가상 머신 ie9의 세션을 열 수 없습니다.
The virtual machine 'ie9' has terminated unexpectedly during startup with exit code -1073741819 (0xc0000005).
More details may be available in 'C:\Users\Lee\VirtualBox VMs\ie9\Logs\VBoxHardening.log'.
결과 코드: E_FAIL (0x80004005)
구성 요소: MachineWrap
인터페이스: IMachine {f30138d4-e5ea-4b3a-8858-a059de4c93fd}
-----log
310c.25f8: Log file opened: 5.0.22r108108 g_hStartupLog=0000000000000178 g_uNtVerCombined=0xa0295a00
310c.25f8: \SystemRoot\System32\ntdll.dll:
310c.25f8: CreationTime: 2016-05-11T02:09:15.747065100Z
310c.25f8: LastWriteTime: 2016-04-23T05:24:28.464629900Z
310c.25f8: ChangeTime: 2016-05-11T09:26:04.953578900Z
310c.25f8: FileAttributes: 0x20
310c.25f8: Size: 0x1bc248
310c.25f8: NT Headers: 0xe0
310c.25f8: Timestamp: 0x571af2eb
310c.25f8: Machine: 0x8664 - amd64
310c.25f8: Timestamp: 0x571af2eb
310c.25f8: Image Version: 10.0
310c.25f8: SizeOfImage: 0x1c1000 (1839104)
310c.25f8: Resource Dir: 0x159000 LB 0x66218
310c.25f8: ProductName: Microsoft® Windows® Operating System
310c.25f8: ProductVersion: 10.0.10586.306
310c.25f8: FileVersion: 10.0.10586.306 (th2_release_sec.160422-1850)
310c.25f8: FileDescription: NT Layer DLL
310c.25f8: \SystemRoot\System32\kernel32.dll:
310c.25f8: CreationTime: 2015-10-30T07:17:46.221743200Z
310c.25f8: LastWriteTime: 2015-10-30T07:17:46.221743200Z
310c.25f8: ChangeTime: 2016-01-01T09:36:49.948747500Z
310c.25f8: FileAttributes: 0x20
310c.25f8: Size: 0xac430
310c.25f8: NT Headers: 0xf0
310c.25f8: Timestamp: 0x5632d5aa
310c.25f8: Machine: 0x8664 - amd64
310c.25f8: Timestamp: 0x5632d5aa
310c.25f8: Image Version: 10.0
310c.25f8: SizeOfImage: 0xad000 (708608)
310c.25f8: Resource Dir: 0xab000 LB 0x528
310c.25f8: ProductName: Microsoft® Windows® Operating System
310c.25f8: ProductVersion: 10.0.10586.0
310c.25f8: FileVersion: 10.0.10586.0 (th2_release.151029-1700)
310c.25f8: FileDescription: Windows NT BASE API Client DLL
310c.25f8: \SystemRoot\System32\KernelBase.dll:
310c.25f8: CreationTime: 2016-05-11T02:08:46.864440400Z
310c.25f8: LastWriteTime: 2016-04-23T05:24:41.063286800Z
310c.25f8: ChangeTime: 2016-05-11T09:26:04.422272900Z
310c.25f8: FileAttributes: 0x20
310c.25f8: Size: 0x1e7a10
310c.25f8: NT Headers: 0xf0
310c.25f8: Timestamp: 0x571af331
310c.25f8: Machine: 0x8664 - amd64
310c.25f8: Timestamp: 0x571af331
310c.25f8: Image Version: 10.0
310c.25f8: SizeOfImage: 0x1e8000 (1998848)
310c.25f8: Resource Dir: 0x1d1000 LB 0x548
310c.25f8: ProductName: Microsoft® Windows® Operating System
310c.25f8: ProductVersion: 10.0.10586.306
310c.25f8: FileVersion: 10.0.10586.306 (th2_release_sec.160422-1850)
310c.25f8: FileDescription: Windows NT BASE API Client DLL
310c.25f8: \SystemRoot\System32\apisetschema.dll:
310c.25f8: CreationTime: 2015-10-30T07:17:57.502957900Z
310c.25f8: LastWriteTime: 2015-10-30T07:17:57.502957900Z
310c.25f8: ChangeTime: 2016-01-01T09:36:43.696042100Z
310c.25f8: FileAttributes: 0x20
310c.25f8: Size: 0x16d60
310c.25f8: NT Headers: 0xc8
310c.25f8: Timestamp: 0x5632d94c
310c.25f8: Machine: 0x8664 - amd64
310c.25f8: Timestamp: 0x5632d94c
310c.25f8: Image Version: 10.0
310c.25f8: SizeOfImage: 0x18000 (98304)
310c.25f8: Resource Dir: 0x17000 LB 0x400
310c.25f8: ProductName: Microsoft® Windows® Operating System
310c.25f8: ProductVersion: 10.0.10586.0
310c.25f8: FileVersion: 10.0.10586.0 (th2_release.151029-1700)
310c.25f8: FileDescription: ApiSet Schema DLL
310c.25f8: Found driver SysPlant (0x1)
310c.25f8: Found driver SymNetS (0x2)
310c.25f8: Found driver SRTSPX (0x2)
310c.25f8: Found driver SymEvent (0x2)
310c.25f8: Found driver SymIRON (0x2)
310c.25f8: supR3HardenedWinFindAdversaries: 0x3
310c.25f8: \SystemRoot\System32\drivers\SysPlant.sys:
310c.25f8: CreationTime: 2016-02-22T05:31:48.165131000Z
310c.25f8: LastWriteTime: 2016-02-22T05:31:48.165131000Z
310c.25f8: ChangeTime: 2016-02-22T05:56:23.997518000Z
310c.25f8: FileAttributes: 0x20
310c.25f8: Size: 0x29170
310c.25f8: NT Headers: 0xf0
310c.25f8: Timestamp: 0x55ba08b1
310c.25f8: Machine: 0x8664 - amd64
310c.25f8: Timestamp: 0x55ba08b1
310c.25f8: Image Version: 5.0
310c.25f8: SizeOfImage: 0x2f000 (192512)
310c.25f8: Resource Dir: 0x2d000 LB 0x498
310c.25f8: ProductName: Symantec CMC Firewall
310c.25f8: ProductVersion: 12.1.6318.6100
310c.25f8: FileVersion: 12.1.6318.6100
310c.25f8: FileDescription: Symantec CMC Firewall SysPlant
310c.25f8: \SystemRoot\System32\sysfer.dll:
310c.25f8: CreationTime: 2016-02-22T05:31:48.165131000Z
310c.25f8: LastWriteTime: 2016-02-22T05:31:48.165131000Z
310c.25f8: ChangeTime: 2016-02-22T05:31:48.165131000Z
310c.25f8: FileAttributes: 0x20
310c.25f8: Size: 0x72038
310c.25f8: NT Headers: 0xe8
310c.25f8: Timestamp: 0x55ba08bc
310c.25f8: Machine: 0x8664 - amd64
310c.25f8: Timestamp: 0x55ba08bc
310c.25f8: Image Version: 0.0
310c.25f8: SizeOfImage: 0x89000 (561152)
310c.25f8: Resource Dir: 0x87000 LB 0x630
310c.25f8: ProductName: Symantec CMC Firewall
310c.25f8: ProductVersion: 12.1.6318.6100
310c.25f8: FileVersion: 12.1.6318.6100
310c.25f8: FileDescription: Symantec CMC Firewall sysfer
310c.25f8: \SystemRoot\System32\drivers\symevent64x86.sys:
310c.25f8: CreationTime: 2016-02-22T05:31:56.143383700Z
310c.25f8: LastWriteTime: 2016-02-22T05:56:34.700764600Z
310c.25f8: ChangeTime: 2016-02-22T06:16:02.927981600Z
310c.25f8: FileAttributes: 0x20
310c.25f8: Size: 0x2b8d8
310c.25f8: NT Headers: 0xe8
310c.25f8: Timestamp: 0x54b87d44
310c.25f8: Machine: 0x8664 - amd64
310c.25f8: Timestamp: 0x54b87d44
310c.25f8: Image Version: 6.0
310c.25f8: SizeOfImage: 0x38000 (229376)
310c.25f8: Resource Dir: 0x36000 LB 0x3c8
310c.25f8: ProductName: SYMEVENT
310c.25f8: ProductVersion: 12.9.6.12
310c.25f8: FileVersion: 12.9.6.12
310c.25f8: FileDescription: Symantec Event Library
310c.25f8: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox'
310c.25f8: Calling main()
310c.25f8: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2
310c.25f8: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox'
310c.25f8: SUPR3HardenedMain: Respawn #1
310c.25f8: System32: \Device\HarddiskVolume3\Windows\System32
310c.25f8: WinSxS: \Device\HarddiskVolume3\Windows\WinSxS
310c.25f8: KnownDllPath: C:\WINDOWS\system32
310c.25f8: '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
310c.25f8: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe)
310c.25f8: supR3HardNtEnableThreadCreation:
310c.25f8: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ffd57dd6d50 pvNtTerminateThread=00007ffd57e05b30
310c.25f8: supR3HardenedWinDoReSpawn(1): New child 34d0.39b4 [kernel32].
310c.25f8: supR3HardNtChildGatherData: PebBaseAddress=0000000000501000 cbPeb=0x388
310c.25f8: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00007ffd57d60000 uNtDllChildAddr=00007ffd57d60000
310c.25f8: supR3HardenedWinSetupChildInit: uLdrInitThunk=00007ffd57dd6d50
310c.25f8: supR3HardenedWinSetupChildInit: Start child.
310c.25f8: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 1 ms.
310c.25f8: supR3HardNtChildPurify: Startup delay kludge #1/0: 516 ms, 60 sleeps
310c.25f8: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
310c.25f8: *0000000000000000-ffffffffffcdffff 0x0001/0x0000 0x0000000
310c.25f8: *0000000000320000-00000000002fffff 0x0004/0x0004 0x0020000
310c.25f8: *0000000000340000-000000000032afff 0x0002/0x0002 0x0040000
310c.25f8: 0000000000355000-0000000000349fff 0x0001/0x0000 0x0000000
310c.25f8: *0000000000360000-000000000035bfff 0x0002/0x0002 0x0040000
310c.25f8: 0000000000364000-0000000000357fff 0x0001/0x0000 0x0000000
310c.25f8: *0000000000370000-000000000036dfff 0x0004/0x0004 0x0020000
310c.25f8: 0000000000372000-0000000000353fff 0x0001/0x0000 0x0000000
310c.25f8: *0000000000390000-000000000038dfff 0x0040/0x0040 0x0020000 !!
310c.25f8: supHardNtVpFreeOrReplacePrivateExecMemory: Freeing exec mem at 0000000000390000 (LB 0x2000, 0000000000390000 LB 0x2000)
310c.25f8: supHardNtVpFreeOrReplacePrivateExecMemory: Free attempt #1 succeeded: 0x0 [0000000000390000/0000000000390000 LB 0/0x2000]
310c.25f8: supHardNtVpFreeOrReplacePrivateExecMemory: QVM after free 0: [0000000000000000]/0000000000390000 LB 0x70000 s=0x10000 ap=0x0 rp=0x00400100000001
310c.25f8: 0000000000392000-0000000000323fff 0x0001/0x0000 0x0000000
310c.25f8: *0000000000400000-00000000002fefff 0x0000/0x0004 0x0020000
310c.25f8: 0000000000501000-00000000004fdfff 0x0004/0x0004 0x0020000
310c.25f8: 0000000000504000-0000000000407fff 0x0000/0x0004 0x0020000
310c.25f8: *0000000000600000-0000000000504fff 0x0000/0x0004 0x0020000
310c.25f8: 00000000006fb000-00000000006f7fff 0x0104/0x0004 0x0020000
310c.25f8: 00000000006fe000-00000000006fbfff 0x0004/0x0004 0x0020000
310c.25f8: 0000000000700000-ffffffff80e1ffff 0x0001/0x0000 0x0000000
310c.25f8: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000
310c.25f8: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000
310c.25f8: 000000007fff0000-ffff800a2225ffff 0x0001/0x0000 0x0000000
310c.25f8: *00007ff6ddd80000-00007ff6ddd4cfff 0x0002/0x0002 0x0040000
310c.25f8: 00007ff6dddb3000-00007ff6dd7a5fff 0x0001/0x0000 0x0000000
310c.25f8: *00007ff6de3c0000-00007ff6de3c0fff 0x0040/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de3c1000-00007ff6de430fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de431000-00007ff6de431fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de432000-00007ff6de476fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de477000-00007ff6de477fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de478000-00007ff6de478fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de479000-00007ff6de47dfff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de47e000-00007ff6de47efff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de47f000-00007ff6de47ffff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de480000-00007ff6de483fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de484000-00007ff6de4cbfff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de4cc000-00007ff6de4c7fff 0x0001/0x0000 0x0000000
310c.25f8: *00007ff6de4d0000-00007ff6de4cefff 0x0040/0x0040 0x0020000 !!
310c.25f8: supHardNtVpFreeOrReplacePrivateExecMemory: Freeing exec mem at 00007ff6de4d0000 (LB 0x1000, 00007ff6de4d0000 LB 0x1000)
310c.25f8: supHardNtVpFreeOrReplacePrivateExecMemory: Free attempt #1 succeeded: 0x0 [00007ff6de4d0000/00007ff6de4d0000 LB 0/0x1000]
310c.25f8: supHardNtVpFreeOrReplacePrivateExecMemory: QVM after free 0: [0000000000000000]/00007ff6de4d0000 LB 0x679890000 s=0x10000 ap=0x0 rp=0x00400100000001
310c.25f8: 00007ff6de4d1000-00007ff064c41fff 0x0001/0x0000 0x0000000
310c.25f8: *00007ffd57d60000-00007ffd57d60fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57d61000-00007ffd57e5dfff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57e5e000-00007ffd57e9efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57e9f000-00007ffd57ea7fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57ea8000-00007ffd57eb4fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57eb5000-00007ffd57eb5fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57eb6000-00007ffd57eb8fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57eb9000-00007ffd57f20fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57f21000-00007ffaafe61fff 0x0001/0x0000 0x0000000
310c.25f8: *00007ffffffe0000-00007ffffffcffff 0x0001/0x0002 0x0020000
310c.25f8: VirtualBox.exe: timestamp 0x57629143 (rc=VINF_SUCCESS)
310c.25f8: '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
310c.25f8: VirtualBox.exe: Differences in section #0 (headers) between file and memory:
310c.25f8: 00007ff6de3c0172 / 0x0000172: 00 != 11
310c.25f8: 00007ff6de3c0174 / 0x0000174: 00 != 14
310c.25f8: Restored 0x400 bytes of original file content at 00007ff6de3c0000
310c.25f8: '\Device\HarddiskVolume3\Windows\System32\ntdll.dll' has no imports
310c.25f8: supR3HardNtChildPurify: cFixes=3 g_fSupAdversaries=0x3
310c.25f8: supR3HardNtChildPurify: Startup delay kludge #1/1: 517 ms, 59 sleeps
310c.25f8: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION
310c.25f8: *0000000000000000-ffffffffffcdffff 0x0001/0x0000 0x0000000
310c.25f8: *0000000000320000-00000000002fffff 0x0004/0x0004 0x0020000
310c.25f8: *0000000000340000-000000000032afff 0x0002/0x0002 0x0040000
310c.25f8: 0000000000355000-0000000000349fff 0x0001/0x0000 0x0000000
310c.25f8: *0000000000360000-000000000035bfff 0x0002/0x0002 0x0040000
310c.25f8: 0000000000364000-0000000000357fff 0x0001/0x0000 0x0000000
310c.25f8: *0000000000370000-000000000036dfff 0x0004/0x0004 0x0020000
310c.25f8: 0000000000372000-00000000002e3fff 0x0001/0x0000 0x0000000
310c.25f8: *0000000000400000-00000000002fefff 0x0000/0x0004 0x0020000
310c.25f8: 0000000000501000-00000000004fdfff 0x0004/0x0004 0x0020000
310c.25f8: 0000000000504000-0000000000407fff 0x0000/0x0004 0x0020000
310c.25f8: *0000000000600000-0000000000504fff 0x0000/0x0004 0x0020000
310c.25f8: 00000000006fb000-00000000006f7fff 0x0104/0x0004 0x0020000
310c.25f8: 00000000006fe000-00000000006fbfff 0x0004/0x0004 0x0020000
310c.25f8: 0000000000700000-ffffffff80e1ffff 0x0001/0x0000 0x0000000
310c.25f8: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000
310c.25f8: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000
310c.25f8: 000000007fff0000-ffff800a2225ffff 0x0001/0x0000 0x0000000
310c.25f8: *00007ff6ddd80000-00007ff6ddd4cfff 0x0002/0x0002 0x0040000
310c.25f8: 00007ff6dddb3000-00007ff6dd7a5fff 0x0001/0x0000 0x0000000
310c.25f8: *00007ff6de3c0000-00007ff6de3c0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de3c1000-00007ff6de430fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de431000-00007ff6de431fff 0x0040/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de432000-00007ff6de476fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de477000-00007ff6de483fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de484000-00007ff6de4cbfff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: 00007ff6de4cc000-00007ff064c37fff 0x0001/0x0000 0x0000000
310c.25f8: *00007ffd57d60000-00007ffd57d60fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57d61000-00007ffd57e5dfff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57e5e000-00007ffd57e9efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57e9f000-00007ffd57ea2fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57ea3000-00007ffd57ea7fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57ea8000-00007ffd57eb4fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57eb5000-00007ffd57eb5fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57eb6000-00007ffd57eb8fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57eb9000-00007ffd57f20fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume3\Windows\System32\ntdll.dll
310c.25f8: 00007ffd57f21000-00007ffaafe61fff 0x0001/0x0000 0x0000000
310c.25f8: *00007ffffffe0000-00007ffffffcffff 0x0001/0x0002 0x0020000
310c.25f8: supR3HardNtChildPurify: Done after 2520 ms and 3 fixes (loop #1).
34d0.39b4: Log file opened: 5.0.22r108108 g_hStartupLog=0000000000000004 g_uNtVerCombined=0xa0295a00
310c.25f8: supR3HardNtEnableThreadCreation:
34d0.39b4: supR3HardenedVmProcessInit: uNtDllAddr=00007ffd57d60000 g_uNtVerCombined=0xa0295a00
34d0.39b4: ntdll.dll: timestamp 0x571af2eb (rc=VINF_SUCCESS)
34d0.39b4: New simple heap: #1 0000000000800000 LB 0x400000 (for 1839104 allocation)
34d0.39b4: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox'
34d0.39b4: System32: \Device\HarddiskVolume3\Windows\System32
34d0.39b4: WinSxS: \Device\HarddiskVolume3\Windows\WinSxS
34d0.39b4: KnownDllPath: C:\WINDOWS\system32
34d0.39b4: supR3HardenedVmProcessInit: Opening vboxdrv stub...
34d0.39b4: supR3HardenedVmProcessInit: Restoring LdrInitializeThunk...
34d0.39b4: supR3HardenedVmProcessInit: Returning to LdrInitializeThunk...
34d0.39b4: Registered Dll notification callback with NTDLL.
34d0.39b4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\kernel32.dll)
34d0.39b4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\kernel32.dll
34d0.39b4: supR3HardenedMonitor_LdrLoadDll: pName=C:\WINDOWS\system32\KERNEL32.DLL (Input=KERNEL32.DLL, rcNtResolve=0xc0150008) *pfFlags=0xffffffff pwszSearchPath=0000000000000801:<flags> [calling]
34d0.39b4: supR3HardenedDllNotificationCallback: load 00007ffd54ec0000 LB 0x001e8000 C:\WINDOWS\system32\KERNELBASE.dll [fFlags=0x0]
34d0.39b4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Windows\System32\KernelBase.dll)
34d0.39b4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Windows\System32\KernelBase.dll
34d0.39b4: supR3HardenedDllNotificationCallback: load 00007ffd57810000 LB 0x000ad000 C:\WINDOWS\system32\KERNEL32.DLL [fFlags=0x0]
34d0.39b4: supR3HardenedScreenImage/LdrLoadDll: cache hit (VINF_SUCCESS) on \Device\HarddiskVolume3\Windows\System32\kernel32.dll [lacks WinVerifyTrust]
34d0.39b4: supR3HardenedMonitor_LdrLoadDll: returns rcNt=0x0 hMod=00007ffd57810000 'C:\WINDOWS\system32\KERNEL32.DLL'
34d0.39b4: supR3HardenedDllNotificationCallback: load 00007ff6de3c0000 LB 0x0010c000 C:\Program Files\Oracle\VirtualBox\VirtualBox.exe [fFlags=0x0]
34d0.39b4: '\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports
34d0.39b4: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe)
34d0.39b4: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume3\Program Files\Oracle\VirtualBox\VirtualBox.exe
310c.25f8: supR3HardNtChildWaitFor[1]: Quitting: ExitCode=0xc0000005 (rcNtWait=0x0, rcNt1=0x0, rcNt2=0x103, rcNt3=0x103, 208 ms, CloseEvents);
http://www.kernelmode.info/forum/viewtopic.php?f=11&t=3478