1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
|
date/time : 2009-01-06, 09:39:45, 510ms
computer name : G008293
user name : g008293u <admin>
registered owner : g008293u
operating system : Windows XP Service Pack 3 build 2600
system language : French
system up time : 31 minutes 52 seconds
program up time : 1 minute 45 seconds
processor : Intel(R) Pentium(R) 4 CPU 2.80GHz
physical memory : 101/479 MB (free/total)
free disk space : (C:) 8,05 GB
display mode : 1024x768, 32 bit
process id : $fd0
allocated memory : 32,91 MB
executable : bcb.exe
current module : madExcept_.bpl
exec. date/time : 2002-03-06 05:00
version : 6.0.10.161
compiled with : Delphi 6
madExcept version : 3.0h
callstack crc : $7fcbc480, $70165517, $70165517
exception number : 3
exception class : EAccessViolation
exception message : Violation d'accès à l'adresse 00563742 dans le module 'coreide60.bpl'. Lecture de l'adresse 00000099.
main thread ($fd4):
00563742 +066 coreide60.bpl Debug TDebugger.Run
4003725f +00f rtl60.bpl Classes TBasicAction.Execute
400e71a1 +031 vcl60.bpl Actnlist TContainedAction.Execute
400e7e39 +03d vcl60.bpl Actnlist TCustomAction.Execute
40037134 +034 rtl60.bpl Classes TBasicActionLink.Execute
4010796d +04d vcl60.bpl Controls TControl.Click
4011492c +000 vcl60.bpl Buttons TSpeedButton.Click
0080988d +009 designide60.bpl Idecommandbutton TCommandButton.Click
40114916 +0e2 vcl60.bpl Buttons TSpeedButton.MouseUp
40107d70 +02c vcl60.bpl Controls TControl.DoMouseUp
40107de5 +069 vcl60.bpl Controls TControl.WMLButtonUp
0080970e +02a designide60.bpl Idecommandbutton TCommandButton.WMLButtonUp
401077ec +188 vcl60.bpl Controls TControl.WndProc
4010a9a3 +157 vcl60.bpl Controls TWinControl.WndProc
01194207 +0f7 borlndmm.dll Borlndmm SysGetMem
7c91eb74 +059 ntdll.dll RtlAnsiStringToUnicodeString
401075bc +024 vcl60.bpl Controls TControl.Perform
4010a838 +080 vcl60.bpl Controls TWinControl.IsControlMouseMsg
4010a926 +0da vcl60.bpl Controls TWinControl.WndProc
4014735d +231 vcl60.bpl Comctrls TToolBar.WndProc
4010a620 +02c vcl60.bpl Controls TWinControl.MainWndProc
7e3996c2 +00a user32.dll DispatchMessageA
400f582f +083 vcl60.bpl Forms TApplication.ProcessMessage
400f5866 +00a vcl60.bpl Forms TApplication.HandleMessage
400f5a86 +096 vcl60.bpl Forms TApplication.Run
thread $fd8: <priority:1>
7c91d1fa +0a ntdll.dll NtDelayExecution
7c8023eb +4b kernel32.dll SleepEx
7c802450 +0a kernel32.dll Sleep
thread $6b0: <priority:1>
7c91df2a +0a ntdll.dll NtWaitForMultipleObjects
7c80956e +00 kernel32.dll WaitForMultipleObjectsEx
7c80a100 +13 kernel32.dll WaitForMultipleObjects
59801563 +43 madExcept_.bpl SysInit @InitPkg
7c922c01 +69 ntdll.dll RtlUnicodeStringToAnsiString
7c812c24 +b6 kernel32.dll GetVersionExA
5983b531 +0d madExcept_.bpl madExcept CallThreadProcSafe
5983b59b +37 madExcept_.bpl madExcept ThreadExceptFrame
>> created by main thread ($fd4) at:
0756d94f +00 bordbk61.dll
thread $c58:
7c91df3a +0a ntdll.dll NtWaitForSingleObject
7c8025d5 +85 kernel32.dll WaitForSingleObjectEx
7c80253d +0d kernel32.dll WaitForSingleObject
5983b531 +0d madExcept_.bpl madExcept CallThreadProcSafe
5983b59b +37 madExcept_.bpl madExcept ThreadExceptFrame
>> created by main thread ($fd4) at:
0750e4da +00 bordbk61.dll
modules:
00330000 vclide60.bpl 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
00400000 bcb.exe 6.0.10.161 C:\Program Files\Borland\CBuilder6\Bin
004c0000 coreide60.bpl 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
007d0000 designide60.bpl 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
00890000 vclx60.bpl 6.0.6.163 C:\WINDOWS\system32
00930000 tlib60.bpl 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
009b0000 BrcIde.Dll 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
009d0000 dcc60.dll 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
00b10000 bcbide60.bpl 6.0.10.161 C:\Program Files\Borland\CBuilder6\Bin
00c10000 COMP32P.DLL 5.6.0.0 C:\Program Files\Borland\CBuilder6\Bin
01190000 borlndmm.dll 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
012e0000 bccide.dll 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
01310000 bcbcxp60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
013b0000 direct60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
013e0000 stride60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
01400000 xmlide.dll 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
01470000 bcbpro60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
01500000 IXXML60.DLL 2.3.0.0 C:\Program Files\Borland\CBuilder6\Bin
029d0000 proide60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
02aa0000 designdgm60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
02c20000 bcbclxide60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
02c50000 qtintf.dll 6.0.0.0 C:\WINDOWS\system32
03050000 clxdesigner60.bpl 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
03490000 idetools60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
03f00000 dclbcbsmp60.bpl 6.0.0.0 c:\program files\borland\cbuilder6\Bin
03f60000 ibevnt60.bpl 1.0.0.0 C:\WINDOWS\System32
03f80000 dbx60.bpl 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
04070000 dclcds60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
04080000 dclbdecds60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
04090000 tee60.bpl 6.0.6.163 C:\WINDOWS\system32
040f0000 teedb60.bpl 6.0.6.163 C:\WINDOWS\system32
04130000 ibxpress60.bpl 6.0.6.240 C:\WINDOWS\system32
041b0000 gds32.dll 6.5.0.28 C:\WINDOWS\system32
04220000 dclemacsedit60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
04240000 dclact60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
04290000 idefilters60.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Bin
042a0000 dbexpress60.bpl 6.0.6.240 C:\WINDOWS\system32
042d0000 xmlrtl60.bpl 6.0.6.240 C:\WINDOWS\system32
04400000 bcbie60.bpl c:\program files\borland\cbuilder6\Bin
04430000 dclsoap60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
044a0000 soaprtl60.bpl 6.0.6.240 C:\WINDOWS\system32
04540000 dcldbx60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
04570000 dcldbxcds60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
04580000 dclindy60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
04600000 indy60.bpl 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
046a0000 bcb2kaxserver60.bpl c:\program files\borland\cbuilder6\Bin
04710000 pLecteurAVI.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
04720000 ColorTreeView.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
04730000 pOpengGL.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
04740000 pAdvancedListView.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
04750000 RVPkgCB6.bpl 1.9.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
04860000 RVDBPkgCB6.bpl 1.9.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
04880000 pAdvancedListBox.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
04890000 DsgnCPortCB6.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
048a0000 CPortLibCB6.bpl 1.0.0.0 C:\PROGRA~1\Borland\CBUILD~1\Projects\Bpl
048d0000 MSAgentPkg_bcb5.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
04910000 ezdicom.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
04920000 dclrx6.bpl c:\program files\borland\cbuilder6\Projects\Bpl
04980000 rxctl6.bpl C:\PROGRA~1\Borland\CBUILD~1\Projects\Bpl
04a80000 dclusr60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Projects\Bpl
04ab0000 xmlparser.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
04ac0000 XMLScanner.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
04ae0000 dclite60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
04b30000 iteide60.bpl 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
04b40000 itecore60.bpl 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
04bf0000 xpsp2res.dll 5.1.2600.5512 C:\WINDOWS\system32
05b70000 Tinyxml.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
05b80000 dfm60.bpl 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
05c30000 TinyXmlerror.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
05c40000 TinyXmlParser.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
05c50000 DSPack_BCB6.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
05c60000 DirectX9_BCB6.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
05c70000 DSPackDesign_BCB6.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
05c80000 sfb.bpl 1.0.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
05c90000 VPDFCB6.bpl 3.11.0.0 c:\program files\borland\cbuilder6\Projects\Bpl
05d40000 dclrxdb6.bpl c:\program files\borland\cbuilder6\Projects\Bpl
05d60000 rxdb6.bpl C:\PROGRA~1\Borland\CBUILD~1\Projects\Bpl
05de0000 dclrxbd6.bpl c:\program files\borland\cbuilder6\Projects\Bpl
05e10000 rxbde6.bpl C:\PROGRA~1\Borland\CBUILD~1\Projects\Bpl
074f0000 bordbk61.dll 50.4.227.0 C:\Program Files\Fichiers communs\Borland Shared\Debugger
20000000 xpsp3res.dll 5.1.2600.5512 C:\WINDOWS\system32
27000000 dclmlwiz60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
27300000 EXPERTS.DLL C:\Program Files\Borland\CBuilder6\Bin
32600000 CC3260MT.DLL 6.0.0.0 C:\Program Files\Borland\CBuilder6\Bin
40000000 rtl60.bpl 6.0.6.240 C:\WINDOWS\system32
400b0000 vcl60.bpl 6.0.6.240 C:\WINDOWS\system32
40230000 vcljpg60.bpl 6.0.6.163 C:\WINDOWS\system32
40250000 vclie60.bpl 6.0.6.163 C:\WINDOWS\system32
402a0000 vclhie60.bpl 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
402d0000 dsnap60.bpl 6.0.6.240 C:\WINDOWS\system32
40310000 dbrtl60.bpl 6.0.6.240 C:\WINDOWS\system32
40430000 visualclx60.bpl C:\WINDOWS\system32
40540000 inet60.bpl 6.0.6.240 C:\WINDOWS\system32
405d0000 inetdb60.bpl 6.0.6.163 C:\WINDOWS\system32
40670000 vcldb60.bpl 6.0.6.240 C:\WINDOWS\system32
406e0000 bdertl60.bpl 6.0.6.163 C:\WINDOWS\system32
407c0000 vcldbx60.bpl 6.0.6.163 C:\WINDOWS\system32
40850000 cds60.bpl 6.0.6.163 C:\WINDOWS\system32
40860000 bdecds60.bpl 6.0.6.163 C:\WINDOWS\system32
40870000 qrpt60.bpl 6.0.6.163 C:\WINDOWS\system32
40950000 teeui60.bpl 6.0.6.163 C:\WINDOWS\system32
409f0000 teeqr60.bpl 6.0.6.163 C:\WINDOWS\system32
40a60000 inetdbbde60.bpl 6.0.6.163 C:\WINDOWS\system32
40a70000 inetdbxpress60.bpl 6.0.6.163 C:\WINDOWS\system32
40aa0000 nmfast60.bpl 6.0.6.163 C:\WINDOWS\system32
40af0000 rc60.bpl 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
40b30000 dbxcds60.bpl 6.0.6.163 C:\WINDOWS\system32
42000000 BCBEDIT.DLL C:\Program Files\Borland\CBuilder6\Bin
50020000 dclstd60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
500d0000 dclmid60.bpl 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
50180000 dcldb60.bpl 6.0.10.157 C:\Program Files\Borland\CBuilder6\Bin
501d0000 dclbde60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
50290000 dclsmpedit60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
502b0000 dclib60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
50350000 dclnet60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
50520000 DCLNMF60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
50530000 dclqrt60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
50560000 dcltqr60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
50570000 dcltee60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
50600000 bcbsmp60.bpl 6.0.0.0 C:\Program Files\Borland\CBuilder6\Bin
52000000 applet60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
52740000 DBWEBXPRT.BPL 6.0.10.157 c:\program files\borland\cbuilder6\Bin
53600000 dclocx60.bpl 6.0.10.157 c:\program files\borland\cbuilder6\Bin
54380000 cgdide60.bpl 6.0.0.0 c:\program files\borland\cbuilder6\Bin
57000000 madBasic_.bpl C:\Program Files\madCollection\madBasic\BCB6
57800000 madDisAsm_.bpl C:\Program Files\madCollection\madDisAsm\BCB6
58b50000 comctl32.dll 5.82.2900.5512 C:\WINDOWS\system32
59800000 madExcept_.bpl C:\Program Files\madCollection\madExcept\BCB6
5a000000 madExceptWizard_.bpl C:\Program Files\madCollection\madExcept\BCB6
5b090000 uxtheme.dll 6.0.2900.5512 C:\WINDOWS\system32
5b800000 madHelp_.bpl C:\Program Files\madCollection\madBasic\BCB6
5c000000 madExceptIde_.bpl C:\Program Files\madCollection\madExcept\BCB6
5c800000 madExceptVcl_.bpl C:\Program Files\madCollection\madExcept\BCB6
5f140000 olepro32.dll 5.1.2600.5512 C:\WINDOWS\system32
69b10000 msxml4.dll 4.20.9848.0 c:\WINDOWS\system32
719e0000 WS2HELP.dll 5.1.2600.5512 C:\WINDOWS\system32
719f0000 WS2_32.dll 5.1.2600.5512 C:\WINDOWS\system32
71a10000 wsock32.dll 5.1.2600.5512 C:\WINDOWS\system32
71a60000 mpr.dll 5.1.2600.5512 C:\WINDOWS\system32
72f50000 winspool.drv 5.1.2600.5512 C:\WINDOWS\system32
73aa0000 AVIFIL32.DLL 5.1.2600.5512 C:\WINDOWS\system32
748f0000 msxml3.dll 8.100.1048.0 C:\WINDOWS\System32
74da0000 RICHED20.DLL 5.30.23.1230 C:\WINDOWS\system32
75ba0000 MSVFW32.DLL 5.1.2600.5512 C:\WINDOWS\system32
76320000 IMM32.DLL 5.1.2600.5512 C:\WINDOWS\system32
76340000 comdlg32.dll 6.0.2900.5512 C:\WINDOWS\system32
76ae0000 winmm.dll 5.1.2600.5512 C:\WINDOWS\system32
76ba0000 PSAPI.DLL 5.1.2600.5512 C:\WINDOWS\system32
76be0000 WINTRUST.dll 5.131.2600.5512 C:\WINDOWS\system32
76c40000 IMAGEHLP.dll 5.1.2600.5512 C:\WINDOWS\system32
76f80000 CLBCATQ.DLL 2001.12.4414.700 C:\WINDOWS\system32
77000000 COMRes.dll 2001.12.4414.700 C:\WINDOWS\system32
770e0000 oleaut32.dll 5.1.2600.5512 C:\WINDOWS\system32
77390000 comctl32.dll 6.0.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83
774a0000 ole32.dll 5.1.2600.5512 C:\WINDOWS\system32
779e0000 CRYPT32.dll 5.131.2600.5512 C:\WINDOWS\system32
77a80000 MSASN1.dll 5.1.2600.5512 C:\WINDOWS\system32
77aa0000 wininet.dll 6.0.2900.5626 C:\WINDOWS\system32
77b50000 Apphelp.dll 5.1.2600.5512 C:\WINDOWS\system32
77bb0000 MSACM32.dll 5.1.2600.5512 C:\WINDOWS\system32
77bd0000 version.dll 5.1.2600.5512 C:\WINDOWS\system32
77be0000 msvcrt.dll 7.0.2600.5512 C:\WINDOWS\system32
77da0000 advapi32.dll 5.1.2600.5512 C:\WINDOWS\system32
77e50000 RPCRT4.dll 5.1.2600.5512 C:\WINDOWS\system32
77ef0000 GDI32.dll 5.1.2600.5698 C:\WINDOWS\system32
77f40000 SHLWAPI.dll 6.0.2900.5512 C:\WINDOWS\system32
77fc0000 Secur32.dll 5.1.2600.5512 C:\WINDOWS\system32
7c800000 kernel32.dll 5.1.2600.5512 C:\WINDOWS\system32
7c910000 ntdll.dll 5.1.2600.5512 C:\WINDOWS\system32
7c9d0000 SHELL32.dll 6.0.2900.5512 C:\WINDOWS\system32
7d200000 msi.dll 3.1.4001.5512 C:\WINDOWS\system32
7e1e0000 oledlg.dll 5.1.2600.5512 C:\WINDOWS\system32
7e390000 user32.dll 5.1.2600.5512 C:\WINDOWS\system32
processes:
000 Idle
004 System normal
28c smss.exe normal C:\WINDOWS\system32
2bc csrss.exe
2d4 winlogon.exe high C:\WINDOWS\system32
304 services.exe normal C:\WINDOWS\system32
310 lsass.exe normal C:\WINDOWS\system32
3b4 svchost.exe normal C:\WINDOWS\system32
404 svchost.exe
464 svchost.exe normal C:\WINDOWS\System32
494 svchost.exe
4c8 svchost.exe
5c4 spoolsv.exe normal C:\WINDOWS\system32
684 AppleMobileDeviceService.exe normal C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin
6c4 fbguard.exe normal C:\Program Files\Firebird\Firebird_1_5\bin
6ec ibguard.exe normal C:\Program Files\Borland\InterBase\bin
70c FrameworkService.exe normal C:\Program Files\McAfee\Common Framework
744 Mcshield.exe high C:\Program Files\McAfee\VirusScan Enterprise
75c naPrdMgr.exe
778 VsTskMgr.exe normal C:\Program Files\McAfee\VirusScan Enterprise
7e8 HPZipm12.exe normal C:\WINDOWS\system32
11c svchost.exe normal C:\WINDOWS\System32
270 fbserver.exe normal C:\Program Files\Firebird\Firebird_1_5\bin
3e8 ibserver.exe normal C:\Program Files\Borland\InterBase\bin
714 alg.exe
248 Explorer.EXE normal C:\WINDOWS
7b0 TSVNCache.exe normal C:\Program Files\TortoiseSVN\bin
80c udaterui.exe normal C:\Program Files\McAfee\Common Framework
81c SHSTAT.EXE normal C:\Program Files\McAfee\VirusScan Enterprise
828 ApacheMonitor.exe normal C:\Program Files\Apache Software Foundation\Apache2.2\bin
900 PsnLite.exe normal C:\Program Files\3M\PSNLite
928 McTray.exe normal C:\Program Files\McAfee\Common Framework
9f0 PSNGive.exe normal C:\PROGRA~1\3M\PSNLite
ddc firefox.exe normal C:\Program Files\Mozilla Firefox
fd0 bcb.exe normal C:\Program Files\Borland\CBuilder6\Bin
c50 VIP4000.exe normal
hardware:
+ Cartes graphiques
- DameWare Development Mirror Driver (driver 1.1.0.0)
- Intel(R) 82865G Graphics Controller (driver 6.14.10.4396)
+ Cartes réseau
- Intel(R) PRO/1000 CT Network Connection (driver 7.0.36.0)
+ Claviers
- Clavier standard 101/102 touches ou clavier Microsoft Natural Keyboard PS/2
- DameWare Virtual Keyboard Emulation for Standard Keyboard (driver 1.0.0.1)
+ Contrôleur de lecteur de disquettes
- Contrôleur de lecteur de disquettes standard
+ Contrôleurs ATA/ATAPI IDE
- Canal IDE principal
- Canal IDE secondaire
- Intel(R) 82801EB Ultra ATA Storage Controllers (driver 5.0.1007.0)
+ Contrôleurs audio, vidéo et jeu
- Codecs audio
- Codecs vidéo
- Pilotes audio hérités
- Périphériques de capture vidéo hérités
- Périphériques MCI
- SoundMAX Integrated Digital Audio (driver 5.12.1.3538)
+ Contrôleurs de bus USB
- Concentrateur USB racine
- Concentrateur USB racine
- Concentrateur USB racine
- Concentrateur USB racine
- Concentrateur USB racine
- Contrôleur hôte PCI vers USB standard étendu
- Intel(R) 82801EB USB Universal Host Controller - 24D2 (driver 5.0.1006.0)
- Intel(R) 82801EB USB Universal Host Controller - 24D4 (driver 5.0.1006.0)
- Intel(R) 82801EB USB Universal Host Controller - 24D7 (driver 5.0.1006.0)
- Intel(R) 82801EB USB Universal Host Controller - 24DE (driver 5.0.1006.0)
+ Contrôleurs SCSI et RAID
- Contrôleur hôte SCSI/RAID
+ Lecteurs de CD-ROM/DVD-ROM
- HL-DT-ST DVD-ROM GDR-H30N
- SO5412Y WKG270E SCSI CdRom Device
+ Lecteurs de disque
- WDC WD400BB-00FRA0
+ Lecteurs de disquettes
- Lecteur de disquettes
+ Moniteurs
- Dell M992 (driver 1.0.0.0)
+ Ordinateur
- PC monoprocesseur ACPI
+ Ports (COM et LPT)
- Port de communication (COM1)
- Port de communication (COM2)
- Port imprimante ECP (LPT1)
+ Processeurs
- Intel(R) Pentium(R) 4 CPU 2.80GHz
+ Périphériques de mémoire Flash et PCMCIA
-
+ Périphériques système
- Bouton de fonctionnalité définie ACPI
- Bouton marche-arrêt ACPI
- Bus d'E/S étendu
- Bus PCI
- Carte système
- Contrôleur d'accès direct en mémoire
- Contrôleur d'interruptions programmable
- Coprocesseur arithmétique
- Gestionnaire de disque logique
- Gestionnaire de volume
- Haut-parleur système
- Horloge système
- Horloge système CMOS/temps réel
- Intel(R) 82801EB LPC Interface Controller - 24D0 (driver 5.0.1006.0)
- Intel(R) 82801EB PCI Bridge - 244E (driver 5.0.1006.0)
- Intel(R) 82801EB SMBus Controller - 24D3 (driver 5.0.1006.0)
- Intel(R) 82865G\PE\P Processor to I/O Controller - 2570 (driver 5.0.1006.0)
- Intel(R) 82865G\PE\P Processor to PCI to CSA bridge - 2573 (driver 5.0.1006.0)
- Interface logique du port imprimante
- Pilote BIOS de gestion de systèmes Microsoft
- Pilote clavier de Terminal Server
- Pilote souris de Terminal Server
- Port de lecture de données ISAPNP
- Périphérique de mise à jour microcode
- Redirecteur de périphérique Terminal Server
- Ressources de la carte mère
- Ressources de la carte mère
- Ressources de la carte mère
- Système compatible ACPI Microsoft
- Énumérateur de périphérique logiciel Plug-and-Play
+ Souris et autres périphériques de pointage
- Souris Microsoft PS/2
cpu registers:
eax = 00000000
ebx = 00b230f6
ecx = 03d7b3f4
edx = 00573411
esi = 03d7b368
edi = 00b230f6
eip = 00563742
esp = 0012f8c0
ebp = 0012f994
stack dump:
0012f8c0 ac f9 12 00 18 5f 00 40 - 94 f9 12 00 f6 30 b2 00 ....._.@.....0..
0012f8d0 68 b3 d7 03 f6 30 b2 00 - 00 00 00 00 00 00 00 00 h....0..........
0012f8e0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f8f0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f900 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f910 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f920 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f930 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f940 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f950 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f960 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f970 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f980 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f990 a0 c1 10 01 90 fb 12 00 - b9 11 41 00 00 00 00 00 ..........A.....
0012f9a0 00 00 00 00 00 00 00 00 - 00 00 00 00 f8 fd 12 00 ................
0012f9b0 18 5f 00 40 90 fb 12 00 - d8 44 0f 01 48 75 0e 40 ._.@.....D..Hu.@
0012f9c0 0c 46 0f 01 00 00 00 00 - 00 00 00 00 00 00 00 00 .F..............
0012f9d0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f9e0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0012f9f0 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
disassembling:
[...]
0056370e mov fs:[eax], esp
00563711 mov eax, [ebp-4]
00563714 cmp byte ptr [eax+$dc], 0
0056371b jnz loc_563761
0056371b
0056371d cmp byte ptr [$642dc8], 0
00563724 jnz loc_563cfd
00563724
0056372a cmp dword ptr [ebp-$c], 0
0056372e jz loc_56374f
0056372e
00563730 mov eax, [ebp-$c]
00563733 mov edx, [eax]
00563735 call dword ptr [edx+$38]
00563735
00563738 test al, $10
0056373a jz loc_56374f
0056373a
0056373c mov eax, [ebp-4]
0056373f mov eax, [eax+$38]
00563742 > cmp byte ptr [eax+$99], 0
00563749 jnz loc_563cfd
00563749
0056374f loc_56374f:
0056374f mov eax, [ebp-4]
00563752 call -$1e4b ($56190c) ; Debug.TDebugger.GetProcessState (coreide60.bpl)
00563752
00563757 add al, $fe
00563759 sub al, 2
0056375b jb loc_563cfd
0056375b
00563761 loc_563761:
00563761 xor edx, edx
00563763 push ebp
00563764 push $563cf6
00563769 push dword ptr fs:[edx]
0056376c mov fs:[edx], esp
0056376f xor edx, edx
00563771 push ebp
00563772 push $563cb7
00563777 push dword ptr fs:[edx]
[...] |
EAccessViolation - Violation d'accès à l'adresse dans le module 'coreide60.bpl'
Répondre avec citation
Partager