我在Windows 7(64位)上安装了TomEE作为服务。 手动启动(通过start.bat)工作正常,但在尝试启动服务时,我得到:
" Windows无法在本地计算机上启动TomEE。有关更多信息,请查看系统事件日志。如果这是非Microsoft服务,请与服务供应商联系,并参阅特定于服务的错误代码4."
错误消息提到的日志条目是:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7024</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2015-06-29T04:15:32.139508900Z" />
<EventRecordID>96150</EventRecordID>
<Correlation />
<Execution ProcessID="896" ThreadID="7752" />
<Channel>System</Channel>
<Computer>...(I removed this string)...</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">TomEE</Data>
<Data Name="param2">%%4</Data>
</EventData>
</Event>
我尝试卸载并重新安装该服务。症状仍然存在。
服务说明是:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\TomEE]
"Type"=dword:00000010
"Start"=dword:00000002
"ErrorControl"=dword:00000001
"ImagePath"=hex(2):45,00,3a,00,5c,00,73,00,6f,00,66,00,74,00,77,00,61,00,72,00,\
65,00,5c,00,61,00,70,00,61,00,63,00,68,00,65,00,2d,00,74,00,6f,00,6d,00,65,\
00,65,00,2d,00,77,00,65,00,62,00,70,00,72,00,6f,00,66,00,69,00,6c,00,65,00,\
5c,00,62,00,69,00,6e,00,5c,00,54,00,6f,00,6d,00,45,00,45,00,2e,00,61,00,6d,\
00,64,00,36,00,34,00,2e,00,65,00,78,00,65,00,20,00,2f,00,2f,00,52,00,53,00,\
2f,00,2f,00,54,00,6f,00,6d,00,45,00,45,00,00,00
"DisplayName"="TomEE"
"DependOnService"=hex(7):54,00,63,00,70,00,69,00,70,00,00,00,41,00,66,00,64,00,\
00,00,00,00
"ObjectName"="LocalSystem"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\TomEE\Parameters]
在Regedit GUI中显示为:
ProcMon的日志文件包含过滤器:
就像:
<?xml version="1.0" encoding="UTF-8"?>
<procmon>
<processlist>
<!-- removed to shorten the file for the forum -->
<processlist>
<eventlist>
<!-- shortened file by removing <Time_of_Day> and same elements from every
<event>
<ProcessIndex>520</ProcessIndex>
<Process_Name>TomEE.amd64.exe</Process_Name>
<PID>8088</PID>
</event>
-->
<event>
<Operation>QueryInformationVolume</Operation>
<Path>C:</Path>
<Result>BUFFER OVERFLOW</Result>
<Detail>VolumeCreationTime: 02-Jun-14 11:15:49 PM, VolumeSerialNumber: 28EB-3828, SupportsObjects: True, VolumeLabel: WINȈ</Detail>
</event>
<event>
<Operation>QueryInformationVolume</Operation>
<Path>E:</Path>
<Result>BUFFER OVERFLOW</Result>
<Detail>VolumeCreationTime: 02-Jun-14 08:32:24 AM, VolumeSerialNumber: 4881-ADFA, SupportsObjects: True, VolumeLabel: DATȈ</Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\NTDLL.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\KERNEL32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\APISETSCHEMA.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\KERNELBASE.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\LOCALE.NLS</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\apache-tomee-webprofile\bin\TomEE.amd64.exe</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\ADVAPI32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\MSVCRT.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\SECHOST.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\RPCRT4.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\SHELL32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\SHLWAPI.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\GDI32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\USER32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\LPK.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\USP10.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\IMM32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\MSCTF.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\GLOBALIZATION\SORTING\SORTDEFAULT.NLS</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\LOGFILES\APACHE\TOMEE.2015-06-30.LOG</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\java\JRE8-64\BIN\SERVER\JVM.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\WSOCK32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\WS2_32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\NSI.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\WINMM.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\VERSION.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\PSAPI.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\Windows\system32\MSVCR100.dll</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\java\JRE8-64\BIN\VERIFY.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\java\JRE8-64\BIN\JAVA.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\TZRES.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\java\JRE8-64\BIN\INSTRUMENT.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\apache-tomee-webprofile\LIB\OPENEJB-JAVAAGENT.JAR</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFile</Operation>
<Path>C:\Windows\TEMP\HSPERFDATA_LPV0RAD1346E2$\7468</Path>
<Result>NAME NOT FOUND</Result>
<Detail>Desired Access: Read Data/List Directory, Execute/Traverse, Read Attributes, Disposition: Open, Options: Non-Directory File, Complete If Oplocked, Attributes: N, ShareMode: Read, Write, Delete, AllocationSize: n/a</Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\java\JRE8-64\BIN\ZIP.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\java\JRE8-64\LIB\META-INDEX</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\apache-tomee-webprofile\ENDORSED\ANNOTATION-API.JAR</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\apache-tomee-webprofile\ENDORSED\JAXB-API.JAR</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\java\JRE8-64\LIB\RT.JAR</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\OLE32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\PROFAPI.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\java\JRE8-64\LIB\EXT\META-INDEX</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\java\JRE8-64\LIB\TZMAPPINGS</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\java\JRE8-64\LIB\TZDB.DAT</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\EN-US\KERNELBASE.DLL.MUI</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\NTDLL.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\KERNEL32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\APISETSCHEMA.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\KERNELBASE.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\apache-tomee-webprofile\bin\TomEE.amd64.exe</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\ADVAPI32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\MSVCRT.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\SECHOST.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\RPCRT4.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\SHELL32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\SHLWAPI.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\GDI32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\USER32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\LPK.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\USP10.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\IMM32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\MSCTF.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\java\JRE8-64\BIN\SERVER\JVM.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\WSOCK32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\WS2_32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\NSI.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\WINMM.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\VERSION.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\PSAPI.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\Windows\system32\MSVCR100.dll</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\java\JRE8-64\BIN\VERIFY.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\java\JRE8-64\BIN\JAVA.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\java\JRE8-64\BIN\INSTRUMENT.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>E:\software\java\JRE8-64\BIN\ZIP.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\OLE32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\PROFAPI.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\sechost.dll</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\IMM32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\IMM32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFileMapping</Operation>
<Path>C:\WINDOWS\SYSTEM32\IMM32.DLL</Path>
<Result>FILE LOCKED WITH ONLY READERS</Result>
<Detail>SyncType: SyncTypeCreateSection, PageProtection: </Detail>
</event>
<event>
<Operation>CreateFile</Operation>
<Path>C:\PROGRAM FILES (X86)\SupTab\SEARCH~2.DLL</Path>
<Result>NAME NOT FOUND</Result>
<Detail>Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a</Detail>
</event>
<!-- removed further events to meet the forum's size limit -->
</eventlist>
</procmon>