Log bizard sur mon bureau

Log bizard sur mon bureau - Sécurité - Windows & Software

Marsh Posté le 27-01-2007 à 13:26:34    

Ce matin je vois un fichier text sur mon bureau donc je l'ouvre et dedant ya ceci oO
 
#
# An unexpected error has been detected by HotSpot Virtual Machine:
#
#  EXCEPTION_ACCESS_VIOLATION (0xc0000005) at pc=0x7c9110f3, pid=3896, tid=2744
#
# Java VM: Java HotSpot(TM) Client VM (1.5.0_10-b03 mixed mode, sharing)
# Problematic frame:
# C  [ntdll.dll+0x10f3]
#
 
---------------  T H R E A D  ---------------
 
Current thread (0x0938c420):  JavaThread "AWT-EventQueue-2" [_thread_in_native, id=2744]
 
siginfo: ExceptionCode=0xc0000005, writing address 0x02e8648c
 
Registers:
EAX=0x00000000, EBX=0x2b3482d8, ECX=0x09e5f750, EDX=0x02e86484
ESP=0x09e5f760, EBP=0x09e5f798, ESI=0x02e86470, EDI=0x02e86484
EIP=0x7c9110f3, EFLAGS=0x00010246
 
Top of Stack: (sp=0x09e5f760)
0x09e5f760:   6d0d94c8 02e86484 0938c420 0938c4e0
0x09e5f770:   6d0c96c3 0938c420 2aaf3128 2b3482d8
0x09e5f780:   23386f58 00000000 09e5f774 09e5fc64
0x09e5f790:   6d0f56d0 00000000 09e5f7cc 0d298a5d
0x09e5f7a0:   0938c4e0 09e5f7dc d6bbd389 23386f58
0x09e5f7b0:   09e5f7a8 00000000 09e5f7dc 2b349250
0x09e5f7c0:   00000000 2b3482d8 09e5f7dc 09e5f7fc
0x09e5f7d0:   0d2929e3 00000000 0d296509 23386f58  
 
Instructions: (pc=0x7c9110f3)
0x7c9110e3:   24 00 00 00 00 90 90 90 90 90 8b 54 24 04 33 c0
0x7c9110f3:   ff 4a 08 75 26 89 42 0c f0 ff 4a 04 7d 03 c2 04  
 
 
Stack: [0x09d60000,0x09e60000),  sp=0x09e5f760,  free space=1021k
Native frames: (J=compiled Java code, j=interpreted, Vv=VM code, C=native code)
C  [ntdll.dll+0x10f3]
j  sun.awt.windows.WComponentPeer._dispose()V+0
j  sun.awt.windows.WComponentPeer.disposeImpl()V+23
j  sun.awt.windows.WWindowPeer.disposeImpl()V+25
j  sun.awt.windows.WObjectPeer.dispose()V+42
j  java.awt.Component.removeNotify()V+211
j  java.awt.Container.removeNotify()V+67
j  java.awt.Frame.removeNotify()V+51
j  java.awt.Window$1DisposeAction.run()V+105
j  java.awt.Window.doDispose()V+16
j  java.awt.Window.dispose()V+1
j  sun.awt.AppContext$4.run()V+16
J  java.awt.event.InvocationEvent.dispatch()V
J  java.awt.EventQueue.dispatchEvent(Ljava/awt/AWTEvent;)V
J  java.awt.EventDispatchThread.pumpOneEventForHierarchy(ILjava/awt/Component;)Z
J  java.awt.EventDispatchThread.pumpEventsForHierarchy(ILjava/awt/Conditional;Ljava/awt/Component;)V
v  ~OSRAdapter
j  java.awt.EventDispatchThread.pumpEvents(ILjava/awt/Conditional;)V+4
j  java.awt.EventDispatchThread.pumpEvents(Ljava/awt/Conditional;)V+3
j  java.awt.EventDispatchThread.run()V+9
v  ~StubRoutines::call_stub
C  0x0635757c
C  0x063ae804
C  0x0635744d
C  0x063571aa
C  0x06371de8
C  0x063dfad4
C  0x063dfaa2
C  [msvcrt.dll+0x2a3b0]
C  [kernel32.dll+0xb683]
 
Java frames: (J=compiled Java code, j=interpreted, Vv=VM code)
j  sun.awt.windows.WComponentPeer._dispose()V+0
j  sun.awt.windows.WComponentPeer.disposeImpl()V+23
j  sun.awt.windows.WWindowPeer.disposeImpl()V+25
j  sun.awt.windows.WObjectPeer.dispose()V+42
j  java.awt.Component.removeNotify()V+211
j  java.awt.Container.removeNotify()V+67
j  java.awt.Frame.removeNotify()V+51
j  java.awt.Window$1DisposeAction.run()V+105
j  java.awt.Window.doDispose()V+16
j  java.awt.Window.dispose()V+1
j  sun.awt.AppContext$4.run()V+16
J  java.awt.event.InvocationEvent.dispatch()V
J  java.awt.EventQueue.dispatchEvent(Ljava/awt/AWTEvent;)V
J  java.awt.EventDispatchThread.pumpOneEventForHierarchy(ILjava/awt/Component;)Z
J  java.awt.EventDispatchThread.pumpEventsForHierarchy(ILjava/awt/Conditional;Ljava/awt/Component;)V
v  ~OSRAdapter
j  java.awt.EventDispatchThread.pumpEvents(ILjava/awt/Conditional;)V+4
j  java.awt.EventDispatchThread.pumpEvents(Ljava/awt/Conditional;)V+3
j  java.awt.EventDispatchThread.run()V+9
v  ~StubRoutines::call_stub
 
---------------  P R O C E S S  ---------------
 
Java Threads: ( => current thread )
  0x093930f8 JavaThread "Thread-377" [_thread_blocked, id=5000]
  0x02ea1e98 JavaThread "Thread-5" [_thread_blocked, id=4748]
=>0x0938c420 JavaThread "AWT-EventQueue-2" [_thread_in_native, id=2744]
  0x093dedd0 JavaThread "AWT-EventQueue-0" [_thread_blocked, id=4556]
  0x0954fdc8 JavaThread "traceMsgQueueThread" daemon [_thread_blocked, id=5260]
  0x093da880 JavaThread "AWT-Windows" daemon [_thread_in_native, id=5536]
  0x093b4db0 JavaThread "AWT-Shutdown" [_thread_blocked, id=5356]
  0x0937d2c8 JavaThread "Java2D Disposer" daemon [_thread_blocked, id=5360]
  0x02e85330 JavaThread "Low Memory Detector" daemon [_thread_blocked, id=5336]
  0x02e992c0 JavaThread "CompilerThread0" daemon [_thread_blocked, id=1416]
  0x008ce628 JavaThread "Signal Dispatcher" daemon [_thread_blocked, id=1484]
  0x093af730 JavaThread "Finalizer" daemon [_thread_blocked, id=6132]
  0x093ba538 JavaThread "Reference Handler" daemon [_thread_blocked, id=4120]
 
Other Threads:
  0x093afcd0 VMThread [id=6136]
  0x093afe98 WatcherThread [id=5268]
 
VM state:not at safepoint (normal execution)
 
VM Mutex/Monitor currently owned by a thread: None
 
Heap
 def new generation   total 576K, used 243K [0x22a70000, 0x22b10000, 0x22f50000)
  eden space 512K,  43% used [0x22a70000, 0x22aa72e0, 0x22af0000)
  from space 64K,  35% used [0x22b00000, 0x22b05a80, 0x22b10000)
  to   space 64K,   0% used [0x22af0000, 0x22af0000, 0x22b00000)
 tenured generation   total 7292K, used 5333K [0x22f50000, 0x2366f000, 0x26a70000)
   the space 7292K,  73% used [0x22f50000, 0x23485500, 0x23485600, 0x2366f000)
 compacting perm gen  total 8192K, used 2412K [0x26a70000, 0x27270000, 0x2aa70000)
   the space 8192K,  29% used [0x26a70000, 0x26ccb288, 0x26ccb400, 0x27270000)
    ro space 8192K,  63% used [0x2aa70000, 0x2af7eda8, 0x2af7ee00, 0x2b270000)
    rw space 12288K,  46% used [0x2b270000, 0x2b8112b8, 0x2b811400, 0x2be70000)
 
Dynamic libraries:
0x00400000 - 0x0049a000  C:\Program Files\Internet Explorer\iexplore.exe
0x7c910000 - 0x7c9c7000  C:\WINDOWS\system32\ntdll.dll
0x7c800000 - 0x7c905000  C:\WINDOWS\system32\kernel32.dll
0x77da0000 - 0x77e4c000  C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 - 0x77ee1000  C:\WINDOWS\system32\RPCRT4.dll
0x77ef0000 - 0x77f37000  C:\WINDOWS\system32\GDI32.dll
0x77d10000 - 0x77da0000  C:\WINDOWS\system32\USER32.dll
0x77be0000 - 0x77c38000  C:\WINDOWS\system32\msvcrt.dll
0x77f40000 - 0x77fb6000  C:\WINDOWS\system32\SHLWAPI.dll
0x7c9d0000 - 0x7d1f3000  C:\WINDOWS\system32\SHELL32.dll
0x774a0000 - 0x775dd000  C:\WINDOWS\system32\ole32.dll
0x61410000 - 0x61534000  C:\WINDOWS\system32\urlmon.dll
0x770e0000 - 0x7716c000  C:\WINDOWS\system32\OLEAUT32.dll
0x5dca0000 - 0x5dce5000  C:\WINDOWS\system32\iertutil.dll
0x77bd0000 - 0x77bd8000  C:\WINDOWS\system32\VERSION.dll
0x76320000 - 0x7633d000  C:\WINDOWS\system32\IMM32.DLL
0x77390000 - 0x77493000  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
0x58b50000 - 0x58bea000  C:\WINDOWS\system32\comctl32.dll
0x7e1e0000 - 0x7e7a9000  C:\WINDOWS\system32\IEFRAME.dll
0x76ba0000 - 0x76bab000  C:\WINDOWS\system32\PSAPI.DLL
0x5b090000 - 0x5b0c8000  C:\WINDOWS\system32\UxTheme.dll
0x651b0000 - 0x651d2000  C:\PROGRA~1\FICHIE~1\SYMANT~1\ANTISPAM\ASOEHOOK.DLL
0x7c340000 - 0x7c396000  C:\WINDOWS\system32\MSVCR71.dll
0x6af90000 - 0x6afee000  C:\Program Files\Fichiers communs\Symantec Shared\ccL40.dll
0x7c3a0000 - 0x7c41b000  C:\WINDOWS\system32\MSVCP71.dll
0x74690000 - 0x746dc000  C:\WINDOWS\system32\MSCTF.dll
0x20000000 - 0x202da000  C:\WINDOWS\system32\xpsp2res.dll
0x75140000 - 0x7516e000  C:\WINDOWS\system32\msctfime.ime
0x5dff0000 - 0x5e01f000  C:\WINDOWS\system32\IEUI.dll
0x76310000 - 0x76315000  C:\WINDOWS\system32\MSIMG32.dll
0x4eb80000 - 0x4ed23000  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll
0x47060000 - 0x47081000  C:\WINDOWS\system32\xmllite.dll
0x77b50000 - 0x77b72000  C:\WINDOWS\system32\apphelp.dll
0x76f80000 - 0x76fff000  C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 - 0x770d4000  C:\WINDOWS\system32\COMRes.dll
0x74660000 - 0x7468a000  C:\WINDOWS\system32\msimtf.dll
0x77fc0000 - 0x77fd1000  C:\WINDOWS\system32\Secur32.dll
0x765b0000 - 0x76606000  C:\WINDOWS\System32\cscui.dll
0x76590000 - 0x765ad000  C:\WINDOWS\System32\CSCDLL.dll
0x778e0000 - 0x779d8000  C:\WINDOWS\system32\SETUPAPI.dll
0x325c0000 - 0x325d2000  C:\Program Files\Microsoft Office\OFFICE11\msohev.dll
0x61930000 - 0x6197a000  C:\Program Files\Internet Explorer\ieproxy.dll
0x77720000 - 0x77890000  C:\WINDOWS\system32\shdocvw.dll
0x779e0000 - 0x77a76000  C:\WINDOWS\system32\CRYPT32.dll
0x77a80000 - 0x77a92000  C:\WINDOWS\system32\MSASN1.dll
0x76610000 - 0x76694000  C:\WINDOWS\system32\CRYPTUI.dll
0x76be0000 - 0x76c0e000  C:\WINDOWS\system32\WINTRUST.dll
0x76c40000 - 0x76c68000  C:\WINDOWS\system32\IMAGEHLP.dll
0x6fee0000 - 0x6ff35000  C:\WINDOWS\system32\NETAPI32.dll
0x771b0000 - 0x7727e000  C:\WINDOWS\system32\WININET.dll
0x01750000 - 0x01759000  C:\WINDOWS\system32\Normaliz.dll
0x76f10000 - 0x76f3d000  C:\WINDOWS\system32\WLDAP32.dll
0x019f0000 - 0x01cb6000  C:\WINDOWS\system32\msi.dll
0x01d50000 - 0x01e01000  C:\WINDOWS\system32\SXS.DLL
0x75d30000 - 0x75dc1000  C:\WINDOWS\system32\MLANG.dll
0x719f0000 - 0x71a07000  C:\WINDOWS\system32\ws2_32.dll
0x719e0000 - 0x719e8000  C:\WINDOWS\system32\WS2HELP.dll
0x68000000 - 0x6804e000  C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_19_0.dll
0x71a10000 - 0x71a1a000  C:\WINDOWS\system32\WSOCK32.dll
0x76ae0000 - 0x76b0f000  C:\WINDOWS\system32\WINMM.dll
0x10000000 - 0x1000e000  C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
0x6d600000 - 0x6d66a000  C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
0x5f140000 - 0x5f157000  C:\WINDOWS\system32\OLEPRO32.DLL
0x66f70000 - 0x66f8a000  C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
0x6b350000 - 0x6b367000  C:\Program Files\Fichiers communs\Symantec Shared\ccVrTrst.dll
0x67170000 - 0x67174000  C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\SHEXTRES.DLL
0x6a1f0000 - 0x6a212000  C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
0x71990000 - 0x719d0000  C:\WINDOWS\system32\mswsock.dll
0x62e40000 - 0x62e99000  C:\WINDOWS\system32\hnetcfg.dll
0x719d0000 - 0x719d8000  C:\WINDOWS\System32\wshtcpip.dll
0x76e90000 - 0x76ecc000  C:\WINDOWS\system32\RASAPI32.dll
0x76e40000 - 0x76e52000  C:\WINDOWS\system32\rasman.dll
0x76e60000 - 0x76e8f000  C:\WINDOWS\system32\TAPI32.dll
0x76e30000 - 0x76e3e000  C:\WINDOWS\system32\rtutils.dll
0x76960000 - 0x76a15000  C:\WINDOWS\system32\USERENV.dll
0x72220000 - 0x72225000  C:\WINDOWS\system32\sensapi.dll
0x71ca0000 - 0x71cbc000  C:\WINDOWS\system32\actxprxy.dll
0x76f70000 - 0x76f76000  C:\WINDOWS\system32\rasadhlp.dll
0x76ed0000 - 0x76ef7000  C:\WINDOWS\system32\DNSAPI.dll
0x77c40000 - 0x77c63000  C:\WINDOWS\system32\msv1_0.dll
0x76d10000 - 0x76d29000  C:\WINDOWS\system32\iphlpapi.dll
0x7e830000 - 0x7eb9f000  C:\WINDOWS\system32\mshtml.dll
0x02cf0000 - 0x02d19000  C:\WINDOWS\system32\msls31.dll
0x72ea0000 - 0x72f00000  C:\WINDOWS\system32\ieapfltr.dll
0x77650000 - 0x77671000  C:\WINDOWS\system32\NTMARTA.DLL
0x71b50000 - 0x71b63000  C:\WINDOWS\system32\SAMLIB.dll
0x63380000 - 0x633f8000  C:\WINDOWS\system32\jscript.dll
0x1b000000 - 0x1b00c000  C:\WINDOWS\system32\ImgUtil.dll
0x58760000 - 0x58792000  C:\WINDOWS\system32\iepeers.dll
0x72f50000 - 0x72f76000  C:\WINDOWS\system32\WINSPOOL.DRV
0x748f0000 - 0x749fe000  C:\WINDOWS\system32\msxml3.dll
0x74bf0000 - 0x74c1c000  C:\WINDOWS\system32\oleacc.dll
0x76010000 - 0x76075000  C:\WINDOWS\system32\MSVCP60.dll
0x5a900000 - 0x5a971000  C:\WINDOWS\system32\msfeeds.dll
0x76200000 - 0x76277000  C:\WINDOWS\system32\mshtmled.dll
0x046c0000 - 0x046dc000  C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll
0x72c70000 - 0x72c79000  C:\WINDOWS\system32\wdmaud.drv
0x72c60000 - 0x72c68000  C:\WINDOWS\system32\msacm32.drv
0x77bb0000 - 0x77bc5000  C:\WINDOWS\system32\MSACM32.dll
0x77ba0000 - 0x77ba7000  C:\WINDOWS\system32\midimap.dll
0x73300000 - 0x73365000  C:\WINDOWS\system32\vbscript.dll
0x30000000 - 0x302ee000  C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx
0x76340000 - 0x7638a000  C:\WINDOWS\system32\comdlg32.dll
0x76790000 - 0x767b7000  C:\WINDOWS\system32\schannel.dll
0x07510000 - 0x07a59000  C:\WINDOWS\system32\wmp.dll
0x75ba0000 - 0x75bc1000  C:\WINDOWS\system32\MSVFW32.dll
0x08270000 - 0x085b4000  C:\WINDOWS\system32\wmploc.dll
0x47400000 - 0x47446000  C:\WINDOWS\system32\wmpdxm.dll
0x71a60000 - 0x71a72000  C:\WINDOWS\system32\MPR.dll
0x09980000 - 0x09bbf000  C:\WINDOWS\system32\wmvcore.dll
0x070e0000 - 0x0711b000  C:\WINDOWS\system32\WMASF.DLL
0x07130000 - 0x0723c000  C:\WINDOWS\system32\wmnetmgr.dll
0x742e0000 - 0x742ef000  C:\WINDOWS\system32\wdigest.dll
0x0ffd0000 - 0x0fff8000  C:\WINDOWS\system32\rsaenh.dll
0x6d8f0000 - 0x6d8fa000  C:\WINDOWS\system32\ddrawex.dll
0x736b0000 - 0x736f9000  C:\WINDOWS\system32\DDRAW.dll
0x73b10000 - 0x73b16000  C:\WINDOWS\system32\DCIMAN32.dll
0x77cd0000 - 0x77d03000  C:\WINDOWS\system32\netman.dll
0x76cf0000 - 0x76d08000  C:\WINDOWS\system32\MPRAPI.dll
0x77c90000 - 0x77cc2000  C:\WINDOWS\system32\ACTIVEDS.dll
0x76dc0000 - 0x76de5000  C:\WINDOWS\system32\adsldpc.dll
0x76ac0000 - 0x76ad1000  C:\WINDOWS\system32\ATL.DLL
0x76390000 - 0x76539000  C:\WINDOWS\system32\netshell.dll
0x76bb0000 - 0x76bdf000  C:\WINDOWS\system32\credui.dll
0x72f80000 - 0x72f90000  C:\WINDOWS\system32\WZCSAPI.DLL
0x7db30000 - 0x7dbbb000  C:\WINDOWS\system32\WZCSvc.DLL
0x76ce0000 - 0x76ce4000  C:\WINDOWS\system32\WMI.dll
0x76d30000 - 0x76d4e000  C:\WINDOWS\system32\DHCPCSVC.DLL
 
VM Arguments:
jvm_args: -Xbootclasspath/a:C:\PROGRA~1\Java\JRE15~1.0_1\lib\deploy.jar;C:\PROGRA~1\Java\JRE15~1.0_1\lib\plugin.jar -Xmx64m -Djavaplugin.maxHeapSize=64m -Xverify:remote -Djavaplugin.version=1.5.0_10 -Djavaplugin.nodotversion=150_10 -Dbrowser=sun.plugin -DtrustProxy=true -Dapplication.home=C:\PROGRA~1\Java\JRE15~1.0_1 -Djava.protocol.handler.pkgs=sun.plugin.net.protocol -Djavaplugin.vm.options=-Djava.class.path=C:\PROGRA~1\Java\JRE15~1.0_1\classes -Xbootclasspath/a:C:\PROGRA~1\Java\JRE15~1.0_1\lib\deploy.jar;C:\PROGRA~1\Java\JRE15~1.0_1\lib\plugin.jar -Xmx64m -Djavaplugin.maxHeapSize=64m -Xverify:remote -Djavaplugin.version=1.5.0_10 -Djavaplugin.nodotversion=150_10 -Dbrowser=sun.plugin -DtrustProxy=true -Dapplication.home=C:\PROGRA~1\Java\JRE15~1.0_1 -Djava.protocol.handler.pkgs=sun.plugin.net.protocol  vfprintf
java_command: <unknown>
Launcher Type: generic
 
Environment Variables:
PATH=C:\PROGRA~1\Java\JRE15~1.0_1\bin;C:\Program Files\Internet Explorer;;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;.
USERNAME=Nico-schumi
OS=Windows_NT
PROCESSOR_IDENTIFIER=x86 Family 6 Model 15 Stepping 6, GenuineIntel
 
 
 
---------------  S Y S T E M  ---------------
 
OS: Windows XP Build 2600 Service Pack 2
 
CPU:total 2 (cores per cpu 2, threads per core 1) family 6 model 15 stepping 6, cmov, cx8, fxsr, mmx, sse, sse2
 
Memory: 4k page, physical 2095532k(1238632k free), swap 4033864k(3443268k free)
 
vm_info: Java HotSpot(TM) Client VM (1.5.0_10-b03) for windows-x86, built on Nov  9 2006 13:13:34 by "java_re" with MS VC++ 6.0
 

Reply

Marsh Posté le 27-01-2007 à 13:26:34   

Reply

Marsh Posté le 27-01-2007 à 16:08:25    

up  :heink:

Reply

Marsh Posté le 27-01-2007 à 16:17:03    

Citation :

Ce matin je vois un fichier text sur mon bureau donc je l'ouvre et dedant ya ceci oO


Oui, et donc ...?


---------------
Filmstory : gardez trace des films que vous avez vu ! :D
Reply

Marsh Posté le 27-01-2007 à 18:43:55    

Ya ecrit dedant EXCEPTION_ACCESS_VIOLATION  
On m'a dit que c'est un log de hackage oO
 
J'ai peur quelqu'un peut me dire ce que c'est  :sweat:

Reply

Sujets relatifs:

Leave a Replay

Make sure you enter the(*)required information where indicate.HTML code is not allowed