Page 1 of 1
error in supR3HardenedWinReSpawn
Posted: 9. Feb 2021, 13:22
by hyf
where supR3HardenedWinReSpawn what:5 VERR_INVALID_NAME(-104) - Invalid (malformed) file/path name.
Re: error in supR3HardenedWinReSpawn
Posted: 9. Feb 2021, 13:26
by hyf
Used IBM Trusteer guide to shutdown cerebellum
what does this mean?
Re: error in supR3HardenedWinReSpawn
Posted: 9. Feb 2021, 15:15
by mpack
VBoxHardening.log wrote:
565c.a24: kernel32.dll: Differences in section #2 (.rdata) between file and memory:
565c.a24: 00007ffe889690e0 / 0x00790e0: d0 != 20
The hardening log contains many examples like the above, I've only quoted one example.
What it means is that your PC has been hacked. Possibly by a theme engine or some kind of AV rather than by malware.
There also seems to be some kind of signing error with "\Device\HarddiskVolume5\Windows\System32\SogouTSF.ime".
\Device\HarddiskVolume5\Windows\System32\SogouTSF.ime: None of the 1 path(s) have a trust anchor.: \Device\HarddiskVolume5\Windows\System32\SogouTSF.ime
459c.2a84: supR3HardenedWinVerifyCacheInsert: \Device\HarddiskVolume5\Windows\System32\SogouTSF.ime
FAQ: Diagnosing VirtualBox Hardening Issues.
Re: error in supR3HardenedWinReSpawn
Posted: 10. Feb 2021, 05:22
by hyf
i cannot delete this file. Could you tell me what to do?
Re: error in supR3HardenedWinReSpawn
Posted: 10. Feb 2021, 08:29
by BillG
Did you search that file name on the Internet? There are a few references - it seems to be harmless.
Re: error in supR3HardenedWinReSpawn
Posted: 10. Feb 2021, 09:13
by hyf
after searching i still don't know what it is. so what should i do
Re: error in supR3HardenedWinReSpawn
Posted: 10. Feb 2021, 10:34
by mpack
Read the FAQ. You need to get rid of whatever has resulted in those hacks recorded in the log. There's no way for us to know what you have installed, so we can't give you detailed instructions. If it's pervasive (affects all other apps) and not native to Windows 10, then it's a candidate for removal.