tandasat / minivisorpkg Goto Github PK

View Code? Open in Web Editor NEW

488.0 20.0 85.0 6.2 MB

The research UEFI hypervisor that supports booting an operating system.

Home Page: https://standa-note.blogspot.com/2020/03/introduction-and-design-considerations.html

License: MIT License

Python 0.56% JavaScript 0.65% Assembly 4.52% C++ 0.65% C 93.61%

hypervisor uefi kernel vt-x

minivisorpkg's Introduction

MiniVisor

This is a research hypervisor written as a UEFI and Windows driver for the educational purpose for Intel processors.

This MiniVisor, as a UEFI driver, provides the ability to inspect system activities even before the operating system boots, while as a Windows driver, allows developers to debug it with familiar tools like WinDbg.

Showcase

Loading the hypervisor from the UEFI shell.
Logging boot activities and interacting with the guest.
Booting Ubuntu on a bare-metal.

Motivation

The goal of this project is to share an additional learning resource for writing UEFI hypervisors with the community and researchers.

There are numerous open source hypervisors with small and easy-to-study implementations, but those that support booting operating systems as UEFI drivers are still not many.

Given the universality of UEFI systems on the AMD64 ecosystem and the unique ability to monitor, attack and protect the system throughout operating system startup on bare-metal systems, the authors believe that having the understanding and being able to develop this type of hypervisors are valuable for research.

System Requirements

Common Requirements:

Intel VT-x and EPT supported processors

Requirements for the UEFI driver:

UEFI-based system
64bit Windows 10, IoT Core, or Ubuntu to boot

Requirements for the Windows driver:

64bit Windows 7 and 10

See Building and Debugging for testing.

Advantages and Use Cases

While this project does not implement or designed for any immediately useful features, UEFI-based hypervisors have multiple advantages over Windows driver-based ones and can implement unique features.

No need of disabling Hyper-V (Virtualization Based Security) to run the custom hypervisor
No need of enabling the test-signing mode
Zero direct indicator of existence of the hypervisor from operating system perspective
Detecting bootkit and early system modification
Implementing operating system agnostic solutions
Installing hooks during the early boot phase and letting PatchGuard to protect them

Acknowledgments

The authors thank for creators and maintainers of the following projects:

Bareflank and STM -- for publishing UEFI-base hypervisors with the relatively small codebase.
zpp_hypervisor -- for making me realize that writing UEFI-based hypervisors is viable.
EfiGuard -- for clean codebase and rich documentation for UEFI development newbies.
hvpp -- for few techniques required for the UEFI environment.
ia32-doc -- for saving me from defining thousands of constants and structures by hand.

minivisorpkg's People

Contributors

Stargazers

Watchers

minivisorpkg's Issues

Instance of library class [RegisterFilterLib] is not found

Hello,
i tried to follow building guide, but i am getting this error:

build.py...
c:\edk2\MiniVisorPkg\Builds\Platform\EFI\MiniVisorPkg.dsc(...): error 4000: Instance of library class [RegisterFilterLib] is not found
        in [c:\edk2\MdePkg\Library\BaseLib\BaseLib.inf] [X64]
        consumed by module [c:\edk2\MiniVisorPkg\Builds\Platform\EFI\MiniVisorDxe.inf]

What's the difference

What is the difference between uefi's vt version and ordinary vt version?Is it easier to avoid detection?

Implementing EPT Shadow Hooks

I am wondering if you could give a high level overview on what would need to be done to port the EPT shadow hooking implementation from DDIMon to MiniVisorPkg. Being that MiniVisorPkg runs in UEFI, and HyperPlatform is a Windows driver, what changes would need to be made to DdiMon in order for it to work in the context of a UEFI hypervisor like MiniVisorPkg?

Crash after ExitBootServicesHandler running windows bootloader

Hey, I followed all the steps on your Hyper-V tutorial, Everything loads just fine but after I try to load the windows bootloader it gives the following error in image and restart.

I have Intel Core i9 12900KS, Windows 11 x64 Host and Windows 10 1903 x64 on guest, VMX is enabled on VM.

Note that this happens only if I use more than 1 core for the hyper-v, I use 8 cores and it crashes, I use 1 it works.

Does it support vmware?

Does it have to be loaded on bare metal?Can I use a virtual machine instead?How to debug the UEFI hypervisor ?Can your UEFI hypervisor read and write windows operating system memory? I want to monitor memory!

About HalSendNMI

I can't find information about this function anywhere.
However, can the NMI interrupt be triggered only at the R0 or physical level?
Is there a way to trigger in userMode?

Serial logs not being printed

Hi,

I'm trying to build MiniVisor with serial logging enabled but I can't get anything to print. I've followed your serial logging documentation and everything works and is exactly as displayed in your picture except nothing is being printed to PuTTY.

I'm using VMware Workstation 16 Pro.

Any ideas? Thanks.

HandleMsrAccess not being triggered on __writemsr

UEFI version, HV seems to be working fine otherwise, other VMExits are triggering. __writemsr isn't. Possibly __readmsr too, haven't checked. Will update with more information as I debug it.

ways to communicate with UEFI HV from OS?

Hello,

I am researching some new ways to possible develop and implement a type of P2P virtual switch and you MiniVisor is very interesting as it might be something extremely unique towards this goal.

I was wondering how an OS, Windows and Linux for example, could communicate and share data back with the running hypervisor for such things as changes to running configuration like enable/disable, statistics and monitoring, etc.

Any thoughts on this?
Thanks in advance

Accessing usermode memory via hypercall from MemoryAccess

My end goal is to create a shared buffer between my usermode Hypervisor controller, call it ring3control, and the Hypervisor.

This shared buffer exists, and I hypercall to MiniVisor and give it the virtual address of the buffer, the size of the buffer. I then use MemoryAccess with the context of the current processor the hypercall was excecuted with to write 0xCC to my buffer.

In usermode, ring3control sees 0xCC as the first byte in it's buffer.

So all good, yes. Well, sort-of.

I'm not super familiar with the inner workings of MemoryAccess yet but from what I understand every processor has a link to the MemoryAccess context that includes the pages of memory.

My next test attempted to copy memory from notepad.exe (an x64 program on Windows) into my shared buffer. I hypercall to MiniVisor and pass the base address of notepad.exe to MiniVisor, and use MemoryAccess to read the first 32 bytes of notepad.exe, and write them using MemoryAccess to my buffer. The hypercall returns.

I don't see the bytes written to my buffer in this case.

I guess my question is, is MemoryAccess capable of doing cross-process memory access? Or can it not? Can you explain why? I'm not quite sure I understand it because I figured this test would work.

Thanks Satoshi.

Example of hooking and letting PG protect the hook

Hello,

Would it be possible to add an example of how you hook for example ExAllocatePoolTag in your readme? I cannot find anything relate to it on the source code. I've only found how you avoid the initialization of PG.

Thanks.

HV fails to subvert in UEFI mode on Intel i9 13900k

Hi, this is a new github account, although I have worked closely with you before a few years ago over email regarding. I built an introspection engine for detecting bootkits with MiniVisorPkg back when it was first released.

I just upgraded to an i9 13900k from an i7 10900k and it doesn't seem to work. I'll investigate, but I'm leaving this here so if anyone else has this issue in the future, we can provide a solution.

Fails out at in HandleHostException seemingly during the execution of EnableHypervisor on all cores. InterruptNumber 0x6C (undocumented, reserved as far as I can tell) and error code 0x0. Note that at this stage, cr2 is 0. I believe that should be expected though at this phase of subverting the cores.

crash in vmware14.0 and windows10 1809/1903

dear tandasat
i try to remove findimagebase but this crash still happen.

2020-04-07T19:32:14.643+08:00| vcpu-1| I125+ vcpu-1:This virtual machine has tried to execute an invalid part of memory. It is possible that the virtual disk or CD media you are using is not bootable or that a program or driver running in the virtual machine has malfunctioned.

2020-04-07T19:31:42.095+08:00| vcpu-0| I125: SCSI DEVICE (scsi0:0): REQUEST SENSE without CheckCondition status.
2020-04-07T19:31:42.097+08:00| vcpu-0| I125: DISKUTIL: scsi0:0 : capacity=125829120 logical sector size=512
2020-04-07T19:31:49.028+08:00| vcpu-0| I125: Guest: DSDT: CNOT method is 82 bytes long.
2020-04-07T19:31:49.052+08:00| vcpu-0| I125: Guest: About to do EFI boot: EFI Internal Shell (Unsupported option)
2020-04-07T19:31:49.449+08:00| vcpu-0| I125: Tools: Running status rpc handler: 0 => 1.
2020-04-07T19:31:49.449+08:00| vcpu-0| I125: Tools: Changing running status: 0 => 1.
2020-04-07T19:31:53.893+08:00| vmx| I125: USB: Connecting device desc:name:Virtual\ Bluetooth\ Adapter vid:0e0f pid:0008 speed:full family:wireless,bluetooth deviceType:virtual-bluetooth info:0000001 version:3 id:0x700000010e0f0008
2020-04-07T19:31:53.893+08:00| vmx| I125: Policy_GetUSBDevAccess: checking usb devices at policy path: /vm/#_VMX/mvm/policyState/val/policySet/usbDevices/#
2020-04-07T19:31:53.893+08:00| vmx| I125: Policy_GetUSBDevAccess: allowConnect = YES
2020-04-07T19:31:53.896+08:00| vmx| W115: Bluetooth-Win32: ERROR retrieving local radio info: No more data is available
2020-04-07T19:31:53.896+08:00| vmx| W115: Bluetooth host backend not available.
2020-04-07T19:31:59.428+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=1
2020-04-07T19:31:59.428+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=2
2020-04-07T19:31:59.428+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=3
2020-04-07T19:31:59.431+08:00| vcpu-1| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=1
2020-04-07T19:31:59.431+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=4
2020-04-07T19:31:59.431+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=5
2020-04-07T19:31:59.434+08:00| vcpu-2| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=1
2020-04-07T19:31:59.434+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=6
2020-04-07T19:31:59.434+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=7
2020-04-07T19:31:59.437+08:00| vcpu-3| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=1
2020-04-07T19:32:00.251+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=8
2020-04-07T19:32:00.251+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=9
2020-04-07T19:32:00.251+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=10
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=11
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=12
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=13
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=14
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=15
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=16
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=17
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=18
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=19
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=20
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=21
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=22
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=23
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=24
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=25
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=26
2020-04-07T19:32:00.252+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=27
2020-04-07T19:32:00.253+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=28
2020-04-07T19:32:00.253+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=29
2020-04-07T19:32:00.253+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=30
2020-04-07T19:32:00.253+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=31
2020-04-07T19:32:00.253+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=32
2020-04-07T19:32:00.253+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=33
2020-04-07T19:32:00.254+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=34
2020-04-07T19:32:00.254+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=35
2020-04-07T19:32:00.254+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=36
2020-04-07T19:32:00.254+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=37
2020-04-07T19:32:00.254+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=38
2020-04-07T19:32:00.254+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=39
2020-04-07T19:32:00.254+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=40
2020-04-07T19:32:00.254+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=41
2020-04-07T19:32:00.254+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=42
2020-04-07T19:32:00.254+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=43
2020-04-07T19:32:00.255+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=44
2020-04-07T19:32:00.255+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=45
2020-04-07T19:32:00.255+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=46
2020-04-07T19:32:00.255+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=47
2020-04-07T19:32:00.255+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=48
2020-04-07T19:32:00.255+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=49
2020-04-07T19:32:00.255+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=50
2020-04-07T19:32:00.255+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=51
2020-04-07T19:32:00.256+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=52
2020-04-07T19:32:00.256+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=53
2020-04-07T19:32:00.256+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=54
2020-04-07T19:32:00.256+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=55
2020-04-07T19:32:00.256+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=56
2020-04-07T19:32:00.256+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=57
2020-04-07T19:32:00.256+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=58
2020-04-07T19:32:00.256+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=59
2020-04-07T19:32:00.256+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=60
2020-04-07T19:32:00.256+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=61
2020-04-07T19:32:00.256+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=62
2020-04-07T19:32:00.257+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=63
2020-04-07T19:32:00.257+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=64
2020-04-07T19:32:00.257+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=65
2020-04-07T19:32:00.257+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=66
2020-04-07T19:32:00.257+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=67
2020-04-07T19:32:00.257+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=68
2020-04-07T19:32:00.257+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=69
2020-04-07T19:32:00.257+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=70
2020-04-07T19:32:00.257+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=71
2020-04-07T19:32:00.257+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=72
2020-04-07T19:32:00.257+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=73
2020-04-07T19:32:00.257+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=74
2020-04-07T19:32:00.257+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=75
2020-04-07T19:32:00.258+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=76
2020-04-07T19:32:00.258+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=77
2020-04-07T19:32:00.258+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=78
2020-04-07T19:32:00.259+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=79
2020-04-07T19:32:00.259+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=80
2020-04-07T19:32:00.259+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=81
2020-04-07T19:32:00.260+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=82
2020-04-07T19:32:00.260+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=83
2020-04-07T19:32:00.260+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=84
2020-04-07T19:32:00.260+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=85
2020-04-07T19:32:00.260+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=86
2020-04-07T19:32:00.260+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=87
2020-04-07T19:32:00.260+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=88
2020-04-07T19:32:00.260+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=89
2020-04-07T19:32:00.261+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=90
2020-04-07T19:32:00.261+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=91
2020-04-07T19:32:00.261+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=92
2020-04-07T19:32:00.261+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=93
2020-04-07T19:32:00.261+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=94
2020-04-07T19:32:00.261+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=95
2020-04-07T19:32:00.261+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=96
2020-04-07T19:32:00.261+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=97
2020-04-07T19:32:00.261+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=98
2020-04-07T19:32:00.261+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=99
2020-04-07T19:32:00.262+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=100
2020-04-07T19:32:00.271+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=200
2020-04-07T19:32:00.275+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=300
2020-04-07T19:32:00.279+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=400
2020-04-07T19:32:00.282+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=500
2020-04-07T19:32:00.285+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=600
2020-04-07T19:32:00.288+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=700
2020-04-07T19:32:00.293+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=800
2020-04-07T19:32:00.296+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=900
2020-04-07T19:32:00.300+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=1000
2020-04-07T19:32:00.303+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=1100
2020-04-07T19:32:00.308+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=1200
2020-04-07T19:32:00.311+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=1300
2020-04-07T19:32:00.316+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=1400
2020-04-07T19:32:00.320+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=1500
2020-04-07T19:32:00.325+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=1600
2020-04-07T19:32:00.329+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=1700
2020-04-07T19:32:00.332+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=1800
2020-04-07T19:32:00.335+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=1900
2020-04-07T19:32:00.339+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=2000
2020-04-07T19:32:00.344+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=2100
2020-04-07T19:32:00.348+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=2200
2020-04-07T19:32:00.352+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=2300
2020-04-07T19:32:00.356+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=2400
2020-04-07T19:32:03.349+08:00| vcpu-0| I125: Backdoor: Virtual CPU in guest operation.
2020-04-07T19:32:05.732+08:00| vcpu-0| I125: Backdoor: Virtual CPU in guest operation.
2020-04-07T19:32:05.737+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=2500
2020-04-07T19:32:05.748+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=2600
2020-04-07T19:32:05.805+08:00| vcpu-0| I125: Guest: About to do EFI boot: Windows Boot Manager
2020-04-07T19:32:05.805+08:00| vcpu-0| I125: GetMSR: unknown MSR[0x1a0] (read as zero): rip=0x1011744b count=1
2020-04-07T19:32:05.805+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1a0]:=0x0 (sinking): rip=0x10117460 count=2
2020-04-07T19:32:05.809+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=2700
2020-04-07T19:32:05.814+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=2800
2020-04-07T19:32:05.818+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=2900
2020-04-07T19:32:05.822+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=3000
2020-04-07T19:32:05.828+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=3100
2020-04-07T19:32:05.832+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=3200
2020-04-07T19:32:05.837+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=3300
2020-04-07T19:32:05.842+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=3400
2020-04-07T19:32:05.847+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=3500
2020-04-07T19:32:05.851+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=3600
2020-04-07T19:32:05.855+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=3700
2020-04-07T19:32:05.860+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=3800
2020-04-07T19:32:05.864+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=3900
2020-04-07T19:32:05.869+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=4000
2020-04-07T19:32:05.873+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=4100
2020-04-07T19:32:05.876+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=4200
2020-04-07T19:32:05.880+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=4300
2020-04-07T19:32:05.885+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=4400
2020-04-07T19:32:05.889+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=4500
2020-04-07T19:32:05.890+08:00| vcpu-0| I125: DDB: "longContentID" = "bf8edb144ae6601122bb213a712ad185" (was "d882c7e09f8b2ab51b0b47dcf58fb532")
2020-04-07T19:32:05.890+08:00| vcpu-0| I125: FILE: FileDeletionRetry: Non-retriable error encountered (C:\Users\M\Documents\Virtual Machines\1809\1809.vmdk~): The system cannot find the file specified (2)
2020-04-07T19:32:05.904+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=4600
2020-04-07T19:32:05.908+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=4700
2020-04-07T19:32:05.913+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=4800
2020-04-07T19:32:05.917+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=4900
2020-04-07T19:32:05.921+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=5000
2020-04-07T19:32:05.925+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=5100
2020-04-07T19:32:05.930+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=5200
2020-04-07T19:32:05.934+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=5300
2020-04-07T19:32:05.938+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=5400
2020-04-07T19:32:05.942+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=5500
2020-04-07T19:32:05.945+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=5600
2020-04-07T19:32:05.948+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=5700
2020-04-07T19:32:05.952+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=5800
2020-04-07T19:32:05.956+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=5900
2020-04-07T19:32:05.960+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=6000
2020-04-07T19:32:05.965+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=6100
2020-04-07T19:32:05.968+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=6200
2020-04-07T19:32:05.972+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=6300
2020-04-07T19:32:05.976+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=6400
2020-04-07T19:32:05.980+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=6500
2020-04-07T19:32:05.985+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=6600
2020-04-07T19:32:05.989+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=6700
2020-04-07T19:32:05.993+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=6800
2020-04-07T19:32:05.997+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=6900
2020-04-07T19:32:06.005+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=7000
2020-04-07T19:32:06.008+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=7100
2020-04-07T19:32:06.013+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=7200
2020-04-07T19:32:06.017+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=7300
2020-04-07T19:32:06.022+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=7400
2020-04-07T19:32:06.026+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=7500
2020-04-07T19:32:06.030+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=7600
2020-04-07T19:32:06.033+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=7700
2020-04-07T19:32:06.038+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=7800
2020-04-07T19:32:06.042+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=7900
2020-04-07T19:32:06.046+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=8000
2020-04-07T19:32:06.051+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=8100
2020-04-07T19:32:06.054+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=8200
2020-04-07T19:32:06.058+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=8300
2020-04-07T19:32:06.063+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=8400
2020-04-07T19:32:06.067+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=8500
2020-04-07T19:32:06.071+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=8600
2020-04-07T19:32:06.075+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=8700
2020-04-07T19:32:06.080+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=8800
2020-04-07T19:32:06.083+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=8900
2020-04-07T19:32:06.087+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=9000
2020-04-07T19:32:06.091+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=9100
2020-04-07T19:32:06.095+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=9200
2020-04-07T19:32:06.101+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=9300
2020-04-07T19:32:06.104+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=9400
2020-04-07T19:32:06.109+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=9500
2020-04-07T19:32:06.113+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=9600
2020-04-07T19:32:06.117+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=9700
2020-04-07T19:32:06.121+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=9800
2020-04-07T19:32:06.125+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=9900
2020-04-07T19:32:06.129+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=10000
2020-04-07T19:32:06.558+08:00| vcpu-0| I125: GetMSR: unknown MSR[0x1a0] (read as zero): rip=0x8e0353 count=3
2020-04-07T19:32:06.558+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1a0]:=0x0 (sinking): rip=0x8e0368 count=4
2020-04-07T19:32:06.732+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=20000
2020-04-07T19:32:07.052+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=30000
2020-04-07T19:32:07.676+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=40000
2020-04-07T19:32:08.888+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=50000
2020-04-07T19:32:08.918+08:00| vcpu-0| I125: GetMSR: unknown MSR[0x17] (read as zero): rip=0xfffff8047e417460 count=1
2020-04-07T19:32:08.918+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x8b]:=0x0 (sinking): rip=0xfffff8047e417607 count=1
2020-04-07T19:32:08.918+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x8b]:=0x0 (sinking): rip=0xfffff8047e417607 count=2
2020-04-07T19:32:09.247+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=60000
2020-04-07T19:32:09.459+08:00| vcpu-0| I125: UHCI: HCReset
2020-04-07T19:32:09.481+08:00| vcpu-3| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=2
2020-04-07T19:32:09.481+08:00| vcpu-2| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=2
2020-04-07T19:32:09.481+08:00| vcpu-1| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=2
2020-04-07T19:32:09.483+08:00| vcpu-0| I125: Backdoor: Virtual CPU in guest operation.
2020-04-07T19:32:09.483+08:00| vcpu-0| I125: Guest: Firmware has transitioned to runtime.
2020-04-07T19:32:09.744+08:00| vcpu-0| I125: Hyper-V guest: management OS identified as 0x0001040a:0x0000271b.
2020-04-07T19:32:09.746+08:00| vcpu-0| I125: GetMSR: unknown MSR[0x1a0] (read as zero): rip=0xfffff8047dd89e25 count=5
2020-04-07T19:32:09.746+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x1a0]:=0x0 (sinking): rip=0xfffff8047dd89e3a count=6
2020-04-07T19:32:09.748+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x8b]:=0x0 (sinking): rip=0xfffff8047dd8a7da count=3
2020-04-07T19:32:09.751+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x8b]:=0x0 (sinking): rip=0xfffff8047dd8958c count=4
2020-04-07T19:32:09.751+08:00| vcpu-0| I125: GetMSR: unknown MSR[0x17] (read as zero): rip=0xfffff8047dd895b2 count=2
2020-04-07T19:32:09.757+08:00| vcpu-0| I125: APIC CMCI LVT write: 0x100d8
2020-04-07T19:32:10.385+08:00| vmx| I125: GuestRpcSendTimedOut: message to toolbox-dnd timed out.
2020-04-07T19:32:11.502+08:00| vcpu-0| I125: GetMSR: unknown MSR[0x17] (read as zero): rip=0xfffff8083c89c460 count=3
2020-04-07T19:32:11.502+08:00| vcpu-0| I125: SetMSR: unknown MSR[0x8b]:=0x0 (sinking): rip=0xfffff8083c89c607 count=5
2020-04-07T19:32:11.547+08:00| vcpu-1| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=3
2020-04-07T19:32:11.548+08:00| vcpu-1| I125: SetMSR: unknown MSR[0x1d9]:=0x0 (sinking): rip=0xafd5990 count=4
2020-04-07T19:32:11.551+08:00| vcpu-0| W115: WinBSOD: Synthetic MSR[0x40000100] 0xd1
2020-04-07T19:32:11.551+08:00| vcpu-0| W115:
2020-04-07T19:32:11.551+08:00| vcpu-0| W115: WinBSOD: Synthetic MSR[0x40000101] 0x47d8069c0
2020-04-07T19:32:11.551+08:00| vcpu-0| W115:
2020-04-07T19:32:11.551+08:00| vcpu-0| W115: WinBSOD: Synthetic MSR[0x40000102] 0xff
2020-04-07T19:32:11.551+08:00| vcpu-0| W115:
2020-04-07T19:32:11.552+08:00| vcpu-0| W115: WinBSOD: Synthetic MSR[0x40000103] 0x0
2020-04-07T19:32:11.552+08:00| vcpu-0| W115:
2020-04-07T19:32:11.552+08:00| vcpu-0| W115: WinBSOD: Synthetic MSR[0x40000104] 0x47d8069c0
2020-04-07T19:32:11.552+08:00| vcpu-0| W115:
2020-04-07T19:32:11.578+08:00| vcpu-1| W115: MONITOR PANIC: vcpu-1:This virtual machine has tried to execute an invalid part of memory. It is possible that the virtual disk or CD media you are using is not bootable or that a program or driver running in the virtual machine has malfunctioned.
2020-04-07T19:32:11.578+08:00| vcpu-1| I125: Core dump with build build-7528167
2020-04-07T19:32:11.582+08:00| vcpu-1| I125: Writing monitor file vmmcores.gz
2020-04-07T19:32:11.613+08:00| vcpu-1| W115: Dumping core for vcpu-0
2020-04-07T19:32:11.613+08:00| vcpu-1| I125: Beginning monitor coredump
2020-04-07T19:32:11.899+08:00| vcpu-1| I125: CoreDump error: Read, page 0x2209 (0xc91a4) Invalid access to memory location
2020-04-07T19:32:12.012+08:00| vcpu-1| I125: CoreDump error: Read, page 0x313b (0xc918c) Invalid access to memory location
2020-04-07T19:32:12.012+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3140 (0) Invalid access to memory location
2020-04-07T19:32:12.012+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3141 (0) Invalid access to memory location
2020-04-07T19:32:12.012+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3142 (0) Invalid access to memory location
2020-04-07T19:32:12.012+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3143 (0) Invalid access to memory location
2020-04-07T19:32:12.090+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e1b (0x317543) Invalid access to memory location
2020-04-07T19:32:12.090+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e1d (0x317543) Invalid access to memory location
2020-04-07T19:32:12.091+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e33 (0x334e1f) Invalid access to memory location
2020-04-07T19:32:12.091+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e35 (0x334e1f) Invalid access to memory location
2020-04-07T19:32:12.093+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e57 (0x2d2c65) Invalid access to memory location
2020-04-07T19:32:12.093+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e59 (0x2d2c65) Invalid access to memory location
2020-04-07T19:32:12.094+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e75 (0x28522c) Invalid access to memory location
2020-04-07T19:32:12.094+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e77 (0x28522c) Invalid access to memory location
2020-04-07T19:32:12.095+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e7b (0x2dc12b) Invalid access to memory location
2020-04-07T19:32:12.095+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e7d (0x2dc12b) Invalid access to memory location
2020-04-07T19:32:12.095+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e81 (0x324826) Invalid access to memory location
2020-04-07T19:32:12.095+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e83 (0x324826) Invalid access to memory location
2020-04-07T19:32:12.095+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e87 (0x318225) Invalid access to memory location
2020-04-07T19:32:12.095+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e89 (0x318225) Invalid access to memory location
2020-04-07T19:32:12.095+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e8d (0x2fbe24) Invalid access to memory location
2020-04-07T19:32:12.095+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e8f (0x2fbe24) Invalid access to memory location
2020-04-07T19:32:12.096+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e93 (0x1d8a23) Invalid access to memory location
2020-04-07T19:32:12.096+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e95 (0x1d8a23) Invalid access to memory location
2020-04-07T19:32:12.113+08:00| vcpu-1| I125: End monitor coredump
2020-04-07T19:32:12.113+08:00| vcpu-1| W115: Dumping core for vcpu-1
2020-04-07T19:32:12.113+08:00| vcpu-1| I125: Beginning monitor coredump
2020-04-07T19:32:12.384+08:00| mks| W115: Panic in progress... ungrabbing
2020-04-07T19:32:12.384+08:00| mks| I125: MKS: Release starting (Panic)
2020-04-07T19:32:12.384+08:00| mks| I125: MKSGrab: MKS release: start, locked, nesting 0
2020-04-07T19:32:12.384+08:00| mks| I125: MKS: Release finished (Panic)
2020-04-07T19:32:12.428+08:00| vcpu-1| I125: CoreDump error: Read, page 0x2209 (0xc91a3) Invalid access to memory location
2020-04-07T19:32:12.523+08:00| vcpu-1| I125: CoreDump error: Read, page 0x313b (0xc918b) Invalid access to memory location
2020-04-07T19:32:12.524+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3140 (0) Invalid access to memory location
2020-04-07T19:32:12.524+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3141 (0) Invalid access to memory location
2020-04-07T19:32:12.524+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3142 (0) Invalid access to memory location
2020-04-07T19:32:12.524+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3143 (0) Invalid access to memory location
2020-04-07T19:32:12.604+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3f07 (0x1ed000) Invalid access to memory location
2020-04-07T19:32:12.604+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3f08 (0x2e0bff) Invalid access to memory location
2020-04-07T19:32:12.610+08:00| vcpu-1| I125: End monitor coredump
2020-04-07T19:32:12.610+08:00| vcpu-1| W115: Dumping core for vcpu-2
2020-04-07T19:32:12.610+08:00| vcpu-1| I125: Beginning monitor coredump
2020-04-07T19:32:12.865+08:00| vcpu-1| I125: CoreDump error: Read, page 0x2209 (0xc9190) Invalid access to memory location
2020-04-07T19:32:12.952+08:00| vcpu-1| I125: CoreDump error: Read, page 0x313b (0xc918a) Invalid access to memory location
2020-04-07T19:32:12.952+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3140 (0) Invalid access to memory location
2020-04-07T19:32:12.952+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3141 (0) Invalid access to memory location
2020-04-07T19:32:12.952+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3142 (0) Invalid access to memory location
2020-04-07T19:32:12.952+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3143 (0) Invalid access to memory location
2020-04-07T19:32:13.027+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e2b (0x16dae5) Invalid access to memory location
2020-04-07T19:32:13.027+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e2d (0x2d518c) Invalid access to memory location
2020-04-07T19:32:13.027+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e37 (0x21519a) Invalid access to memory location
2020-04-07T19:32:13.028+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e3b (0x285097) Invalid access to memory location
2020-04-07T19:32:13.028+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e51 (0x2399b0) Invalid access to memory location
2020-04-07T19:32:13.028+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e53 (0x2399b0) Invalid access to memory location
2020-04-07T19:32:13.029+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e5d (0x3a295a) Invalid access to memory location
2020-04-07T19:32:13.029+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e5f (0x3a295a) Invalid access to memory location
2020-04-07T19:32:13.029+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e63 (0x2e16ad) Invalid access to memory location
2020-04-07T19:32:13.029+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e65 (0x2e16ad) Invalid access to memory location
2020-04-07T19:32:13.029+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e69 (0x2de1ac) Invalid access to memory location
2020-04-07T19:32:13.029+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e6b (0x2de1ac) Invalid access to memory location
2020-04-07T19:32:13.029+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e6f (0x326cab) Invalid access to memory location
2020-04-07T19:32:13.029+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e71 (0x326cab) Invalid access to memory location
2020-04-07T19:32:13.030+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e75 (0x27ecaa) Invalid access to memory location
2020-04-07T19:32:13.030+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e77 (0x27ecaa) Invalid access to memory location
2020-04-07T19:32:13.030+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e7b (0x41f46d) Invalid access to memory location
2020-04-07T19:32:13.030+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e7d (0x41f46d) Invalid access to memory location
2020-04-07T19:32:13.030+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e81 (0x370a6c) Invalid access to memory location
2020-04-07T19:32:13.030+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e83 (0x370a6c) Invalid access to memory location
2020-04-07T19:32:13.030+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e87 (0x13ba6b) Invalid access to memory location
2020-04-07T19:32:13.030+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e89 (0x13ba6b) Invalid access to memory location
2020-04-07T19:32:13.037+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3f04 (0x286902) Invalid access to memory location
2020-04-07T19:32:13.037+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3f05 (0x266301) Invalid access to memory location
2020-04-07T19:32:13.037+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3f07 (0x1ed000) Invalid access to memory location
2020-04-07T19:32:13.037+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3f08 (0x2e0bff) Invalid access to memory location
2020-04-07T19:32:13.043+08:00| vcpu-1| I125: End monitor coredump
2020-04-07T19:32:13.043+08:00| vcpu-1| W115: Dumping core for vcpu-3
2020-04-07T19:32:13.043+08:00| vcpu-1| I125: Beginning monitor coredump
2020-04-07T19:32:13.289+08:00| vcpu-1| I125: CoreDump error: Read, page 0x2209 (0xc918f) Invalid access to memory location
2020-04-07T19:32:13.376+08:00| vcpu-1| I125: CoreDump error: Read, page 0x313b (0xc9189) Invalid access to memory location
2020-04-07T19:32:13.376+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3140 (0) Invalid access to memory location
2020-04-07T19:32:13.376+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3141 (0) Invalid access to memory location
2020-04-07T19:32:13.376+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3142 (0) Invalid access to memory location
2020-04-07T19:32:13.376+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3143 (0) Invalid access to memory location
2020-04-07T19:32:13.452+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e4b (0x4200f5) Invalid access to memory location
2020-04-07T19:32:13.453+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e4d (0x4200f5) Invalid access to memory location
2020-04-07T19:32:13.455+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e75 (0x320b68) Invalid access to memory location
2020-04-07T19:32:13.455+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e77 (0x320b68) Invalid access to memory location
2020-04-07T19:32:13.456+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e7b (0x2eaa67) Invalid access to memory location
2020-04-07T19:32:13.456+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e7d (0x2eaa67) Invalid access to memory location
2020-04-07T19:32:13.457+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3e87 (0x21519a) Invalid access to memory location
2020-04-07T19:32:13.463+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3f04 (0x286902) Invalid access to memory location
2020-04-07T19:32:13.463+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3f05 (0x266301) Invalid access to memory location
2020-04-07T19:32:13.463+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3f07 (0x1ed000) Invalid access to memory location
2020-04-07T19:32:13.463+08:00| vcpu-1| I125: CoreDump error: Read, page 0x3f08 (0x2e0bff) Invalid access to memory location
2020-04-07T19:32:13.468+08:00| vcpu-1| I125: End monitor coredump
2020-04-07T19:32:14.144+08:00| vcpu-1| I125: CoreDump_CoreDump: faking exception to get context
2020-04-07T19:32:14.145+08:00| vcpu-1| I125: CoreDump: Minidump file C:\Users\M\Documents\Virtual Machines\1809\vmware-vmx-debug.dmp exists. Rotating ...
2020-04-07T19:32:14.145+08:00| vcpu-1| I125: FILE: FileDeletionRetry: Non-retriable error encountered (C:\Users\M\Documents\Virtual Machines\1809\vmware-vmx-debug-3.dmp): The system cannot find the file specified (2)
2020-04-07T19:32:14.161+08:00| vcpu-1| W115: CoreDump: Writing minidump to C:\Users\M\Documents\Virtual Machines\1809\vmware-vmx-debug.dmp
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: CoreDump: including module base 0x0x7ff63b8b0000 size 0x0x046da000
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: checksum 0x017eee03 timestamp 0x5a5343e3
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: image file C:\Program Files (x86)\VMware\VMware Workstation\x64\vmware-vmx-debug.exe
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: file version 14.1.1.28517
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: CoreDump: including module base 0x0x7ffe85fe0000 size 0x0x001ed000
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: checksum 0x001ef197 timestamp 0xfabbdc8a
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: image file C:\Windows\System32\ntdll.dll
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: file version 10.0.17763.1098
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: CoreDump: including module base 0x0x7ffe85840000 size 0x0x000b3000
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: checksum 0x000b8f88 timestamp 0x250a0626
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: image file C:\Windows\System32\kernel32.dll
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: file version 10.0.17763.475
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: CoreDump: including module base 0x0x7ffe829f0000 size 0x0x00293000
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: checksum 0x00294c41 timestamp 0xc5222078
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: image file C:\Windows\System32\KERNELBASE.dll
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: file version 10.0.17763.1098
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: CoreDump: including module base 0x0x7ffe83200000 size 0x0x00197000
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: checksum 0x0019a7a1 timestamp 0xb1c0f0ee
2020-04-07T19:32:14.440+08:00| vcpu-1| I125: image file C:\Windows\System32\user32.dll

Does MiniVisor virtualize any of the hardware like network card?

Hello,

I am interested in UEFI level hypervisors for parapass-throgh approaches such that some of the hardware is virtualized and was wondering if MiniVisor has this ability?

If not, then how hard do you think that it would be to implement?

Thanks, and have a great day

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.

tandasat / minivisorpkg Goto Github PK

minivisorpkg's Introduction

MiniVisor

Showcase

Motivation

System Requirements

Advantages and Use Cases

Acknowledgments

minivisorpkg's People

Contributors

Stargazers

Watchers

Forkers

minivisorpkg's Issues

Recommend Projects

Recommend Topics

Recommend Org