187c.17d0: Log file opened: 4.3.20r96997 g_hStartupLog=0000000000000018 g_uNtVerCombined=0x611db110 187c.17d0: \SystemRoot\System32\ntdll.dll: 187c.17d0: CreationTime: 2013-10-09T05:04:13.968222200Z 187c.17d0: LastWriteTime: 2013-08-29T02:16:35.515578900Z 187c.17d0: ChangeTime: 2013-10-09T10:34:58.419877100Z 187c.17d0: FileAttributes: 0x20 187c.17d0: Size: 0x1a6dc0 187c.17d0: NT Headers: 0xe0 187c.17d0: Timestamp: 0x521eaf24 187c.17d0: Machine: 0x8664 - amd64 187c.17d0: Timestamp: 0x521eaf24 187c.17d0: Image Version: 6.1 187c.17d0: SizeOfImage: 0x1a9000 (1740800) 187c.17d0: Resource Dir: 0x151000 LB 0x560d8 187c.17d0: ProductName: Microsoft® Windows® Operating System 187c.17d0: ProductVersion: 6.1.7601.18247 187c.17d0: FileVersion: 6.1.7601.18247 (win7sp1_gdr.130828-1532) 187c.17d0: FileDescription: NT Layer DLL 187c.17d0: \SystemRoot\System32\kernel32.dll: 187c.17d0: CreationTime: 2014-04-08T23:39:54.562945500Z 187c.17d0: LastWriteTime: 2014-03-04T09:44:00.336000000Z 187c.17d0: ChangeTime: 2014-04-09T10:30:36.385108500Z 187c.17d0: FileAttributes: 0x20 187c.17d0: Size: 0x11c000 187c.17d0: NT Headers: 0xe8 187c.17d0: Timestamp: 0x5315a059 187c.17d0: Machine: 0x8664 - amd64 187c.17d0: Timestamp: 0x5315a059 187c.17d0: Image Version: 6.1 187c.17d0: SizeOfImage: 0x11f000 (1175552) 187c.17d0: Resource Dir: 0x116000 LB 0x528 187c.17d0: ProductName: Microsoft® Windows® Operating System 187c.17d0: ProductVersion: 6.1.7601.18409 187c.17d0: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144) 187c.17d0: FileDescription: Windows NT BASE API Client DLL 187c.17d0: \SystemRoot\System32\KernelBase.dll: 187c.17d0: CreationTime: 2014-05-14T05:25:49.773499100Z 187c.17d0: LastWriteTime: 2014-03-04T09:44:00.336000000Z 187c.17d0: ChangeTime: 2014-05-14T10:37:59.228795600Z 187c.17d0: FileAttributes: 0x20 187c.17d0: Size: 0x67c00 187c.17d0: NT Headers: 0xe8 187c.17d0: Timestamp: 0x5315a05a 187c.17d0: Machine: 0x8664 - amd64 187c.17d0: Timestamp: 0x5315a05a 187c.17d0: Image Version: 6.1 187c.17d0: SizeOfImage: 0x6c000 (442368) 187c.17d0: Resource Dir: 0x6a000 LB 0x530 187c.17d0: ProductName: Microsoft® Windows® Operating System 187c.17d0: ProductVersion: 6.1.7601.18409 187c.17d0: FileVersion: 6.1.7601.18409 (win7sp1_gdr.140303-2144) 187c.17d0: FileDescription: Windows NT BASE API Client DLL 187c.17d0: \SystemRoot\System32\apisetschema.dll: 187c.17d0: CreationTime: 2013-09-11T11:26:53.272644000Z 187c.17d0: LastWriteTime: 2013-08-02T02:12:20.275000000Z 187c.17d0: ChangeTime: 2013-09-11T16:36:25.113494200Z 187c.17d0: FileAttributes: 0x20 187c.17d0: Size: 0x1a00 187c.17d0: NT Headers: 0xc0 187c.17d0: Timestamp: 0x51fb15ca 187c.17d0: Machine: 0x8664 - amd64 187c.17d0: Timestamp: 0x51fb15ca 187c.17d0: Image Version: 6.1 187c.17d0: SizeOfImage: 0x50000 (327680) 187c.17d0: Resource Dir: 0x30000 LB 0x3f8 187c.17d0: ProductName: Microsoft® Windows® Operating System 187c.17d0: ProductVersion: 6.1.7601.18229 187c.17d0: FileVersion: 6.1.7601.18229 (win7sp1_gdr.130801-1533) 187c.17d0: FileDescription: ApiSet Schema DLL 187c.17d0: NtOpenDirectoryObject failed on \Driver: 0xc0000022 187c.17d0: supR3HardenedWinFindAdversaries: 0x4 187c.17d0: \SystemRoot\System32\drivers\aswHwid.sys: 187c.17d0: CreationTime: 2014-05-03T13:39:45.000810100Z 187c.17d0: LastWriteTime: 2014-11-23T23:52:45.522706300Z 187c.17d0: ChangeTime: 2014-11-23T23:52:50.046714200Z 187c.17d0: FileAttributes: 0x20 187c.17d0: Size: 0x7218 187c.17d0: NT Headers: 0xe8 187c.17d0: Timestamp: 0x545b6fa5 187c.17d0: Machine: 0x8664 - amd64 187c.17d0: Timestamp: 0x545b6fa5 187c.17d0: Image Version: 6.0 187c.17d0: SizeOfImage: 0xa000 (40960) 187c.17d0: Resource Dir: 0x8000 LB 0x460 187c.17d0: ProductName: Avast Antivirus 187c.17d0: ProductVersion: 10.0.2208.712 187c.17d0: FileVersion: 10.0.2208.712 187c.17d0: SpecialBuild: feb2012 187c.17d0: PrivateBuild: 0SpecialBuild 187c.17d0: FileDescription: avast! HWID 187c.17d0: \SystemRoot\System32\drivers\aswMonFlt.sys: 187c.17d0: CreationTime: 2009-12-19T00:08:09.801402500Z 187c.17d0: LastWriteTime: 2014-11-23T23:52:45.553906300Z 187c.17d0: ChangeTime: 2014-11-23T23:52:50.046714200Z 187c.17d0: FileAttributes: 0x20 187c.17d0: Size: 0x14550 187c.17d0: NT Headers: 0xe8 187c.17d0: Timestamp: 0x545b6f33 187c.17d0: Machine: 0x8664 - amd64 187c.17d0: Timestamp: 0x545b6f33 187c.17d0: Image Version: 6.0 187c.17d0: SizeOfImage: 0x22000 (139264) 187c.17d0: Resource Dir: 0x20000 LB 0x3b8 187c.17d0: ProductName: Avast Antivirus 187c.17d0: ProductVersion: 10.0.2208.712 187c.17d0: FileVersion: 10.0.2208.712 187c.17d0: FileDescription: avast! File System Minifilter for Windows 2003/Vista 187c.17d0: \SystemRoot\System32\drivers\aswRdr2.sys: 187c.17d0: CreationTime: 2012-02-26T02:39:27.718031200Z 187c.17d0: LastWriteTime: 2014-11-23T23:52:45.319905900Z 187c.17d0: ChangeTime: 2014-11-23T23:52:50.046714200Z 187c.17d0: FileAttributes: 0x20 187c.17d0: Size: 0x16d80 187c.17d0: NT Headers: 0xf0 187c.17d0: Timestamp: 0x545b6f6a 187c.17d0: Machine: 0x8664 - amd64 187c.17d0: Timestamp: 0x545b6f6a 187c.17d0: Image Version: 6.1 187c.17d0: SizeOfImage: 0x1a000 (106496) 187c.17d0: Resource Dir: 0x18000 LB 0x3a0 187c.17d0: ProductName: Avast Antivirus 187c.17d0: ProductVersion: 10.0.2208.712 187c.17d0: FileVersion: 10.0.2208.712 built by: WinDDK 187c.17d0: FileDescription: avast! WFP Redirect Driver 187c.17d0: \SystemRoot\System32\drivers\aswRvrt.sys: 187c.17d0: CreationTime: 2013-03-17T10:45:17.243177600Z 187c.17d0: LastWriteTime: 2014-11-23T23:52:45.569506400Z 187c.17d0: ChangeTime: 2014-11-23T23:52:50.046714200Z 187c.17d0: FileAttributes: 0x20 187c.17d0: Size: 0x100f0 187c.17d0: NT Headers: 0xf8 187c.17d0: Timestamp: 0x545b6f42 187c.17d0: Machine: 0x8664 - amd64 187c.17d0: Timestamp: 0x545b6f42 187c.17d0: Image Version: 6.0 187c.17d0: SizeOfImage: 0x13000 (77824) 187c.17d0: Resource Dir: 0x11000 LB 0x468 187c.17d0: ProductName: Avast Antivirus 187c.17d0: ProductVersion: 10.0.2208.712 187c.17d0: FileVersion: 10.0.2208.712 187c.17d0: SpecialBuild: feb2012 187c.17d0: PrivateBuild: 0SpecialBuild 187c.17d0: FileDescription: avast! Revert 187c.17d0: \SystemRoot\System32\drivers\aswSnx.sys: 187c.17d0: CreationTime: 2011-05-19T02:47:05.276632700Z 187c.17d0: LastWriteTime: 2014-11-23T23:53:01.278733900Z 187c.17d0: ChangeTime: 2014-11-23T23:53:01.278733900Z 187c.17d0: FileAttributes: 0x20 187c.17d0: Size: 0x100740 187c.17d0: NT Headers: 0xf0 187c.17d0: Timestamp: 0x546f1f38 187c.17d0: Machine: 0x8664 - amd64 187c.17d0: Timestamp: 0x546f1f38 187c.17d0: Image Version: 6.0 187c.17d0: SizeOfImage: 0x104000 (1064960) 187c.17d0: Resource Dir: 0xfc000 LB 0x380 187c.17d0: ProductName: Avast Antivirus 187c.17d0: ProductVersion: 10.0.2208.722 187c.17d0: FileVersion: 10.0.2208.722 187c.17d0: FileDescription: avast! Virtualization Driver 187c.17d0: \SystemRoot\System32\drivers\aswsp.sys: 187c.17d0: CreationTime: 2009-12-19T00:08:10.378602500Z 187c.17d0: LastWriteTime: 2014-11-23T23:52:45.631906500Z 187c.17d0: ChangeTime: 2014-11-23T23:52:50.046714200Z 187c.17d0: FileAttributes: 0x20 187c.17d0: Size: 0x6a990 187c.17d0: NT Headers: 0x100 187c.17d0: Timestamp: 0x545b7323 187c.17d0: Machine: 0x8664 - amd64 187c.17d0: Timestamp: 0x545b7323 187c.17d0: Image Version: 6.0 187c.17d0: SizeOfImage: 0x71000 (462848) 187c.17d0: Resource Dir: 0x6f000 LB 0x378 187c.17d0: ProductName: Avast Antivirus 187c.17d0: ProductVersion: 10.0.2208.712 187c.17d0: FileVersion: 10.0.2208.712 187c.17d0: FileDescription: avast! self protection module 187c.17d0: \SystemRoot\System32\drivers\aswStm.sys: 187c.17d0: CreationTime: 2014-01-04T16:49:43.867806800Z 187c.17d0: LastWriteTime: 2014-11-23T23:52:45.741106700Z 187c.17d0: ChangeTime: 2014-11-23T23:52:50.046714200Z 187c.17d0: FileAttributes: 0x20 187c.17d0: Size: 0x1c7f8 187c.17d0: NT Headers: 0x110 187c.17d0: Timestamp: 0x545b7364 187c.17d0: Machine: 0x8664 - amd64 187c.17d0: Timestamp: 0x545b7364 187c.17d0: Image Version: 6.2 187c.17d0: SizeOfImage: 0x1f000 (126976) 187c.17d0: Resource Dir: 0x1d000 LB 0x358 187c.17d0: ProductName: Avast Antivirus 187c.17d0: ProductVersion: 10.0.2208.712 187c.17d0: FileVersion: 10.0.2208.712 187c.17d0: FileDescription: Stream Filter 187c.17d0: \SystemRoot\System32\drivers\aswVmm.sys: 187c.17d0: CreationTime: 2013-03-17T10:45:18.086284700Z 187c.17d0: LastWriteTime: 2014-11-23T23:52:45.694306600Z 187c.17d0: ChangeTime: 2014-11-23T23:52:50.046714200Z 187c.17d0: FileAttributes: 0x20 187c.17d0: Size: 0x41570 187c.17d0: NT Headers: 0xf0 187c.17d0: Timestamp: 0x545b6f4b 187c.17d0: Machine: 0x8664 - amd64 187c.17d0: Timestamp: 0x545b6f4b 187c.17d0: Image Version: 6.0 187c.17d0: SizeOfImage: 0x43000 (274432) 187c.17d0: Resource Dir: 0x40000 LB 0x470 187c.17d0: ProductName: Avast Antivirus 187c.17d0: ProductVersion: 10.0.2208.712 187c.17d0: FileVersion: 10.0.2208.712 187c.17d0: SpecialBuild: feb2012 187c.17d0: PrivateBuild: 0SpecialBuild 187c.17d0: FileDescription: avast! VM Monitor 187c.17d0: Calling main() 187c.17d0: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2 187c.17d0: SUPR3HardenedMain: Respawn #1 187c.17d0: System32: \Device\HarddiskVolume2\Windows\System32 187c.17d0: WinSxS: \Device\HarddiskVolume2\Windows\winsxs 187c.17d0: KnownDllPath: C:\Windows\system32 187c.17d0: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports 187c.17d0: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe) 187c.17d0: supR3HardNtEnableThreadCreation: 187c.17d0: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00000000778fc340 pvNtTerminateThread=00000000779217e0 187c.17d0: supR3HardenedWinDoReSpawn(1): New child 1b8c.1c1c [kernel32]. 187c.17d0: supR3HardNtChildGatherData: PebBaseAddress=000007fffffde000 cbPeb=0x380 187c.17d0: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00000000778d0000 uNtDllChildAddr=00000000778d0000 187c.17d0: supR3HardenedWinSetupChildInit: uLdrInitThunk=00000000778fc340 187c.17d0: supR3HardenedWinSetupChildInit: Start child. 187c.17d0: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 0 ms. 187c.17d0: supR3HardNtChildPurify: Startup delay kludge #1/0: 513 ms, 47 sleeps 187c.17d0: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION 187c.17d0: *0000000000000000-fffffffffffeffff 0x0001/0x0000 0x0000000 187c.17d0: *0000000000010000-fffffffffffeffff 0x0004/0x0004 0x0020000 187c.17d0: *0000000000030000-000000000002bfff 0x0002/0x0002 0x0040000 187c.17d0: 0000000000034000-0000000000027fff 0x0001/0x0000 0x0000000 187c.17d0: *0000000000040000-000000000003efff 0x0004/0x0004 0x0020000 187c.17d0: 0000000000041000-ffffffffffe61fff 0x0001/0x0000 0x0000000 187c.17d0: *0000000000220000-0000000000123fff 0x0000/0x0004 0x0020000 187c.17d0: 000000000031c000-0000000000318fff 0x0104/0x0004 0x0020000 187c.17d0: 000000000031f000-000000000031dfff 0x0004/0x0004 0x0020000 187c.17d0: 0000000000320000-ffffffff88d6ffff 0x0001/0x0000 0x0000000 187c.17d0: *00000000778d0000-00000000778cefff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll 187c.17d0: 00000000778d1000-00000000777cefff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll 187c.17d0: 00000000779d3000-00000000779a3fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll 187c.17d0: 0000000077a02000-00000000779f9fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll 187c.17d0: 0000000077a0a000-0000000077a08fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll 187c.17d0: 0000000077a0b000-0000000077a07fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll 187c.17d0: 0000000077a0e000-00000000779a2fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\ntdll.dll 187c.17d0: 0000000077a79000-0000000070511fff 0x0001/0x0000 0x0000000 187c.17d0: *000000007efe0000-000000007dfdffff 0x0000/0x0002 0x0020000 187c.17d0: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000 187c.17d0: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000 187c.17d0: 000000007fff0000-ffffffffc063ffff 0x0001/0x0000 0x0000000 187c.17d0: *000000013f9a0000-000000013f99efff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 187c.17d0: 000000013f9a1000-000000013f91cfff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 187c.17d0: 000000013fa25000-000000013fa23fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 187c.17d0: 000000013fa26000-000000013f9e8fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 187c.17d0: 000000013fa63000-000000013fa61fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 187c.17d0: 000000013fa64000-000000013fa62fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 187c.17d0: 000000013fa65000-000000013fa62fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 187c.17d0: 000000013fa67000-000000013fa65fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 187c.17d0: 000000013fa68000-000000013fa66fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 187c.17d0: 000000013fa69000-000000013fa64fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 187c.17d0: 000000013fa6d000-000000013fa33fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 187c.17d0: 000000013faa6000-fffff8037f95bfff 0x0001/0x0000 0x0000000 187c.17d0: *000007feffbf0000-000007feffbeefff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Windows\System32\apisetschema.dll 187c.17d0: 000007feffbf1000-000007fdff831fff 0x0001/0x0000 0x0000000 187c.17d0: *000007fffffb0000-000007fffff8cfff 0x0002/0x0002 0x0040000 187c.17d0: 000007fffffd3000-000007fffffc9fff 0x0001/0x0000 0x0000000 187c.17d0: *000007fffffdc000-000007fffffd9fff 0x0004/0x0004 0x0020000 187c.17d0: *000007fffffde000-000007fffffdcfff 0x0004/0x0004 0x0020000 187c.17d0: 000007fffffdf000-000007fffffddfff 0x0001/0x0000 0x0000000 187c.17d0: *000007fffffe0000-000007fffffcffff 0x0001/0x0002 0x0020000 187c.17d0: apisetschema.dll: timestamp 0x51fb15ca (rc=VINF_SUCCESS) 187c.17d0: VirtualBox.exe: timestamp 0x54731167 (rc=VINF_SUCCESS) 187c.17d0: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports 187c.17d0: '\Device\HarddiskVolume2\Windows\System32\apisetschema.dll' has no imports 187c.17d0: '\Device\HarddiskVolume2\Windows\System32\ntdll.dll' has no imports 187c.17d0: supR3HardNtChildPurify: Done after 547 ms and 0 fixes (loop #0). 1b8c.1c1c: Log file opened: 4.3.20r96997 g_hStartupLog=0000000000000004 g_uNtVerCombined=0x611db110 1b8c.1c1c: supR3HardenedVmProcessInit: uNtDllAddr=00000000778d0000 187c.17d0: supR3HardNtEnableThreadCreation: 1b8c.1c1c: ntdll.dll: timestamp 0x521eaf24 (rc=VINF_SUCCESS) 1b8c.1c1c: New simple heap: #1 0000000000320000 LB 0x400000 (for 1740800 allocation) 1b8c.1c1c: System32: \Device\HarddiskVolume2\Windows\System32 1b8c.1c1c: WinSxS: \Device\HarddiskVolume2\Windows\winsxs 1b8c.1c1c: KnownDllPath: C:\Windows\system32 1b8c.1c1c: supR3HardenedVmProcessInit: Opening vboxdrv stub... 1b8c.1c1c: Error opening VBoxDrvStub: STATUS_OBJECT_NAME_NOT_FOUND 1b8c.1c1c: supR3HardenedWinReadErrorInfoDevice: NtCreateFile -> 0xc0000034 1b8c.1c1c: Error -101 in supR3HardenedWinReSpawn! (enmWhat=3) 1b8c.1c1c: NtCreateFile(\Device\VBoxDrvStub) failed: 0xc0000034 STATUS_OBJECT_NAME_NOT_FOUND (0 retries) Driver is probably stuck stopping/starting. Try 'sc.exe query vboxdrv' to get more information about its state. Rebooting may actually help. 187c.17d0: supR3HardenedWinCheckChild: enmRequest=2 rc=-101 enmWhat=3 supR3HardenedWinReSpawn: NtCreateFile(\Device\VBoxDrvStub) failed: 0xc0000034 STATUS_OBJECT_NAME_NOT_FOUND (0 retries) Driver is probably stuck stopping/starting. Try 'sc.exe query vboxdrv' to get more information about its state. Rebooting may actually help. 187c.17d0: Error -101 in supR3HardenedWinReSpawn! (enmWhat=3) 187c.17d0: NtCreateFile(\Device\VBoxDrvStub) failed: 0xc0000034 STATUS_OBJECT_NAME_NOT_FOUND (0 retries) Driver is probably stuck stopping/starting. Try 'sc.exe query vboxdrv' to get more information about its state. Rebooting may actually help.