VirtualBox

Ticket #18791: VBoxHardening.2.log

File VBoxHardening.2.log, 17.6 KB (added by tkang007, 5 years ago)
Line 
12b34.1a70: Log file opened: 5.2.32r132073 g_hStartupLog=000000000000001c g_uNtVerCombined=0x611db110
22b34.1a70: \SystemRoot\System32\ntdll.dll:
32b34.1a70: CreationTime: 2019-06-22T05:24:09.202909900Z
42b34.1a70: LastWriteTime: 2019-05-16T15:08:29.092007100Z
52b34.1a70: ChangeTime: 2019-06-22T08:53:51.194029100Z
62b34.1a70: FileAttributes: 0x20
72b34.1a70: Size: 0x196560
82b34.1a70: NT Headers: 0xe0
92b34.1a70: Timestamp: 0x5cdd7d10
102b34.1a70: Machine: 0x8664 - amd64
112b34.1a70: Timestamp: 0x5cdd7d10
122b34.1a70: Image Version: 6.1
132b34.1a70: SizeOfImage: 0x19f000 (1699840)
142b34.1a70: Resource Dir: 0x142000 LB 0x5a028
152b34.1a70: [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
162b34.1a70: [Raw version resource data: 0x1420f0 LB 0x380, codepage 0x0 (reserved 0x0)]
172b34.1a70: ProductName: Microsoft® Windows® Operating System
182b34.1a70: ProductVersion: 6.1.7601.24475
192b34.1a70: FileVersion: 6.1.7601.24475 (win7sp1_ldr.190516-0600)
202b34.1a70: FileDescription: NT Layer DLL
212b34.1a70: \SystemRoot\System32\kernel32.dll:
222b34.1a70: CreationTime: 2019-06-22T05:24:20.858630900Z
232b34.1a70: LastWriteTime: 2019-05-16T15:07:06.536000000Z
242b34.1a70: ChangeTime: 2019-06-22T08:53:55.569057100Z
252b34.1a70: FileAttributes: 0x20
262b34.1a70: Size: 0x11be00
272b34.1a70: NT Headers: 0xe0
282b34.1a70: Timestamp: 0x5cdd7d44
292b34.1a70: Machine: 0x8664 - amd64
302b34.1a70: Timestamp: 0x5cdd7d44
312b34.1a70: Image Version: 6.1
322b34.1a70: SizeOfImage: 0x11f000 (1175552)
332b34.1a70: Resource Dir: 0x116000 LB 0x528
342b34.1a70: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
352b34.1a70: [Raw version resource data: 0x1160b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
362b34.1a70: ProductName: Microsoft® Windows® Operating System
372b34.1a70: ProductVersion: 6.1.7601.24475
382b34.1a70: FileVersion: 6.1.7601.24475 (win7sp1_ldr.190516-0600)
392b34.1a70: FileDescription: Windows NT BASE API Client DLL
402b34.1a70: \SystemRoot\System32\KernelBase.dll:
412b34.1a70: CreationTime: 2019-06-22T05:24:19.691593900Z
422b34.1a70: LastWriteTime: 2019-05-16T15:07:06.536000000Z
432b34.1a70: ChangeTime: 2019-06-22T08:53:55.615932400Z
442b34.1a70: FileAttributes: 0x20
452b34.1a70: Size: 0x63c00
462b34.1a70: NT Headers: 0xe8
472b34.1a70: Timestamp: 0x5cdd7d45
482b34.1a70: Machine: 0x8664 - amd64
492b34.1a70: Timestamp: 0x5cdd7d45
502b34.1a70: Image Version: 6.1
512b34.1a70: SizeOfImage: 0x67000 (421888)
522b34.1a70: Resource Dir: 0x65000 LB 0x530
532b34.1a70: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
542b34.1a70: [Raw version resource data: 0x650b0 LB 0x3ac, codepage 0x0 (reserved 0x0)]
552b34.1a70: ProductName: Microsoft® Windows® Operating System
562b34.1a70: ProductVersion: 6.1.7601.24475
572b34.1a70: FileVersion: 6.1.7601.24475 (win7sp1_ldr.190516-0600)
582b34.1a70: FileDescription: Windows NT BASE API Client DLL
592b34.1a70: \SystemRoot\System32\apisetschema.dll:
602b34.1a70: CreationTime: 2019-06-22T05:24:32.749712500Z
612b34.1a70: LastWriteTime: 2019-05-16T15:06:08.558000000Z
622b34.1a70: ChangeTime: 2019-06-22T08:53:51.022153000Z
632b34.1a70: FileAttributes: 0x20
642b34.1a70: Size: 0x1a00
652b34.1a70: NT Headers: 0xc0
662b34.1a70: Timestamp: 0x5cdd7ca9
672b34.1a70: Machine: 0x8664 - amd64
682b34.1a70: Timestamp: 0x5cdd7ca9
692b34.1a70: Image Version: 6.1
702b34.1a70: SizeOfImage: 0x50000 (327680)
712b34.1a70: Resource Dir: 0x30000 LB 0x3f8
722b34.1a70: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
732b34.1a70: [Raw version resource data: 0x30060 LB 0x398, codepage 0x0 (reserved 0x0)]
742b34.1a70: ProductName: Microsoft® Windows® Operating System
752b34.1a70: ProductVersion: 6.1.7601.24475
762b34.1a70: FileVersion: 6.1.7601.24475 (win7sp1_ldr.190516-0600)
772b34.1a70: FileDescription: ApiSet Schema DLL
782b34.1a70: Found driver SymNetS (0x2)
792b34.1a70: Found driver SRTSPX (0x2)
802b34.1a70: Found driver SymEvent (0x2)
812b34.1a70: Found driver SymIRON (0x2)
822b34.1a70: supR3HardenedWinFindAdversaries: 0x2
832b34.1a70: \SystemRoot\System32\drivers\symevent64x86.sys:
842b34.1a70: CreationTime: 2019-07-24T05:40:43.014013900Z
852b34.1a70: LastWriteTime: 2019-07-24T05:40:41.473915700Z
862b34.1a70: ChangeTime: 2019-07-24T05:40:41.473915700Z
872b34.1a70: FileAttributes: 0x2020
882b34.1a70: Size: 0x18650
892b34.1a70: NT Headers: 0xe8
902b34.1a70: Timestamp: 0x5a95cc4b
912b34.1a70: Machine: 0x8664 - amd64
922b34.1a70: Timestamp: 0x5a95cc4b
932b34.1a70: Image Version: 6.3
942b34.1a70: SizeOfImage: 0x21000 (135168)
952b34.1a70: Resource Dir: 0x1f000 LB 0x3c8
962b34.1a70: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
972b34.1a70: [Raw version resource data: 0x1f0b8 LB 0x310, codepage 0x4e4 (reserved 0x0)]
982b34.1a70: ProductName: SYMEVENT
992b34.1a70: ProductVersion: 14.0.6.27
1002b34.1a70: FileVersion: 14.0.6.27
1012b34.1a70: FileDescription: Symantec Event Library
1022b34.1a70: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
1032b34.1a70: Calling main()
1042b34.1a70: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
1052b34.1a70: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
1062b34.1a70: SUPR3HardenedMain: Respawn #1
1072b34.1a70: System32: \Device\HarddiskVolume2\Windows\System32
1082b34.1a70: WinSxS: \Device\HarddiskVolume2\Windows\winsxs
1092b34.1a70: KnownDllPath: C:\Windows\system32
1102b34.1a70: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
1112b34.1a70: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe)
1122b34.1a70: supR3HardNtEnableThreadCreation:
1132b34.1a70: supR3HardNtDisableThreadCreation: pvLdrInitThunk=0000000077b73710 pvNtTerminateThread=0000000077b99db0
1142b34.1a70: supR3HardenedWinDoReSpawn(1): New child 2998.1c8c [kernel32].
1152b34.1a70: supR3HardNtChildGatherData: PebBaseAddress=000007fffffde000 cbPeb=0x380
1162b34.1a70: supR3HardNtPuChFindNtdll: uNtDllParentAddr=0000000077b30000 uNtDllChildAddr=0000000077b30000
1172b34.1a70: supR3HardenedWinSetupChildInit: uLdrInitThunk=0000000077b73710
1182b34.1a70: supR3HardenedWinSetupChildInit: Start child.
1192b34.1a70: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 1 ms.
1202b34.1a70: supR3HardNtChildPurify: Startup delay kludge #1/0: 526 ms, 39 sleeps
1212b34.1a70: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
1222b34.1a70: *0000000000000000-000000000000ffff 0x0001/0x0000 0x0000000
1232b34.1a70: *0000000000010000-000000000002ffff 0x0004/0x0004 0x0020000
1242b34.1a70: *0000000000030000-0000000000033fff 0x0002/0x0002 0x0040000
1252b34.1a70: 0000000000034000-000000000003ffff 0x0001/0x0000 0x0000000
1262b34.1a70: *0000000000040000-0000000000040fff 0x0004/0x0004 0x0020000
1272b34.1a70: 0000000000041000-000000000004ffff 0x0001/0x0000 0x0000000
1282b34.1a70: *0000000000050000-0000000000050fff 0x0020/0x0004 0x0020000 !!
1292b34.1a70: supHardNtVpFreeOrReplacePrivateExecMemory: Freeing exec mem at 0000000000050000 (LB 0x1000, 0000000000050000 LB 0x1000)
1302b34.1a70: supHardNtVpFreeOrReplacePrivateExecMemory: Free attempt #1 succeeded: 0x0 [0000000000050000/0000000000050000 LB 0/0x1000]
1312b34.1a70: supHardNtVpFreeOrReplacePrivateExecMemory: QVM after free 0: [0000000000000000]/0000000000050000 LB 0x130000 s=0x10000 ap=0x0 rp=0x00000000000001
1322b34.1a70: 0000000000051000-000000000017ffff 0x0001/0x0000 0x0000000
1332b34.1a70: *0000000000180000-000000000027bfff 0x0000/0x0004 0x0020000
1342b34.1a70: 000000000027c000-000000000027dfff 0x0104/0x0004 0x0020000
1352b34.1a70: 000000000027e000-000000000027ffff 0x0004/0x0004 0x0020000
1362b34.1a70: 0000000000280000-0000000077b2ffff 0x0001/0x0000 0x0000000
1372b34.1a70: *0000000077b30000-0000000077b30fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1382b34.1a70: 0000000077b31000-0000000077c54fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1392b34.1a70: 0000000077c55000-0000000077c5afff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1402b34.1a70: 0000000077c5b000-0000000077c5bfff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1412b34.1a70: 0000000077c5c000-0000000077c63fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1422b34.1a70: 0000000077c64000-0000000077ccefff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1432b34.1a70: 0000000077ccf000-000000007efdffff 0x0001/0x0000 0x0000000
1442b34.1a70: *000000007efe0000-000000007ffdffff 0x0000/0x0002 0x0020000
1452b34.1a70: *000000007ffe0000-000000007ffe0fff 0x0002/0x0002 0x0020000
1462b34.1a70: 000000007ffe1000-000000007ffeffff 0x0000/0x0002 0x0020000
1472b34.1a70: 000000007fff0000-000000013f71ffff 0x0001/0x0000 0x0000000
1482b34.1a70: *000000013f720000-000000013f720fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1492b34.1a70: 000000013f721000-000000013f791fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1502b34.1a70: 000000013f792000-000000013f792fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1512b34.1a70: 000000013f793000-000000013f7d9fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1522b34.1a70: 000000013f7da000-000000013f7dafff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1532b34.1a70: 000000013f7db000-000000013f7dbfff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1542b34.1a70: 000000013f7dc000-000000013f7e0fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1552b34.1a70: 000000013f7e1000-000000013f7e1fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1562b34.1a70: 000000013f7e2000-000000013f7e2fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1572b34.1a70: 000000013f7e3000-000000013f7e6fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1582b34.1a70: 000000013f7e7000-000000013f82efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1592b34.1a70: 000000013f82f000-000007feffe2ffff 0x0001/0x0000 0x0000000
1602b34.1a70: *000007feffe30000-000007feffe30fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\apisetschema.dll
1612b34.1a70: 000007feffe31000-000007fffffaffff 0x0001/0x0000 0x0000000
1622b34.1a70: *000007fffffb0000-000007fffffd2fff 0x0002/0x0002 0x0040000
1632b34.1a70: 000007fffffd3000-000007fffffdbfff 0x0001/0x0000 0x0000000
1642b34.1a70: *000007fffffdc000-000007fffffddfff 0x0004/0x0004 0x0020000
1652b34.1a70: *000007fffffde000-000007fffffdefff 0x0004/0x0004 0x0020000
1662b34.1a70: 000007fffffdf000-000007fffffdffff 0x0001/0x0000 0x0000000
1672b34.1a70: *000007fffffe0000-000007fffffeffff 0x0001/0x0002 0x0020000
1682b34.1a70: apisetschema.dll: timestamp 0x5cdd7ca9 (rc=VINF_SUCCESS)
1692b34.1a70: VirtualBox.exe: timestamp 0x5d28530e (rc=VINF_SUCCESS)
1702b34.1a70: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
1712b34.1a70: '\Device\HarddiskVolume2\Windows\System32\apisetschema.dll' has no imports
1722b34.1a70: '\Device\HarddiskVolume2\Windows\System32\ntdll.dll' has no imports
1732b34.1a70: supR3HardNtChildPurify: cFixes=1 g_fSupAdversaries=0x2 cPatchCount=0
1742b34.1a70: supR3HardNtChildPurify: Startup delay kludge #1/1: 525 ms, 21 sleeps
1752b34.1a70: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
1762b34.1a70: *0000000000000000-000000000000ffff 0x0001/0x0000 0x0000000
1772b34.1a70: *0000000000010000-000000000002ffff 0x0004/0x0004 0x0020000
1782b34.1a70: *0000000000030000-0000000000033fff 0x0002/0x0002 0x0040000
1792b34.1a70: 0000000000034000-000000000003ffff 0x0001/0x0000 0x0000000
1802b34.1a70: *0000000000040000-0000000000040fff 0x0004/0x0004 0x0020000
1812b34.1a70: 0000000000041000-000000000017ffff 0x0001/0x0000 0x0000000
1822b34.1a70: *0000000000180000-000000000027bfff 0x0000/0x0004 0x0020000
1832b34.1a70: 000000000027c000-000000000027dfff 0x0104/0x0004 0x0020000
1842b34.1a70: 000000000027e000-000000000027ffff 0x0004/0x0004 0x0020000
1852b34.1a70: 0000000000280000-0000000077b2ffff 0x0001/0x0000 0x0000000
1862b34.1a70: *0000000077b30000-0000000077b30fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1872b34.1a70: 0000000077b31000-0000000077c54fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1882b34.1a70: 0000000077c55000-0000000077c5afff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1892b34.1a70: 0000000077c5b000-0000000077c63fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1902b34.1a70: 0000000077c64000-0000000077ccefff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll
1912b34.1a70: 0000000077ccf000-000000007efdffff 0x0001/0x0000 0x0000000
1922b34.1a70: *000000007efe0000-000000007ffdffff 0x0000/0x0002 0x0020000
1932b34.1a70: *000000007ffe0000-000000007ffe0fff 0x0002/0x0002 0x0020000
1942b34.1a70: 000000007ffe1000-000000007ffeffff 0x0000/0x0002 0x0020000
1952b34.1a70: 000000007fff0000-000000013f71ffff 0x0001/0x0000 0x0000000
1962b34.1a70: *000000013f720000-000000013f720fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1972b34.1a70: 000000013f721000-000000013f791fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1982b34.1a70: 000000013f792000-000000013f792fff 0x0040/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
1992b34.1a70: 000000013f793000-000000013f7d9fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
2002b34.1a70: 000000013f7da000-000000013f7e6fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
2012b34.1a70: 000000013f7e7000-000000013f82efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe
2022b34.1a70: 000000013f82f000-000007feffe2ffff 0x0001/0x0000 0x0000000
2032b34.1a70: *000007feffe30000-000007feffe30fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\apisetschema.dll
2042b34.1a70: 000007feffe31000-000007fffffaffff 0x0001/0x0000 0x0000000
2052b34.1a70: *000007fffffb0000-000007fffffd2fff 0x0002/0x0002 0x0040000
2062b34.1a70: 000007fffffd3000-000007fffffdbfff 0x0001/0x0000 0x0000000
2072b34.1a70: *000007fffffdc000-000007fffffddfff 0x0004/0x0004 0x0020000
2082b34.1a70: *000007fffffde000-000007fffffdefff 0x0004/0x0004 0x0020000
2092b34.1a70: 000007fffffdf000-000007fffffdffff 0x0001/0x0000 0x0000000
2102b34.1a70: *000007fffffe0000-000007fffffeffff 0x0001/0x0002 0x0020000
2112b34.1a70: supR3HardNtChildPurify: Done after 3037 ms and 1 fixes (loop #1).
2122b34.1a70: supR3HardNtEnableThreadCreation:
2132998.1c8c: Log file opened: 5.2.32r132073 g_hStartupLog=0000000000000004 g_uNtVerCombined=0x611db100
2142998.1c8c: supR3HardenedVmProcessInit: uNtDllAddr=0000000077b30000 g_uNtVerCombined=0x611db100
2152998.1c8c: ntdll.dll: timestamp 0x5cdd7d10 (rc=VINF_SUCCESS)
2162998.1c8c: New simple heap: #1 0000000000280000 LB 0x400000 (for 1699840 allocation)
2172998.1c8c: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
2182998.1c8c: System32: \Device\HarddiskVolume2\Windows\System32
2192998.1c8c: WinSxS: \Device\HarddiskVolume2\Windows\winsxs
2202998.1c8c: KnownDllPath: C:\Windows\system32
2212998.1c8c: supR3HardenedVmProcessInit: Opening vboxdrv stub...
2222998.1c8c: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
2232998.1c8c: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
2242998.1c8c: Registered Dll notification callback with NTDLL.
2252998.1c8c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\kernel32.dll)
2262998.1c8c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\kernel32.dll
2272998.1c8c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\kernel32.dll (Input=kernel32.dll, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000000:<flags> [calling]
2282998.1c8c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
2292998.1c8c: supR3HardenedDllNotificationCallback: load 0000000077a10000 LB 0x0011f000 C:\Windows\system32\kernel32.dll [fFlags=0x0]
2302998.1c8c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
2312998.1c8c: supR3HardenedDllNotificationCallback: load 000007fefd800000 LB 0x00067000 C:\Windows\system32\KERNELBASE.dll [fFlags=0x0]
2322998.1c8c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\KernelBase.dll)
2332998.1c8c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\KernelBase.dll
2342998.1c8c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000077a10000 'C:\Windows\system32\kernel32.dll'
2352b34.1a70: supR3HardNtChildWaitFor[1]: Quitting: ExitCode=0xc0000005 (rcNtWait=0x0, rcNt1=0x0, rcNt2=0x103, rcNt3=0x103, 164 ms, CloseEvents);

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy