Code Integrity Event Log Messages

Note

For a full list of Code Integrity event identifiers, see Understanding Application Control events.

The following are warning events that are logged to the Code Integrity operational log:

• Code Integrity is unable to verify the image integrity of the file <file name> because file hash could not be found on the system.

• Code Integrity detected an unsigned driver.

  This event is related to Software Quality Monitoring (SQM).

The following are informational events that are logged to the Code Integrity verbose log:

• Code Integrity found a set of per-page image hashes for the file <file name> in a catalog <catalog name>.

• Code Integrity found a set of per-page image hashes for the file <file name> in the image embedded certificate.

• Code Integrity found a file hash for the file <file name> in a catalog <catalog name>.

• Code Integrity found a file hash for the file <file name> in the image embedded certificate.

• Code Integrity determined an unsigned kernel module <file name> is loaded into the system. Check with the publisher to see whether a signed version of the kernel module is available.

• Code Integrity is unable to verify the image integrity of the file <file name> because the set of per-page image hashes could not be found on the system.

• Code Integrity is unable to verify the image integrity of the file <file name> because the set of per-page image hashes could not be found on the system. The image is allowed to load because kernel mode debugger is attached.

• Code Integrity is unable to verify the image integrity of the file <file name> because a file hash could not be found on the system. The image is allowed to load because kernel mode debugger is attached.

• Code Integrity was unable to load the <file name> catalog.

• Code Integrity successfully loaded the <file name> catalog.