TheDoc

Members

View Profile See their activity

Posts
2
Joined
November 10, 2022
Last visited
November 10, 2022

Content Type

All Activity

Forums

Topics
Posts

Everything posted by TheDoc

KVRT: Can't load driver: Windows 10 Enterprise:

TheDoc posted a topic in Kaspersky Virus Removal Tool

Hello, I get the error message "Can't load driver" with the actual KVRT 2020. It woould be nice to get some help. Thank you in advance! Trace: KVRT...log: AVP TRACE FILE Time: 10.11.2022 10:43:30.215 PID: 25936 (0x6550) 10:43:30.209 0x5244 INF alloc: Use allocator 0x2b0ef18 and tag <KVRT root> in 0x49c07a0 10:43:30.209 0x5244 INF alloc: Use allocator factory 0x49c0a50 and tag <KVRT> in 0x49c0a68 10:43:30.209 0x5244 INF kvrt: klmd: KLMD driver object 0x48df564 was created 10:43:30.209 0x5244 INF kvrt: klsl: KLSL driver object 0x48df650 was created 10:43:30.210 0x5244 INF vrt: lang: System default language is English 10:43:30.210 0x5244 INF kvrt: cmdline: App type is <Product>, default language is <English> 10:43:30.211 0x5244 INF kvrt: cmdline: Language is <English> 10:43:30.211 0x5244 INF vrt: env: Begin expanding environment var <C:\KVRT2020_Data> 10:43:30.211 0x5244 INF vrt: env: Expand <C:\KVRT2020_Data> into <C:\KVRT2020_Data> 10:43:30.211 0x5244 INF vrt: bl: Path <C:\KVRT2020_Data> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.211 0x5244 INF vrt: fshlp: Make secure directory <C:\KVRT2020_Data> accessFlag = 1 10:43:30.212 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.212 0x5244 INF vrt: fshlp: Security information bit mask 0x4 10:43:30.212 0x5244 INF vrt: secDesc: SecurityDescriptor is equal 10:43:30.212 0x5244 INF vrt: bl: Path <C:\KVRT2020_Data\Traces> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.212 0x5244 INF vrt: fshlp: Make secure directory <C:\KVRT2020_Data\Traces> accessFlag = 0 10:43:30.212 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Traces> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.212 0x5244 INF vrt: fshlp: Security information bit mask 0x4 10:43:30.212 0x5244 INF vrt: secDesc: SecurityDescriptor is equal 10:43:30.212 0x5244 INF vrt: bl: Path <C:\KVRT2020_Data\Quarantine> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.212 0x5244 INF vrt: fshlp: Make secure directory <C:\KVRT2020_Data\Quarantine> accessFlag = 0 10:43:30.213 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Quarantine> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.213 0x5244 INF vrt: fshlp: Security information bit mask 0x4 10:43:30.213 0x5244 INF vrt: secDesc: SecurityDescriptor is equal 10:43:30.213 0x5244 INF vrt: bl: Path <C:\KVRT2020_Data\Reports> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.213 0x5244 INF vrt: fshlp: Make secure directory <C:\KVRT2020_Data\Reports> accessFlag = 0 10:43:30.213 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Reports> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.213 0x5244 INF vrt: fshlp: Security information bit mask 0x4 10:43:30.213 0x5244 INF vrt: secDesc: SecurityDescriptor is equal 10:43:30.213 0x5244 INF vrt: bl: Mod directory <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}> 10:43:30.213 0x5244 INF vrt: bl: Path <C:\KVRT2020_Data\Temp> , isExists 0, isFolder 0, bSymlink 0, bLocal 1 10:43:30.213 0x5244 INF vrt: fshlp: Make secure directory <C:\KVRT2020_Data\Temp> accessFlag = 0 10:43:30.213 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Temp> , isExists 0, isFolder 0, bSymlink 0, bLocal 1 10:43:30.213 0x5244 INF vrt: fshlp: Create secure directory <C:\KVRT2020_Data\Temp> accessFlag = 0 10:43:30.213 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Temp> , isExists 0, isFolder 0, bSymlink 0, bLocal 1 10:43:30.214 0x5244 INF vrt: bl: Path <C:\KVRT2020_Data\Anomalies> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.214 0x5244 INF vrt: fshlp: Make secure directory <C:\KVRT2020_Data\Anomalies> accessFlag = 1 10:43:30.214 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Anomalies> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.214 0x5244 INF vrt: fshlp: Security information bit mask 0x4 10:43:30.214 0x5244 INF vrt: secDesc: SecurityDescriptor is equal 10:43:30.215 0x5244 INF vrt: bl: ============================================================ 10:43:30.215 0x5244 INF vrt: bl: Product version: Kaspersky Virus Removal Tool 20.0.10.0 10:43:30.215 0x5244 INF vrt: bl: Compilation date: Oct 25 2021 16:21:50 10:43:30.215 0x5244 INF vrt: bl: Scan type: Active OS 10:43:30.215 0x5244 INF vrt: bl: Command line: I:/temp/{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}/\9ec603af.exe -trace -dontencrypt 10:43:30.215 0x5244 INF vrt: bl: Product folder: "C:\KVRT2020_Data" 10:43:30.215 0x5244 INF vrt: bl: Mod folder: "I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}" 10:43:30.215 0x5244 INF vrt: bl: Trace level: 700 10:43:30.215 0x5244 INF vrt: bl: ============================================================ 10:43:30.215 0x5244 INF vrt: sysinfo: Current local date / time: 2022/11/10 10:43:30.0215 10:43:30.215 0x5244 INF vrt: sysinfo: SystemInfo: 10:43:30.215 0x5244 INF vrt: sysinfo: 10:43:30.215 0x5244 INF vrt: sysinfo: OS Version: Windows 10 10:43:30.215 0x5244 INF vrt: sysinfo: OS build: 10.0.19045.2251 10:43:30.215 0x5244 INF vrt: sysinfo: OS bitness: x64 10:43:30.215 0x5244 INF vrt: sysinfo: OS ServicePack: empty 10:43:30.215 0x5244 INF vrt: sysinfo: OS Wow64: enabled 10:43:30.215 0x5244 INF vrt: sysinfo: OS KMCI: disabled 10:43:30.217 0x5244 INF vrt: sysinfo: Windows directory: C:\WINDOWS 10:43:30.217 0x5244 INF vrt: sysinfo: System windows directory: C:\WINDOWS 10:43:30.217 0x5244 INF vrt: sysinfo: Number of processors: 32 10:43:30.217 0x5244 INF vrt: sysinfo: Page size: 4096 10:43:30.218 0x5244 INF vrt: sysinfo: Boot type: Normal boot 10:43:30.218 0x5244 INF kvrt: bl: ============================================================ 10:43:30.218 0x5244 INF kvrt: bl: Drop KVRT cleanup script 10:43:30.219 0x5244 INF vrt: fshlp: Create secure directory <I:/temp/{7929329b-4bd1-471b-8bc7-f0785c8c4858}/> accessFlag = 0 10:43:30.219 0x5244 INF vrt: fshlp: Path <I:/temp/{7929329b-4bd1-471b-8bc7-f0785c8c4858}/> , isExists 0, isFolder 0, bSymlink 0, bLocal 1 10:43:30.219 0x5244 INF Folder deleter: Folder <I:\temp\{7929329b-4bd1-471b-8bc7-f0785c8c4858}> has been added in list 10:43:30.219 0x5244 INF vrt: env: Begin expanding environment var <%KLIF_DEVICE_NAME%> 10:43:30.219 0x5244 WRN vrt: env: Var <%KLIF_DEVICE_NAME%> is not found 10:43:30.219 0x5244 INF vrt: env: Expand <%KLIF_DEVICE_NAME%> into <%KLIF_DEVICE_NAME%> 10:43:30.219 0x5244 WRN kvrt: bl: Error query klif name with status 0x8000004c 10:43:30.219 0x5244 INF vrt: fshlp: File <I:\temp\{7929329b-4bd1-471b-8bc7-f0785c8c4858}\0c73b130-a541-4da2-a3ac-3635aa629066.cmd> has been created 10:43:30.219 0x5244 INF kvrt: reg winapi: Registry key <0x80000002, SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce> is opened as <0x23c> 10:43:30.219 0x5244 INF kvrt: reg winapi: Registry value <0c73b130-a541-4da2-a3ac-3635aa629066> of key <0x23c, SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce> was set (b2 bytes) 10:43:30.219 0x5244 INF kvrt: bl: Value <HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\0c73b130-a541-4da2-a3ac-3635aa629066> has been written with data <"I:\temp\{7929329b-4bd1-471b-8bc7-f0785c8c4858}\0c73b130-a541-4da2-a3ac-3635aa629066.cmd"> 10:43:30.219 0x5244 INF Folder deleter: Folder <I:\temp\{7929329b-4bd1-471b-8bc7-f0785c8c4858}> has been removed from list 10:43:30.219 0x5244 INF kvrt: reg winapi: Registry key <0x80000002, SOFTWARE> is opened as <0x23c> 10:43:30.219 0x5244 INF kvrt: reg winapi: Registry key <0x23c, KasperskyLab\Binaries\KVRT2020> is created as <0x244> 10:43:30.220 0x5244 INF kvrt: reg winapi: Registry value <kldw.exe> of key <0x244, KasperskyLab\Binaries\KVRT2020> was set (70 bytes) 10:43:30.220 0x5244 INF kvrt: bl: KLDW is setuped 10:43:30.222 0x5244 INF vrt: dw: Module <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}\dumpwriter.dll> has been loaded at 0x0x6c3a0000 10:43:30.223 0x5244 INF vrt: dw: Module <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}\dbghelp.dll> has been loaded at 0x0x66230000 10:43:30.223 0x5244 INF vrt: dw: Dump writer has been initialized successfully 10:43:30.223 0x5244 INF kvrt: bl: Creating kvrt clients logic... 10:43:30.223 0x5244 INF kvrt: bl: kvrt clients logic has been created 10:43:30.236 0x5244 INF kvrt: bl gui: GuiClientFactory: Verify 10:43:30.236 0x5244 INF kvrt: bl gui: GuiClientFactory: Init 10:43:30.236 0x5244 INF kvrt: bl gui: GuiClientFactory: GetInitializationClient 10:43:30.236 0x5244 INF kvrt: bl gui: compver: 20.0.10.0 32-bit (Oct 25 2021 16:18:14) 10:43:30.236 0x3304 INF kvrt: bl gui: qt thread start 10:43:30.236 0x3304 INF kvrt: bl gui: guiThread begin 10:43:30.260 0x3304 INF kvrt: bl gui: guiThread: Application font name "Tahoma", size 9 10:43:30.260 0x3304 INF kvrt: bl gui: guiThread: Create MainDlg 10:43:31.033 0x3304 INF kvrt: bl gui: Graphics info: 10:43:31.033 0x3304 INF kvrt: bl gui: 10:43:31.033 0x3304 INF kvrt: bl gui: 1. * pixelRatio = 100%, dpi = 96, geom = 3840x2160, scalingFactor = 100% 10:43:31.033 0x3304 INF kvrt: bl gui: 2. pixelRatio = 100%, dpi = 96, geom = 1920x1080, scalingFactor = 100% 10:43:31.033 0x3304 INF kvrt: bl gui: 3. pixelRatio = 100%, dpi = 96, geom = 1920x1080, scalingFactor = 100% 10:43:31.033 0x3304 INF kvrt: bl gui: 4. pixelRatio = 100%, dpi = 96, geom = 1920x1080, scalingFactor = 100% 10:43:31.034 0x3304 INF kvrt: bl gui: 5. pixelRatio = 100%, dpi = 96, geom = 1920x1080, scalingFactor = 100% 10:43:31.034 0x3304 INF kvrt: bl gui: 6. pixelRatio = 100%, dpi = 96, geom = 1920x1080, scalingFactor = 100% 10:43:31.034 0x3304 INF kvrt: bl gui: 7. pixelRatio = 100%, dpi = 96, geom = 1920x1080, scalingFactor = 100% 10:43:31.034 0x3304 INF kvrt: bl gui: textScalingFactor = 100% 10:43:31.034 0x3304 INF kvrt: bl gui: 10:43:31.034 0x3304 INF kvrt: bl gui: qt thread init 10:43:31.034 0x5244 INF vrt: clients: Module init client has been initialized successfully 10:43:31.034 0x5244 INF vrt: clients: Module <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}\KvrtGui.dll> init client has been initialized 10:43:31.034 0x5244 INF vrt: bl: Init client has been initialized 10:43:31.034 0x3304 INF kvrt: bl gui: qt thread starting 10:43:31.034 0x3304 INF kvrt: bl gui: qt thread continues 10:43:31.064 0x5244 INF vrt: win env: Begin expanding environment var <%ProgramData%> 10:43:31.064 0x5244 INF vrt: win env: Var <%ProgramData%> -> <C:\ProgramData> 10:43:31.064 0x5244 INF vrt: env: Var <ProgramData> was setuped in <C:\ProgramData> 10:43:31.064 0x5244 INF vrt: win env: Begin expanding environment var <%ProgramFiles%> 10:43:31.064 0x5244 INF vrt: win env: Var <%ProgramFiles%> -> <C:\Program Files (x86)> 10:43:31.064 0x5244 INF vrt: env: Var <ProgramFiles> was setuped in <C:\Program Files (x86)> 10:43:31.064 0x5244 INF vrt: win env: Begin expanding environment var <%ProgramFiles(x86)%> 10:43:31.064 0x5244 INF vrt: win env: Var <%ProgramFiles(x86)%> -> <C:\Program Files (x86)> 10:43:31.064 0x5244 INF vrt: env: Var <ProgramFiles(x86)> was setuped in <C:\Program Files (x86)> 10:43:31.064 0x5244 INF vrt: win env: Begin expanding environment var <%ProgramW6432%> 10:43:31.064 0x5244 INF vrt: win env: Var <%ProgramW6432%> -> <C:\Program Files> 10:43:31.064 0x5244 INF vrt: env: Var <ProgramW6432> was setuped in <C:\Program Files> 10:43:31.064 0x5244 INF vrt: win env: Begin expanding environment var <%SystemDrive%> 10:43:31.064 0x5244 INF vrt: win env: Var <%SystemDrive%> -> <C:> 10:43:31.064 0x5244 INF vrt: env: Var <SystemDrive> was setuped in <C:> 10:43:31.064 0x5244 INF vrt: win env: Begin expanding environment var <%SystemRoot%> 10:43:31.064 0x5244 INF vrt: win env: Var <%SystemRoot%> -> <C:\WINDOWS> 10:43:31.065 0x5244 INF vrt: env: Var <SystemRoot> was setuped in <C:\WINDOWS> 10:43:31.065 0x5244 INF vrt: win env: Begin expanding environment var <%windir%> 10:43:31.065 0x5244 INF vrt: win env: Var <%windir%> -> <C:\WINDOWS> 10:43:31.065 0x5244 INF vrt: env: Var <windir> was setuped in <C:\WINDOWS> 10:43:31.065 0x5244 INF vrt: env: Var <TEMP> was setuped in <C:\KVRT2020_Data\Temp> 10:43:31.065 0x5244 INF vrt: bl: Generated PCID: {1CF27FB1-1091-D240-A514-1878A67CB5E0} 10:43:31.065 0x5244 INF vrt: env: Var <PCID> was setuped in <{1CF27FB1-1091-D240-A514-1878A67CB5E0}> 10:43:31.065 0x5244 INF vrt: env: Var <ProductType> was setuped in <kvrt> 10:43:31.065 0x5244 INF vrt: env: Var <ProductVersion> was setuped in <20.0.10.0> 10:43:31.065 0x5244 INF vrt: env: Var <ProductTypeNumKsn> was setuped in <51> 10:43:31.065 0x5244 INF vrt: env: Var <Localization> was setuped in <en> 10:43:31.065 0x5244 INF vrt: env: Var <Bases> was setuped in <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}\Bases> 10:43:31.065 0x5244 INF vrt: env: Var <BaseFolder> was setuped in <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}\Bases> 10:43:31.065 0x5244 INF vrt: env: Var <Data> was setuped in <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}> 10:43:31.065 0x5244 INF vrt: env: Var <DataRoot> was setuped in <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}> 10:43:31.065 0x5244 INF vrt: env: Var <ProductRoot> was setuped in <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}> 10:43:31.065 0x5244 INF vrt: env: Var <TraceRoot> was setuped in <C:\KVRT2020_Data\Traces> 10:43:31.065 0x5244 INF vrt: env: Var <DumpRoot> was setuped in <C:\KVRT2020_Data\Traces> 10:43:31.065 0x5244 INF vrt: env: Var <KsnConfigPackedFileName> was setuped in <ksn_kvrt20.xms> 10:43:31.065 0x5244 INF vrt: env: Var <KvrtPersistentDataRoot> was setuped in <C:\KVRT2020_Data> 10:43:31.069 0x5244 INF vrt: env: Begin expanding environment var <%PCID%> 10:43:31.069 0x5244 INF vrt: env: Var <%PCID%> -> <{1CF27FB1-1091-D240-A514-1878A67CB5E0}> 10:43:31.069 0x5244 INF vrt: env: Expand <%PCID%> into <{1CF27FB1-1091-D240-A514-1878A67CB5E0}> 10:43:31.071 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Legal notices> is directory 10:43:31.071 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Legal notices> is deleted 10:43:31.071 0x5244 INF vrt: bl: Folder <C:\KVRT2020_Data\Legal notices> is created 10:43:31.073 0x5244 INF kvrt: bl gui: LegalNotices was dropped 10:43:36.191 0x3304 INF kvrt: bl gui: qt thread continues 10:43:36.191 0x5244 INF vrt: bl: EULA was accepted 10:43:36.192 0x5244 INF kvrt: klmd: Initializing KLMD... 10:43:36.192 0x5244 INF vrt: env: Begin expanding environment var <%SystemRoot%\System32\Drivers> 10:43:36.192 0x5244 INF vrt: env: Var <%SystemRoot%> -> <C:\WINDOWS> 10:43:36.192 0x5244 INF vrt: env: Expand <%SystemRoot%\System32\Drivers> into <C:\WINDOWS\System32\Drivers> 10:43:36.192 0x5244 INF kvrt: klmd: Getting KLMD driver body from <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}\klmd.sys>... 10:43:36.192 0x5244 INF vrt: fshlp: File <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}\klmd.sys> has been read 10:43:36.192 0x5244 INF kvrt: klmd: KLMD drive body has size 299544 bytes 10:43:36.192 0x5244 INF vrt: env: Begin expanding environment var <%PCID%> 10:43:36.192 0x5244 INF vrt: env: Var <%PCID%> -> <{1CF27FB1-1091-D240-A514-1878A67CB5E0}> 10:43:36.192 0x5244 INF vrt: env: Expand <%PCID%> into <{1CF27FB1-1091-D240-A514-1878A67CB5E0}> 10:43:36.192 0x5244 INF kvrt: drv: Driver ID for service <klmd> is <0xe34ffe8e> 10:43:36.192 0x5244 INF kvrt: srv reg: Reg API service manager 0x49cb690 was created 10:43:36.192 0x5244 INF kvrt: drv: Service file <C:\WINDOWS\System32\Drivers\e34ffe8e.sys> is exist 10:43:36.192 0x5244 INF kvrt: reg winapi: Registry key <0x80000002, SYSTEM\Select> is opened as <0x404> 10:43:36.192 0x5244 INF kvrt: reg winapi: Registry value <Current> of key <0x404, SYSTEM\Select> was get (4 bytes) 10:43:36.192 0x5244 INF kvrt: srv reg: Reg API service 0x49c0d98 was created 10:43:36.192 0x5244 WRN kvrt: reg winapi: Can't open registry key <0x80000002, SYSTEM\ControlSet001\Services\e34ffe8e> with error 0x80010102 (native error 0x2) 10:43:36.192 0x5244 WRN kvrt: reg winapi: Can't open key <0x80000002, SYSTEM\ControlSet001\Services\e34ffe8e> with error 0x80010102 10:43:36.192 0x5244 WRN kvrt: srv reg: Can't get registry key for service <e34ffe8e> with error 0x80010102 10:43:36.192 0x5244 WRN kvrt: srv reg: Can't open service <e34ffe8e> with error 0x80010102 10:43:36.192 0x5244 INF kvrt: srv reg: Reg API service 0x49c0d98 was destroyed 10:43:36.192 0x5244 INF kvrt: drv: Service <e34ffe8e> is absent 10:43:36.192 0x5244 INF kvrt: srv: Checking status of driver <\SystemRoot\System32\Drivers\e34ffe8e.sys>... 10:43:36.193 0x5244 INF kvrt: srv: Driver <C:\WINDOWS\System32\Drivers\e34ffe8e.sys> status is <Running> 10:43:36.193 0x5244 INF kvrt: drv: Driver <e34ffe8e> is loaded 10:43:36.193 0x5244 INF kvrt: srv reg: Reg API service manager 0x49cb690 was destroyed 10:43:36.193 0x5244 INF kvrt: drv: Random name for service <klmd> is <e34ffe8e> 10:43:36.193 0x5244 INF kvrt: drv: Current driver <e34ffe8e> installation status: 10:43:36.193 0x5244 INF kvrt: drv: File is installed 10:43:36.193 0x5244 INF kvrt: drv: Service isn't installed 10:43:36.193 0x5244 INF kvrt: drv: Driver is loaded 10:43:36.193 0x5244 INF kvrt: drv: Driver object 0x49c08f8 was created 10:43:36.193 0x5244 INF kvrt: srv reg: Reg API service manager 0x49cb6e0 was created 10:43:36.193 0x5244 INF kvrt: drv: Installing driver <e34ffe8e>... 10:43:36.193 0x5244 INF kvrt: drv: Creating new driver service <e34ffe8e>... 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry key <0x80000002, SYSTEM\Select> is opened as <0x404> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <Current> of key <0x404, SYSTEM\Select> was get (4 bytes) 10:43:36.193 0x5244 INF kvrt: srv reg: Reg API service 0x49c0e10 was created 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry key <0x80000002, SYSTEM\ControlSet001\Services> is opened as <0x404> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry key <0x404, e34ffe8e> is created as <0x4bc> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <ImagePath> of key <0x4bc, e34ffe8e> was set (3c bytes) 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <Type> of key <0x4bc, e34ffe8e> was set (4 bytes) 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <Start> of key <0x4bc, e34ffe8e> was set (4 bytes) 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <ErrorControl> of key <0x4bc, e34ffe8e> was set (4 bytes) 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <Tag> of key <0x4bc, e34ffe8e> was set (4 bytes) 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <Group> of key <0x4bc, e34ffe8e> was set (24 bytes) 10:43:36.193 0x5244 INF kvrt: srv reg: Activating SafeBoot for service <e34ffe8e> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry key <0x80000002, System\CurrentControlSet\Control\SafeBoot\Minimal> is opened as <0x4bc> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry key <0x4bc, e34ffe8e.sys> is created as <0x404> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <(null)> of key <0x404, e34ffe8e.sys> was set (e bytes) 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry key <0x80000002, System\CurrentControlSet\Control\SafeBoot\Network> is opened as <0x404> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry key <0x404, e34ffe8e.sys> is created as <0x4bc> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <(null)> of key <0x4bc, e34ffe8e.sys> was set (e bytes) 10:43:36.193 0x5244 INF kvrt: srv reg: Service <e34ffe8e> with <System32\Drivers\e34ffe8e.sys> was created by 0x49c0e10 10:43:36.193 0x5244 INF kvrt: drv: Driver service <e34ffe8e> has been installed successfully 10:43:36.193 0x5244 INF kvrt: drv: Driver <e34ffe8e> has been installed successfully 10:43:36.193 0x5244 INF kvrt: klmd: KLMD has been installed and loaded successfully 10:43:36.193 0x5244 INF kvrt: klmd: Connected to ARK device <\\.\e34ffe8ea> 10:43:36.194 0x5244 ERR kvrt: klmd: Can't complete thread authorization with error 0x800700a1 (native error 0xa1) 10:43:36.194 0x5244 ERR kvrt: bl: Can't authorize current thread to KLMD with error 0x800700a1 10:43:36.194 0x5244 ERR kvrt: bl: KLMD phase 1 init has been failed with error 0x800700a1
- November 10, 2022
- 1 reply
Error 'can't load driver' Windows 11 Pro PE KVRT.EXE 2020 version

TheDoc replied to Support_PC's topic in Kaspersky Virus Removal Tool

Hello I have the same Problem on Windows 10 22H2, it woould be nice to get some help. Thank you in advance! Trace: KVRT...log: AVP TRACE FILE Time: 10.11.2022 10:43:30.215 PID: 25936 (0x6550) 10:43:30.209 0x5244 INF alloc: Use allocator 0x2b0ef18 and tag <KVRT root> in 0x49c07a0 10:43:30.209 0x5244 INF alloc: Use allocator factory 0x49c0a50 and tag <KVRT> in 0x49c0a68 10:43:30.209 0x5244 INF kvrt: klmd: KLMD driver object 0x48df564 was created 10:43:30.209 0x5244 INF kvrt: klsl: KLSL driver object 0x48df650 was created 10:43:30.210 0x5244 INF vrt: lang: System default language is English 10:43:30.210 0x5244 INF kvrt: cmdline: App type is <Product>, default language is <English> 10:43:30.211 0x5244 INF kvrt: cmdline: Language is <English> 10:43:30.211 0x5244 INF vrt: env: Begin expanding environment var <C:\KVRT2020_Data> 10:43:30.211 0x5244 INF vrt: env: Expand <C:\KVRT2020_Data> into <C:\KVRT2020_Data> 10:43:30.211 0x5244 INF vrt: bl: Path <C:\KVRT2020_Data> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.211 0x5244 INF vrt: fshlp: Make secure directory <C:\KVRT2020_Data> accessFlag = 1 10:43:30.212 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.212 0x5244 INF vrt: fshlp: Security information bit mask 0x4 10:43:30.212 0x5244 INF vrt: secDesc: SecurityDescriptor is equal 10:43:30.212 0x5244 INF vrt: bl: Path <C:\KVRT2020_Data\Traces> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.212 0x5244 INF vrt: fshlp: Make secure directory <C:\KVRT2020_Data\Traces> accessFlag = 0 10:43:30.212 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Traces> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.212 0x5244 INF vrt: fshlp: Security information bit mask 0x4 10:43:30.212 0x5244 INF vrt: secDesc: SecurityDescriptor is equal 10:43:30.212 0x5244 INF vrt: bl: Path <C:\KVRT2020_Data\Quarantine> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.212 0x5244 INF vrt: fshlp: Make secure directory <C:\KVRT2020_Data\Quarantine> accessFlag = 0 10:43:30.213 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Quarantine> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.213 0x5244 INF vrt: fshlp: Security information bit mask 0x4 10:43:30.213 0x5244 INF vrt: secDesc: SecurityDescriptor is equal 10:43:30.213 0x5244 INF vrt: bl: Path <C:\KVRT2020_Data\Reports> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.213 0x5244 INF vrt: fshlp: Make secure directory <C:\KVRT2020_Data\Reports> accessFlag = 0 10:43:30.213 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Reports> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.213 0x5244 INF vrt: fshlp: Security information bit mask 0x4 10:43:30.213 0x5244 INF vrt: secDesc: SecurityDescriptor is equal 10:43:30.213 0x5244 INF vrt: bl: Mod directory <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}> 10:43:30.213 0x5244 INF vrt: bl: Path <C:\KVRT2020_Data\Temp> , isExists 0, isFolder 0, bSymlink 0, bLocal 1 10:43:30.213 0x5244 INF vrt: fshlp: Make secure directory <C:\KVRT2020_Data\Temp> accessFlag = 0 10:43:30.213 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Temp> , isExists 0, isFolder 0, bSymlink 0, bLocal 1 10:43:30.213 0x5244 INF vrt: fshlp: Create secure directory <C:\KVRT2020_Data\Temp> accessFlag = 0 10:43:30.213 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Temp> , isExists 0, isFolder 0, bSymlink 0, bLocal 1 10:43:30.214 0x5244 INF vrt: bl: Path <C:\KVRT2020_Data\Anomalies> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.214 0x5244 INF vrt: fshlp: Make secure directory <C:\KVRT2020_Data\Anomalies> accessFlag = 1 10:43:30.214 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Anomalies> , isExists 1, isFolder 1, bSymlink 0, bLocal 1 10:43:30.214 0x5244 INF vrt: fshlp: Security information bit mask 0x4 10:43:30.214 0x5244 INF vrt: secDesc: SecurityDescriptor is equal 10:43:30.215 0x5244 INF vrt: bl: ============================================================ 10:43:30.215 0x5244 INF vrt: bl: Product version: Kaspersky Virus Removal Tool 20.0.10.0 10:43:30.215 0x5244 INF vrt: bl: Compilation date: Oct 25 2021 16:21:50 10:43:30.215 0x5244 INF vrt: bl: Scan type: Active OS 10:43:30.215 0x5244 INF vrt: bl: Command line: I:/temp/{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}/\9ec603af.exe -trace -dontencrypt 10:43:30.215 0x5244 INF vrt: bl: Product folder: "C:\KVRT2020_Data" 10:43:30.215 0x5244 INF vrt: bl: Mod folder: "I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}" 10:43:30.215 0x5244 INF vrt: bl: Trace level: 700 10:43:30.215 0x5244 INF vrt: bl: ============================================================ 10:43:30.215 0x5244 INF vrt: sysinfo: Current local date / time: 2022/11/10 10:43:30.0215 10:43:30.215 0x5244 INF vrt: sysinfo: SystemInfo: 10:43:30.215 0x5244 INF vrt: sysinfo: 10:43:30.215 0x5244 INF vrt: sysinfo: OS Version: Windows 10 10:43:30.215 0x5244 INF vrt: sysinfo: OS build: 10.0.19045.2251 10:43:30.215 0x5244 INF vrt: sysinfo: OS bitness: x64 10:43:30.215 0x5244 INF vrt: sysinfo: OS ServicePack: empty 10:43:30.215 0x5244 INF vrt: sysinfo: OS Wow64: enabled 10:43:30.215 0x5244 INF vrt: sysinfo: OS KMCI: disabled 10:43:30.217 0x5244 INF vrt: sysinfo: Windows directory: C:\WINDOWS 10:43:30.217 0x5244 INF vrt: sysinfo: System windows directory: C:\WINDOWS 10:43:30.217 0x5244 INF vrt: sysinfo: Number of processors: 32 10:43:30.217 0x5244 INF vrt: sysinfo: Page size: 4096 10:43:30.218 0x5244 INF vrt: sysinfo: Boot type: Normal boot 10:43:30.218 0x5244 INF kvrt: bl: ============================================================ 10:43:30.218 0x5244 INF kvrt: bl: Drop KVRT cleanup script 10:43:30.219 0x5244 INF vrt: fshlp: Create secure directory <I:/temp/{7929329b-4bd1-471b-8bc7-f0785c8c4858}/> accessFlag = 0 10:43:30.219 0x5244 INF vrt: fshlp: Path <I:/temp/{7929329b-4bd1-471b-8bc7-f0785c8c4858}/> , isExists 0, isFolder 0, bSymlink 0, bLocal 1 10:43:30.219 0x5244 INF Folder deleter: Folder <I:\temp\{7929329b-4bd1-471b-8bc7-f0785c8c4858}> has been added in list 10:43:30.219 0x5244 INF vrt: env: Begin expanding environment var <%KLIF_DEVICE_NAME%> 10:43:30.219 0x5244 WRN vrt: env: Var <%KLIF_DEVICE_NAME%> is not found 10:43:30.219 0x5244 INF vrt: env: Expand <%KLIF_DEVICE_NAME%> into <%KLIF_DEVICE_NAME%> 10:43:30.219 0x5244 WRN kvrt: bl: Error query klif name with status 0x8000004c 10:43:30.219 0x5244 INF vrt: fshlp: File <I:\temp\{7929329b-4bd1-471b-8bc7-f0785c8c4858}\0c73b130-a541-4da2-a3ac-3635aa629066.cmd> has been created 10:43:30.219 0x5244 INF kvrt: reg winapi: Registry key <0x80000002, SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce> is opened as <0x23c> 10:43:30.219 0x5244 INF kvrt: reg winapi: Registry value <0c73b130-a541-4da2-a3ac-3635aa629066> of key <0x23c, SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce> was set (b2 bytes) 10:43:30.219 0x5244 INF kvrt: bl: Value <HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\0c73b130-a541-4da2-a3ac-3635aa629066> has been written with data <"I:\temp\{7929329b-4bd1-471b-8bc7-f0785c8c4858}\0c73b130-a541-4da2-a3ac-3635aa629066.cmd"> 10:43:30.219 0x5244 INF Folder deleter: Folder <I:\temp\{7929329b-4bd1-471b-8bc7-f0785c8c4858}> has been removed from list 10:43:30.219 0x5244 INF kvrt: reg winapi: Registry key <0x80000002, SOFTWARE> is opened as <0x23c> 10:43:30.219 0x5244 INF kvrt: reg winapi: Registry key <0x23c, KasperskyLab\Binaries\KVRT2020> is created as <0x244> 10:43:30.220 0x5244 INF kvrt: reg winapi: Registry value <kldw.exe> of key <0x244, KasperskyLab\Binaries\KVRT2020> was set (70 bytes) 10:43:30.220 0x5244 INF kvrt: bl: KLDW is setuped 10:43:30.222 0x5244 INF vrt: dw: Module <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}\dumpwriter.dll> has been loaded at 0x0x6c3a0000 10:43:30.223 0x5244 INF vrt: dw: Module <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}\dbghelp.dll> has been loaded at 0x0x66230000 10:43:30.223 0x5244 INF vrt: dw: Dump writer has been initialized successfully 10:43:30.223 0x5244 INF kvrt: bl: Creating kvrt clients logic... 10:43:30.223 0x5244 INF kvrt: bl: kvrt clients logic has been created 10:43:30.236 0x5244 INF kvrt: bl gui: GuiClientFactory: Verify 10:43:30.236 0x5244 INF kvrt: bl gui: GuiClientFactory: Init 10:43:30.236 0x5244 INF kvrt: bl gui: GuiClientFactory: GetInitializationClient 10:43:30.236 0x5244 INF kvrt: bl gui: compver: 20.0.10.0 32-bit (Oct 25 2021 16:18:14) 10:43:30.236 0x3304 INF kvrt: bl gui: qt thread start 10:43:30.236 0x3304 INF kvrt: bl gui: guiThread begin 10:43:30.260 0x3304 INF kvrt: bl gui: guiThread: Application font name "Tahoma", size 9 10:43:30.260 0x3304 INF kvrt: bl gui: guiThread: Create MainDlg 10:43:31.033 0x3304 INF kvrt: bl gui: Graphics info: 10:43:31.033 0x3304 INF kvrt: bl gui: 10:43:31.033 0x3304 INF kvrt: bl gui: 1. * pixelRatio = 100%, dpi = 96, geom = 3840x2160, scalingFactor = 100% 10:43:31.033 0x3304 INF kvrt: bl gui: 2. pixelRatio = 100%, dpi = 96, geom = 1920x1080, scalingFactor = 100% 10:43:31.033 0x3304 INF kvrt: bl gui: 3. pixelRatio = 100%, dpi = 96, geom = 1920x1080, scalingFactor = 100% 10:43:31.033 0x3304 INF kvrt: bl gui: 4. pixelRatio = 100%, dpi = 96, geom = 1920x1080, scalingFactor = 100% 10:43:31.034 0x3304 INF kvrt: bl gui: 5. pixelRatio = 100%, dpi = 96, geom = 1920x1080, scalingFactor = 100% 10:43:31.034 0x3304 INF kvrt: bl gui: 6. pixelRatio = 100%, dpi = 96, geom = 1920x1080, scalingFactor = 100% 10:43:31.034 0x3304 INF kvrt: bl gui: 7. pixelRatio = 100%, dpi = 96, geom = 1920x1080, scalingFactor = 100% 10:43:31.034 0x3304 INF kvrt: bl gui: textScalingFactor = 100% 10:43:31.034 0x3304 INF kvrt: bl gui: 10:43:31.034 0x3304 INF kvrt: bl gui: qt thread init 10:43:31.034 0x5244 INF vrt: clients: Module init client has been initialized successfully 10:43:31.034 0x5244 INF vrt: clients: Module <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}\KvrtGui.dll> init client has been initialized 10:43:31.034 0x5244 INF vrt: bl: Init client has been initialized 10:43:31.034 0x3304 INF kvrt: bl gui: qt thread starting 10:43:31.034 0x3304 INF kvrt: bl gui: qt thread continues 10:43:31.064 0x5244 INF vrt: win env: Begin expanding environment var <%ProgramData%> 10:43:31.064 0x5244 INF vrt: win env: Var <%ProgramData%> -> <C:\ProgramData> 10:43:31.064 0x5244 INF vrt: env: Var <ProgramData> was setuped in <C:\ProgramData> 10:43:31.064 0x5244 INF vrt: win env: Begin expanding environment var <%ProgramFiles%> 10:43:31.064 0x5244 INF vrt: win env: Var <%ProgramFiles%> -> <C:\Program Files (x86)> 10:43:31.064 0x5244 INF vrt: env: Var <ProgramFiles> was setuped in <C:\Program Files (x86)> 10:43:31.064 0x5244 INF vrt: win env: Begin expanding environment var <%ProgramFiles(x86)%> 10:43:31.064 0x5244 INF vrt: win env: Var <%ProgramFiles(x86)%> -> <C:\Program Files (x86)> 10:43:31.064 0x5244 INF vrt: env: Var <ProgramFiles(x86)> was setuped in <C:\Program Files (x86)> 10:43:31.064 0x5244 INF vrt: win env: Begin expanding environment var <%ProgramW6432%> 10:43:31.064 0x5244 INF vrt: win env: Var <%ProgramW6432%> -> <C:\Program Files> 10:43:31.064 0x5244 INF vrt: env: Var <ProgramW6432> was setuped in <C:\Program Files> 10:43:31.064 0x5244 INF vrt: win env: Begin expanding environment var <%SystemDrive%> 10:43:31.064 0x5244 INF vrt: win env: Var <%SystemDrive%> -> <C:> 10:43:31.064 0x5244 INF vrt: env: Var <SystemDrive> was setuped in <C:> 10:43:31.064 0x5244 INF vrt: win env: Begin expanding environment var <%SystemRoot%> 10:43:31.064 0x5244 INF vrt: win env: Var <%SystemRoot%> -> <C:\WINDOWS> 10:43:31.065 0x5244 INF vrt: env: Var <SystemRoot> was setuped in <C:\WINDOWS> 10:43:31.065 0x5244 INF vrt: win env: Begin expanding environment var <%windir%> 10:43:31.065 0x5244 INF vrt: win env: Var <%windir%> -> <C:\WINDOWS> 10:43:31.065 0x5244 INF vrt: env: Var <windir> was setuped in <C:\WINDOWS> 10:43:31.065 0x5244 INF vrt: env: Var <TEMP> was setuped in <C:\KVRT2020_Data\Temp> 10:43:31.065 0x5244 INF vrt: bl: Generated PCID: {1CF27FB1-1091-D240-A514-1878A67CB5E0} 10:43:31.065 0x5244 INF vrt: env: Var <PCID> was setuped in <{1CF27FB1-1091-D240-A514-1878A67CB5E0}> 10:43:31.065 0x5244 INF vrt: env: Var <ProductType> was setuped in <kvrt> 10:43:31.065 0x5244 INF vrt: env: Var <ProductVersion> was setuped in <20.0.10.0> 10:43:31.065 0x5244 INF vrt: env: Var <ProductTypeNumKsn> was setuped in <51> 10:43:31.065 0x5244 INF vrt: env: Var <Localization> was setuped in <en> 10:43:31.065 0x5244 INF vrt: env: Var <Bases> was setuped in <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}\Bases> 10:43:31.065 0x5244 INF vrt: env: Var <BaseFolder> was setuped in <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}\Bases> 10:43:31.065 0x5244 INF vrt: env: Var <Data> was setuped in <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}> 10:43:31.065 0x5244 INF vrt: env: Var <DataRoot> was setuped in <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}> 10:43:31.065 0x5244 INF vrt: env: Var <ProductRoot> was setuped in <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}> 10:43:31.065 0x5244 INF vrt: env: Var <TraceRoot> was setuped in <C:\KVRT2020_Data\Traces> 10:43:31.065 0x5244 INF vrt: env: Var <DumpRoot> was setuped in <C:\KVRT2020_Data\Traces> 10:43:31.065 0x5244 INF vrt: env: Var <KsnConfigPackedFileName> was setuped in <ksn_kvrt20.xms> 10:43:31.065 0x5244 INF vrt: env: Var <KvrtPersistentDataRoot> was setuped in <C:\KVRT2020_Data> 10:43:31.069 0x5244 INF vrt: env: Begin expanding environment var <%PCID%> 10:43:31.069 0x5244 INF vrt: env: Var <%PCID%> -> <{1CF27FB1-1091-D240-A514-1878A67CB5E0}> 10:43:31.069 0x5244 INF vrt: env: Expand <%PCID%> into <{1CF27FB1-1091-D240-A514-1878A67CB5E0}> 10:43:31.071 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Legal notices> is directory 10:43:31.071 0x5244 INF vrt: fshlp: Path <C:\KVRT2020_Data\Legal notices> is deleted 10:43:31.071 0x5244 INF vrt: bl: Folder <C:\KVRT2020_Data\Legal notices> is created 10:43:31.073 0x5244 INF kvrt: bl gui: LegalNotices was dropped 10:43:36.191 0x3304 INF kvrt: bl gui: qt thread continues 10:43:36.191 0x5244 INF vrt: bl: EULA was accepted 10:43:36.192 0x5244 INF kvrt: klmd: Initializing KLMD... 10:43:36.192 0x5244 INF vrt: env: Begin expanding environment var <%SystemRoot%\System32\Drivers> 10:43:36.192 0x5244 INF vrt: env: Var <%SystemRoot%> -> <C:\WINDOWS> 10:43:36.192 0x5244 INF vrt: env: Expand <%SystemRoot%\System32\Drivers> into <C:\WINDOWS\System32\Drivers> 10:43:36.192 0x5244 INF kvrt: klmd: Getting KLMD driver body from <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}\klmd.sys>... 10:43:36.192 0x5244 INF vrt: fshlp: File <I:\temp\{da91e92d-0faf-4796-a212-7d2a2d9a1c1a}\klmd.sys> has been read 10:43:36.192 0x5244 INF kvrt: klmd: KLMD drive body has size 299544 bytes 10:43:36.192 0x5244 INF vrt: env: Begin expanding environment var <%PCID%> 10:43:36.192 0x5244 INF vrt: env: Var <%PCID%> -> <{1CF27FB1-1091-D240-A514-1878A67CB5E0}> 10:43:36.192 0x5244 INF vrt: env: Expand <%PCID%> into <{1CF27FB1-1091-D240-A514-1878A67CB5E0}> 10:43:36.192 0x5244 INF kvrt: drv: Driver ID for service <klmd> is <0xe34ffe8e> 10:43:36.192 0x5244 INF kvrt: srv reg: Reg API service manager 0x49cb690 was created 10:43:36.192 0x5244 INF kvrt: drv: Service file <C:\WINDOWS\System32\Drivers\e34ffe8e.sys> is exist 10:43:36.192 0x5244 INF kvrt: reg winapi: Registry key <0x80000002, SYSTEM\Select> is opened as <0x404> 10:43:36.192 0x5244 INF kvrt: reg winapi: Registry value <Current> of key <0x404, SYSTEM\Select> was get (4 bytes) 10:43:36.192 0x5244 INF kvrt: srv reg: Reg API service 0x49c0d98 was created 10:43:36.192 0x5244 WRN kvrt: reg winapi: Can't open registry key <0x80000002, SYSTEM\ControlSet001\Services\e34ffe8e> with error 0x80010102 (native error 0x2) 10:43:36.192 0x5244 WRN kvrt: reg winapi: Can't open key <0x80000002, SYSTEM\ControlSet001\Services\e34ffe8e> with error 0x80010102 10:43:36.192 0x5244 WRN kvrt: srv reg: Can't get registry key for service <e34ffe8e> with error 0x80010102 10:43:36.192 0x5244 WRN kvrt: srv reg: Can't open service <e34ffe8e> with error 0x80010102 10:43:36.192 0x5244 INF kvrt: srv reg: Reg API service 0x49c0d98 was destroyed 10:43:36.192 0x5244 INF kvrt: drv: Service <e34ffe8e> is absent 10:43:36.192 0x5244 INF kvrt: srv: Checking status of driver <\SystemRoot\System32\Drivers\e34ffe8e.sys>... 10:43:36.193 0x5244 INF kvrt: srv: Driver <C:\WINDOWS\System32\Drivers\e34ffe8e.sys> status is <Running> 10:43:36.193 0x5244 INF kvrt: drv: Driver <e34ffe8e> is loaded 10:43:36.193 0x5244 INF kvrt: srv reg: Reg API service manager 0x49cb690 was destroyed 10:43:36.193 0x5244 INF kvrt: drv: Random name for service <klmd> is <e34ffe8e> 10:43:36.193 0x5244 INF kvrt: drv: Current driver <e34ffe8e> installation status: 10:43:36.193 0x5244 INF kvrt: drv: File is installed 10:43:36.193 0x5244 INF kvrt: drv: Service isn't installed 10:43:36.193 0x5244 INF kvrt: drv: Driver is loaded 10:43:36.193 0x5244 INF kvrt: drv: Driver object 0x49c08f8 was created 10:43:36.193 0x5244 INF kvrt: srv reg: Reg API service manager 0x49cb6e0 was created 10:43:36.193 0x5244 INF kvrt: drv: Installing driver <e34ffe8e>... 10:43:36.193 0x5244 INF kvrt: drv: Creating new driver service <e34ffe8e>... 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry key <0x80000002, SYSTEM\Select> is opened as <0x404> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <Current> of key <0x404, SYSTEM\Select> was get (4 bytes) 10:43:36.193 0x5244 INF kvrt: srv reg: Reg API service 0x49c0e10 was created 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry key <0x80000002, SYSTEM\ControlSet001\Services> is opened as <0x404> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry key <0x404, e34ffe8e> is created as <0x4bc> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <ImagePath> of key <0x4bc, e34ffe8e> was set (3c bytes) 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <Type> of key <0x4bc, e34ffe8e> was set (4 bytes) 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <Start> of key <0x4bc, e34ffe8e> was set (4 bytes) 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <ErrorControl> of key <0x4bc, e34ffe8e> was set (4 bytes) 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <Tag> of key <0x4bc, e34ffe8e> was set (4 bytes) 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <Group> of key <0x4bc, e34ffe8e> was set (24 bytes) 10:43:36.193 0x5244 INF kvrt: srv reg: Activating SafeBoot for service <e34ffe8e> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry key <0x80000002, System\CurrentControlSet\Control\SafeBoot\Minimal> is opened as <0x4bc> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry key <0x4bc, e34ffe8e.sys> is created as <0x404> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <(null)> of key <0x404, e34ffe8e.sys> was set (e bytes) 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry key <0x80000002, System\CurrentControlSet\Control\SafeBoot\Network> is opened as <0x404> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry key <0x404, e34ffe8e.sys> is created as <0x4bc> 10:43:36.193 0x5244 INF kvrt: reg winapi: Registry value <(null)> of key <0x4bc, e34ffe8e.sys> was set (e bytes) 10:43:36.193 0x5244 INF kvrt: srv reg: Service <e34ffe8e> with <System32\Drivers\e34ffe8e.sys> was created by 0x49c0e10 10:43:36.193 0x5244 INF kvrt: drv: Driver service <e34ffe8e> has been installed successfully 10:43:36.193 0x5244 INF kvrt: drv: Driver <e34ffe8e> has been installed successfully 10:43:36.193 0x5244 INF kvrt: klmd: KLMD has been installed and loaded successfully 10:43:36.193 0x5244 INF kvrt: klmd: Connected to ARK device <\\.\e34ffe8ea> 10:43:36.194 0x5244 ERR kvrt: klmd: Can't complete thread authorization with error 0x800700a1 (native error 0xa1) 10:43:36.194 0x5244 ERR kvrt: bl: Can't authorize current thread to KLMD with error 0x800700a1 10:43:36.194 0x5244 ERR kvrt: bl: KLMD phase 1 init has been failed with error 0x800700a1
- November 10, 2022
- 8 replies

TheDoc

Posts

Joined

Last visited

Content Type

Forums

Everything posted by TheDoc

KVRT: Can't load driver: Windows 10 Enterprise:

Error 'can't load driver' Windows 11 Pro PE KVRT.EXE 2020 version

Forum

Products

Support

Personal Account