VirtualBox

Ticket #18654: VBoxHardening.log

File VBoxHardening.log, 6.8 KB (added by kleytonklaus, 5 years ago)

LOG de Uma VM de Teste

Line 
128a8.2fa0: Log file opened: 6.0.8r130520 g_hStartupLog=0000000000000068 g_uNtVerCombined=0xa042ee00
228a8.2fa0: \SystemRoot\System32\ntdll.dll:
328a8.2fa0: CreationTime: 2019-02-13T19:44:15.534862400Z
428a8.2fa0: LastWriteTime: 2019-01-09T05:39:12.294139300Z
528a8.2fa0: ChangeTime: 2019-05-14T20:47:41.653144300Z
628a8.2fa0: FileAttributes: 0x20
728a8.2fa0: Size: 0x1da658
828a8.2fa0: NT Headers: 0xe8
928a8.2fa0: Timestamp: 0x74bed8b0
1028a8.2fa0: Machine: 0x8664 - amd64
1128a8.2fa0: Timestamp: 0x74bed8b0
1228a8.2fa0: Image Version: 10.0
1328a8.2fa0: SizeOfImage: 0x1e1000 (1970176)
1428a8.2fa0: Resource Dir: 0x174000 LB 0x6b3e8
1528a8.2fa0: [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
1628a8.2fa0: [Raw version resource data: 0x1740f0 LB 0x380, codepage 0x0 (reserved 0x0)]
1728a8.2fa0: ProductName: Microsoft® Windows® Operating System
1828a8.2fa0: ProductVersion: 10.0.17134.556
1928a8.2fa0: FileVersion: 10.0.17134.556 (WinBuild.160101.0800)
2028a8.2fa0: FileDescription: NT Layer DLL
2128a8.2fa0: \SystemRoot\System32\kernel32.dll:
2228a8.2fa0: CreationTime: 2019-05-14T20:39:05.939878200Z
2328a8.2fa0: LastWriteTime: 2019-04-19T10:54:56.743034000Z
2428a8.2fa0: ChangeTime: 2019-05-15T00:13:47.040161400Z
2528a8.2fa0: FileAttributes: 0x20
2628a8.2fa0: Size: 0xafd48
2728a8.2fa0: NT Headers: 0xe8
2828a8.2fa0: Timestamp: 0xda2d7146
2928a8.2fa0: Machine: 0x8664 - amd64
3028a8.2fa0: Timestamp: 0xda2d7146
3128a8.2fa0: Image Version: 10.0
3228a8.2fa0: SizeOfImage: 0xb1000 (724992)
3328a8.2fa0: Resource Dir: 0xaf000 LB 0x520
3428a8.2fa0: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
3528a8.2fa0: [Raw version resource data: 0xaf0b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
3628a8.2fa0: ProductName: Microsoft® Windows® Operating System
3728a8.2fa0: ProductVersion: 10.0.17134.753
3828a8.2fa0: FileVersion: 10.0.17134.753 (WinBuild.160101.0800)
3928a8.2fa0: FileDescription: Windows NT BASE API Client DLL
4028a8.2fa0: \SystemRoot\System32\KernelBase.dll:
4128a8.2fa0: CreationTime: 2019-05-14T20:39:00.940221100Z
4228a8.2fa0: LastWriteTime: 2019-04-19T05:06:18.050469100Z
4328a8.2fa0: ChangeTime: 2019-05-15T00:13:47.243255000Z
4428a8.2fa0: FileAttributes: 0x20
4528a8.2fa0: Size: 0x273d70
4628a8.2fa0: NT Headers: 0xf0
4728a8.2fa0: Timestamp: 0xcdfe5b92
4828a8.2fa0: Machine: 0x8664 - amd64
4928a8.2fa0: Timestamp: 0xcdfe5b92
5028a8.2fa0: Image Version: 10.0
5128a8.2fa0: SizeOfImage: 0x273000 (2568192)
5228a8.2fa0: Resource Dir: 0x251000 LB 0x548
5328a8.2fa0: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
5428a8.2fa0: [Raw version resource data: 0x2510b0 LB 0x3bc, codepage 0x0 (reserved 0x0)]
5528a8.2fa0: ProductName: Microsoft® Windows® Operating System
5628a8.2fa0: ProductVersion: 10.0.17134.753
5728a8.2fa0: FileVersion: 10.0.17134.753 (WinBuild.160101.0800)
5828a8.2fa0: FileDescription: Windows NT BASE API Client DLL
5928a8.2fa0: \SystemRoot\System32\apisetschema.dll:
6028a8.2fa0: CreationTime: 2018-04-11T23:34:44.042150700Z
6128a8.2fa0: LastWriteTime: 2018-04-11T23:34:44.042150700Z
6228a8.2fa0: ChangeTime: 2018-05-22T17:16:21.884679300Z
6328a8.2fa0: FileAttributes: 0x20
6428a8.2fa0: Size: 0x1bd98
6528a8.2fa0: NT Headers: 0xd0
6628a8.2fa0: Timestamp: 0xd02ff418
6728a8.2fa0: Machine: 0x8664 - amd64
6828a8.2fa0: Timestamp: 0xd02ff418
6928a8.2fa0: Image Version: 10.0
7028a8.2fa0: SizeOfImage: 0x1c000 (114688)
7128a8.2fa0: Resource Dir: 0x1b000 LB 0x408
7228a8.2fa0: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
7328a8.2fa0: [Raw version resource data: 0x1b060 LB 0x3a8, codepage 0x0 (reserved 0x0)]
7428a8.2fa0: ProductName: Microsoft® Windows® Operating System
7528a8.2fa0: ProductVersion: 10.0.17134.1
7628a8.2fa0: FileVersion: 10.0.17134.1 (WinBuild.160101.0800)
7728a8.2fa0: FileDescription: ApiSet Schema DLL
7828a8.2fa0: NtOpenDirectoryObject failed on \Driver: 0xc0000022
7928a8.2fa0: supR3HardenedWinFindAdversaries: 0x80
8028a8.2fa0: \SystemRoot\System32\drivers\MBAMSwissArmy.sys:
8128a8.2fa0: CreationTime: 2019-05-16T18:29:34.777781100Z
8228a8.2fa0: LastWriteTime: 2019-05-16T18:29:34.777781100Z
8328a8.2fa0: ChangeTime: 2019-05-16T18:29:35.621506900Z
8428a8.2fa0: FileAttributes: 0x20
8528a8.2fa0: Size: 0x43320
8628a8.2fa0: NT Headers: 0xf8
8728a8.2fa0: Timestamp: 0x5c9e68f9
8828a8.2fa0: Machine: 0x8664 - amd64
8928a8.2fa0: Timestamp: 0x5c9e68f9
9028a8.2fa0: Image Version: 10.0
9128a8.2fa0: SizeOfImage: 0x45000 (282624)
9228a8.2fa0: Resource Dir: 0x43000 LB 0x3b8
9328a8.2fa0: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
9428a8.2fa0: [Raw version resource data: 0x43060 LB 0x358, codepage 0x0 (reserved 0x0)]
9528a8.2fa0: ProductName: Malwarebytes SwissArmy
9628a8.2fa0: ProductVersion: 4.3.0.170
9728a8.2fa0: FileVersion: 4.3.0.170
9828a8.2fa0: FileDescription: Malwarebytes SwissArmy
9928a8.2fa0: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume4\Program Files\Oracle\VirtualBox'
10028a8.2fa0: Calling main()
10128a8.2fa0: SUPR3HardenedMain: pszProgName=VirtualBoxVM fFlags=0x2
10228a8.2fa0: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume4\Program Files\Oracle\VirtualBox'
10328a8.2fa0: SUPR3HardenedMain: Respawn #1
10428a8.2fa0: System32: \Device\HarddiskVolume4\Windows\System32
10528a8.2fa0: WinSxS: \Device\HarddiskVolume4\Windows\WinSxS
10628a8.2fa0: KnownDllPath: C:\WINDOWS\System32
10728a8.2fa0: '\Device\HarddiskVolume4\Program Files\Oracle\VirtualBox\VirtualBoxVM.exe' has no imports
10828a8.2fa0: supHardenedWinVerifyImageByHandle: -> 24202 (\Device\HarddiskVolume4\Program Files\Oracle\VirtualBox\VirtualBoxVM.exe)
10928a8.2fa0: supR3HardNtEnableThreadCreation:
11028a8.2fa0: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ff97eea4f90 pvNtTerminateThread=00007ff97eecb3f0
11128a8.2fa0: supR3HardenedWinDoReSpawn(1): New child 2264.2e44 [kernel32].
11228a8.2fa0: supR3HardNtChildGatherData: PebBaseAddress=000000000020c000 cbPeb=0x388
11328a8.2fa0: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00007ff97ee30000 uNtDllChildAddr=00007ff97ee30000
11428a8.2fa0: supR3HardenedWinSetupChildInit: uLdrInitThunk=00007ff97eea4f90
11528a8.2fa0: supR3HardenedWinSetupChildInit: Start child.
11628a8.2fa0: Error (rc=258):
11728a8.2fa0: Timed out after 2001 ms waiting for child request #0 (PurifyChildAndCloseHandles).
11828a8.2fa0: Error 258 in supR3HardNtChildWaitFor! (enmWhat=5)
11928a8.2fa0: Timed out after 2001 ms waiting for child request #0 (PurifyChildAndCloseHandles).
12028a8.2fa0: supR3HardNtEnableThreadCreation:

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy