VirtualBox

Opened 6 years ago

Last modified 6 years ago

#17499 new defect

Can't start vmachine, MachineWrap E_FAIL (0x80004005)

Reported by: Toby (: Owned by:
Component: other Version: VirtualBox 5.1.22
Keywords: E_FAIL (0x80004005); IMachine {b2547866-a0a1-4391-8b86-6952d82efaa0}; MachineWrap Cc:
Guest type: Windows Host type: Windows

Description

Hello there.

I don't know why, but i can't even start v-box machine. It gives me this error: 

The virtual machine 'TESTING' has terminated unexpectedly during startup with exit code 1 (0x1).  More details may be available in 'C:\Users\Admin\VirtualBox VMs\TESTING\Logs\VBoxHardening.log'.

Návratový kód: E_FAIL (0x80004005)
Komponenta: MachineWrap
Rozhraní: IMachine {b2547866-a0a1-4391-8b86-6952d82efaa0}

Log output: 

41c.1af0: Log file opened: 5.1.22r115126 g_hStartupLog=000000000000006c g_uNtVerCombined=0xa03fab00
41c.1af0: \SystemRoot\System32\ntdll.dll:
41c.1af0:     CreationTime:    2018-01-05T15:56:46.395451500Z
41c.1af0:     LastWriteTime:   2018-01-01T12:48:26.082566200Z
41c.1af0:     ChangeTime:      2018-01-06T08:02:19.865353700Z
41c.1af0:     FileAttributes:  0x20
41c.1af0:     Size:            0x1dd100
41c.1af0:     NT Headers:      0xe0
41c.1af0:     Timestamp:       0x6dead514
41c.1af0:     Machine:         0x8664 - amd64
41c.1af0:     Timestamp:       0x6dead514
41c.1af0:     Image Version:   10.0
41c.1af0:     SizeOfImage:     0x1e0000 (1966080)
41c.1af0:     Resource Dir:    0x174000 LB 0x6a1d8
41c.1af0:     [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
41c.1af0:     [Raw version resource data: 0x1740f0 LB 0x380, codepage 0x0 (reserved 0x0)]
41c.1af0:     ProductName:     Microsoft® Windows® Operating System
41c.1af0:     ProductVersion:  10.0.16299.192
41c.1af0:     FileVersion:     10.0.16299.192 (WinBuild.160101.0800)
41c.1af0:     FileDescription: NT Layer DLL
41c.1af0: \SystemRoot\System32\kernel32.dll:
41c.1af0:     CreationTime:    2017-09-29T13:42:04.954227600Z
41c.1af0:     LastWriteTime:   2017-09-29T13:42:04.954227600Z
41c.1af0:     ChangeTime:      2018-01-01T19:07:46.735385400Z
41c.1af0:     FileAttributes:  0x20
41c.1af0:     Size:            0xab868
41c.1af0:     NT Headers:      0xe8
41c.1af0:     Timestamp:       0xc2cf900
41c.1af0:     Machine:         0x8664 - amd64
41c.1af0:     Timestamp:       0xc2cf900
41c.1af0:     Image Version:   10.0
41c.1af0:     SizeOfImage:     0xae000 (712704)
41c.1af0:     Resource Dir:    0xac000 LB 0x520
41c.1af0:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
41c.1af0:     [Raw version resource data: 0xac0b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
41c.1af0:     ProductName:     Microsoft® Windows® Operating System
41c.1af0:     ProductVersion:  10.0.16299.15
41c.1af0:     FileVersion:     10.0.16299.15 (WinBuild.160101.0800)
41c.1af0:     FileDescription: Windows NT BASE API Client DLL
41c.1af0: \SystemRoot\System32\KernelBase.dll:
41c.1af0:     CreationTime:    2017-09-29T13:41:43.124345500Z
41c.1af0:     LastWriteTime:   2017-09-29T13:41:43.124345500Z
41c.1af0:     ChangeTime:      2018-01-01T19:07:46.829134900Z
41c.1af0:     FileAttributes:  0x20
41c.1af0:     Size:            0x266000
41c.1af0:     NT Headers:      0xf0
41c.1af0:     Timestamp:       0x4736733c
41c.1af0:     Machine:         0x8664 - amd64
41c.1af0:     Timestamp:       0x4736733c
41c.1af0:     Image Version:   10.0
41c.1af0:     SizeOfImage:     0x266000 (2514944)
41c.1af0:     Resource Dir:    0x245000 LB 0x548
41c.1af0:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
41c.1af0:     [Raw version resource data: 0x2450b0 LB 0x3bc, codepage 0x0 (reserved 0x0)]
41c.1af0:     ProductName:     Microsoft® Windows® Operating System
41c.1af0:     ProductVersion:  10.0.16299.15
41c.1af0:     FileVersion:     10.0.16299.15 (WinBuild.160101.0800)
41c.1af0:     FileDescription: Windows NT BASE API Client DLL
41c.1af0: \SystemRoot\System32\apisetschema.dll:
41c.1af0:     CreationTime:    2017-09-29T13:42:07.095026600Z
41c.1af0:     LastWriteTime:   2017-09-29T13:42:07.095026600Z
41c.1af0:     ChangeTime:      2018-01-08T20:50:10.598880700Z
41c.1af0:     FileAttributes:  0x20
41c.1af0:     Size:            0x1b398
41c.1af0:     NT Headers:      0xc8
41c.1af0:     Timestamp:       0xf30abf31
41c.1af0:     Machine:         0x8664 - amd64
41c.1af0:     Timestamp:       0xf30abf31
41c.1af0:     Image Version:   10.0
41c.1af0:     SizeOfImage:     0x1c000 (114688)
41c.1af0:     Resource Dir:    0x1b000 LB 0x408
41c.1af0:     [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
41c.1af0:     [Raw version resource data: 0x1b060 LB 0x3a8, codepage 0x0 (reserved 0x0)]
41c.1af0:     ProductName:     Microsoft® Windows® Operating System
41c.1af0:     ProductVersion:  10.0.16299.15
41c.1af0:     FileVersion:     10.0.16299.15 (WinBuild.160101.0800)
41c.1af0:     FileDescription: ApiSet Schema DLL
41c.1af0: supR3HardenedWinFindAdversaries: 0x0
41c.1af0: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64'
41c.1af0: Calling main()
41c.1af0: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
41c.1af0: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64'
41c.1af0: SUPR3HardenedMain: Respawn #1
41c.1af0: System32:  \Device\HarddiskVolume1\Windows\System32
41c.1af0: WinSxS:    \Device\HarddiskVolume1\Windows\WinSxS
41c.1af0: KnownDllPath: C:\WINDOWS\System32
41c.1af0: '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe' has no imports
41c.1af0: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe)
41c.1af0: supR3HardNtEnableThreadCreation:
41c.1af0: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ff9560791d0 pvNtTerminateThread=00007ff9560a08c0
41c.1af0: supR3HardenedWinDoReSpawn(1): New child 2d54.35dc [kernel32].
41c.1af0: supR3HardNtChildGatherData: PebBaseAddress=000000000116e000 cbPeb=0x388
41c.1af0: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00007ff956000000 uNtDllChildAddr=00007ff956000000
41c.1af0: supR3HardenedWinSetupChildInit: uLdrInitThunk=00007ff9560791d0
41c.1af0: supR3HardenedWinSetupChildInit: Start child.
41c.1af0: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 0 ms.
41c.1af0: supR3HardNtChildPurify: Startup delay kludge #1/0: 263 ms, 16 sleeps
41c.1af0: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
41c.1af0:  *0000000000000000-0000000000e5ffff 0x0001/0x0000 0x0000000
41c.1af0:  *0000000000e60000-0000000000e7ffff 0x0004/0x0004 0x0020000
41c.1af0:  *0000000000e80000-0000000000e98fff 0x0002/0x0002 0x0040000
41c.1af0:   0000000000e99000-0000000000e9ffff 0x0001/0x0000 0x0000000
41c.1af0:  *0000000000ea0000-0000000000f9afff 0x0000/0x0004 0x0020000
41c.1af0:   0000000000f9b000-0000000000f9dfff 0x0104/0x0004 0x0020000
41c.1af0:   0000000000f9e000-0000000000f9ffff 0x0004/0x0004 0x0020000
41c.1af0:  *0000000000fa0000-0000000000fa3fff 0x0002/0x0002 0x0040000
41c.1af0:   0000000000fa4000-0000000000faffff 0x0001/0x0000 0x0000000
41c.1af0:  *0000000000fb0000-0000000000fb0fff 0x0004/0x0004 0x0020000
41c.1af0:   0000000000fb1000-0000000000ffffff 0x0001/0x0000 0x0000000
41c.1af0:  *0000000001000000-000000000116dfff 0x0000/0x0004 0x0020000
41c.1af0:   000000000116e000-0000000001170fff 0x0004/0x0004 0x0020000
41c.1af0:   0000000001171000-00000000011fffff 0x0000/0x0004 0x0020000
41c.1af0:   0000000001200000-000000007ffdffff 0x0001/0x0000 0x0000000
41c.1af0:  *000000007ffe0000-000000007ffe0fff 0x0002/0x0002 0x0020000
41c.1af0:  *000000007ffe1000-000000007ffeffff 0x0000/0x0002 0x0020000
41c.1af0:   000000007fff0000-00007ff7ed97ffff 0x0001/0x0000 0x0000000
41c.1af0:  *00007ff7ed980000-00007ff7ed9a2fff 0x0002/0x0002 0x0040000
41c.1af0:   00007ff7ed9a3000-00007ff7edf0ffff 0x0001/0x0000 0x0000000
41c.1af0:  *00007ff7edf10000-00007ff7edf10fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
41c.1af0:   00007ff7edf11000-00007ff7edf80fff 0x0020/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
41c.1af0:   00007ff7edf81000-00007ff7edf81fff 0x0080/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
41c.1af0:   00007ff7edf82000-00007ff7edfc6fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
41c.1af0:   00007ff7edfc7000-00007ff7edfc7fff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
41c.1af0:   00007ff7edfc8000-00007ff7edfc8fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
41c.1af0:   00007ff7edfc9000-00007ff7edfcdfff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
41c.1af0:   00007ff7edfce000-00007ff7edfcefff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
41c.1af0:   00007ff7edfcf000-00007ff7edfcffff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
41c.1af0:   00007ff7edfd0000-00007ff7edfd3fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
41c.1af0:   00007ff7edfd4000-00007ff7ee01bfff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
41c.1af0:   00007ff7ee01c000-00007ff955ffffff 0x0001/0x0000 0x0000000
41c.1af0:  *00007ff956000000-00007ff956000fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
41c.1af0:   00007ff956001000-00007ff956112fff 0x0020/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
41c.1af0:   00007ff956113000-00007ff956158fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
41c.1af0:   00007ff956159000-00007ff956160fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
41c.1af0:   00007ff956161000-00007ff95616efff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
41c.1af0:   00007ff95616f000-00007ff95616ffff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
41c.1af0:   00007ff956170000-00007ff956172fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
41c.1af0:   00007ff956173000-00007ff9561dffff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
41c.1af0:   00007ff9561e0000-00007ffffffdffff 0x0001/0x0000 0x0000000
41c.1af0:  *00007ffffffe0000-00007ffffffeffff 0x0001/0x0002 0x0020000
41c.1af0: VirtualBox.exe: timestamp 0x5903619d (rc=VINF_SUCCESS)
41c.1af0: '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe' has no imports
41c.1af0: '\Device\HarddiskVolume1\Windows\System32\ntdll.dll' has no imports
41c.1af0: supR3HardNtChildPurify: Done after 417 ms and 0 fixes (loop #0).
2d54.35dc: Log file opened: 5.1.22r115126 g_hStartupLog=0000000000000004 g_uNtVerCombined=0xa03fab00
2d54.35dc: supR3HardenedVmProcessInit: uNtDllAddr=00007ff956000000 g_uNtVerCombined=0xa03fab00
41c.1af0: supR3HardNtEnableThreadCreation:
2d54.35dc: ntdll.dll: timestamp 0x6dead514 (rc=VINF_SUCCESS)
2d54.35dc: New simple heap: #1 0000000001300000 LB 0x400000 (for 1966080 allocation)
2d54.35dc: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64'
2d54.35dc: System32:  \Device\HarddiskVolume1\Windows\System32
2d54.35dc: WinSxS:    \Device\HarddiskVolume1\Windows\WinSxS
2d54.35dc: KnownDllPath: C:\WINDOWS\System32
2d54.35dc: supR3HardenedVmProcessInit: Opening vboxdrv stub...
2d54.35dc: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
2d54.35dc: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
2d54.35dc: Registered Dll notification callback with NTDLL.
2d54.35dc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\kernel32.dll)
2d54.35dc: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\kernel32.dll
2d54.35dc: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\KERNEL32.DLL (Input=KERNEL32.DLL, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000004001:<flags> [calling]
2d54.35dc: supR3HardenedDllNotificationCallback: load   00007ff952740000 LB 0x00266000 C:\WINDOWS\System32\KERNELBASE.dll [fFlags=0x0]
2d54.35dc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\KernelBase.dll)
2d54.35dc: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\KernelBase.dll
2d54.35dc: supR3HardenedDllNotificationCallback: load   00007ff9556d0000 LB 0x000ae000 C:\WINDOWS\System32\KERNEL32.DLL [fFlags=0x0]
2d54.35dc: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
2d54.35dc: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff9556d0000 'C:\WINDOWS\System32\KERNEL32.DLL'
2d54.35dc: supR3HardenedDllNotificationCallback: load   00007ff7edf10000 LB 0x0010c000 C:\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe [fFlags=0x0]
2d54.35dc: '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe' has no imports
2d54.35dc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe)
2d54.35dc: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
2d54.35dc: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ff9560791d0 pvNtTerminateThread=00007ff9560a08c0
41c.1af0: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 452 ms.
2d54.35dc: \SystemRoot\System32\ntdll.dll:
2d54.35dc:     CreationTime:    2018-01-05T15:56:46.395451500Z
2d54.35dc:     LastWriteTime:   2018-01-01T12:48:26.082566200Z
2d54.35dc:     ChangeTime:      2018-01-06T08:02:19.865353700Z
2d54.35dc:     FileAttributes:  0x20
2d54.35dc:     Size:            0x1dd100
2d54.35dc:     NT Headers:      0xe0
2d54.35dc:     Timestamp:       0x6dead514
2d54.35dc:     Machine:         0x8664 - amd64
2d54.35dc:     Timestamp:       0x6dead514
2d54.35dc:     Image Version:   10.0
2d54.35dc:     SizeOfImage:     0x1e0000 (1966080)
2d54.35dc:     Resource Dir:    0x174000 LB 0x6a1d8
2d54.35dc:     [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
2d54.35dc:     [Raw version resource data: 0x1740f0 LB 0x380, codepage 0x0 (reserved 0x0)]
2d54.35dc:     ProductName:     Microsoft® Windows® Operating System
2d54.35dc:     ProductVersion:  10.0.16299.192
2d54.35dc:     FileVersion:     10.0.16299.192 (WinBuild.160101.0800)
2d54.35dc:     FileDescription: NT Layer DLL
2d54.35dc: \SystemRoot\System32\kernel32.dll:
2d54.35dc:     CreationTime:    2017-09-29T13:42:04.954227600Z
2d54.35dc:     LastWriteTime:   2017-09-29T13:42:04.954227600Z
2d54.35dc:     ChangeTime:      2018-01-01T19:07:46.735385400Z
2d54.35dc:     FileAttributes:  0x20
2d54.35dc:     Size:            0xab868
2d54.35dc:     NT Headers:      0xe8
2d54.35dc:     Timestamp:       0xc2cf900
2d54.35dc:     Machine:         0x8664 - amd64
2d54.35dc:     Timestamp:       0xc2cf900
2d54.35dc:     Image Version:   10.0
2d54.35dc:     SizeOfImage:     0xae000 (712704)
2d54.35dc:     Resource Dir:    0xac000 LB 0x520
2d54.35dc:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
2d54.35dc:     [Raw version resource data: 0xac0b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
2d54.35dc:     ProductName:     Microsoft® Windows® Operating System
2d54.35dc:     ProductVersion:  10.0.16299.15
2d54.35dc:     FileVersion:     10.0.16299.15 (WinBuild.160101.0800)
2d54.35dc:     FileDescription: Windows NT BASE API Client DLL
2d54.35dc: \SystemRoot\System32\KernelBase.dll:
2d54.35dc:     CreationTime:    2017-09-29T13:41:43.124345500Z
2d54.35dc:     LastWriteTime:   2017-09-29T13:41:43.124345500Z
2d54.35dc:     ChangeTime:      2018-01-01T19:07:46.829134900Z
2d54.35dc:     FileAttributes:  0x20
2d54.35dc:     Size:            0x266000
2d54.35dc:     NT Headers:      0xf0
2d54.35dc:     Timestamp:       0x4736733c
2d54.35dc:     Machine:         0x8664 - amd64
2d54.35dc:     Timestamp:       0x4736733c
2d54.35dc:     Image Version:   10.0
2d54.35dc:     SizeOfImage:     0x266000 (2514944)
2d54.35dc:     Resource Dir:    0x245000 LB 0x548
2d54.35dc:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
2d54.35dc:     [Raw version resource data: 0x2450b0 LB 0x3bc, codepage 0x0 (reserved 0x0)]
2d54.35dc:     ProductName:     Microsoft® Windows® Operating System
2d54.35dc:     ProductVersion:  10.0.16299.15
2d54.35dc:     FileVersion:     10.0.16299.15 (WinBuild.160101.0800)
2d54.35dc:     FileDescription: Windows NT BASE API Client DLL
2d54.35dc: \SystemRoot\System32\apisetschema.dll:
2d54.35dc:     CreationTime:    2017-09-29T13:42:07.095026600Z
2d54.35dc:     LastWriteTime:   2017-09-29T13:42:07.095026600Z
2d54.35dc:     ChangeTime:      2018-01-08T20:50:10.598880700Z
2d54.35dc:     FileAttributes:  0x20
2d54.35dc:     Size:            0x1b398
2d54.35dc:     NT Headers:      0xc8
2d54.35dc:     Timestamp:       0xf30abf31
2d54.35dc:     Machine:         0x8664 - amd64
2d54.35dc:     Timestamp:       0xf30abf31
2d54.35dc:     Image Version:   10.0
2d54.35dc:     SizeOfImage:     0x1c000 (114688)
2d54.35dc:     Resource Dir:    0x1b000 LB 0x408
2d54.35dc:     [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
2d54.35dc:     [Raw version resource data: 0x1b060 LB 0x3a8, codepage 0x0 (reserved 0x0)]
2d54.35dc:     ProductName:     Microsoft® Windows® Operating System
2d54.35dc:     ProductVersion:  10.0.16299.15
2d54.35dc:     FileVersion:     10.0.16299.15 (WinBuild.160101.0800)
2d54.35dc:     FileDescription: ApiSet Schema DLL
2d54.35dc: supR3HardenedWinFindAdversaries: 0x0
2d54.35dc: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64'
2d54.35dc: Calling main()
2d54.35dc: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
2d54.35dc: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64'
2d54.35dc: '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe' has no imports
2d54.35dc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe)
2d54.35dc: SUPR3HardenedMain: Respawn #2
2d54.35dc: supR3HardNtEnableThreadCreation:
2d54.35dc: '\Device\HarddiskVolume1\Windows\System32\ntdll.dll' has no imports
2d54.35dc: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\ntdll.dll)
2d54.35dc: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\ntdll.dll
2d54.35dc: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\ntdll.dll (Input=ntdll.dll, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
2d54.35dc: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff956000000 'C:\WINDOWS\System32\ntdll.dll'
2d54.35dc: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ff9560791d0 pvNtTerminateThread=00007ff9560a08c0
2d54.35dc: supR3HardenedWinDoReSpawn(2): New child 2fb0.1318 [kernel32].
2d54.35dc: supR3HardenedWinReSpawn: NtSetInformationThread/ThreadHideFromDebugger failed: 0xc0000022 (harmless)
2d54.35dc: supR3HardNtChildGatherData: PebBaseAddress=00000000010b9000 cbPeb=0x388
2d54.35dc: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00007ff956000000 uNtDllChildAddr=00007ff956000000
2d54.35dc: supR3HardenedWinSetupChildInit: uLdrInitThunk=00007ff9560791d0
2d54.35dc: supR3HardenedWinSetupChildInit: Start child.
2d54.35dc: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 1 ms.
2d54.35dc: supR3HardNtChildPurify: Startup delay kludge #1/0: 257 ms, 15 sleeps
2d54.35dc: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
2d54.35dc:  *0000000000000000-0000000000e8ffff 0x0001/0x0000 0x0000000
2d54.35dc:  *0000000000e90000-0000000000eaffff 0x0004/0x0004 0x0020000
2d54.35dc:  *0000000000eb0000-0000000000ec8fff 0x0002/0x0002 0x0040000
2d54.35dc:   0000000000ec9000-0000000000ecffff 0x0001/0x0000 0x0000000
2d54.35dc:  *0000000000ed0000-0000000000fcafff 0x0000/0x0004 0x0020000
2d54.35dc:   0000000000fcb000-0000000000fcdfff 0x0104/0x0004 0x0020000
2d54.35dc:   0000000000fce000-0000000000fcffff 0x0004/0x0004 0x0020000
2d54.35dc:  *0000000000fd0000-0000000000fd3fff 0x0002/0x0002 0x0040000
2d54.35dc:   0000000000fd4000-0000000000fdffff 0x0001/0x0000 0x0000000
2d54.35dc:  *0000000000fe0000-0000000000fe0fff 0x0004/0x0004 0x0020000
2d54.35dc:   0000000000fe1000-0000000000ffffff 0x0001/0x0000 0x0000000
2d54.35dc:  *0000000001000000-00000000010b8fff 0x0000/0x0004 0x0020000
2d54.35dc:   00000000010b9000-00000000010bbfff 0x0004/0x0004 0x0020000
2d54.35dc:   00000000010bc000-00000000011fffff 0x0000/0x0004 0x0020000
2d54.35dc:   0000000001200000-000000007ffdffff 0x0001/0x0000 0x0000000
2d54.35dc:  *000000007ffe0000-000000007ffe0fff 0x0002/0x0002 0x0020000
2d54.35dc:  *000000007ffe1000-000000007ffeffff 0x0000/0x0002 0x0020000
2d54.35dc:   000000007fff0000-00007ff7edc0ffff 0x0001/0x0000 0x0000000
2d54.35dc:  *00007ff7edc10000-00007ff7edc32fff 0x0002/0x0002 0x0040000
2d54.35dc:   00007ff7edc33000-00007ff7edf0ffff 0x0001/0x0000 0x0000000
2d54.35dc:  *00007ff7edf10000-00007ff7edf10fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
2d54.35dc:   00007ff7edf11000-00007ff7edf80fff 0x0020/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
2d54.35dc:   00007ff7edf81000-00007ff7edf81fff 0x0080/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
2d54.35dc:   00007ff7edf82000-00007ff7edfc6fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
2d54.35dc:   00007ff7edfc7000-00007ff7edfc7fff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
2d54.35dc:   00007ff7edfc8000-00007ff7edfc8fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
2d54.35dc:   00007ff7edfc9000-00007ff7edfcdfff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
2d54.35dc:   00007ff7edfce000-00007ff7edfcefff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
2d54.35dc:   00007ff7edfcf000-00007ff7edfcffff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
2d54.35dc:   00007ff7edfd0000-00007ff7edfd3fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
2d54.35dc:   00007ff7edfd4000-00007ff7ee01bfff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
2d54.35dc:   00007ff7ee01c000-00007ff955ffffff 0x0001/0x0000 0x0000000
2d54.35dc:  *00007ff956000000-00007ff956000fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
2d54.35dc:   00007ff956001000-00007ff956112fff 0x0020/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
2d54.35dc:   00007ff956113000-00007ff956158fff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
2d54.35dc:   00007ff956159000-00007ff956160fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
2d54.35dc:   00007ff956161000-00007ff95616efff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
2d54.35dc:   00007ff95616f000-00007ff95616ffff 0x0004/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
2d54.35dc:   00007ff956170000-00007ff956172fff 0x0008/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
2d54.35dc:   00007ff956173000-00007ff9561dffff 0x0002/0x0080 0x1000000  \Device\HarddiskVolume1\Windows\System32\ntdll.dll
2d54.35dc:   00007ff9561e0000-00007ffffffdffff 0x0001/0x0000 0x0000000
2d54.35dc:  *00007ffffffe0000-00007ffffffeffff 0x0001/0x0002 0x0020000
2d54.35dc: VirtualBox.exe: timestamp 0x5903619d (rc=VINF_SUCCESS)
2d54.35dc: '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe' has no imports
2d54.35dc: '\Device\HarddiskVolume1\Windows\System32\ntdll.dll' has no imports
2d54.35dc: supR3HardNtChildPurify: Done after 463 ms and 0 fixes (loop #0).
2fb0.1318: Log file opened: 5.1.22r115126 g_hStartupLog=0000000000000004 g_uNtVerCombined=0xa03fab00
2fb0.1318: supR3HardenedVmProcessInit: uNtDllAddr=00007ff956000000 g_uNtVerCombined=0xa03fab00
2fb0.1318: ntdll.dll: timestamp 0x6dead514 (rc=VINF_SUCCESS)
2fb0.1318: New simple heap: #1 0000000001300000 LB 0x400000 (for 1966080 allocation)
2d54.35dc: supR3HardenedEarlyCompact: Removed heap 1 (0x00000001300000 LB 0x400000)
2d54.35dc: supR3HardNtEnableThreadCreation:
2fb0.1318: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64'
2fb0.1318: System32:  \Device\HarddiskVolume1\Windows\System32
2fb0.1318: WinSxS:    \Device\HarddiskVolume1\Windows\WinSxS
2fb0.1318: KnownDllPath: C:\WINDOWS\System32
2fb0.1318: supR3HardenedVmProcessInit: Opening vboxdrv...
2fb0.1318: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
2fb0.1318: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
2fb0.1318: Registered Dll notification callback with NTDLL.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\kernel32.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\kernel32.dll
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\System32\KERNEL32.DLL (Input=KERNEL32.DLL, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000004001:<flags> [calling]
2fb0.1318: supR3HardenedDllNotificationCallback: load   00007ff952740000 LB 0x00266000 C:\WINDOWS\System32\KERNELBASE.dll [fFlags=0x0]
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\KernelBase.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\KernelBase.dll
2fb0.1318: supR3HardenedDllNotificationCallback: load   00007ff9556d0000 LB 0x000ae000 C:\WINDOWS\System32\KERNEL32.DLL [fFlags=0x0]
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff9556d0000 'C:\WINDOWS\System32\KERNEL32.DLL'
2fb0.1318: supR3HardenedDllNotificationCallback: load   00007ff7edf10000 LB 0x0010c000 C:\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe [fFlags=0x0]
2fb0.1318: '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe' has no imports
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe
2fb0.1318: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ff9560791d0 pvNtTerminateThread=00007ff9560a08c0
2d54.35dc: supR3HardNtChildWaitFor: Found expected request 1 (CloseEvents) after 452 ms.
2fb0.1318: \SystemRoot\System32\ntdll.dll:
2fb0.1318:     CreationTime:    2018-01-05T15:56:46.395451500Z
2fb0.1318:     LastWriteTime:   2018-01-01T12:48:26.082566200Z
2fb0.1318:     ChangeTime:      2018-01-06T08:02:19.865353700Z
2fb0.1318:     FileAttributes:  0x20
2fb0.1318:     Size:            0x1dd100
2fb0.1318:     NT Headers:      0xe0
2fb0.1318:     Timestamp:       0x6dead514
2fb0.1318:     Machine:         0x8664 - amd64
2fb0.1318:     Timestamp:       0x6dead514
2fb0.1318:     Image Version:   10.0
2fb0.1318:     SizeOfImage:     0x1e0000 (1966080)
2fb0.1318:     Resource Dir:    0x174000 LB 0x6a1d8
2fb0.1318:     [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
2fb0.1318:     [Raw version resource data: 0x1740f0 LB 0x380, codepage 0x0 (reserved 0x0)]
2fb0.1318:     ProductName:     Microsoft® Windows® Operating System
2fb0.1318:     ProductVersion:  10.0.16299.192
2fb0.1318:     FileVersion:     10.0.16299.192 (WinBuild.160101.0800)
2fb0.1318:     FileDescription: NT Layer DLL
2fb0.1318: \SystemRoot\System32\kernel32.dll:
2fb0.1318:     CreationTime:    2017-09-29T13:42:04.954227600Z
2fb0.1318:     LastWriteTime:   2017-09-29T13:42:04.954227600Z
2fb0.1318:     ChangeTime:      2018-01-01T19:07:46.735385400Z
2fb0.1318:     FileAttributes:  0x20
2fb0.1318:     Size:            0xab868
2fb0.1318:     NT Headers:      0xe8
2fb0.1318:     Timestamp:       0xc2cf900
2fb0.1318:     Machine:         0x8664 - amd64
2fb0.1318:     Timestamp:       0xc2cf900
2fb0.1318:     Image Version:   10.0
2fb0.1318:     SizeOfImage:     0xae000 (712704)
2fb0.1318:     Resource Dir:    0xac000 LB 0x520
2fb0.1318:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
2fb0.1318:     [Raw version resource data: 0xac0b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
2fb0.1318:     ProductName:     Microsoft® Windows® Operating System
2fb0.1318:     ProductVersion:  10.0.16299.15
2fb0.1318:     FileVersion:     10.0.16299.15 (WinBuild.160101.0800)
2fb0.1318:     FileDescription: Windows NT BASE API Client DLL
2fb0.1318: \SystemRoot\System32\KernelBase.dll:
2fb0.1318:     CreationTime:    2017-09-29T13:41:43.124345500Z
2fb0.1318:     LastWriteTime:   2017-09-29T13:41:43.124345500Z
2fb0.1318:     ChangeTime:      2018-01-01T19:07:46.829134900Z
2fb0.1318:     FileAttributes:  0x20
2fb0.1318:     Size:            0x266000
2fb0.1318:     NT Headers:      0xf0
2fb0.1318:     Timestamp:       0x4736733c
2fb0.1318:     Machine:         0x8664 - amd64
2fb0.1318:     Timestamp:       0x4736733c
2fb0.1318:     Image Version:   10.0
2fb0.1318:     SizeOfImage:     0x266000 (2514944)
2fb0.1318:     Resource Dir:    0x245000 LB 0x548
2fb0.1318:     [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
2fb0.1318:     [Raw version resource data: 0x2450b0 LB 0x3bc, codepage 0x0 (reserved 0x0)]
2fb0.1318:     ProductName:     Microsoft® Windows® Operating System
2fb0.1318:     ProductVersion:  10.0.16299.15
2fb0.1318:     FileVersion:     10.0.16299.15 (WinBuild.160101.0800)
2fb0.1318:     FileDescription: Windows NT BASE API Client DLL
2fb0.1318: \SystemRoot\System32\apisetschema.dll:
2fb0.1318:     CreationTime:    2017-09-29T13:42:07.095026600Z
2fb0.1318:     LastWriteTime:   2017-09-29T13:42:07.095026600Z
2fb0.1318:     ChangeTime:      2018-01-08T20:50:10.598880700Z
2fb0.1318:     FileAttributes:  0x20
2fb0.1318:     Size:            0x1b398
2fb0.1318:     NT Headers:      0xc8
2fb0.1318:     Timestamp:       0xf30abf31
2fb0.1318:     Machine:         0x8664 - amd64
2fb0.1318:     Timestamp:       0xf30abf31
2fb0.1318:     Image Version:   10.0
2fb0.1318:     SizeOfImage:     0x1c000 (114688)
2fb0.1318:     Resource Dir:    0x1b000 LB 0x408
2fb0.1318:     [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
2fb0.1318:     [Raw version resource data: 0x1b060 LB 0x3a8, codepage 0x0 (reserved 0x0)]
2fb0.1318:     ProductName:     Microsoft® Windows® Operating System
2fb0.1318:     ProductVersion:  10.0.16299.15
2fb0.1318:     FileVersion:     10.0.16299.15 (WinBuild.160101.0800)
2fb0.1318:     FileDescription: ApiSet Schema DLL
2fb0.1318: supR3HardenedWinFindAdversaries: 0x0
2fb0.1318: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64'
2fb0.1318: Calling main()
2fb0.1318: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
2fb0.1318: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64'
2fb0.1318: '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe' has no imports
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe)
2fb0.1318: SUPR3HardenedMain: Final process, opening VBoxDrv...
2fb0.1318: supR3HardenedEarlyCompact: Removed heap 1 (0x00000001300000 LB 0x400000)
2fb0.1318: supR3HardNtEnableThreadCreation:
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VBoxSupLib.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VBoxSupLib.dll
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=C:\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VBoxSupLib.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
2fb0.1318: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VBoxSupLib.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedDllNotificationCallback: load   00007ff94e950000 LB 0x00005000 C:\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VBoxSupLib.DLL [fFlags=0x0]
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VBoxSupLib.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VBoxSupLib.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=C:\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VBoxSupLib.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff94e950000 'C:\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VBoxSupLib.DLL'
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VBoxSupLib.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=C:\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VBoxSupLib.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff94e950000 'C:\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VBoxSupLib.DLL'
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff94e950000 'C:\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VBoxSupLib.DLL'
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msasn1.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'crypt32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #27 'rpcrt4.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\wintrust.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\wintrust.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'crypt32.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'crypt32.dll' -> '\Device\HarddiskVolume1\Windows\System32\crypt32.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #33 'msasn1.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\crypt32.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\crypt32.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msasn1.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'msasn1.dll' -> '\Device\HarddiskVolume1\Windows\System32\msasn1.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\msasn1.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\msasn1.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\msvcrt.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\msvcrt.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msasn1.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'msasn1.dll' -> '\Device\HarddiskVolume1\Windows\System32\msasn1.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\msasn1.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\Wintrust.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
2fb0.1318: supR3HardenedDllNotificationCallback: load   00007ff9557b0000 LB 0x0009d000 C:\WINDOWS\System32\msvcrt.dll [fFlags=0x0]
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedDllNotificationCallback: load   00007ff951c10000 LB 0x00012000 C:\WINDOWS\System32\MSASN1.dll [fFlags=0x0]
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\msasn1.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedDllNotificationCallback: load   00007ff951ed0000 LB 0x000f6000 C:\WINDOWS\System32\ucrtbase.dll [fFlags=0x0]
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\ucrtbase.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\ucrtbase.dll
2fb0.1318: supR3HardenedDllNotificationCallback: load   00007ff9529b0000 LB 0x001ce000 C:\WINDOWS\System32\CRYPT32.dll [fFlags=0x0]
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\crypt32.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedDllNotificationCallback: load   00007ff952eb0000 LB 0x0011f000 C:\WINDOWS\System32\RPCRT4.dll [fFlags=0x0]
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedDllNotificationCallback: load   00007ff954e70000 LB 0x0005b000 C:\WINDOWS\System32\sechost.dll [fFlags=0x0]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'rpcrt4.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\sechost.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\sechost.dll
2fb0.1318: supR3HardenedDllNotificationCallback: load   00007ff953340000 LB 0x000a1000 C:\WINDOWS\System32\advapi32.dll [fFlags=0x0]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'sechost.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #27 'rpcrt4.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\advapi32.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\advapi32.dll
2fb0.1318: supR3HardenedDllNotificationCallback: load   00007ff952c20000 LB 0x00058000 C:\WINDOWS\System32\Wintrust.dll [fFlags=0x0]
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-synch-l1-2-0 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff952740000 'api-ms-win-core-synch-l1-2-0'
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-fibers-l1-1-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff952740000 'api-ms-win-core-fibers-l1-1-1'
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-fibers-l1-1-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff952740000 'api-ms-win-core-fibers-l1-1-1'
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-synch-l1-2-0 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff952740000 'api-ms-win-core-synch-l1-2-0'
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=api-ms-win-core-localization-l1-2-1 (rcNtResolve=0x0) *pfFlags=0x0 pwszSearchPath=0000000000000801:<flags> [calling]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff952740000 'api-ms-win-core-localization-l1-2-1'
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff952c20000 'C:\WINDOWS\system32\Wintrust.dll'
2fb0.1318: supHardenedWinVerifyImageByHandle: -> -626 (\Device\HarddiskVolume1\Windows\System32\bcrypt.dll)
2fb0.1318: Error (rc=0):
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: rc=Unknown Status -626 (0xfffffd8e) fImage=1 fProtect=0x0 fAccess=0x0 \Device\HarddiskVolume1\Windows\System32\bcrypt.dll: Grown load config (244 to 256 bytes) includes non-zero bytes: 00 00 00 00 60 a9 01 80 01 00 00 00
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\bcrypt.dll
2fb0.1318: Error (rc=0):
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: rejecting 'C:\WINDOWS\system32\bcrypt.dll' (C:\WINDOWS\system32\bcrypt.dll): rcNt=0xc0000190
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000190 'C:\WINDOWS\system32\bcrypt.dll'
2fb0.1318: Warning! Failed to load bcrypt.dll
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'sechost.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'sechost.dll' -> '\Device\HarddiskVolume1\Windows\System32\sechost.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\sechost.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcrt.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcrt.dll' -> '\Device\HarddiskVolume1\Windows\System32\msvcrt.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\msvcrt.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'rpcrt4.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'rpcrt4.dll' -> '\Device\HarddiskVolume1\Windows\System32\rpcrt4.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\rpcrt4.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\WINTRUST.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff952c20000 'C:\Windows\System32\WINTRUST.DLL'
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\WINTRUST.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff952c20000 'C:\Windows\System32\WINTRUST.DLL'
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\WINTRUST.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff952c20000 'C:\Windows\System32\WINTRUST.DLL'
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\WINTRUST.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff952c20000 'C:\Windows\System32\WINTRUST.DLL'
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\WINTRUST.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff952c20000 'C:\Windows\System32\WINTRUST.DLL'
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\WINTRUST.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff952c20000 'C:\Windows\System32\WINTRUST.DLL'
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\wintrust.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\System32\WINTRUST.DLL (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ff952c20000 'C:\Windows\System32\WINTRUST.DLL'
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\cryptsp.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\cryptsp.dll
2fb0.1318: supR3HardenedDllNotificationCallback: load   00007ff9515d0000 LB 0x00017000 C:\WINDOWS\SYSTEM32\CRYPTSP.dll [fFlags=0x0]
2fb0.1318: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\cryptsp.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #18 'bcrypt.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\rsaenh.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\rsaenh.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'bcrypt.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'bcrypt.dll' -> '\Device\HarddiskVolume1\Windows\System32\bcrypt.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedScreenImage/Imports: cache hit (Unknown Status -626 (0xfffffd8e)) on \Device\HarddiskVolume1\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
2fb0.1318: Error (rc=0):
2fb0.1318: supR3HardenedScreenImage/Imports: cached rc=Unknown Status -626 (0xfffffd8e) fImage=1 fProtect=0x0 fAccess=0x0 cHits=1 \Device\HarddiskVolume1\Windows\System32\bcrypt.dll
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\rsaenh.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
2fb0.1318: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\rsaenh.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedScreenImage/NtCreateSection: cache hit (Unknown Status -626 (0xfffffd8e)) on \Device\HarddiskVolume1\Windows\System32\bcrypt.dll [lacks WinVerifyTrust]
2fb0.1318: Error (rc=0):
2fb0.1318: supR3HardenedScreenImage/NtCreateSection: cached rc=Unknown Status -626 (0xfffffd8e) fImage=1 fProtect=0x10 fAccess=0xf cHits=2 \Device\HarddiskVolume1\Windows\System32\bcrypt.dll
2fb0.1318: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0xc0000190 'C:\WINDOWS\system32\rsaenh.dll'
2fb0.1318: supR3HardNtViCallWinVerifyTrust: WinVerifyTrust failed with 0x8 (<NULL>) on '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe'
2fb0.1318: Error -22919 in VirtualBox! (enmWhat=1)
2fb0.1318: WinVerifyTrust failed on stub executable: WinVerifyTrust failed with hrc=Unknown Status 0x8 on '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.exe'
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'opengl32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'vboxrt.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'msvcp100.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'msvcr100.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qt5corevbox.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'qt5guivbox.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'qt5widgetsvbox.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'qt5printsupportvbox.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'qt5openglvbox.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #10 'user32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #11 'advapi32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #12 'shell32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #13 'ole32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #14 'oleaut32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #15 'winmm.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VirtualBox.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'winmm.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'winmm.dll' -> '\Device\HarddiskVolume1\Windows\System32\winmm.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'winmmbase.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'msvcrt.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\winmm.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\winmm.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'oleaut32.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'oleaut32.dll' -> '\Device\HarddiskVolume1\Windows\System32\oleaut32.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcp_win.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'combase.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #23 'rpcrt4.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\oleaut32.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\oleaut32.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'ole32.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'ole32.dll' -> '\Device\HarddiskVolume1\Windows\System32\ole32.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #22 'rpcrt4.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #46 'gdi32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #47 'user32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #48 'combase.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\ole32.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\ole32.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume1\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcrt.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #73 'user32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #75 'gdi32.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\shell32.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\shell32.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume1\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume1\Windows\System32\advapi32.dll [lacks WinVerifyTrust]
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume1\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'win32u.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #34 'gdi32.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Windows\System32\user32.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Windows\System32\user32.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5openglvbox.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5openglvbox.dll' -> '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\qt5openglvbox.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'qt5widgetsvbox.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'qt5guivbox.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'qt5corevbox.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'msvcr100.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\Qt5OpenGLVBox.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\Qt5OpenGLVBox.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5printsupportvbox.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5printsupportvbox.dll' -> '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\qt5printsupportvbox.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'qt5widgetsvbox.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'qt5guivbox.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qt5corevbox.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'winspool.drv'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'comdlg32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'msvcr100.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\Qt5PrintSupportVBox.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\Qt5PrintSupportVBox.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5widgetsvbox.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5widgetsvbox.dll' -> '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\qt5widgetsvbox.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'gdi32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'qt5guivbox.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'qt5corevbox.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'shell32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcp100.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msvcr100.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\Qt5WidgetsVBox.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\Qt5WidgetsVBox.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5guivbox.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5guivbox.dll' -> '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\qt5guivbox.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'ole32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'opengl32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'gdi32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'user32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'qt5corevbox.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'msvcp100.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'msvcr100.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\Qt5GuiVBox.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\Qt5GuiVBox.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'qt5corevbox.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'qt5corevbox.dll' -> '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\qt5corevbox.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'shell32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ole32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'advapi32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #5 'ws2_32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #6 'mpr.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #7 'msvcp100.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #8 'msvcr100.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\Qt5CoreVBox.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\Qt5CoreVBox.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcr100.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcr100.dll' -> '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\msvcr100.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\msvcr100.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\msvcr100.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'msvcp100.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'msvcp100.dll' -> '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\msvcp100.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\msvcp100.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\msvcp100.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'vboxrt.dll'...
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: 'vboxrt.dll' -> '\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\vboxrt.dll' [rcNtRedir=0xc0150008]
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #0 'msvcr100.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'msvcp100.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'ws2_32.dll'.
2fb0.1318: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #4 'rpcrt4.dll'.
2fb0.1318: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VBoxRT.dll)
2fb0.1318: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume1\Users\Admin\Downloads\Portable VBox\Portable-VirtualBox\app64\VBoxRT.dll
2fb0.1318: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'opengl32.dll'...
2f

Change History (1)

comment:1 by Socratis, 6 years ago

Two things:

  1. Don't post huge chunks of data with copy/paste. It makes it really difficult to work with. Attach as a file the log, preferably zipped to save a (virtual) tree or two...
  1. Please read really carefully the following FAQ: Diagnosing VirtualBox Hardening Issues for some guidelines/ideas. There is no "one fits them all" solution, that's why the only thing we can do is to give you some ideas.

May I suggest something? It's usually better and faster, if issues get first addressed in the VirtualBox forums. More than 95% of the issues are resolved over there, which keeps the developers focusing on the bug fixes and enhancements, and there is no need for another ticket to keep track of. For example, yours is most probably not a bug and someone from the developers has to deal with it and close it as "Invalid".

Note: See TracTickets for help on using tickets.

© 2023 Oracle
ContactPrivacy policyTerms of Use