Last active
August 29, 2015 14:25
-
-
Save mattbroekhuis/d9d0d6e68fb759ae8f17 to your computer and use it in GitHub Desktop.
failure to start vm
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ```` | |
| 1874.698: Log file opened: 4.3.30r101610 g_hStartupLog=0000000000000024 g_uNtVerCombined=0x611db110 | |
| 1874.698: \SystemRoot\System32\ntdll.dll: | |
| 1874.698: CreationTime: 2015-05-12T00:00:58.609339800Z | |
| 1874.698: LastWriteTime: 2015-03-17T05:15:22.298856000Z | |
| 1874.698: ChangeTime: 2015-05-12T09:05:13.914000000Z | |
| 1874.698: FileAttributes: 0x20 | |
| 1874.698: Size: 0x1a5ba0 | |
| 1874.698: NT Headers: 0xe0 | |
| 1874.698: Timestamp: 0x5507b728 | |
| 1874.698: Machine: 0x8664 - amd64 | |
| 1874.698: Timestamp: 0x5507b728 | |
| 1874.698: Image Version: 6.1 | |
| 1874.698: SizeOfImage: 0x1a8000 (1736704) | |
| 1874.698: Resource Dir: 0x14c000 LB 0x5a028 | |
| 1874.698: ProductName: Microsoft® Windows® Operating System | |
| 1874.698: ProductVersion: 6.1.7601.23002 | |
| 1874.698: FileVersion: 6.1.7601.23002 (win7sp1_ldr.150316-1651) | |
| 1874.698: FileDescription: NT Layer DLL | |
| 1874.698: \SystemRoot\System32\kernel32.dll: | |
| 1874.698: CreationTime: 2015-05-12T00:00:58.476353100Z | |
| 1874.698: LastWriteTime: 2015-03-17T05:11:40.868000000Z | |
| 1874.698: ChangeTime: 2015-05-12T09:05:14.163600000Z | |
| 1874.698: FileAttributes: 0x20 | |
| 1874.698: Size: 0x11c600 | |
| 1874.698: NT Headers: 0xe0 | |
| 1874.698: Timestamp: 0x5507b733 | |
| 1874.698: Machine: 0x8664 - amd64 | |
| 1874.698: Timestamp: 0x5507b733 | |
| 1874.698: Image Version: 6.1 | |
| 1874.698: SizeOfImage: 0x11f000 (1175552) | |
| 1874.698: Resource Dir: 0x116000 LB 0x528 | |
| 1874.698: ProductName: Microsoft® Windows® Operating System | |
| 1874.698: ProductVersion: 6.1.7601.23002 | |
| 1874.698: FileVersion: 6.1.7601.23002 (win7sp1_ldr.150316-1651) | |
| 1874.698: FileDescription: Windows NT BASE API Client DLL | |
| 1874.698: \SystemRoot\System32\KernelBase.dll: | |
| 1874.698: CreationTime: 2015-05-12T00:00:59.441256600Z | |
| 1874.698: LastWriteTime: 2015-03-17T05:11:40.868000000Z | |
| 1874.698: ChangeTime: 2015-05-12T09:05:14.179200000Z | |
| 1874.698: FileAttributes: 0x20 | |
| 1874.698: Size: 0x66e00 | |
| 1874.698: NT Headers: 0xe8 | |
| 1874.698: Timestamp: 0x5507b734 | |
| 1874.698: Machine: 0x8664 - amd64 | |
| 1874.698: Timestamp: 0x5507b734 | |
| 1874.698: Image Version: 6.1 | |
| 1874.698: SizeOfImage: 0x6b000 (438272) | |
| 1874.698: Resource Dir: 0x69000 LB 0x530 | |
| 1874.698: ProductName: Microsoft® Windows® Operating System | |
| 1874.698: ProductVersion: 6.1.7601.23002 | |
| 1874.698: FileVersion: 6.1.7601.23002 (win7sp1_ldr.150316-1651) | |
| 1874.698: FileDescription: Windows NT BASE API Client DLL | |
| 1874.698: \SystemRoot\System32\apisetschema.dll: | |
| 1874.698: CreationTime: 2015-05-12T00:01:00.674133300Z | |
| 1874.698: LastWriteTime: 2015-03-17T05:05:34.420000000Z | |
| 1874.698: ChangeTime: 2015-05-12T09:05:13.882800000Z | |
| 1874.698: FileAttributes: 0x20 | |
| 1874.698: Size: 0x1a00 | |
| 1874.698: NT Headers: 0xc0 | |
| 1874.698: Timestamp: 0x5507b664 | |
| 1874.698: Machine: 0x8664 - amd64 | |
| 1874.698: Timestamp: 0x5507b664 | |
| 1874.698: Image Version: 6.1 | |
| 1874.698: SizeOfImage: 0x50000 (327680) | |
| 1874.698: Resource Dir: 0x30000 LB 0x3f8 | |
| 1874.698: ProductName: Microsoft® Windows® Operating System | |
| 1874.698: ProductVersion: 6.1.7601.23002 | |
| 1874.698: FileVersion: 6.1.7601.23002 (win7sp1_ldr.150316-1651) | |
| 1874.698: FileDescription: ApiSet Schema DLL | |
| 1874.698: Found driver SysPlant (0x1) | |
| 1874.698: Found driver SymNetS (0x2) | |
| 1874.698: Found driver SymDS (0x2) | |
| 1874.698: Found driver SRTSPX (0x2) | |
| 1874.698: Found driver SymEvent (0x2) | |
| 1874.698: Found driver SymIRON (0x2) | |
| 1874.698: supR3HardenedWinFindAdversaries: 0x3 | |
| 1874.698: \SystemRoot\System32\drivers\SysPlant.sys: | |
| 1874.698: CreationTime: 2015-01-13T13:30:02.051403400Z | |
| 1874.698: LastWriteTime: 2015-01-13T13:30:02.051403400Z | |
| 1874.698: ChangeTime: 2015-01-13T13:30:02.051403400Z | |
| 1874.698: FileAttributes: 0x20 | |
| 1874.698: Size: 0x25f50 | |
| 1874.698: NT Headers: 0x100 | |
| 1874.698: Timestamp: 0x53da082a | |
| 1874.698: Machine: 0x8664 - amd64 | |
| 1874.698: Timestamp: 0x53da082a | |
| 1874.698: Image Version: 5.0 | |
| 1874.698: SizeOfImage: 0x2d000 (184320) | |
| 1874.698: Resource Dir: 0x2b000 LB 0x498 | |
| 1874.698: ProductName: Symantec CMC Firewall | |
| 1874.698: ProductVersion: 12.1.4112.4156 | |
| 1874.698: FileVersion: 12.1.4112.4156 | |
| 1874.698: FileDescription: Symantec CMC Firewall SysPlant | |
| 1874.698: \SystemRoot\System32\sysfer.dll: | |
| 1874.698: CreationTime: 2015-01-13T13:30:02.051403400Z | |
| 1874.698: LastWriteTime: 2015-01-13T13:30:02.051403400Z | |
| 1874.698: ChangeTime: 2015-01-13T13:30:02.051403400Z | |
| 1874.698: FileAttributes: 0x20 | |
| 1874.698: Size: 0x70d70 | |
| 1874.698: NT Headers: 0xe8 | |
| 1874.698: Timestamp: 0x53da08b7 | |
| 1874.698: Machine: 0x8664 - amd64 | |
| 1874.698: Timestamp: 0x53da08b7 | |
| 1874.698: Image Version: 0.0 | |
| 1874.698: SizeOfImage: 0x88000 (557056) | |
| 1874.698: Resource Dir: 0x86000 LB 0x630 | |
| 1874.698: ProductName: Symantec CMC Firewall | |
| 1874.698: ProductVersion: 12.1.4112.4156 | |
| 1874.698: FileVersion: 12.1.4112.4156 | |
| 1874.698: FileDescription: Symantec CMC Firewall sysfer | |
| 1874.698: \SystemRoot\System32\sysferThunk.dll: | |
| 1874.698: CreationTime: 2015-01-13T13:30:02.051403400Z | |
| 1874.698: LastWriteTime: 2015-01-13T13:30:02.051403400Z | |
| 1874.698: ChangeTime: 2015-01-13T13:30:02.051403400Z | |
| 1874.698: FileAttributes: 0x20 | |
| 1874.698: Size: 0x3170 | |
| 1874.698: NT Headers: 0xd0 | |
| 1874.698: Timestamp: 0x53da08b8 | |
| 1874.698: Machine: 0x8664 - amd64 | |
| 1874.698: Timestamp: 0x53da08b8 | |
| 1874.698: Image Version: 0.0 | |
| 1874.698: SizeOfImage: 0x8000 (32768) | |
| 1874.698: Resource Dir: 0x6000 LB 0x648 | |
| 1874.698: ProductName: Symantec CMC Firewall | |
| 1874.698: ProductVersion: 12.1.4112.4156 | |
| 1874.698: FileVersion: 12.1.4112.4156 | |
| 1874.698: FileDescription: Symantec CMC Firewall SysferThunk | |
| 1874.698: \SystemRoot\System32\drivers\symevent64x86.sys: | |
| 1874.698: CreationTime: 2015-01-13T13:30:45.076278900Z | |
| 1874.698: LastWriteTime: 2015-01-13T13:30:45.076278900Z | |
| 1874.698: ChangeTime: 2015-01-13T13:30:45.076278900Z | |
| 1874.698: FileAttributes: 0x20 | |
| 1874.698: Size: 0x2b658 | |
| 1874.698: NT Headers: 0xe8 | |
| 1874.698: Timestamp: 0x51f32ff2 | |
| 1874.698: Machine: 0x8664 - amd64 | |
| 1874.698: Timestamp: 0x51f32ff2 | |
| 1874.698: Image Version: 6.0 | |
| 1874.698: SizeOfImage: 0x38000 (229376) | |
| 1874.698: Resource Dir: 0x36000 LB 0x3c8 | |
| 1874.698: ProductName: SYMEVENT | |
| 1874.698: ProductVersion: 12.9.5.2 | |
| 1874.698: FileVersion: 12.9.5.2 | |
| 1874.698: FileDescription: Symantec Event Library | |
| 1874.698: Calling main() | |
| 1874.698: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2 | |
| 1874.698: SUPR3HardenedMain: Respawn #1 | |
| 1874.698: System32: \Device\HarddiskVolume2\Windows\System32 | |
| 1874.698: WinSxS: \Device\HarddiskVolume2\Windows\winsxs | |
| 1874.698: KnownDllPath: C:\Windows\system32 | |
| 1874.698: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports | |
| 1874.698: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe) | |
| 1874.698: supR3HardNtEnableThreadCreation: | |
| 1874.698: supR3HardNtDisableThreadCreation: pvLdrInitThunk=000000007701a350 pvNtTerminateThread=000000007703c340 | |
| 1874.698: supR3HardenedWinDoReSpawn(1): New child 1b84.2a5c [kernel32]. | |
| 1874.698: supR3HardNtChildGatherData: PebBaseAddress=000007fffffdc000 cbPeb=0x380 | |
| 1874.698: supR3HardNtPuChFindNtdll: uNtDllParentAddr=0000000076ff0000 uNtDllChildAddr=0000000076ff0000 | |
| 1874.698: supR3HardenedWinSetupChildInit: uLdrInitThunk=000000007701a350 | |
| 1874.698: supR3HardenedWinSetupChildInit: Start child. | |
| 1874.698: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 0 ms. | |
| 1874.698: supR3HardNtChildPurify: Startup delay kludge #1/0: 520 ms, 52 sleeps | |
| 1874.698: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION | |
| 1874.698: *0000000000000000-fffffffffffeffff 0x0001/0x0000 0x0000000 | |
| 1874.698: *0000000000010000-fffffffffffeffff 0x0004/0x0004 0x0020000 | |
| 1874.698: *0000000000030000-000000000002bfff 0x0002/0x0002 0x0040000 | |
| 1874.698: 0000000000034000-0000000000027fff 0x0001/0x0000 0x0000000 | |
| 1874.698: *0000000000040000-000000000003efff 0x0004/0x0004 0x0020000 | |
| 1874.698: 0000000000041000-fffffffffff51fff 0x0001/0x0000 0x0000000 | |
| 1874.698: *0000000000130000-0000000000033fff 0x0000/0x0004 0x0020000 | |
| 1874.698: 000000000022c000-0000000000228fff 0x0104/0x0004 0x0020000 | |
| 1874.698: 000000000022f000-000000000022dfff 0x0004/0x0004 0x0020000 | |
| 1874.698: 0000000000230000-ffffffff8946ffff 0x0001/0x0000 0x0000000 | |
| 1874.698: *0000000076ff0000-0000000076ff0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1874.698: 0000000076ff1000-00000000770ebfff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1874.698: 00000000770ec000-000000007711afff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1874.698: 000000007711b000-0000000077124fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1874.698: 0000000077125000-0000000077125fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1874.698: 0000000077126000-0000000077128fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1874.698: 0000000077129000-0000000077197fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1874.698: 0000000077198000-000000006f34ffff 0x0001/0x0000 0x0000000 | |
| 1874.698: *000000007efe0000-000000007dfdffff 0x0000/0x0002 0x0020000 | |
| 1874.698: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000 | |
| 1874.698: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000 | |
| 1874.698: 000000007fff0000-ffffffffc070ffff 0x0001/0x0000 0x0000000 | |
| 1874.698: *000000013f8d0000-000000013f8d0fff 0x0040/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f8d1000-000000013f955fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f956000-000000013f956fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f957000-000000013f994fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f995000-000000013f995fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f996000-000000013f996fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f997000-000000013f998fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f999000-000000013f999fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f99a000-000000013f99afff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f99b000-000000013f99efff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f99f000-000000013f9d7fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f9d8000-000000013f9cffff 0x0001/0x0000 0x0000000 | |
| 1874.698: *000000013f9e0000-000000013f9defff 0x0040/0x0040 0x0020000 !! | |
| 1874.698: supHardNtVpFreeOrReplacePrivateExecMemory: Freeing exec mem at 000000013f9e0000 (LB 0x1000, 000000013f9e0000 LB 0x1000) | |
| 1874.698: supHardNtVpFreeOrReplacePrivateExecMemory: Free attempt #1 succeeded: 0x0 [000000013f9e0000/000000013f9e0000 LB 0/0x1000] | |
| 1874.698: supHardNtVpFreeOrReplacePrivateExecMemory: QVM after free 0: [0000000000000000]/000000013f9e0000 LB 0x7fdbf930000 s=0x10000 ap=0x0 rp=0x00000000000001 | |
| 1874.698: 000000013f9e1000-fffff803800b1fff 0x0001/0x0000 0x0000000 | |
| 1874.698: *000007feff310000-000007feff310fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\apisetschema.dll | |
| 1874.698: 000007feff311000-000007fdfe671fff 0x0001/0x0000 0x0000000 | |
| 1874.698: *000007fffffb0000-000007fffff8cfff 0x0002/0x0002 0x0040000 | |
| 1874.698: 000007fffffd3000-000007fffffc9fff 0x0001/0x0000 0x0000000 | |
| 1874.698: *000007fffffdc000-000007fffffdafff 0x0004/0x0004 0x0020000 | |
| 1874.698: 000007fffffdd000-000007fffffdbfff 0x0001/0x0000 0x0000000 | |
| 1874.698: *000007fffffde000-000007fffffdbfff 0x0004/0x0004 0x0020000 | |
| 1874.698: *000007fffffe0000-000007fffffcffff 0x0001/0x0002 0x0020000 | |
| 1874.698: apisetschema.dll: timestamp 0x5507b664 (rc=VINF_SUCCESS) | |
| 1874.698: VirtualBox.exe: timestamp 0x559faaf3 (rc=VINF_SUCCESS) | |
| 1874.698: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports | |
| 1874.698: VirtualBox.exe: Differences in section #0 (headers) between file and memory: | |
| 1874.698: 000000013f8d016a / 0x000016a: 00 != 11 | |
| 1874.698: 000000013f8d016c / 0x000016c: 00 != cc | |
| 1874.698: 000000013f8d016d / 0x000016d: 00 != 01 | |
| 1874.698: 000000013f8d01c0 / 0x00001c0: 00 != cc | |
| 1874.698: 000000013f8d01c1 / 0x00001c1: 00 != 01 | |
| 1874.698: 000000013f8d01c2 / 0x00001c2: 00 != 11 | |
| 1874.698: 000000013f8d01c4 / 0x00001c4: 00 != 20 | |
| 1874.698: Restored 0x400 bytes of original file content at 000000013f8d0000 | |
| 1874.698: '\Device\HarddiskVolume2\Windows\System32\apisetschema.dll' has no imports | |
| 1874.698: '\Device\HarddiskVolume2\Windows\System32\ntdll.dll' has no imports | |
| 1874.698: supR3HardNtChildPurify: cFixes=2 g_fSupAdversaries=0x3 cPatchCount=0 | |
| 1874.698: supR3HardNtChildPurify: Startup delay kludge #1/1: 520 ms, 52 sleeps | |
| 1874.698: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION | |
| 1874.698: *0000000000000000-fffffffffffeffff 0x0001/0x0000 0x0000000 | |
| 1874.698: *0000000000010000-fffffffffffeffff 0x0004/0x0004 0x0020000 | |
| 1874.698: *0000000000030000-000000000002bfff 0x0002/0x0002 0x0040000 | |
| 1874.698: 0000000000034000-0000000000027fff 0x0001/0x0000 0x0000000 | |
| 1874.698: *0000000000040000-000000000003efff 0x0004/0x0004 0x0020000 | |
| 1874.698: 0000000000041000-fffffffffff51fff 0x0001/0x0000 0x0000000 | |
| 1874.698: *0000000000130000-0000000000033fff 0x0000/0x0004 0x0020000 | |
| 1874.698: 000000000022c000-0000000000228fff 0x0104/0x0004 0x0020000 | |
| 1874.698: 000000000022f000-000000000022dfff 0x0004/0x0004 0x0020000 | |
| 1874.698: 0000000000230000-ffffffff8946ffff 0x0001/0x0000 0x0000000 | |
| 1874.698: *0000000076ff0000-0000000076ff0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1874.698: 0000000076ff1000-00000000770ebfff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1874.698: 00000000770ec000-000000007711afff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1874.698: 000000007711b000-0000000077124fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1874.698: 0000000077125000-0000000077125fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1874.698: 0000000077126000-0000000077126fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1874.698: 0000000077127000-0000000077128fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1874.698: 0000000077129000-0000000077197fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1874.698: 0000000077198000-000000006f34ffff 0x0001/0x0000 0x0000000 | |
| 1874.698: *000000007efe0000-000000007dfdffff 0x0000/0x0002 0x0020000 | |
| 1874.698: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000 | |
| 1874.698: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000 | |
| 1874.698: 000000007fff0000-ffffffffc070ffff 0x0001/0x0000 0x0000000 | |
| 1874.698: *000000013f8d0000-000000013f8d0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f8d1000-000000013f955fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f956000-000000013f956fff 0x0040/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f957000-000000013f994fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f995000-000000013f99efff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f99f000-000000013f9d7fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe | |
| 1874.698: 000000013f9d8000-fffff8038009ffff 0x0001/0x0000 0x0000000 | |
| 1874.698: *000007feff310000-000007feff310fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\apisetschema.dll | |
| 1874.698: 000007feff311000-000007fdfe671fff 0x0001/0x0000 0x0000000 | |
| 1874.698: *000007fffffb0000-000007fffff8cfff 0x0002/0x0002 0x0040000 | |
| 1874.698: 000007fffffd3000-000007fffffc9fff 0x0001/0x0000 0x0000000 | |
| 1874.698: *000007fffffdc000-000007fffffdafff 0x0004/0x0004 0x0020000 | |
| 1874.698: 000007fffffdd000-000007fffffdbfff 0x0001/0x0000 0x0000000 | |
| 1874.698: *000007fffffde000-000007fffffdbfff 0x0004/0x0004 0x0020000 | |
| 1874.698: *000007fffffe0000-000007fffffcffff 0x0001/0x0002 0x0020000 | |
| 1874.698: supR3HardNtChildPurify: Done after 1250 ms and 2 fixes (loop #1). | |
| 1874.698: supR3HardNtEnableThreadCreation: | |
| 1b84.2a5c: Log file opened: 4.3.30r101610 g_hStartupLog=0000000000000004 g_uNtVerCombined=0x611db110 | |
| 1b84.2a5c: supR3HardenedVmProcessInit: uNtDllAddr=0000000076ff0000 | |
| 1b84.2a5c: ntdll.dll: timestamp 0x5507b728 (rc=VINF_SUCCESS) | |
| 1b84.2a5c: New simple heap: #1 0000000000330000 LB 0x400000 (for 1736704 allocation) | |
| 1b84.2a5c: System32: \Device\HarddiskVolume2\Windows\System32 | |
| 1b84.2a5c: WinSxS: \Device\HarddiskVolume2\Windows\winsxs | |
| 1b84.2a5c: KnownDllPath: C:\Windows\system32 | |
| 1b84.2a5c: supR3HardenedVmProcessInit: Opening vboxdrv stub... | |
| 1b84.2a5c: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk... | |
| 1b84.2a5c: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk... | |
| 1b84.2a5c: Registered Dll notification callback with NTDLL. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\kernel32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\kernel32.dll | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\kernel32.dll (Input=kernel32.dll, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000000:<flags> [calling] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 0000000076dd0000 LB 0x0011f000 C:\Windows\system32\kernel32.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefd0f0000 LB 0x0006b000 C:\Windows\system32\KERNELBASE.dll [fFlags=0x0] | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\KernelBase.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\KernelBase.dll | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000076dd0000 'C:\Windows\system32\kernel32.dll' | |
| 1b84.2a5c: supR3HardNtDisableThreadCreation: pvLdrInitThunk=000000007701a350 pvNtTerminateThread=000000007703c340 | |
| 1874.698: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 20 ms. | |
| 1b84.2a5c: \SystemRoot\System32\ntdll.dll: | |
| 1b84.2a5c: CreationTime: 2015-05-12T00:00:58.609339800Z | |
| 1b84.2a5c: LastWriteTime: 2015-03-17T05:15:22.298856000Z | |
| 1b84.2a5c: ChangeTime: 2015-05-12T09:05:13.914000000Z | |
| 1b84.2a5c: FileAttributes: 0x20 | |
| 1b84.2a5c: Size: 0x1a5ba0 | |
| 1b84.2a5c: NT Headers: 0xe0 | |
| 1b84.2a5c: Timestamp: 0x5507b728 | |
| 1b84.2a5c: Machine: 0x8664 - amd64 | |
| 1b84.2a5c: Timestamp: 0x5507b728 | |
| 1b84.2a5c: Image Version: 6.1 | |
| 1b84.2a5c: SizeOfImage: 0x1a8000 (1736704) | |
| 1b84.2a5c: Resource Dir: 0x14c000 LB 0x5a028 | |
| 1b84.2a5c: ProductName: Microsoft® Windows® Operating System | |
| 1b84.2a5c: ProductVersion: 6.1.7601.23002 | |
| 1b84.2a5c: FileVersion: 6.1.7601.23002 (win7sp1_ldr.150316-1651) | |
| 1b84.2a5c: FileDescription: NT Layer DLL | |
| 1b84.2a5c: \SystemRoot\System32\kernel32.dll: | |
| 1b84.2a5c: CreationTime: 2015-05-12T00:00:58.476353100Z | |
| 1b84.2a5c: LastWriteTime: 2015-03-17T05:11:40.868000000Z | |
| 1b84.2a5c: ChangeTime: 2015-05-12T09:05:14.163600000Z | |
| 1b84.2a5c: FileAttributes: 0x20 | |
| 1b84.2a5c: Size: 0x11c600 | |
| 1b84.2a5c: NT Headers: 0xe0 | |
| 1b84.2a5c: Timestamp: 0x5507b733 | |
| 1b84.2a5c: Machine: 0x8664 - amd64 | |
| 1b84.2a5c: Timestamp: 0x5507b733 | |
| 1b84.2a5c: Image Version: 6.1 | |
| 1b84.2a5c: SizeOfImage: 0x11f000 (1175552) | |
| 1b84.2a5c: Resource Dir: 0x116000 LB 0x528 | |
| 1b84.2a5c: ProductName: Microsoft® Windows® Operating System | |
| 1b84.2a5c: ProductVersion: 6.1.7601.23002 | |
| 1b84.2a5c: FileVersion: 6.1.7601.23002 (win7sp1_ldr.150316-1651) | |
| 1b84.2a5c: FileDescription: Windows NT BASE API Client DLL | |
| 1b84.2a5c: \SystemRoot\System32\KernelBase.dll: | |
| 1b84.2a5c: CreationTime: 2015-05-12T00:00:59.441256600Z | |
| 1b84.2a5c: LastWriteTime: 2015-03-17T05:11:40.868000000Z | |
| 1b84.2a5c: ChangeTime: 2015-05-12T09:05:14.179200000Z | |
| 1b84.2a5c: FileAttributes: 0x20 | |
| 1b84.2a5c: Size: 0x66e00 | |
| 1b84.2a5c: NT Headers: 0xe8 | |
| 1b84.2a5c: Timestamp: 0x5507b734 | |
| 1b84.2a5c: Machine: 0x8664 - amd64 | |
| 1b84.2a5c: Timestamp: 0x5507b734 | |
| 1b84.2a5c: Image Version: 6.1 | |
| 1b84.2a5c: SizeOfImage: 0x6b000 (438272) | |
| 1b84.2a5c: Resource Dir: 0x69000 LB 0x530 | |
| 1b84.2a5c: ProductName: Microsoft® Windows® Operating System | |
| 1b84.2a5c: ProductVersion: 6.1.7601.23002 | |
| 1b84.2a5c: FileVersion: 6.1.7601.23002 (win7sp1_ldr.150316-1651) | |
| 1b84.2a5c: FileDescription: Windows NT BASE API Client DLL | |
| 1b84.2a5c: \SystemRoot\System32\apisetschema.dll: | |
| 1b84.2a5c: CreationTime: 2015-05-12T00:01:00.674133300Z | |
| 1b84.2a5c: LastWriteTime: 2015-03-17T05:05:34.420000000Z | |
| 1b84.2a5c: ChangeTime: 2015-05-12T09:05:13.882800000Z | |
| 1b84.2a5c: FileAttributes: 0x20 | |
| 1b84.2a5c: Size: 0x1a00 | |
| 1b84.2a5c: NT Headers: 0xc0 | |
| 1b84.2a5c: Timestamp: 0x5507b664 | |
| 1b84.2a5c: Machine: 0x8664 - amd64 | |
| 1b84.2a5c: Timestamp: 0x5507b664 | |
| 1b84.2a5c: Image Version: 6.1 | |
| 1b84.2a5c: SizeOfImage: 0x50000 (327680) | |
| 1b84.2a5c: Resource Dir: 0x30000 LB 0x3f8 | |
| 1b84.2a5c: ProductName: Microsoft® Windows® Operating System | |
| 1b84.2a5c: ProductVersion: 6.1.7601.23002 | |
| 1b84.2a5c: FileVersion: 6.1.7601.23002 (win7sp1_ldr.150316-1651) | |
| 1b84.2a5c: FileDescription: ApiSet Schema DLL | |
| 1b84.2a5c: Found driver SysPlant (0x1) | |
| 1b84.2a5c: Found driver SymNetS (0x2) | |
| 1b84.2a5c: Found driver SymDS (0x2) | |
| 1b84.2a5c: Found driver SRTSPX (0x2) | |
| 1b84.2a5c: Found driver SymEvent (0x2) | |
| 1b84.2a5c: Found driver SymIRON (0x2) | |
| 1b84.2a5c: supR3HardenedWinFindAdversaries: 0x3 | |
| 1b84.2a5c: \SystemRoot\System32\drivers\SysPlant.sys: | |
| 1b84.2a5c: CreationTime: 2015-01-13T13:30:02.051403400Z | |
| 1b84.2a5c: LastWriteTime: 2015-01-13T13:30:02.051403400Z | |
| 1b84.2a5c: ChangeTime: 2015-01-13T13:30:02.051403400Z | |
| 1b84.2a5c: FileAttributes: 0x20 | |
| 1b84.2a5c: Size: 0x25f50 | |
| 1b84.2a5c: NT Headers: 0x100 | |
| 1b84.2a5c: Timestamp: 0x53da082a | |
| 1b84.2a5c: Machine: 0x8664 - amd64 | |
| 1b84.2a5c: Timestamp: 0x53da082a | |
| 1b84.2a5c: Image Version: 5.0 | |
| 1b84.2a5c: SizeOfImage: 0x2d000 (184320) | |
| 1b84.2a5c: Resource Dir: 0x2b000 LB 0x498 | |
| 1b84.2a5c: ProductName: Symantec CMC Firewall | |
| 1b84.2a5c: ProductVersion: 12.1.4112.4156 | |
| 1b84.2a5c: FileVersion: 12.1.4112.4156 | |
| 1b84.2a5c: FileDescription: Symantec CMC Firewall SysPlant | |
| 1b84.2a5c: \SystemRoot\System32\sysfer.dll: | |
| 1b84.2a5c: CreationTime: 2015-01-13T13:30:02.051403400Z | |
| 1b84.2a5c: LastWriteTime: 2015-01-13T13:30:02.051403400Z | |
| 1b84.2a5c: ChangeTime: 2015-01-13T13:30:02.051403400Z | |
| 1b84.2a5c: FileAttributes: 0x20 | |
| 1b84.2a5c: Size: 0x70d70 | |
| 1b84.2a5c: NT Headers: 0xe8 | |
| 1b84.2a5c: Timestamp: 0x53da08b7 | |
| 1b84.2a5c: Machine: 0x8664 - amd64 | |
| 1b84.2a5c: Timestamp: 0x53da08b7 | |
| 1b84.2a5c: Image Version: 0.0 | |
| 1b84.2a5c: SizeOfImage: 0x88000 (557056) | |
| 1b84.2a5c: Resource Dir: 0x86000 LB 0x630 | |
| 1b84.2a5c: ProductName: Symantec CMC Firewall | |
| 1b84.2a5c: ProductVersion: 12.1.4112.4156 | |
| 1b84.2a5c: FileVersion: 12.1.4112.4156 | |
| 1b84.2a5c: FileDescription: Symantec CMC Firewall sysfer | |
| 1b84.2a5c: \SystemRoot\System32\sysferThunk.dll: | |
| 1b84.2a5c: CreationTime: 2015-01-13T13:30:02.051403400Z | |
| 1b84.2a5c: LastWriteTime: 2015-01-13T13:30:02.051403400Z | |
| 1b84.2a5c: ChangeTime: 2015-01-13T13:30:02.051403400Z | |
| 1b84.2a5c: FileAttributes: 0x20 | |
| 1b84.2a5c: Size: 0x3170 | |
| 1b84.2a5c: NT Headers: 0xd0 | |
| 1b84.2a5c: Timestamp: 0x53da08b8 | |
| 1b84.2a5c: Machine: 0x8664 - amd64 | |
| 1b84.2a5c: Timestamp: 0x53da08b8 | |
| 1b84.2a5c: Image Version: 0.0 | |
| 1b84.2a5c: SizeOfImage: 0x8000 (32768) | |
| 1b84.2a5c: Resource Dir: 0x6000 LB 0x648 | |
| 1b84.2a5c: ProductName: Symantec CMC Firewall | |
| 1b84.2a5c: ProductVersion: 12.1.4112.4156 | |
| 1b84.2a5c: FileVersion: 12.1.4112.4156 | |
| 1b84.2a5c: FileDescription: Symantec CMC Firewall SysferThunk | |
| 1b84.2a5c: \SystemRoot\System32\drivers\symevent64x86.sys: | |
| 1b84.2a5c: CreationTime: 2015-01-13T13:30:45.076278900Z | |
| 1b84.2a5c: LastWriteTime: 2015-01-13T13:30:45.076278900Z | |
| 1b84.2a5c: ChangeTime: 2015-01-13T13:30:45.076278900Z | |
| 1b84.2a5c: FileAttributes: 0x20 | |
| 1b84.2a5c: Size: 0x2b658 | |
| 1b84.2a5c: NT Headers: 0xe8 | |
| 1b84.2a5c: Timestamp: 0x51f32ff2 | |
| 1b84.2a5c: Machine: 0x8664 - amd64 | |
| 1b84.2a5c: Timestamp: 0x51f32ff2 | |
| 1b84.2a5c: Image Version: 6.0 | |
| 1b84.2a5c: SizeOfImage: 0x38000 (229376) | |
| 1b84.2a5c: Resource Dir: 0x36000 LB 0x3c8 | |
| 1b84.2a5c: ProductName: SYMEVENT | |
| 1b84.2a5c: ProductVersion: 12.9.5.2 | |
| 1b84.2a5c: FileVersion: 12.9.5.2 | |
| 1b84.2a5c: FileDescription: Symantec Event Library | |
| 1b84.2a5c: Calling main() | |
| 1b84.2a5c: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2 | |
| 1b84.2a5c: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe) | |
| 1b84.2a5c: SUPR3HardenedMain: Respawn #2 | |
| 1b84.2a5c: supR3HardNtEnableThreadCreation: | |
| 1b84.2a5c: Error -104 in supR3HardenedWinReSpawn! (enmWhat=5) | |
| 1b84.2a5c: Error relaunching VirtualBox VM process: 5 | |
| Command line: '60eaff78-4bdd-042d-2e72-669728efd737-suplib-3rdchild --comment boot2docker-vm --startvm 1e90071a-018d-4245-8cd7-08358cff761e --no-startvm-errormsgbox "--sup-startup-log=C:\Users\mbroekhu\VirtualBox VMs\boot2docker-vm\Logs\VBoxStartup.log"' | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'opengl32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'vboxrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'msvcp100.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'msvcr100.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qtcorevbox4.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'qtguivbox4.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'qtnetworkvbox4.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'qtopenglvbox4.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'advapi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'shell32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #13 'ole32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #14 'oleaut32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #15 'comdlg32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #16 'winmm.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\winmm.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\winmm.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comdlg32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'comdlg32.dll' -> '\Device\HarddiskVolume2\Windows\System32\comdlg32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'shlwapi.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'comctl32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'shell32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\comdlg32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\comdlg32.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'ole32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'rpcrt4.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'gdi32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\oleaut32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\oleaut32.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #25 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #26 'rpcrt4.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\ole32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ole32.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #21 'shlwapi.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #23 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #24 'gdi32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\shell32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\shell32.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'rpcrt4.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\advapi32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\advapi32.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'lpk.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\gdi32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\gdi32.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'gdi32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\user32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\user32.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtopenglvbox4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtopenglvbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtopenglvbox4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'opengl32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'qtguivbox4.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qtcorevbox4.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcr100.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtOpenGLVBox4.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtOpenGLVBox4.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtnetworkvbox4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtnetworkvbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtnetworkvbox4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'ws2_32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'qtcorevbox4.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'msvcr100.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtNetworkVBox4.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtNetworkVBox4.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtguivbox4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtguivbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtguivbox4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'comdlg32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'oleaut32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'imm32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'winmm.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'winspool.drv'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'ole32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'advapi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'shell32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'qtcorevbox4.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'msvcp100.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'msvcr100.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtcorevbox4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtcorevbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtcorevbox4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'ole32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'ws2_32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcp100.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msvcr100.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'vboxrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'vboxrt.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\vboxrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcp100.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ws2_32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'rpcrt4.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'glu32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'ddraw.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'user32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\opengl32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\opengl32.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ddraw.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ddraw.dll' -> '\Device\HarddiskVolume2\Windows\System32\ddraw.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'dciman32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'setupapi.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'dwmapi.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\ddraw.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ddraw.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'glu32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'glu32.dll' -> '\Device\HarddiskVolume2\Windows\System32\glu32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'opengl32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\glu32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\glu32.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\msvcrt.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\msvcrt.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #16 'rpcrt4.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #17 'nsi.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\ws2_32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ws2_32.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ws2_32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtcorevbox4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtcorevbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtcorevbox4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winspool.drv'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'winspool.drv' -> '\Device\HarddiskVolume2\Windows\System32\winspool.drv' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'user32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\winspool.drv) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\winspool.drv | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'imm32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'imm32.dll' -> '\Device\HarddiskVolume2\Windows\System32\imm32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msctf.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\imm32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\imm32.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comdlg32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'comdlg32.dll' -> '\Device\HarddiskVolume2\Windows\System32\comdlg32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\comdlg32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtcorevbox4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtcorevbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtcorevbox4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ws2_32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtcorevbox4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtcorevbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtcorevbox4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qtguivbox4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'qtguivbox4.dll' -> '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\qtguivbox4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\opengl32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'lpk.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'lpk.dll' -> '\Device\HarddiskVolume2\Windows\System32\lpk.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'usp10.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\lpk.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\lpk.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shlwapi.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shlwapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\shlwapi.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msvcrt.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\shlwapi.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\shlwapi.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'comctl32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'comctl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\comctl32.dll' [rcNtRedir=0x0] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'advapi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\comctl32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\comctl32.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shlwapi.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shlwapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\shlwapi.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shlwapi.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'usp10.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'usp10.dll' -> '\Device\HarddiskVolume2\Windows\System32\usp10.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'gdi32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\usp10.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\usp10.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msctf.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msctf.dll' -> '\Device\HarddiskVolume2\Windows\System32\msctf.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'imm32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\msctf.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\msctf.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'nsi.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'nsi.dll' -> '\Device\HarddiskVolume2\Windows\System32\nsi.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\nsi.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\nsi.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'opengl32.dll' -> '\Device\HarddiskVolume2\Windows\System32\opengl32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\opengl32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'dwmapi.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'dwmapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\dwmapi.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\dwmapi.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\dwmapi.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'setupapi.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'setupapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\setupapi.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'cfgmgr32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'rpcrt4.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'oleaut32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'devobj.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\setupapi.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\setupapi.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'dciman32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'dciman32.dll' -> '\Device\HarddiskVolume2\Windows\System32\dciman32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\dciman32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\dciman32.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'devobj.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'devobj.dll' -> '\Device\HarddiskVolume2\Windows\System32\devobj.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'cfgmgr32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\devobj.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\devobj.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'cfgmgr32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'cfgmgr32.dll' -> '\Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'rpcrt4.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'imm32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'imm32.dll' -> '\Device\HarddiskVolume2\Windows\System32\imm32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\imm32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'cfgmgr32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'cfgmgr32.dll' -> '\Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VirtualBox.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000915830:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32 [calling] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fee6930000 LB 0x00875000 C:\Program Files\Oracle\VirtualBox\VirtualBox.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\opengl32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fee7fc0000 LB 0x0011d000 C:\Windows\system32\OPENGL32.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\opengl32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefd520000 LB 0x0009f000 C:\Windows\system32\msvcrt.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefd2f0000 LB 0x000db000 C:\Windows\system32\ADVAPI32.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #14 'rpcrt4.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\sechost.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\sechost.dll | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefe3b0000 LB 0x0001f000 C:\Windows\SYSTEM32\sechost.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\sechost.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefd820000 LB 0x0012d000 C:\Windows\system32\RPCRT4.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefd3d0000 LB 0x00067000 C:\Windows\system32\GDI32.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 0000000076ef0000 LB 0x000fa000 C:\Windows\system32\USER32.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007feff2f0000 LB 0x0000e000 C:\Windows\system32\LPK.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\lpk.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefd450000 LB 0x000c9000 C:\Windows\system32\USP10.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\usp10.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\glu32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fef0540000 LB 0x0002d000 C:\Windows\system32\GLU32.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\glu32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ddraw.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fee6830000 LB 0x000f1000 C:\Windows\system32\DDRAW.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ddraw.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\dciman32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fef5950000 LB 0x00008000 C:\Windows\system32\DCIMAN32.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\dciman32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefdba0000 LB 0x001d7000 C:\Windows\system32\SETUPAPI.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\setupapi.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefce00000 LB 0x00036000 C:\Windows\system32\CFGMGR32.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefdac0000 LB 0x000d7000 C:\Windows\system32\OLEAUT32.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefe1a0000 LB 0x00203000 C:\Windows\system32\ole32.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefd010000 LB 0x0001a000 C:\Windows\system32\DEVOBJ.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\devobj.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\dwmapi.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefa5c0000 LB 0x00018000 C:\Windows\system32\dwmapi.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\dwmapi.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fee71b0000 LB 0x00537000 C:\Program Files\Oracle\VirtualBox\VBoxRT.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 0000000078b60000 LB 0x000d2000 C:\Program Files\Oracle\VirtualBox\MSVCR100.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcr100.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 00000000788c0000 LB 0x00098000 C:\Program Files\Oracle\VirtualBox\MSVCP100.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\msvcp100.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefd950000 LB 0x0004d000 C:\Windows\system32\WS2_32.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ws2_32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefd440000 LB 0x00008000 C:\Windows\system32\NSI.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\nsi.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 0000000066430000 LB 0x002de000 C:\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtCoreVBox4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 0000000064d80000 LB 0x00969000 C:\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtGuiVBox4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefd9a0000 LB 0x00097000 C:\Windows\system32\COMDLG32.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\comdlg32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefe3d0000 LB 0x00071000 C:\Windows\system32\SHLWAPI.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shlwapi.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'advapi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fef3b80000 LB 0x000a0000 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\COMCTL32.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefe560000 LB 0x00d8b000 C:\Windows\system32\SHELL32.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefde20000 LB 0x0002e000 C:\Windows\system32\IMM32.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\imm32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefe450000 LB 0x00109000 C:\Windows\system32\MSCTF.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msctf.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefa050000 LB 0x0003b000 C:\Windows\system32\WINMM.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winspool.drv [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fef1f40000 LB 0x00071000 C:\Windows\system32\WINSPOOL.DRV [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winspool.drv [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtNetworkVBox4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 0000000063b50000 LB 0x00105000 C:\Program Files\Oracle\VirtualBox\QtNetworkVBox4.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtNetworkVBox4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtOpenGLVBox4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 0000000062b50000 LB 0x000dc000 C:\Program Files\Oracle\VirtualBox\QtOpenGLVBox4.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\QtOpenGLVBox4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\AppSense\Application Manager\Age) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\AppSense\Application Manager\Age | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=c:\progra~1\appsense\applic~1\agent\amldra~1.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\AppSense\Application Manager\Age) | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 0000000067d00000 LB 0x00018000 c:\progra~1\appsense\applic~1\agent\amldra~1.dll [fFlags=0x0] | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\AppSense\Application Manager\Age) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'detoured.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'ws2_32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'advapi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'shell32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'psapi.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'version.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\AppSense\Application Manager\Agen) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\AppSense\Application Manager\Agen | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'version.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'version.dll' -> '\Device\HarddiskVolume2\Windows\System32\version.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcrt.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\version.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\version.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'psapi.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'psapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\psapi.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\psapi.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\psapi.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ws2_32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'detoured.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'detoured.dll' -> '\Device\HarddiskVolume2\Windows\System32\detoured.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\Detoured.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\Detoured.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=c:\progra~1\appsense\applic~1\agent\AMAppHook.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'detoured.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'ws2_32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'advapi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'shell32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'psapi.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'version.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\AppSense\Application Manager\Agen) | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 0000000067c00000 LB 0x000ef000 c:\progra~1\appsense\applic~1\agent\AMAppHook.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'detoured.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'ws2_32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'advapi32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'shell32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'psapi.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'version.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\AppSense\Application Manager\Agen) | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\Detoured.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 0000000069000000 LB 0x00006000 C:\Windows\system32\detoured.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\Detoured.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 00000000771b0000 LB 0x00007000 C:\Windows\system32\PSAPI.DLL [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\psapi.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\version.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefc240000 LB 0x0000c000 C:\Windows\system32\VERSION.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\version.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'version.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'version.dll' -> '\Device\HarddiskVolume2\Windows\System32\version.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\version.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'psapi.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'psapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\psapi.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\psapi.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ws2_32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'detoured.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'detoured.dll' -> '\Device\HarddiskVolume2\Windows\System32\detoured.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\Detoured.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'version.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'version.dll' -> '\Device\HarddiskVolume2\Windows\System32\version.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\version.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'psapi.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'psapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\psapi.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\psapi.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume2\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ws2_32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ws2_32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ws2_32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ws2_32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'detoured.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'detoured.dll' -> '\Device\HarddiskVolume2\Windows\System32\detoured.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\Detoured.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\kernel32.dll (Input=kernel32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000076dd0000 'C:\Windows\system32\kernel32.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\ole32.dll (Input=ole32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe1a0000 'C:\Windows\system32\ole32.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\shell32.dll (Input=shell32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe560000 'C:\Windows\system32\shell32.dll' | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000067c00000 'c:\progra~1\appsense\applic~1\agent\AMAppHook.dll' | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000067d00000 'c:\progra~1\appsense\applic~1\agent\amldra~1.dll' | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\AppSense\Environment Manager\Age) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\AppSense\Environment Manager\Age | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=c:\progra~1\appsense\enviro~1\agent\asvfxl~1.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\AppSense\Environment Manager\Age) | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 0000000074000000 LB 0x0001b000 c:\progra~1\appsense\enviro~1\agent\asvfxl~1.dll [fFlags=0x0] | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\AppSense\Environment Manager\Age) | |
| 1b84.2a5c: '\Device\HarddiskVolume2\Windows\System32\ntdll.dll' has no imports | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Windows\System32\ntdll.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ntdll.dll | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\NTDLL.DLL (Input=NTDLL.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000076ff0000 'C:\Windows\system32\NTDLL.DLL' | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000074000000 'c:\progra~1\appsense\enviro~1\agent\asvfxl~1.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd3d0000 'C:\Windows\system32\gdi32.dll' | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-Win-Core-LocalRegistry-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000076dd0000 'API-MS-Win-Core-LocalRegistry-L1-1-0.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\Oracle\VirtualBox\VBoxRT.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VBoxRT.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee71b0000 'C:\Program Files\Oracle\VirtualBox\VBoxRT.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\imm32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\imm32.dll (Input=imm32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefde20000 'C:\Windows\system32\imm32.dll' | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fee6930000 'C:\Program Files\Oracle\VirtualBox\VirtualBox.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\winmm.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefa050000 'C:\Windows\system32\winmm.dll' | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'user32.dll'. | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'gdi32.dll'. | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\uxtheme.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\uxtheme.dll | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.2a5c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000099f620:C:\Windows\system32;;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\uxtheme.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefabf0000 LB 0x00056000 C:\Windows\system32\uxtheme.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\uxtheme.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefabf0000 'C:\Windows\system32\uxtheme.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\uxtheme.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000099f620:C:\Windows\system32;;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefabf0000 'C:\Windows\system32\uxtheme.dll' | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\cryptbase.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\cryptbase.dll | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\CRYPTBASE.dll (Input=CRYPTBASE.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\cryptbase.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 000007fefcc40000 LB 0x0000f000 C:\Windows\system32\CRYPTBASE.dll [fFlags=0x0] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\cryptbase.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefcc40000 'C:\Windows\system32\CRYPTBASE.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shell32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\shell32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe560000 'C:\Windows\system32\shell32.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\kernel32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000076dd0000 'C:\Windows\system32\kernel32.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\uxtheme.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefabf0000 'C:\Windows\system32\uxtheme.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\uxtheme.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefabf0000 'C:\Windows\system32\uxtheme.dll' | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: error opening 'C:\Windows\system32\wintab32.dll': 0 (NtPath=\??\C:\Windows\system32\wintab32.dll; Input=C:\Windows\system32\wintab32.dll; rcNtGetDll=0x0 | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wintab32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000135 'C:\Windows\system32\wintab32.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000076ef0000 'C:\Windows\system32\user32.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\uxtheme.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\uxtheme.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefabf0000 'C:\Windows\system32\uxtheme.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000076ef0000 'C:\Windows\system32\user32.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd3d0000 'C:\Windows\system32\gdi32.dll' | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: error opening 'C:\Windows\system32\wintab32.dll': 2147943568 (NtPath=\??\C:\Windows\system32\wintab32.dll; Input=C:\Windows\system32\wintab32.dll; rcNtGetDll=0x0 | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wintab32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000135 'C:\Windows\system32\wintab32.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000076ef0000 'C:\Windows\system32\user32.dll' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\WINMM.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefa050000 'C:\Windows\system32\WINMM.dll' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\kernel32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\ole32.dll (Input=ole32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe1a0000 'C:\Windows\system32\ole32.dll' | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\kernel32.dll (Input=kernel32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000076dd0000 'C:\Windows\system32\kernel32.dll' | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-WIN-Service-Management-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe3b0000 'API-MS-WIN-Service-Management-L1-1-0.dll' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd820000 'C:\Windows\system32\rpcrt4.dll' | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=API-MS-WIN-Service-winsvc-L1-1-0.dll (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe3b0000 'API-MS-WIN-Service-winsvc-L1-1-0.dll' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd820000 'C:\Windows\system32\RPCRT4.dll' | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\ole32.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe1a0000 'C:\Windows\system32\ole32.dll' | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'user32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'rpcrt4.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'propsys.dll'. | |
| 1b84.25d0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll) | |
| 1b84.25d0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'propsys.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'propsys.dll' -> '\Device\HarddiskVolume2\Windows\System32\propsys.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ole32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'oleaut32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'user32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'rpcrt4.dll'. | |
| 1b84.25d0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\propsys.dll) | |
| 1b84.25d0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\propsys.dll | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\MMDevAPI.DLL (Input=MMDevAPI.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedDllNotificationCallback: load 000007fefa710000 LB 0x0004b000 C:\Windows\system32\MMDevAPI.DLL [fFlags=0x0] | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\propsys.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedDllNotificationCallback: load 000007fefa5e0000 LB 0x0012c000 C:\Windows\system32\PROPSYS.dll [fFlags=0x0] | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\propsys.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefd2f0000 'C:\Windows\system32\ADVAPI32.dll' | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefa710000 'C:\Windows\system32\MMDevAPI.DLL' | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'ole32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'user32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'winmm.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'ksuser.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'mmdevapi.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #9 'avrt.dll'. | |
| 1b84.25d0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\wdmaud.drv) | |
| 1b84.25d0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\wdmaud.drv | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'avrt.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'avrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\avrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\avrt.dll) | |
| 1b84.25d0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\avrt.dll | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mmdevapi.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'mmdevapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\mmdevapi.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ksuser.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'ksuser.dll' -> '\Device\HarddiskVolume2\Windows\System32\ksuser.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.25d0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\ksuser.dll) | |
| 1b84.25d0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\ksuser.dll | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedDllNotificationCallback: load 000007fef9e60000 LB 0x0003b000 C:\Windows\system32\wdmaud.drv [fFlags=0x0] | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ksuser.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedDllNotificationCallback: load 00000000747c0000 LB 0x00006000 C:\Windows\system32\ksuser.dll [fFlags=0x0] | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ksuser.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\avrt.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedDllNotificationCallback: load 000007fefa1e0000 LB 0x00009000 C:\Windows\system32\AVRT.dll [fFlags=0x0] | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\avrt.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9e60000 'C:\Windows\system32\wdmaud.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9e60000 'C:\Windows\system32\wdmaud.drv' | |
| 1b84.2a5c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\AppSense\Environment Manager\Agent\EmLoader.dll) | |
| 1b84.2a5c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Program Files\AppSense\Environment Manager\Agent\EmLoader.dll | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Program Files\AppSense\Environment Manager\Agent\EmLoader.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\AppSense\Environment Manager\Agent\EmLoader.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedDllNotificationCallback: load 0000000074b30000 LB 0x0001c000 C:\Program Files\AppSense\Environment Manager\Agent\EmLoader.dll [fFlags=0x0] | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Program Files\AppSense\Environment Manager\Agent\EmLoader.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume2\Windows\System32\ntdll.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\ntdll.dll (Input=ntdll.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000076ff0000 'C:\Windows\system32\ntdll.dll' | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=0000000074b30000 'C:\Program Files\AppSense\Environment Manager\Agent\EmLoader.dll' | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9e60000 'C:\Windows\system32\wdmaud.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\MMDEVAPI.DLL (Input=MMDEVAPI.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefa710000 'C:\Windows\system32\MMDEVAPI.DLL' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe1a0000 'C:\Windows\system32\ole32.dll' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\setupapi.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\SETUPAPI.dll (Input=SETUPAPI.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefdba0000 'C:\Windows\system32\SETUPAPI.dll' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9e60000 'C:\Windows\system32\wdmaud.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9e60000 'C:\Windows\system32\wdmaud.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\shlwapi.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\SHLWAPI.dll (Input=SHLWAPI.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe3d0000 'C:\Windows\system32\SHLWAPI.dll' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefe1a0000 'C:\Windows\system32\ole32.dll' | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'ole32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'oleaut32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'user32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'rpcrt4.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'mmdevapi.dll'. | |
| 1b84.25d0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\AudioSes.dll) | |
| 1b84.25d0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\AudioSes.dll | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mmdevapi.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'mmdevapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\mmdevapi.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\AUDIOSES.DLL (Input=AUDIOSES.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\AudioSes.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedDllNotificationCallback: load 000007fef9f50000 LB 0x0004f000 C:\Windows\system32\AUDIOSES.DLL [fFlags=0x0] | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\AudioSes.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9f50000 'C:\Windows\system32\AUDIOSES.DLL' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9e60000 'C:\Windows\system32\wdmaud.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\wdmaud.drv (Input=wdmaud.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9e60000 'C:\Windows\system32\wdmaud.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9e60000 'C:\Windows\system32\wdmaud.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9e60000 'C:\Windows\system32\wdmaud.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9e60000 'C:\Windows\system32\wdmaud.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9e60000 'C:\Windows\system32\wdmaud.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9e60000 'C:\Windows\system32\wdmaud.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9e60000 'C:\Windows\system32\wdmaud.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\wdmaud.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9e60000 'C:\Windows\system32\wdmaud.drv' | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'user32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'winmm.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msacm32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'mmdevapi.dll'. | |
| 1b84.25d0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\msacm32.drv) | |
| 1b84.25d0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\msacm32.drv | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'mmdevapi.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'mmdevapi.dll' -> '\Device\HarddiskVolume2\Windows\System32\mmdevapi.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\MMDevAPI.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msacm32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msacm32.dll' -> '\Device\HarddiskVolume2\Windows\System32\msacm32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'advapi32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'user32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'gdi32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'winmm.dll'. | |
| 1b84.25d0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\msacm32.dll) | |
| 1b84.25d0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\msacm32.dll | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'gdi32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'gdi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\gdi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\gdi32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedDllNotificationCallback: load 000007fef9680000 LB 0x0000a000 C:\Windows\system32\msacm32.drv [fFlags=0x0] | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedDllNotificationCallback: load 000007fef9660000 LB 0x00018000 C:\Windows\system32\MSACM32.dll [fFlags=0x0] | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9680000 'C:\Windows\system32\msacm32.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9680000 'C:\Windows\system32\msacm32.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9680000 'C:\Windows\system32\msacm32.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9680000 'C:\Windows\system32\msacm32.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9680000 'C:\Windows\system32\msacm32.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9680000 'C:\Windows\system32\msacm32.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\msacm32.drv (Input=msacm32.drv, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9680000 'C:\Windows\system32\msacm32.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9680000 'C:\Windows\system32\msacm32.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9680000 'C:\Windows\system32\msacm32.drv' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msacm32.drv [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9680000 'C:\Windows\system32\msacm32.drv' | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'. | |
| 1b84.25d0: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'winmm.dll'. | |
| 1b84.25d0: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\midimap.dll) | |
| 1b84.25d0: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\midimap.dll | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume2\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\winmm.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.25d0: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.25d0: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\midimap.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedDllNotificationCallback: load 000007fef9650000 LB 0x00009000 C:\Windows\system32\midimap.dll [fFlags=0x0] | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\midimap.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9650000 'C:\Windows\system32\midimap.dll' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\midimap.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9650000 'C:\Windows\system32\midimap.dll' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\midimap.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9650000 'C:\Windows\system32\midimap.dll' | |
| 1b84.25d0: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\midimap.dll [lacks WinVerifyTrust] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\midimap.dll (Input=midimap.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.25d0: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9650000 'C:\Windows\system32\midimap.dll' | |
| 1b84.247c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'. | |
| 1b84.247c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'ole32.dll'. | |
| 1b84.247c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'. | |
| 1b84.247c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'advapi32.dll'. | |
| 1b84.247c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'oleaut32.dll'. | |
| 1b84.247c: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'rpcrt4.dll'. | |
| 1b84.247c: supHardenedWinVerifyImageByHandle: -> 22900 (\Device\HarddiskVolume2\Windows\System32\clbcatq.dll) | |
| 1b84.247c: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume2\Windows\System32\clbcatq.dll | |
| 1b84.247c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'... | |
| 1b84.247c: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume2\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008] | |
| 1b84.247c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust] | |
| 1b84.247c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'... | |
| 1b84.247c: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume2\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.247c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust] | |
| 1b84.247c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'... | |
| 1b84.247c: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume2\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.247c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\advapi32.dll [lacks WinVerifyTrust] | |
| 1b84.247c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'... | |
| 1b84.247c: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume2\Windows\System32\user32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.247c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\user32.dll [lacks WinVerifyTrust] | |
| 1b84.247c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'... | |
| 1b84.247c: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume2\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008] | |
| 1b84.247c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\ole32.dll [lacks WinVerifyTrust] | |
| 1b84.247c: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'... | |
| 1b84.247c: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume2\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008] | |
| 1b84.247c: supR3HardenedScreenImage/Imports: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\msvcrt.dll [lacks WinVerifyTrust] | |
| 1b84.247c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\CLBCatQ.DLL (Input=CLBCatQ.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.247c: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\clbcatq.dll [lacks WinVerifyTrust] | |
| 1b84.247c: supR3HardenedDllNotificationCallback: load 000007fefdd80000 LB 0x00099000 C:\Windows\system32\CLBCatQ.DLL [fFlags=0x0] | |
| 1b84.247c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\clbcatq.dll [lacks WinVerifyTrust] | |
| 1b84.247c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefdd80000 'C:\Windows\system32\CLBCatQ.DLL' | |
| 1b84.247c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\AudioSes.dll [lacks WinVerifyTrust] | |
| 1b84.247c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\audioses.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=00000000009f4470:C:\Windows\System32;;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.247c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef9f50000 'C:\Windows\System32\audioses.dll' | |
| 1b84.18b8: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\cfgmgr32.dll [lacks WinVerifyTrust] | |
| 1b84.18b8: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\CFGMGR32.dll (Input=CFGMGR32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.18b8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefce00000 'C:\Windows\system32\CFGMGR32.dll' | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: 'C:\Windows\system32\comctl32.dll' -> 'C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll' [redir] | |
| 1b84.2a5c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll [lacks WinVerifyTrust] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll (Input=C:\Windows\system32\comctl32.dll, rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.2a5c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fef3b80000 'C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll' | |
| 1b84.247c: supR3HardenedScreenImage/LdrLoadDll: cache hit (Unknown Status 22900 (0x5974)) on \Device\HarddiskVolume2\Windows\System32\oleaut32.dll [lacks WinVerifyTrust] | |
| 1b84.247c: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\OLEAUT32.dll (Input=OLEAUT32.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=000000000098b8d0:C:\Program Files\Oracle\VirtualBox;C:\Windows\system32;C:\Windows\system;C:\Windows;.;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\windows\des_tools;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\WebEx\Productivity Tools;C:\Program Files\TortoiseSVN\bin;C:\tools\python;C:\env\junction;C:\C:\env\java\1.7.0_55\bin;C:\ProgramData\chocolatey\bin;C:\env\maven\3.0.5\bin;C:\env\mysql\mysql-5.6.22-winx64\bin;C:\Users\mbroekhu\development\utilities\7zip;C:\env\rabbitmq-server\3.3.1\sbin;C:\env\ant\1.9.4\bin; C:\env\handle;C:\Program Files\Boot2Docker for Windows [calling] | |
| 1b84.247c: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=000007fefdac0000 'C:\Windows\system32\OLEAUT32.dll' | |
| ```` |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment