24.2180: ProductName: Trend Micro AEGIS
6501c24.2180: ProductVersion: 2.976
6511c24.2180: FileVersion: 2.976.0.1159
6521c24.2180: SpecialBuild: 1159
6531c24.2180: PrivateBuild: Build 1159 - 9/26/2016
6541c24.2180: FileDescription: TrendMicro Activity Monitor Module
6551c24.2180: \SystemRoot\System32\drivers\tmevtmgr.sys:
6561c24.2180: CreationTime: 2017-01-02T13:11:19.700647600Z
6571c24.2180: LastWriteTime: 2016-09-29T09:25:04.000000000Z
6581c24.2180: ChangeTime: 2017-11-22T16:45:09.934551100Z
6591c24.2180: FileAttributes: 0x20
6601c24.2180: Size: 0x166e0
6611c24.2180: NT Headers: 0xe0
6621c24.2180: Timestamp: 0x57e8f5aa
6631c24.2180: Machine: 0x8664 - amd64
6641c24.2180: Timestamp: 0x57e8f5aa
6651c24.2180: Image Version: 6.0
6661c24.2180: SizeOfImage: 0x17000 (94208)
6671c24.2180: Resource Dir: 0x15000 LB 0x590
6681c24.2180: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
6691c24.2180: [Raw version resource data: 0x15060 LB 0x52c, codepage 0x0 (reserved 0x0)]
6701c24.2180: ProductName: Trend Micro AEGIS
6711c24.2180: ProductVersion: 2.976
6721c24.2180: FileVersion: 2.976.0.1159
6731c24.2180: SpecialBuild: 1159
6741c24.2180: PrivateBuild: Build 1159 - 9/26/2016
6751c24.2180: FileDescription: TrendMicro Event Management Module
6761c24.2180: \SystemRoot\System32\drivers\tmeevw.sys:
6771c24.2180: CreationTime: 2017-01-02T13:11:18.508537100Z
6781c24.2180: LastWriteTime: 2016-07-15T04:48:26.000000000Z
6791c24.2180: ChangeTime: 2017-11-22T16:45:09.934551100Z
6801c24.2180: FileAttributes: 0x20
6811c24.2180: Size: 0x22ee0
6821c24.2180: NT Headers: 0xf8
6831c24.2180: Timestamp: 0x578312e1
6841c24.2180: Machine: 0x8664 - amd64
6851c24.2180: Timestamp: 0x578312e1
6861c24.2180: Image Version: 10.0
6871c24.2180: SizeOfImage: 0x23000 (143360)
6881c24.2180: Resource Dir: 0x1d000 LB 0x4e00
6891c24.2180: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
6901c24.2180: [Raw version resource data: 0x2190c LB 0x4f4, codepage 0x4e4 (reserved 0x0)]
6911c24.2180: ProductName: Trend Micro EagleEye
6921c24.2180: ProductVersion: 3.0
6931c24.2180: FileVersion: 3.0.0.1002
6941c24.2180: SpecialBuild: 1002
6951c24.2180: PrivateBuild: Build 1002 - 7/11/2016
6961c24.2180: FileDescription: Trend Micro EagleEye Driver (VW) (amd64-fre)
6971c24.2180: \SystemRoot\System32\drivers\vsdatant.sys:
6981c24.2180: CreationTime: 2017-11-24T14:29:12.000000000Z
6991c24.2180: LastWriteTime: 2017-11-24T14:29:12.000000000Z
7001c24.2180: ChangeTime: 2018-02-21T17:29:38.232739500Z
7011c24.2180: FileAttributes: 0x20
7021c24.2180: Size: 0x75430
7031c24.2180: NT Headers: 0xf8
7041c24.2180: Timestamp: 0x5a153960
7051c24.2180: Machine: 0x8664 - amd64
7061c24.2180: Timestamp: 0x5a153960
7071c24.2180: Image Version: 6.1
7081c24.2180: SizeOfImage: 0x9a000 (630784)
7091c24.2180: Resource Dir: 0x98000 LB 0x3d8
7101c24.2180: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
7111c24.2180: [Raw version resource data: 0x98060 LB 0x374, codepage 0x0 (reserved 0x0)]
7121c24.2180: ProductName: End Point Security
7131c24.2180: ProductVersion: E80.64
7141c24.2180: FileVersion: 926000784
7151c24.2180: FileDescription: ZoneAlarm Firewalling Driver
7161c24.2180: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
7171c24.2180: Calling main()
7181c24.2180: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
7191c24.2180: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
7201c24.2180: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
7211c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe)
7221c24.2180: SUPR3HardenedMain: Respawn #2
7231c24.2180: Error (rc=-5640):
7241c24.2180: More than one thread in process
7251c24.2180: Error -5640 in supR3HardenedWinReSpawn! (enmWhat=1)
7261c24.2180: More than one thread in process
7271c24.2180: supR3HardNtEnableThreadCreation:
7281c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'opengl32.dll'.
7291c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'vboxrt.dll'.
7301c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'msvcp100.dll'.
7311c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'msvcr100.dll'.
7321c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qt5corevbox.dll'.
7331c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'qt5guivbox.dll'.
7341c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'qt5widgetsvbox.dll'.
7351c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'qt5printsupportvbox.dll'.
7361c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'qt5openglvbox.dll'.
7371c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'user32.dll'.
7381c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'advapi32.dll'.
7391c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'shell32.dll'.
7401c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #13 'ole32.dll'.
7411c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #14 'oleaut32.dll'.
7421c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #15 'winmm.dll'.
7431c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.dll)
7441c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.dll
7451c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
7461c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
7471c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'winmmbase.dll'.
7481c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msvcrt.dll'.
7491c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\winmm.dll)
7501c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\winmm.dll
7511c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
7521c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
7531c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcp_win.dll'.
7541c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'combase.dll'.
7551c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #23 'rpcrt4.dll'.
7561c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\oleaut32.dll)
7571c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\oleaut32.dll
7581c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
7591c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
7601c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #22 'rpcrt4.dll'.
7611c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #46 'gdi32.dll'.
7621c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #47 'user32.dll'.
7631c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #48 'combase.dll'.
7641c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\ole32.dll)
7651c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ole32.dll
7661c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
7671c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
7681c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
7691c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
7701c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
7711c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
7721c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
7731c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
7741c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
7751c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5openglvbox.dll'...
7761c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5openglvbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5openglvbox.dll' [rcNtRedir=0xc0150008]
7771c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'qt5widgetsvbox.dll'.
7781c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'qt5guivbox.dll'.
7791c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'qt5corevbox.dll'.
7801c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'msvcr100.dll'.
7811c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5OpenGLVBox.dll)
7821c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5OpenGLVBox.dll
7831c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5printsupportvbox.dll'...
7841c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5printsupportvbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5printsupportvbox.dll' [rcNtRedir=0xc0150008]
7851c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'.
7861c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
7871c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'qt5widgetsvbox.dll'.
7881c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'qt5guivbox.dll'.
7891c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qt5corevbox.dll'.
7901c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'winspool.drv'.
7911c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'comdlg32.dll'.
7921c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'msvcr100.dll'.
7931c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5PrintSupportVBox.dll)
7941c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5PrintSupportVBox.dll
7951c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5widgetsvbox.dll'...
7961c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5widgetsvbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5widgetsvbox.dll' [rcNtRedir=0xc0150008]
7971c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'.
7981c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
7991c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'qt5guivbox.dll'.
8001c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'qt5corevbox.dll'.
8011c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'shell32.dll'.
8021c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcp100.dll'.
8031c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msvcr100.dll'.
8041c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll)
8051c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll
8061c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
8071c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5guivbox.dll' [rcNtRedir=0xc0150008]
8081c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'ole32.dll'.
8091c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'opengl32.dll'.
8101c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
8111c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
8121c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qt5corevbox.dll'.
8131c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcp100.dll'.
8141c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msvcr100.dll'.
8151c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll)
8161c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll
8171c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
8181c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
8191c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
8201c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'shell32.dll'.
8211c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ole32.dll'.
8221c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'advapi32.dll'.
8231c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'ws2_32.dll'.
8241c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'mpr.dll'.
8251c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'msvcp100.dll'.
8261c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'msvcr100.dll'.
8271c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll)
8281c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll
8291c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
8301c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
8311c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll)
8321c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll
8331c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
8341c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
8351c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'.
8361c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll)
8371c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll
8381c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'vboxrt.dll'...
8391c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'vboxrt.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\vboxrt.dll' [rcNtRedir=0xc0150008]
8401c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'.
8411c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcp100.dll'.
8421c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ws2_32.dll'.
8431c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'rpcrt4.dll'.
8441c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll)
8451c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll
8461c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
8471c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
8481c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
8491c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'advapi32.dll'.
8501c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
8511c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'.
8521c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'glu32.dll'.
8531c24.2180: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\opengl32.dll)
8541c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\opengl32.dll
8551c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'glu32.dll'...
8561c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'glu32.dll' -> '\Device\HarddiskVolume2\Windows\System32\glu32.dll' [rcNtRedir=0xc0150008]
8571c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
8581c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
8591c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'opengl32.dll'.
8601c24.2180: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\glu32.dll)
8611c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\glu32.dll
8621c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
8631c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
8641c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
8651c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
8661c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
8671c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
8681c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
8691c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
8701c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
8711c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
8721c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
8731c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
8741c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
8751c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
8761c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
8771c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'...
8781c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008]
8791c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\ws2_32.dll [lacks WinVerifyTrust]
8801c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
8811c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
8821c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
8831c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
8841c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
8851c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
8861c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
8871c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
8881c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
8891c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
8901c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
8911c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
8921c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
8931c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
8941c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
8951c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mpr.dll'...
8961c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'mpr.dll' -> '\Device\HarddiskVolume2\Windows\System32\mpr.dll' [rcNtRedir=0xc0150008]
8971c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\mpr.dll)
8981c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\mpr.dll
8991c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'...
9001c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008]
9011c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\ws2_32.dll [lacks WinVerifyTrust]
9021c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
9031c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
9041c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
9051c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
9061c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
9071c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
9081c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
9091c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
9101c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
9111c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9121c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9131c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
9141c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
9151c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
9161c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
9171c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
9181c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
9191c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
9201c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
9211c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
9221c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
9231c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9241c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9251c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
9261c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
9271c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
9281c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
9291c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
9301c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
9311c24.2180: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
9321c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
9331c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
9341c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
9351c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
9361c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
9371c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
9381c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
9391c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008]
9401c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
9411c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
9421c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
9431c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
9441c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
9451c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
9461c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
9471c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
9481c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5guivbox.dll' [rcNtRedir=0xc0150008]
9491c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
9501c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9511c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9521c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
9531c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
9541c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
9551c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
9561c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
9571c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
9581c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
9591c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comdlg32.dll'...
9601c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'comdlg32.dll' -> '\Device\HarddiskVolume2\Windows\System32\comdlg32.dll' [rcNtRedir=0xc0150008]
9611c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
9621c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #36 'user32.dll'.
9631c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #37 'shlwapi.dll'.
9641c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #38 'gdi32.dll'.
9651c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #39 'comctl32.dll'.
9661c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #40 'shell32.dll'.
9671c24.2180: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\comdlg32.dll)
9681c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\comdlg32.dll
9691c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winspool.drv'...
9701c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'winspool.drv' -> '\Device\HarddiskVolume2\Windows\System32\winspool.drv' [rcNtRedir=0xc0150008]
9711c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
9721c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #25 'iphlpapi.dll'.
9731c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #34 'bcrypt.dll'.
9741c24.2180: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\winspool.drv)
9751c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\winspool.drv
9761c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
9771c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
9781c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
9791c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
9801c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5guivbox.dll' [rcNtRedir=0xc0150008]
9811c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
9821c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5widgetsvbox.dll'...
9831c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5widgetsvbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5widgetsvbox.dll' [rcNtRedir=0xc0150008]
9841c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll [lacks WinVerifyTrust]
9851c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
9861c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
9871c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
9881c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
9891c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
9901c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
9911c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
9921c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
9931c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
9941c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
9951c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
9961c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
9971c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
9981c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5guivbox.dll' [rcNtRedir=0xc0150008]
9991c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
10001c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5widgetsvbox.dll'...
10011c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5widgetsvbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5widgetsvbox.dll' [rcNtRedir=0xc0150008]
10021c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll [lacks WinVerifyTrust]
10031c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
10041c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume2\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
10051c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\combase.dll [lacks WinVerifyTrust]
10061c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10071c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10081c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
10091c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10101c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10111c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10121c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
10131c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
10141c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
10151c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
10161c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
10171c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
10181c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
10191c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume2\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
10201c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\combase.dll [lacks WinVerifyTrust]
10211c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp_win.dll'...
10221c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp_win.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcp_win.dll' [rcNtRedir=0xc0150008]
10231c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcp_win.dll [lacks WinVerifyTrust]
10241c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10251c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10261c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10271c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmmbase.dll'...
10281c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmmbase.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmmbase.dll' [rcNtRedir=0xc0150008]
10291c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
10301c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\winmmbase.dll)
10311c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\winmmbase.dll
10321c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10331c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10341c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10351c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcrypt.dll'...
10361c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcrypt.dll' -> '\Device\HarddiskVolume2\Windows\System32\bcrypt.dll' [rcNtRedir=0xc0150008]
10371c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\bcrypt.dll)
10381c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\bcrypt.dll
10391c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'iphlpapi.dll'...
10401c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'iphlpapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\iphlpapi.dll' [rcNtRedir=0xc0150008]
10411c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\IPHLPAPI.DLL [lacks WinVerifyTrust]
10421c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10431c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10441c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10451c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
10461c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
10471c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
10481c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comctl32.dll'...
10491c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'comctl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\comctl32.dll' [rcNtRedir=0x0]
10501c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'advapi32.dll'.
10511c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
10521c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
10531c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\comctl32.dll)
10541c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\comctl32.dll
10551c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10561c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10571c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10581c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shlwapi.dll'...
10591c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'shlwapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\shlwapi.dll' [rcNtRedir=0xc0150008]
10601c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\shlwapi.dll [lacks WinVerifyTrust]
10611c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10621c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10631c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
10641c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10651c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10661c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10671c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
10681c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008]
10691c24.2180: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
10701c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10711c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10721c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
10731c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
10741c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
10751c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
10761c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
10771c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
10781c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
10791c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
10801c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
10811c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
10821c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
10831c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
10841c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
10851c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VirtualBox.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000a01:<flags> [calling]
10861c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.dll [lacks WinVerifyTrust]
10871c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
10881c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
10891c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
10901c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
10911c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
10921c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
10931c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll [lacks WinVerifyTrust]
10941c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5PrintSupportVBox.dll [lacks WinVerifyTrust]
10951c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5OpenGLVBox.dll [lacks WinVerifyTrust]
10961c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
10971c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\glu32.dll [lacks WinVerifyTrust]
10981c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\mpr.dll [lacks WinVerifyTrust]
10991c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winspool.drv [lacks WinVerifyTrust]
11001c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'advapi32.dll'.
11011c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
11021c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'.
11031c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.16299.248_none_8879e63c4abacc42\comctl32.dll)
11041c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.16299.248_none_8879e63c4abacc42\comctl32.dll
11051c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\winmmbase.dll [lacks WinVerifyTrust]
11061c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
11071c24.2180: supR3HardenedDllNotificationCallback: load 00007fff10210000 LB 0x0002c000 C:\WINDOWS\SYSTEM32\GLU32.dll [fFlags=0x0]
11081c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\glu32.dll [lacks WinVerifyTrust]
11091c24.2180: supR3HardenedDllNotificationCallback: load 00007ffefc010000 LB 0x0011e000 C:\WINDOWS\SYSTEM32\OPENGL32.dll [fFlags=0x0]
11101c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\opengl32.dll [lacks WinVerifyTrust]
11111c24.2180: supR3HardenedDllNotificationCallback: load 00000000553d0000 LB 0x000d2000 C:\Program Files\Oracle\VirtualBox\MSVCR100.dll [fFlags=0x0]
11121c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
11131c24.2180: supR3HardenedDllNotificationCallback: load 0000000056370000 LB 0x00098000 C:\Program Files\Oracle\VirtualBox\MSVCP100.dll [fFlags=0x0]
11141c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust]
11151c24.2180: supR3HardenedDllNotificationCallback: load 00007ffeb72d0000 LB 0x00590000 C:\Program Files\Oracle\VirtualBox\VBoxRT.dll [fFlags=0x0]
11161c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11171c24.2180: supR3HardenedDllNotificationCallback: load 00007fff20010000 LB 0x00149000 C:\WINDOWS\System32\ole32.dll [fFlags=0x0]
11181c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
11191c24.2180: supR3HardenedDllNotificationCallback: load 00007fff05f50000 LB 0x0001b000 C:\WINDOWS\SYSTEM32\MPR.dll [fFlags=0x0]
11201c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\mpr.dll [lacks WinVerifyTrust]
11211c24.2180: supR3HardenedDllNotificationCallback: load 0000000054320000 LB 0x00565000 C:\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [fFlags=0x0]
11221c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
11231c24.2180: supR3HardenedDllNotificationCallback: load 00007ffeb6cd0000 LB 0x005f7000 C:\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [fFlags=0x0]
11241c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
11251c24.2180: supR3HardenedDllNotificationCallback: load 0000000054890000 LB 0x00561000 C:\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll [fFlags=0x0]
11261c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll [lacks WinVerifyTrust]
11271c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1c5d0000 LB 0x00025000 C:\WINDOWS\SYSTEM32\bcrypt.dll [fFlags=0x0]
11281c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
11291c24.2180: supR3HardenedDllNotificationCallback: load 00007fff17460000 LB 0x00086000 C:\WINDOWS\SYSTEM32\WINSPOOL.DRV [fFlags=0x0]
11301c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winspool.drv [lacks WinVerifyTrust]
11311c24.2180: supR3HardenedDllNotificationCallback: load 00007ffefd310000 LB 0x000a6000 C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.16299.248_none_8879e63c4abacc42\COMCTL32.dll [fFlags=0x0]
11321c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.16299.248_none_8879e63c4abacc42\comctl32.dll [lacks WinVerifyTrust]
11331c24.2180: supR3HardenedDllNotificationCallback: load 0000000005590000 LB 0x0010a000 C:\WINDOWS\System32\COMDLG32.dll [fFlags=0x0]
11341c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\comdlg32.dll [lacks WinVerifyTrust]
11351c24.2180: supR3HardenedDllNotificationCallback: load 00007ffee1fe0000 LB 0x00051000 C:\Program Files\Oracle\VirtualBox\Qt5PrintSupportVBox.dll [fFlags=0x0]
11361c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5PrintSupportVBox.dll [lacks WinVerifyTrust]
11371c24.2180: supR3HardenedDllNotificationCallback: load 0000000055370000 LB 0x00054000 C:\Program Files\Oracle\VirtualBox\Qt5OpenGLVBox.dll [fFlags=0x0]
11381c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5OpenGLVBox.dll [lacks WinVerifyTrust]
11391c24.2180: supR3HardenedDllNotificationCallback: load 00007fff20370000 LB 0x000c5000 C:\WINDOWS\System32\OLEAUT32.dll [fFlags=0x0]
11401c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
11411c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1a950000 LB 0x0002a000 C:\WINDOWS\SYSTEM32\WINMMBASE.dll [fFlags=0x0]
11421c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\winmmbase.dll [lacks WinVerifyTrust]
11431c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1a980000 LB 0x00023000 C:\WINDOWS\SYSTEM32\WINMM.dll [fFlags=0x0]
11441c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
11451c24.2180: supR3HardenedDllNotificationCallback: load 00007ffeb5e00000 LB 0x00a06000 C:\Program Files\Oracle\VirtualBox\VirtualBox.dll [fFlags=0x0]
11461c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.dll [lacks WinVerifyTrust]
11471c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11481c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
11491c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
11501c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
11511c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
11521c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
11531c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
11541c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
11551c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
11561c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
11571c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
11581c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11591c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11601c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
11611c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11621c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11631c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
11641c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11651c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11661c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
11671c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11681c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11691c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
11701c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11711c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11721c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
11731c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11741c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11751c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11761c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11771c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11781c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11791c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11801c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11811c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11821c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11831c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11841c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11851c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11861c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11871c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11881c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11891c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
11901c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11911c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11921c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11931c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11941c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11951c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11961c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11971c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
11981c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
11991c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12001c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12011c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12021c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12031c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12041c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12051c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12061c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12071c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12081c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12091c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12101c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12111c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12121c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12131c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12141c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12151c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12161c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12171c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12181c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12191c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12201c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12211c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12221c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
12231c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12241c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12251c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12261c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust]
12271c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb72d0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll'
12281c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\imm32.dll [lacks WinVerifyTrust]
12291c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\imm32.dll (Input=imm32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
12301c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff201e0000 'C:\WINDOWS\System32\imm32.dll'
12311c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
12321c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\ADVAPI32.DLL (Input=ADVAPI32.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
12331c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1f030000 'C:\WINDOWS\System32\ADVAPI32.DLL'
12341c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'bcryptprimitives.dll'.
12351c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\cryptbase.dll)
12361c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\cryptbase.dll
12371c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1c4e0000 LB 0x0000b000 C:\WINDOWS\SYSTEM32\CRYPTBASE.DLL [fFlags=0x0]
12381c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\cryptbase.dll [lacks WinVerifyTrust]
12391c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffeb5e00000 'C:\Program Files\Oracle\VirtualBox\VirtualBox.dll'
12401c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
12411c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcryptprimitives.dll'...
12421c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcryptprimitives.dll' -> '\Device\HarddiskVolume2\Windows\System32\bcryptprimitives.dll' [rcNtRedir=0xc0150008]
12431c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\bcryptprimitives.dll [lacks WinVerifyTrust]
12441c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\kernel32.dll (Input=kernel32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
12451c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1f0e0000 'C:\WINDOWS\System32\kernel32.dll'
12461c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'.
12471c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'ole32.dll'.
12481c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'.
12491c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'imm32.dll'.
12501c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'winmm.dll'.
12511c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'oleaut32.dll'.
12521c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'shell32.dll'.
12531c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'advapi32.dll'.
12541c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'qt5guivbox.dll'.
12551c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'qt5corevbox.dll'.
12561c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'msvcr100.dll'.
12571c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\platforms\qwindows.dll)
12581c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\platforms\qwindows.dll
12591c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
12601c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008]
12611c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust]
12621c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
12631c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5corevbox.dll' [rcNtRedir=0xc0150008]
12641c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5CoreVBox.dll [lacks WinVerifyTrust]
12651c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
12661c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qt5guivbox.dll' [rcNtRedir=0xc0150008]
12671c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\Qt5GuiVBox.dll [lacks WinVerifyTrust]
12681c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
12691c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
12701c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
12711c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
12721c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
12731c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
12741c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
12751c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
12761c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
12771c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
12781c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
12791c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
12801c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'imm32.dll'...
12811c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'imm32.dll' -> '\Device\HarddiskVolume2\Windows\System32\imm32.dll' [rcNtRedir=0xc0150008]
12821c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\imm32.dll [lacks WinVerifyTrust]
12831c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
12841c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
12851c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
12861c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
12871c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
12881c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust]
12891c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
12901c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
12911c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
12921c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\platforms\qwindows.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
12931c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\platforms\qwindows.dll [lacks WinVerifyTrust]
12941c24.2180: supR3HardenedDllNotificationCallback: load 00007ffed9cc0000 LB 0x0012e000 C:\Program Files\Oracle\VirtualBox\platforms\qwindows.dll [fFlags=0x0]
12951c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\platforms\qwindows.dll [lacks WinVerifyTrust]
12961c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffed9cc0000 'C:\Program Files\Oracle\VirtualBox\platforms\qwindows.dll'
12971c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
12981c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #33 'gdi32.dll'.
12991c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #34 'user32.dll'.
13001c24.2180: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\uxtheme.dll)
13011c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\uxtheme.dll
13021c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
13031c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
13041c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
13051c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
13061c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
13071c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
13081c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
13091c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
13101c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
13111c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000009:<flags> [calling]
13121c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
13131c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1ad10000 LB 0x00095000 C:\WINDOWS\system32\uxtheme.dll [fFlags=0x0]
13141c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
13151c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1ad10000 'C:\WINDOWS\system32\uxtheme.dll'
13161c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
13171c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff20560000 'C:\WINDOWS\system32\user32.dll'
13181c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
13191c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\shell32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
13201c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1dbf0000 'C:\WINDOWS\system32\shell32.dll'
13211c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\SHCore.dll [lacks WinVerifyTrust]
13221c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\SHCore.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
13231c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1f7c0000 'C:\WINDOWS\system32\SHCore.dll'
13241c24.2180: supR3HardenedMonitor_LdrLoadDll: error opening 'C:\WINDOWS\system32\wintab32.dll': 126 (NtPath=\??\C:\WINDOWS\system32\wintab32.dll; Input=C:\WINDOWS\system32\wintab32.dll; rcNtGetDll=0x0
13251c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000034 'C:\WINDOWS\system32\wintab32.dll'
13261c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
13271c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #22 'win32u.dll'.
13281c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #23 'user32.dll'.
13291c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #24 'gdi32.dll'.
13301c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\dwmapi.dll)
13311c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\dwmapi.dll
13321c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1afa0000 LB 0x0002a000 C:\WINDOWS\system32\dwmapi.dll [fFlags=0x0]
13331c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\dwmapi.dll [lacks WinVerifyTrust]
13341c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
13351c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
13361c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
13371c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
13381c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
13391c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
13401c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
13411c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
13421c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume2\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
13431c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\win32u.dll [lacks WinVerifyTrust]
13441c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
13451c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
13461c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
13471c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\winmm.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
13481c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1a980000 'C:\WINDOWS\system32\winmm.dll'
13491c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust]
13501c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\winmm.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
13511c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1a980000 'C:\WINDOWS\system32\winmm.dll'
13521c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust]
13531c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\shell32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
13541c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1dbf0000 'C:\WINDOWS\system32\shell32.dll'
13551c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\uxtheme.dll [lacks WinVerifyTrust]
13561c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
13571c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1ad10000 'C:\WINDOWS\system32\uxtheme.dll'
13581c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
13591c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\gdi32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
13601c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1fb90000 'C:\WINDOWS\system32\gdi32.dll'
13611c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1f880000 LB 0x00167000 C:\WINDOWS\System32\MSCTF.dll [fFlags=0x0]
13621c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
13631c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #19 'oleaut32.dll'.
13641c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #36 'user32.dll'.
13651c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #37 'gdi32.dll'.
13661c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #38 'imm32.dll'.
13671c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\msctf.dll)
13681c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\msctf.dll
13691c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
13701c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'imm32.dll'...
13711c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'imm32.dll' -> '\Device\HarddiskVolume2\Windows\System32\imm32.dll' [rcNtRedir=0xc0150008]
13721c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\imm32.dll [lacks WinVerifyTrust]
13731c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'...
13741c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008]
13751c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
13761c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
13771c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
13781c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust]
13791c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
13801c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
13811c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust]
13821c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
13831c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
13841c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
13851c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1f250000 'C:\WINDOWS\System32\rpcrt4.dll'
13861c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1f1b0000 LB 0x0009e000 C:\WINDOWS\System32\clbcatq.dll [fFlags=0x0]
13871c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
13881c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #28 'rpcrt4.dll'.
13891c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\clbcatq.dll)
13901c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\clbcatq.dll
13911c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
13921c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'shcore.dll'.
13931c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #28 'combase.dll'.
13941c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #31 'd3d11.dll'.
13951c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #32 'dcomp.dll'.
13961c24.2180: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\DataExchange.dll)
13971c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\DataExchange.dll
13981c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'dcomp.dll'...
13991c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'dcomp.dll' -> '\Device\HarddiskVolume2\Windows\System32\dcomp.dll' [rcNtRedir=0xc0150008]
14001c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'win32u.dll'.
14011c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcrt.dll'.
14021c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\dcomp.dll)
14031c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\dcomp.dll
14041c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'd3d11.dll'...
14051c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'd3d11.dll' -> '\Device\HarddiskVolume2\Windows\System32\d3d11.dll' [rcNtRedir=0xc0150008]
14061c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
14071c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'dxgi.dll'.
14081c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #35 'win32u.dll'.
14091c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\d3d11.dll)
14101c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\d3d11.dll
14111c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
14121c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume2\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
14131c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\combase.dll [lacks WinVerifyTrust]
14141c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shcore.dll'...
14151c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'shcore.dll' -> '\Device\HarddiskVolume2\Windows\System32\shcore.dll' [rcNtRedir=0xc0150008]
14161c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\SHCore.dll [lacks WinVerifyTrust]
14171c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
14181c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
14191c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
14201c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
14211c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
14221c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
14231c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
14241c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
14251c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
14261c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
14271c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume2\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
14281c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\win32u.dll [lacks WinVerifyTrust]
14291c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'dxgi.dll'...
14301c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'dxgi.dll' -> '\Device\HarddiskVolume2\Windows\System32\dxgi.dll' [rcNtRedir=0xc0150008]
14311c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
14321c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'win32u.dll'.
14331c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\dxgi.dll)
14341c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\dxgi.dll
14351c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
14361c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
14371c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
14381c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
14391c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
14401c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
14411c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
14421c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume2\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
14431c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\win32u.dll [lacks WinVerifyTrust]
14441c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'win32u.dll'...
14451c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'win32u.dll' -> '\Device\HarddiskVolume2\Windows\System32\win32u.dll' [rcNtRedir=0xc0150008]
14461c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\win32u.dll [lacks WinVerifyTrust]
14471c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
14481c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
14491c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
14501c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\dataexchange.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000002009:<flags> [calling]
14511c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\DataExchange.dll [lacks WinVerifyTrust]
14521c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\d3d11.dll [lacks WinVerifyTrust]
14531c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\dcomp.dll [lacks WinVerifyTrust]
14541c24.2180: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\dxgi.dll [lacks WinVerifyTrust]
14551c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1b910000 LB 0x000af000 C:\WINDOWS\system32\dxgi.dll [fFlags=0x0]
14561c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\dxgi.dll [lacks WinVerifyTrust]
14571c24.2180: supR3HardenedDllNotificationCallback: load 00007fff199b0000 LB 0x002e2000 C:\WINDOWS\system32\d3d11.dll [fFlags=0x0]
14581c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\d3d11.dll [lacks WinVerifyTrust]
14591c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1a340000 LB 0x00142000 C:\WINDOWS\system32\dcomp.dll [fFlags=0x0]
14601c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\dcomp.dll [lacks WinVerifyTrust]
14611c24.2180: supR3HardenedDllNotificationCallback: load 00007ffefb9a0000 LB 0x0004f000 C:\WINDOWS\system32\dataexchange.dll [fFlags=0x0]
14621c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\DataExchange.dll [lacks WinVerifyTrust]
14631c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust]
14641c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1fb90000 'C:\WINDOWS\System32\gdi32.dll'
14651c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffefb9a0000 'C:\WINDOWS\system32\dataexchange.dll'
14661c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
14671c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'rmclient.dll'.
14681c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #30 'rpcrt4.dll'.
14691c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #32 'bcrypt.dll'.
14701c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #45 'combase.dll'.
14711c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\twinapi.appcore.dll)
14721c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\twinapi.appcore.dll
14731c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
14741c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'rpcrt4.dll'.
14751c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\rmclient.dll)
14761c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\rmclient.dll
14771c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1af80000 LB 0x00020000 C:\WINDOWS\system32\RMCLIENT.dll [fFlags=0x0]
14781c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rmclient.dll [lacks WinVerifyTrust]
14791c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1ae00000 LB 0x0017b000 C:\WINDOWS\system32\twinapi.appcore.dll [fFlags=0x0]
14801c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\twinapi.appcore.dll [lacks WinVerifyTrust]
14811c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msctf.dll [lacks WinVerifyTrust]
14821c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
14831c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
14841c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
14851c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
14861c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
14871c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
14881c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'combase.dll'...
14891c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'combase.dll' -> '\Device\HarddiskVolume2\Windows\System32\combase.dll' [rcNtRedir=0xc0150008]
14901c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\combase.dll [lacks WinVerifyTrust]
14911c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcrypt.dll'...
14921c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcrypt.dll' -> '\Device\HarddiskVolume2\Windows\System32\bcrypt.dll' [rcNtRedir=0xc0150008]
14931c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
14941c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
14951c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
14961c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
14971c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rmclient.dll'...
14981c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'rmclient.dll' -> '\Device\HarddiskVolume2\Windows\System32\rmclient.dll' [rcNtRedir=0xc0150008]
14991c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\rmclient.dll [lacks WinVerifyTrust]
15001c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
15011c24.2180: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
15021c24.2180: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
15031c24.2180: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\MSCTF.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000009:<flags> [calling]
15041c24.2180: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007fff1f880000 'C:\WINDOWS\System32\MSCTF.dll'
15051c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
15061c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #17 'coreuicomponents.dll'.
15071c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #18 'coremessaging.dll'.
15081c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\TextInputFramework.dll)
15091c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\TextInputFramework.dll
15101c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
15111c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #35 'coremessaging.dll'.
15121c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #48 'shcore.dll'.
15131c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\CoreUIComponents.dll)
15141c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\CoreUIComponents.dll
15151c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
15161c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #24 'rpcrt4.dll'.
15171c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\CoreMessaging.dll)
15181c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\CoreMessaging.dll
15191c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\ntmarta.dll)
15201c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ntmarta.dll
15211c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'combase.dll'.
15221c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #21 'rpcrt4.dll'.
15231c24.2180: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #28 'bcryptprimitives.dll'.
15241c24.2180: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\WinTypes.dll)
15251c24.2180: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\WinTypes.dll
15261c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1bb30000 LB 0x00031000 C:\WINDOWS\SYSTEM32\ntmarta.dll [fFlags=0x0]
15271c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\ntmarta.dll [lacks WinVerifyTrust]
15281c24.2180: supR3HardenedDllNotificationCallback: load 00007fff1a260000 LB 0x000dc000 C:\WINDOWS\System32\CoreMessaging.dll [fFlags=0x0]
15291c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\CoreMessaging.dll [lacks WinVerifyTrust]
15301c24.2180: supR3HardenedDllNotificationCallback: load 00007fff17e50000 LB 0x00136000 C:\WINDOWS\SYSTEM32\wintypes.dll [fFlags=0x0]
15311c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\WinTypes.dll [lacks WinVerifyTrust]
15321c24.2180: supR3HardenedDllNotificationCallback: load 00007fff17ff0000 LB 0x002ee000 C:\WINDOWS\System32\CoreUIComponents.dll [fFlags=0x0]
15331c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\CoreUIComponents.dll [lacks WinVerifyTrust]
15341c24.2180: supR3HardenedDllNotificationCallback: load 00007fff169b0000 LB 0x00098000 C:\WINDOWS\System32\TextInputFramework.dll [fFlags=0x0]
15351c24.2180: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\TextInputFramework.dll [lacks WinVerifyTrust]

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy