2544.254c: Log file opened: 5.0.14r105127 g_hStartupLog=0000000000000070 g_uNtVerCombined=0xa037ab00 2544.254c: \SystemRoot\System32\ntdll.dll: 2544.254c: CreationTime: 2016-01-25T04:23:03.228793500Z 2544.254c: LastWriteTime: 2016-01-25T04:23:03.228793500Z 2544.254c: ChangeTime: 2016-01-30T22:01:40.039749400Z 2544.254c: FileAttributes: 0x20 2544.254c: Size: 0x1c3d38 2544.254c: NT Headers: 0xd8 2544.254c: Timestamp: 0x56a54488 2544.254c: Machine: 0x8664 - amd64 2544.254c: Timestamp: 0x56a54488 2544.254c: Image Version: 10.0 2544.254c: SizeOfImage: 0x1ca000 (1875968) 2544.254c: Resource Dir: 0x162000 LB 0x66370 2544.254c: ProductName: Microsoft® Windows® Operating System 2544.254c: ProductVersion: 10.0.14251.1000 2544.254c: FileVersion: 10.0.14251.1000 (rs1_release.160124-1059) 2544.254c: FileDescription: NT Layer DLL 2544.254c: \SystemRoot\System32\kernel32.dll: 2544.254c: CreationTime: 2016-01-25T04:22:39.523783500Z 2544.254c: LastWriteTime: 2016-01-25T04:22:39.523783500Z 2544.254c: ChangeTime: 2016-01-30T22:01:38.742823700Z 2544.254c: FileAttributes: 0x20 2544.254c: Size: 0xa9790 2544.254c: NT Headers: 0xf0 2544.254c: Timestamp: 0x56a54538 2544.254c: Machine: 0x8664 - amd64 2544.254c: Timestamp: 0x56a54538 2544.254c: Image Version: 10.0 2544.254c: SizeOfImage: 0xab000 (700416) 2544.254c: Resource Dir: 0xa9000 LB 0x528 2544.254c: ProductName: Microsoft® Windows® Operating System 2544.254c: ProductVersion: 10.0.14251.1000 2544.254c: FileVersion: 10.0.14251.1000 (rs1_release.160124-1059) 2544.254c: FileDescription: Windows NT BASE API Client DLL 2544.254c: \SystemRoot\System32\KernelBase.dll: 2544.254c: CreationTime: 2016-01-25T04:23:03.353803000Z 2544.254c: LastWriteTime: 2016-01-25T04:23:03.353803000Z 2544.254c: ChangeTime: 2016-01-30T22:01:38.774090200Z 2544.254c: FileAttributes: 0x20 2544.254c: Size: 0x1ef520 2544.254c: NT Headers: 0xf0 2544.254c: Timestamp: 0x56a544c9 2544.254c: Machine: 0x8664 - amd64 2544.254c: Timestamp: 0x56a544c9 2544.254c: Image Version: 10.0 2544.254c: SizeOfImage: 0x1f2000 (2039808) 2544.254c: Resource Dir: 0x1da000 LB 0x540 2544.254c: ProductName: Microsoft® Windows® Operating System 2544.254c: ProductVersion: 10.0.14251.1000 2544.254c: FileVersion: 10.0.14251.1000 (rs1_release.160124-1059) 2544.254c: FileDescription: Windows NT BASE API Client DLL 2544.254c: \SystemRoot\System32\apisetschema.dll: 2544.254c: CreationTime: 2016-01-25T04:22:57.775234300Z 2544.254c: LastWriteTime: 2016-01-25T04:22:57.775234300Z 2544.254c: ChangeTime: 2016-01-30T22:01:32.586366600Z 2544.254c: FileAttributes: 0x20 2544.254c: Size: 0x16710 2544.254c: NT Headers: 0xc0 2544.254c: Timestamp: 0x56a54713 2544.254c: Machine: 0x8664 - amd64 2544.254c: Timestamp: 0x56a54713 2544.254c: Image Version: 10.0 2544.254c: SizeOfImage: 0x18000 (98304) 2544.254c: Resource Dir: 0x17000 LB 0x400 2544.254c: ProductName: Microsoft® Windows® Operating System 2544.254c: ProductVersion: 10.0.14251.1000 2544.254c: FileVersion: 10.0.14251.1000 (rs1_release.160124-1059) 2544.254c: FileDescription: ApiSet Schema DLL 2544.254c: Found driver aswHwid (0x4) 2544.254c: Found driver aswVmm (0x4) 2544.254c: Found driver aswStm (0x4) 2544.254c: Found driver aswRvrt (0x4) 2544.254c: supR3HardenedWinFindAdversaries: 0x204 2544.254c: \SystemRoot\System32\drivers\aswHwid.sys: 2544.254c: CreationTime: 2016-01-31T04:46:53.777141100Z 2544.254c: LastWriteTime: 2016-01-31T04:46:50.434393300Z 2544.254c: ChangeTime: 2016-01-31T04:48:09.626515400Z 2544.254c: FileAttributes: 0x20 2544.254c: Size: 0x6ff0 2544.254c: NT Headers: 0xe8 2544.254c: Timestamp: 0x565d5f8d 2544.254c: Machine: 0x8664 - amd64 2544.254c: Timestamp: 0x565d5f8d 2544.254c: Image Version: 6.0 2544.254c: SizeOfImage: 0xa000 (40960) 2544.254c: Resource Dir: 0x8000 LB 0x398 2544.254c: ProductName: Avast Antivirus 2544.254c: ProductVersion: 11.1.2245.1540 2544.254c: FileVersion: 11.1.2245.1540 2544.254c: FileDescription: avast! HWID 2544.254c: \SystemRoot\System32\drivers\aswMonFlt.sys: 2544.254c: CreationTime: 2016-01-31T04:46:53.779130800Z 2544.254c: LastWriteTime: 2016-01-31T04:47:17.822583200Z 2544.254c: ChangeTime: 2016-01-31T04:48:09.626515400Z 2544.254c: FileAttributes: 0x20 2544.254c: Size: 0x17d70 2544.254c: NT Headers: 0xd8 2544.254c: Timestamp: 0x56685024 2544.254c: Machine: 0x8664 - amd64 2544.254c: Timestamp: 0x56685024 2544.254c: Image Version: 6.0 2544.254c: SizeOfImage: 0x25000 (151552) 2544.254c: Resource Dir: 0x23000 LB 0x3c0 2544.254c: ProductName: Avast Antivirus 2544.254c: ProductVersion: 11.1.2245.1545 2544.254c: FileVersion: 11.1.2245.1545 2544.254c: FileDescription: avast! File System Minifilter for Windows 2003/Vista 2544.254c: \SystemRoot\System32\drivers\aswRdr2.sys: 2544.254c: CreationTime: 2016-01-31T04:46:53.774140900Z 2544.254c: LastWriteTime: 2016-01-31T04:46:50.382345300Z 2544.254c: ChangeTime: 2016-01-31T04:48:09.627516700Z 2544.254c: FileAttributes: 0x20 2544.254c: Size: 0x16d58 2544.254c: NT Headers: 0xf8 2544.254c: Timestamp: 0x565d5f70 2544.254c: Machine: 0x8664 - amd64 2544.254c: Timestamp: 0x565d5f70 2544.254c: Image Version: 6.1 2544.254c: SizeOfImage: 0x1a000 (106496) 2544.254c: Resource Dir: 0x18000 LB 0x3a8 2544.254c: ProductName: Avast Antivirus 2544.254c: ProductVersion: 11.1.2245.1540 2544.254c: FileVersion: 11.1.2245.1540 built by: WinDDK 2544.254c: FileDescription: avast! WFP Redirect Driver 2544.254c: \SystemRoot\System32\drivers\aswRvrt.sys: 2544.254c: CreationTime: 2016-01-31T04:46:53.782154100Z 2544.254c: LastWriteTime: 2016-01-31T04:46:50.442400900Z 2544.254c: ChangeTime: 2016-01-31T04:48:09.627516700Z 2544.254c: FileAttributes: 0x20 2544.254c: Size: 0xfec8 2544.254c: NT Headers: 0xf8 2544.254c: Timestamp: 0x565d5f79 2544.254c: Machine: 0x8664 - amd64 2544.254c: Timestamp: 0x565d5f79 2544.254c: Image Version: 6.0 2544.254c: SizeOfImage: 0x13000 (77824) 2544.254c: Resource Dir: 0x11000 LB 0x398 2544.254c: ProductName: Avast Antivirus 2544.254c: ProductVersion: 11.1.2245.1540 2544.254c: FileVersion: 11.1.2245.1540 2544.254c: FileDescription: avast! Revert 2544.254c: \SystemRoot\System32\drivers\aswSnx.sys: 2544.254c: CreationTime: 2016-01-31T04:46:53.732086500Z 2544.254c: LastWriteTime: 2016-01-31T04:47:18.327674200Z 2544.254c: ChangeTime: 2016-01-31T04:48:09.627516700Z 2544.254c: FileAttributes: 0x20 2544.254c: Size: 0x1040f8 2544.254c: NT Headers: 0xf0 2544.254c: Timestamp: 0x569e3ea4 2544.254c: Machine: 0x8664 - amd64 2544.254c: Timestamp: 0x569e3ea4 2544.254c: Image Version: 6.0 2544.254c: SizeOfImage: 0x104000 (1064960) 2544.254c: Resource Dir: 0xfc000 LB 0x388 2544.254c: ProductName: Avast Antivirus 2544.254c: ProductVersion: 11.1.2245.1552 2544.254c: FileVersion: 11.1.2245.1552 2544.254c: FileDescription: avast! Virtualization Driver 2544.254c: \SystemRoot\System32\drivers\aswsp.sys: 2544.254c: CreationTime: 2016-01-31T04:46:53.786161400Z 2544.254c: LastWriteTime: 2016-01-31T04:47:18.344693600Z 2544.254c: ChangeTime: 2016-01-31T04:48:09.629518900Z 2544.254c: FileAttributes: 0x20 2544.254c: Size: 0x71580 2544.254c: NT Headers: 0x100 2544.254c: Timestamp: 0x569e426c 2544.254c: Machine: 0x8664 - amd64 2544.254c: Timestamp: 0x569e426c 2544.254c: Image Version: 6.0 2544.254c: SizeOfImage: 0x76000 (483328) 2544.254c: Resource Dir: 0x74000 LB 0x380 2544.254c: ProductName: Avast Antivirus 2544.254c: ProductVersion: 11.1.2245.1552 2544.254c: FileVersion: 11.1.2245.1552 2544.254c: FileDescription: avast! self protection module 2544.254c: \SystemRoot\System32\drivers\aswStm.sys: 2544.254c: CreationTime: 2016-01-31T04:46:53.791678500Z 2544.254c: LastWriteTime: 2016-01-31T04:46:50.485491000Z 2544.254c: ChangeTime: 2016-01-31T04:48:09.630519400Z 2544.254c: FileAttributes: 0x20 2544.254c: Size: 0x25ea8 2544.254c: NT Headers: 0x100 2544.254c: Timestamp: 0x565d651b 2544.254c: Machine: 0x8664 - amd64 2544.254c: Timestamp: 0x565d651b 2544.254c: Image Version: 6.2 2544.254c: SizeOfImage: 0x28000 (163840) 2544.254c: Resource Dir: 0x26000 LB 0x360 2544.254c: ProductName: Avast Antivirus 2544.254c: ProductVersion: 11.1.2245.1540 2544.254c: FileVersion: 11.1.2245.1540 2544.254c: FileDescription: Stream Filter 2544.254c: \SystemRoot\System32\drivers\aswVmm.sys: 2544.254c: CreationTime: 2016-01-31T04:46:53.789175000Z 2544.254c: LastWriteTime: 2016-01-31T04:46:50.466440700Z 2544.254c: ChangeTime: 2016-01-31T04:48:09.631520300Z 2544.254c: FileAttributes: 0x20 2544.254c: Size: 0x42d78 2544.254c: NT Headers: 0xe8 2544.254c: Timestamp: 0x565d63d1 2544.254c: Machine: 0x8664 - amd64 2544.254c: Timestamp: 0x565d63d1 2544.254c: Image Version: 6.0 2544.254c: SizeOfImage: 0x45000 (282624) 2544.254c: Resource Dir: 0x42000 LB 0x3a0 2544.254c: ProductName: Avast Antivirus 2544.254c: ProductVersion: 11.1.2245.1540 2544.254c: FileVersion: 11.1.2245.1540 2544.254c: FileDescription: avast! VM Monitor 2544.254c: \SystemRoot\System32\drivers\NNSNAHSL.sys: 2544.254c: CreationTime: 2014-12-31T11:39:32.000000000Z 2544.254c: LastWriteTime: 2014-12-31T11:39:32.000000000Z 2544.254c: ChangeTime: 2016-01-30T20:05:47.541075800Z 2544.254c: FileAttributes: 0x20 2544.254c: Size: 0xc310 2544.254c: NT Headers: 0xe8 2544.254c: Timestamp: 0x54a3dc8d 2544.254c: Machine: 0x8664 - amd64 2544.254c: Timestamp: 0x54a3dc8d 2544.254c: Image Version: 6.2 2544.254c: SizeOfImage: 0xf000 (61440) 2544.254c: Resource Dir: 0xd000 LB 0x368 2544.254c: ProductName: Nano Network Security 2544.254c: ProductVersion: 3.1.0.342 2544.254c: FileVersion: 4.1.0.47 2544.254c: FileDescription: Network Activity Hook Server LWF 2544.254c: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox' 2544.254c: Calling main() 2544.254c: SUPR3HardenedMain: pszProgName=VirtualBox fFlags=0x2 2544.254c: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox' 2544.254c: SUPR3HardenedMain: Respawn #1 2544.254c: System32: \Device\HarddiskVolume2\Windows\System32 2544.254c: WinSxS: \Device\HarddiskVolume2\Windows\WinSxS 2544.254c: KnownDllPath: C:\WINDOWS\system32 2544.254c: '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe' has no imports 2544.254c: supHardenedWinVerifyImageByHandle: -> 0 (\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe) 2544.254c: supR3HardNtEnableThreadCreation: 2544.254c: supR3HardNtDisableThreadCreation: pvLdrInitThunk=00007ffb6585c150 pvNtTerminateThread=00007ffb658d1400 2544.254c: supR3HardenedWinDoReSpawn(1): New child 2550.1174 [kernel32]. 2544.254c: supR3HardNtChildGatherData: PebBaseAddress=000000000027a000 cbPeb=0x388 2544.254c: supR3HardNtPuChFindNtdll: uNtDllParentAddr=00007ffb65830000 uNtDllChildAddr=00007ffb65830000 2544.254c: supR3HardenedWinSetupChildInit: uLdrInitThunk=00007ffb6585c150 2544.254c: supR3HardenedWinSetupChildInit: Start child. 2544.254c: supR3HardNtChildWaitFor: Found expected request 0 (PurifyChildAndCloseHandles) after 8 ms. 2544.254c: supR3HardNtChildPurify: Startup delay kludge #1/0: 517 ms, 59 sleeps 2544.254c: supHardNtVpScanVirtualMemory: enmKind=CHILD_PURIFICATION 2544.254c: *0000000000000000-fffffffffffeffff 0x0001/0x0000 0x0000000 2544.254c: *0000000000010000-fffffffffffeffff 0x0004/0x0004 0x0020000 2544.254c: *0000000000030000-000000000001afff 0x0002/0x0002 0x0040000 2544.254c: 0000000000045000-0000000000039fff 0x0001/0x0000 0x0000000 2544.254c: *0000000000050000-fffffffffff53fff 0x0000/0x0004 0x0020000 2544.254c: 000000000014c000-0000000000148fff 0x0104/0x0004 0x0020000 2544.254c: 000000000014f000-000000000014dfff 0x0004/0x0004 0x0020000 2544.254c: *0000000000150000-000000000014bfff 0x0002/0x0002 0x0040000 2544.254c: 0000000000154000-0000000000147fff 0x0001/0x0000 0x0000000 2544.254c: *0000000000160000-000000000015dfff 0x0004/0x0004 0x0020000 2544.254c: 0000000000162000-0000000000153fff 0x0001/0x0000 0x0000000 2544.254c: *0000000000170000-000000000016cfff 0x0004/0x0004 0x0020000 2544.254c: 0000000000173000-00000000000e5fff 0x0001/0x0000 0x0000000 2544.254c: *0000000000200000-0000000000185fff 0x0000/0x0004 0x0020000 2544.254c: 000000000027a000-0000000000276fff 0x0004/0x0004 0x0020000 2544.254c: 000000000027d000-00000000000f9fff 0x0000/0x0004 0x0020000 2544.254c: 0000000000400000-ffffffff8081ffff 0x0001/0x0000 0x0000000 2544.254c: *000000007ffe0000-000000007ffdefff 0x0002/0x0002 0x0020000 2544.254c: 000000007ffe1000-000000007ffd1fff 0x0000/0x0002 0x0020000 2544.254c: 000000007fff0000-ffff8009b63dffff 0x0001/0x0000 0x0000000 2544.254c: *00007ff749c00000-00007ff749bdcfff 0x0002/0x0002 0x0040000 2544.254c: 00007ff749c23000-00007ff748e65fff 0x0001/0x0000 0x0000000 2544.254c: *00007ff74a9e0000-00007ff74a9e0fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: 00007ff74a9e1000-00007ff74a9e7fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: 00007ff74a9e8000-00007ff74a9e8fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: 00007ff74a9e9000-00007ff74a9e9fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: 00007ff74a9ea000-00007ff74a9eafff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: 00007ff74a9eb000-00007ff74a9f7fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: 00007ff74a9f8000-00007ff74a9f9fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: 00007ff74a9fa000-00007ff74aa02fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: 00007ff74aa03000-00007ff74aa03fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: 00007ff74aa04000-00007ff74aa67fff 0x0020/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: 00007ff74aa68000-00007ff74aa68fff 0x0080/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: 00007ff74aa69000-00007ff74aa73fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: 00007ff74aa74000-00007ff74aa74fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: 00007ff74aa75000-00007ff74aab3fff 0x0002/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: 00007ff74aab4000-00007ff74aab4fff 0x0004/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: 00007ff74aab5000-00007ff74aab5fff 0x0008/0x0080 0x1000000 \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe 2544.254c: Error (rc=-5644): 2544.254c: Too many regions for VirtualBox.exe. 2544.254c: Error (rc=-5644): 2544.254c: supHardenedWinVerifyProcess failed with Unknown Status -5644 (0xffffe9f4): Too many regions for VirtualBox.exe. 2544.254c: Error -5644 in supR3HardNtChildPurify! (enmWhat=5) 2544.254c: supHardenedWinVerifyProcess failed with Unknown Status -5644 (0xffffe9f4): Too many regions for VirtualBox.exe. 2544.254c: supR3HardNtEnableThreadCreation: