VirtualBox

Ticket #19060: 6.0.15-hardening-wl_hook64.dll.log

File 6.0.15-hardening-wl_hook64.dll.log, 16.0 KB (added by Captain Crunch, 5 years ago)

hardening log (VB 6.0.15)

Line 
116c.8d8: \Device\HarddiskVolume6\Program Files\Agnitum\Outpost Firewall Pro\WL_HOO~1.DLL: Owner is administrators group.
216c.8d8: \Device\HarddiskVolume6\Program Files\Agnitum\Outpost Firewall Pro\WL_HOO~1.DLL: VERR_CR_X509_CPV_NOT_VALID_AT_TIME for 0x56572858; retrying against current time: 0x5de4ce00.
316c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Program Files\Agnitum\Outpost Firewall Pro\WL_HOO~1.DLL'.
416c.8d8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #1 'user32.dll'.
516c.8d8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #2 'advapi32.dll'.
616c.8d8: supR3HardenedWinVerifyCacheScheduleImports: Import todo: #3 'shell32.dll'.
716c.8d8: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume6\Program Files\Agnitum\Outpost Firewall Pro\WL_HOO~1.DLL)
816c.8d8: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume6\Program Files\Agnitum\Outpost Firewall Pro\WL_HOO~1.DLL
916c.8d8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'shell32.dll'...
1016c.8d8: supR3HardenedWinVerifyCacheProcessImportTodos: 'shell32.dll' -> '\Device\HarddiskVolume6\Windows\System32\shell32.dll' [rcNtRedir=0xc0150008]
1116c.8d8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume6\Windows\System32\shell32.dll [redoing WinVerifyTrust]
1216c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\shell32.dll'.
1316c.8d8: supR3HardenedScreenImage/Imports: WinVerifyTrust not available, rescheduling \Device\HarddiskVolume6\Windows\System32\shell32.dll
1416c.8d8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'advapi32.dll'...
1516c.8d8: supR3HardenedWinVerifyCacheProcessImportTodos: 'advapi32.dll' -> '\Device\HarddiskVolume6\Windows\System32\advapi32.dll' [rcNtRedir=0xc0150008]
1616c.8d8: supR3HardenedScreenImage/Imports: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume6\Windows\System32\advapi32.dll
1716c.8d8: supR3HardenedWinVerifyCacheProcessImportTodos: Processing 'user32.dll'...
1816c.8d8: supR3HardenedWinVerifyCacheProcessImportTodos: 'user32.dll' -> '\Device\HarddiskVolume6\Windows\System32\user32.dll' [rcNtRedir=0xc0150008]
1916c.8d8: supR3HardenedMonitor_LdrLoadDll: pName=c:\progra~1\agnitum\outpos~1\wl_hoo~1.dll (rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
2016c.8d8: supR3HardenedScreenImage/NtCreateSection: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume6\Program Files\Agnitum\Outpost Firewall Pro\WL_HOO~1.DLL [avoiding WinVerifyTrust]
2116c.8d8: supR3HardenedDllNotificationCallback: load 00007ffb7fc80000 LB 0x00160000 c:\progra~1\agnitum\outpos~1\wl_hoo~1.dll [fFlags=0x0]
2216c.8d8: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume6\Program Files\Agnitum\Outpost Firewall Pro\WL_HOO~1.DLL [avoiding WinVerifyTrust]
2316c.8d8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb7fc80000 'c:\progra~1\agnitum\outpos~1\wl_hoo~1.dll'
2416c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Program Files\Agnitum\Outpost Firewall Pro\WL_HOO~1.DLL'.
2516c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Program Files\Agnitum\Outpost Firewall Pro\WL_HOO~1.DLL' [rescheduled]
2616c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\msctf.dll'.
2716c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\msctf.dll' [rescheduled]
2816c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\imm32.dll'.
2916c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\imm32.dll' [rescheduled]
3016c.8d8: Detected loader lock ownership: rc=Unknown Status 22900 (0x5974) '\Device\HarddiskVolume6\Windows\System32\dciman32.dll'.
3116c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 22900 (was 22900) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\dciman32.dll' [rescheduled]
3216c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\shlwapi.dll'.
3316c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\shlwapi.dll' [rescheduled]
3416c.8d8: Detected loader lock ownership: rc=Unknown Status 22900 (0x5974) '\Device\HarddiskVolume6\Windows\System32\glu32.dll'.
3516c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 22900 (was 22900) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\glu32.dll' [rescheduled]
3616c.8d8: Detected loader lock ownership: rc=Unknown Status 22900 (0x5974) '\Device\HarddiskVolume6\Windows\System32\ddraw.dll'.
3716c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 22900 (was 22900) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\ddraw.dll' [rescheduled]
3816c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\mpr.dll'.
3916c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\mpr.dll' [rescheduled]
4016c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\shell32.dll'.
4116c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\shell32.dll' [rescheduled]
4216c.8d8: Detected loader lock ownership: rc=Unknown Status 24202 (0x5e8a) '\Device\HarddiskVolume6\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll'.
4316c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 24202 (was 24202) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll' [rescheduled]
4416c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\combase.dll'.
4516c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\combase.dll' [rescheduled]
4616c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\cfgmgr32.dll'.
4716c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\cfgmgr32.dll' [rescheduled]
4816c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\gdi32.dll'.
4916c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\gdi32.dll' [rescheduled]
5016c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\devobj.dll'.
5116c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\devobj.dll' [rescheduled]
5216c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\winmmbase.dll'.
5316c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\winmmbase.dll' [rescheduled]
5416c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Program Files\Agnitum\Outpost Firewall Pro\WL_HOO~1.DLL'.
5516c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Program Files\Agnitum\Outpost Firewall Pro\WL_HOO~1.DLL' [rescheduled]
5616c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\msctf.dll'.
5716c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\msctf.dll' [rescheduled]
5816c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\imm32.dll'.
5916c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\imm32.dll' [rescheduled]
6016c.8d8: Detected loader lock ownership: rc=Unknown Status 22900 (0x5974) '\Device\HarddiskVolume6\Windows\System32\dciman32.dll'.
6116c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 22900 (was 22900) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\dciman32.dll' [rescheduled]
6216c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\shlwapi.dll'.
6316c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\shlwapi.dll' [rescheduled]
6416c.8d8: Detected loader lock ownership: rc=Unknown Status 22900 (0x5974) '\Device\HarddiskVolume6\Windows\System32\glu32.dll'.
6516c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 22900 (was 22900) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\glu32.dll' [rescheduled]
6616c.8d8: Detected loader lock ownership: rc=Unknown Status 22900 (0x5974) '\Device\HarddiskVolume6\Windows\System32\ddraw.dll'.
6716c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 22900 (was 22900) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\ddraw.dll' [rescheduled]
6816c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\mpr.dll'.
6916c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\mpr.dll' [rescheduled]
7016c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\shell32.dll'.
7116c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\shell32.dll' [rescheduled]
7216c.8d8: Detected loader lock ownership: rc=Unknown Status 24202 (0x5e8a) '\Device\HarddiskVolume6\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll'.
7316c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 24202 (was 24202) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll' [rescheduled]
7416c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\combase.dll'.
7516c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\combase.dll' [rescheduled]
7616c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\cfgmgr32.dll'.
7716c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\cfgmgr32.dll' [rescheduled]
7816c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\gdi32.dll'.
7916c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\gdi32.dll' [rescheduled]
8016c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\devobj.dll'.
8116c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\devobj.dll' [rescheduled]
8216c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\winmmbase.dll'.
8316c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\winmmbase.dll' [rescheduled]
8416c.8d8: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume6\Windows\System32\advapi32.dll
8516c.8d8: supR3HardenedMonitor_LdrLoadDll: pName=C:\Windows\system32\ADVAPI32.DLL (Input=ADVAPI32.DLL, rcNtResolve=0xc0150008) *pfFlags=0x0 pwszSearchPath=0000000000000001:<flags> [calling]
8616c.8d8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb82610000 'C:\Windows\system32\ADVAPI32.DLL'
8716c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Program Files\Agnitum\Outpost Firewall Pro\WL_HOO~1.DLL'.
8816c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Program Files\Agnitum\Outpost Firewall Pro\WL_HOO~1.DLL' [rescheduled]
8916c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\msctf.dll'.
9016c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\msctf.dll' [rescheduled]
9116c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\imm32.dll'.
9216c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\imm32.dll' [rescheduled]
9316c.8d8: Detected loader lock ownership: rc=Unknown Status 22900 (0x5974) '\Device\HarddiskVolume6\Windows\System32\dciman32.dll'.
9416c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 22900 (was 22900) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\dciman32.dll' [rescheduled]
9516c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\shlwapi.dll'.
9616c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\shlwapi.dll' [rescheduled]
9716c.8d8: Detected loader lock ownership: rc=Unknown Status 22900 (0x5974) '\Device\HarddiskVolume6\Windows\System32\glu32.dll'.
9816c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 22900 (was 22900) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\glu32.dll' [rescheduled]
9916c.8d8: Detected loader lock ownership: rc=Unknown Status 22900 (0x5974) '\Device\HarddiskVolume6\Windows\System32\ddraw.dll'.
10016c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 22900 (was 22900) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\ddraw.dll' [rescheduled]
10116c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\mpr.dll'.
10216c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\mpr.dll' [rescheduled]
10316c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\shell32.dll'.
10416c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\shell32.dll' [rescheduled]
10516c.8d8: Detected loader lock ownership: rc=Unknown Status 24202 (0x5e8a) '\Device\HarddiskVolume6\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll'.
10616c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 24202 (was 24202) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Program Files\Oracle\VirtualBox\Qt5WidgetsVBox.dll' [rescheduled]
10716c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\combase.dll'.
10816c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\combase.dll' [rescheduled]
10916c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\cfgmgr32.dll'.
11016c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\cfgmgr32.dll' [rescheduled]
11116c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\gdi32.dll'.
11216c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\gdi32.dll' [rescheduled]
11316c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\devobj.dll'.
11416c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\devobj.dll' [rescheduled]
11516c.8d8: Detected loader lock ownership: rc=VINF_SUCCESS '\Device\HarddiskVolume6\Windows\System32\winmmbase.dll'.
11616c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=0 for '\Device\HarddiskVolume6\Windows\System32\winmmbase.dll' [rescheduled]
11716c.8d8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb73ef0000 'C:\Program Files\Oracle\VirtualBox\VirtualBoxVM.dll'
11816c.8d8: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffb7f1a0000 'C:\Windows\system32\rsaenh.dll'
11916c.8d8: supR3HardenedWinVerifyCacheProcessWvtTodos: 0 (was 0) fWinVerifyTrust=1 for '\Device\HarddiskVolume6\Program Files\Agnitum\Outpost Firewall Pro\WL_HOO~1.DLL'
120
121
122

© 2025 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy Automated Access Etiquette