Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

slowing computer, mouse less responsive, long time loading anything &


  • Please log in to reply

#46
skgrate

skgrate

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
kapersky uninstalled here is the log
thanks
Kate

Attached Files


Edited by skgrate, 27 April 2012 - 08:39 AM.

  • 0

Advertisements


#47
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,800 posts
  • MVP
In Process Explorer:

Find

WMIADAP.exe and right click on it and Suspend it. Supposedly it is not used any more so I don't know why it suddenly started running and eating up so much CPU.

(If it is hopping around too much then just press the Space bar to pause it, hit the Space bar again when you have suspended wmiadap.exe)

Let it run for a minute to settle down then create a new log and copy and paste it.

Let's also delete the current version of Process Explorer and reboot then download a brand new version from http://live.sysinter...com/procexp.exe

It seems to be taking up too much CPU by itself.

Right click on Computer and select Manage (Continue) and then Services and Applications then Services. Find Windows Management Instrumentation and right click and select Properties then click on the Dependencies tab. What dependencies does it have besides Internet Connection Sharing (ICS), IP Helper, Security Center? If there is anything else, go back into Services and right click on the service that corresponds to the extra entries and select Properties. Change the Startup Type: to Disabled, Apply and then Stop the service. (Remember what it was set to as we will probably want to put it back the way it was.)

Now run your new Process Explorer (right click and Run As Admin) and click twice on the CPU column header to sort, wait a minute then save the log and copy and paste it as before.

Ron
  • 0

#48
skgrate

skgrate

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Hi Ron, sorry about the massive delay in responding, I was worried my post may have been closed, but if it is possible for you to continue helping I would be very grateful, I will endevour to get the last lot of instructions done today and will post later on,
many Thanks
kate
  • 0

#49
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,800 posts
  • MVP
No problem.
  • 0

#50
skgrate

skgrate

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Hi Ron
I cannot for the life of me find WMIADAP in process explorer!!!!
  • 0

#51
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,800 posts
  • MVP
Funny. It was number two last time:

System Idle Process 0 46.03 0 K 24 K
WMIADAP.exe 1768 23.07 3,712 K 6,616 K WMI Reverse Performance Adapter Maintenance Utility Microsoft Corporation (Verified) Microsoft Windows
procexp64.exe 900 20.59 21,352 K 39,616 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Sysinternals


Let's see a new Process Explorer log.
  • 0

#52
skgrate

skgrate

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
have double checked still cannot find it!!!!??
here is the log

Attached Files


  • 0

#53
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,800 posts
  • MVP
I've seen reports of WMIADAP.exe spiking. We must have caught it during a spike.

What's left doesn't look too bad. Interrupts are still too high. dwm.exe and csrss.exe are both a bit high. Wonder if we don't have a bad video driver?

We can turn off the big user of dwm and see if that helps any:

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Type with an Enter after each line:

sc  config  uxsms  start=  disabled

net  stop  uxsms

This will make the desktop look differently as it turns off the “Desktop Window Manager Session Manager” service which is what makes all of the cool effects. I've got it turned off on mine because I think it eats too much CPU.

Once you do that, run another process explorer log and let's see what it looks like now. (You can delete all of your old process explorer logs.)
  • 0

#54
skgrate

skgrate

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Hi, Ok managed the last step, here is the log
cheers
kate

Attached Files


  • 0

#55
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,800 posts
  • MVP
These two still look a bit high but not that bad.

Interrupts n/a 2.94 0 K 0 K Hardware Interrupts and DPCs
csrss.exe 544 2.37 13,056 K 9,440 K Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows


How is it running now (when Process Explorer is not running)?
  • 0

Advertisements


#56
skgrate

skgrate

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
it seems to be running ok but still have problems with cursor movement, really working ok but need to know if my system is secure as in do i need something else ie free ware as i only use kapersky and this has not managaged so well so far?
I appreciate the last few months helping me but if you have any ideas for future prevention i will gladly eat them up
kate
  • 0

#57
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,800 posts
  • MVP
What version of Kaspersky do you have?

Do you have any .ini files in c:\windows\system32\wbem\performance\

If so please open them in notepad and copy and paste the text into a reply.
  • 0

#58
skgrate

skgrate

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Hi
I have 2 files one i cannot open but have copied and pasted it here hopefully and one in notepad also included
I have Kapersky antivirus 2012

//////////////////////////////////////////////////////////////////////////////////////////////
//
// Copyright © 2000 Microsoft Corporation
//
// Module Name:
// WmiApRpl
//
// Abstract:
//
// Describes all the counters supported via WMI Hi-Performance providers
//
//////////////////////////////////////////////////////////////////////////////////////////////


[info]
drivername=WmiApRpl
symbolfile=WmiApRpl.h

[languages]
00c=French
009=English

[objects]
WMI_Objects_00c_NAME=WMI Objects
WMI_Objects_009_NAME=WMI Objects
BatteryStatus_00000_00c_NAME=Battery Status
BatteryStatus_00000_009_NAME=BatteryStatus
MSiSCSI_ConnectionStatistics_00001_00c_NAME=iSCSI Connections
MSiSCSI_ConnectionStatistics_00001_009_NAME=MSiSCSI_ConnectionStatistics
MSiSCSI_InitiatorInstanceStatistics_00002_00c_NAME=iSCSI Initiator Instance
MSiSCSI_InitiatorInstanceStatistics_00002_009_NAME=MSiSCSI_InitiatorInstanceStatistics
MSiSCSI_InitiatorLoginStatistics_00003_00c_NAME=iSCSI Initiator Login statistics
MSiSCSI_InitiatorLoginStatistics_00003_009_NAME=MSiSCSI_InitiatorLoginStatistics
MSiSCSI_MMIPSECStats_00004_00c_NAME=iSCSI HBA Main Mode IPSEC Statistics
MSiSCSI_MMIPSECStats_00004_009_NAME=MSiSCSI_MMIPSECStats
MSiSCSI_NICPerformance_00005_00c_NAME=MSiSCSI_NICPerformance
MSiSCSI_NICPerformance_00005_009_NAME=MSiSCSI_NICPerformance
MSiSCSI_QMIPSECStats_00006_00c_NAME=iSCSI HBA Quick Mode IPSEC Statistics
MSiSCSI_QMIPSECStats_00006_009_NAME=MSiSCSI_QMIPSECStats
MSiSCSI_RequestTimeStatistics_00007_00c_NAME=iSCSI Request Processing Time
MSiSCSI_RequestTimeStatistics_00007_009_NAME=MSiSCSI_RequestTimeStatistics
MSiSCSI_SessionStatistics_00008_00c_NAME=iSCSI Sessions
MSiSCSI_SessionStatistics_00008_009_NAME=MSiSCSI_SessionStatistics
ProcessorPerformance_00009_00c_NAME=Processor Performance
ProcessorPerformance_00009_009_NAME=ProcessorPerformance

[text]
WMI_Objects_00c_NAME=WMI Objects
WMI_Objects_00c_HELP=Number of WMI High Performance provider returned by WMI Adapter
WMI_Objects_009_NAME=WMI Objects
WMI_Objects_009_HELP=Number of WMI High Performance provider returned by WMI Adapter

BatteryStatus_00000_00c_NAME=Battery Status
BatteryStatus_00000_00c_HELP=Battery Status
BatteryStatus_00000_009_NAME=BatteryStatus
BatteryStatus_00000_009_HELP=BatteryStatus

MSiSCSI_ConnectionStatistics_00001_00c_NAME=iSCSI Connections
MSiSCSI_ConnectionStatistics_00001_00c_HELP=iSCSI Connection Statistics
MSiSCSI_ConnectionStatistics_00001_009_NAME=MSiSCSI_ConnectionStatistics
MSiSCSI_ConnectionStatistics_00001_009_HELP=MSiSCSI_ConnectionStatistics

MSiSCSI_InitiatorInstanceStatistics_00002_00c_NAME=iSCSI Initiator Instance
MSiSCSI_InitiatorInstanceStatistics_00002_00c_HELP=iSCSI Initiator Instance Statistics
MSiSCSI_InitiatorInstanceStatistics_00002_009_NAME=MSiSCSI_InitiatorInstanceStatistics
MSiSCSI_InitiatorInstanceStatistics_00002_009_HELP=MSiSCSI_InitiatorInstanceStatistics

MSiSCSI_InitiatorLoginStatistics_00003_00c_NAME=iSCSI Initiator Login statistics
MSiSCSI_InitiatorLoginStatistics_00003_00c_HELP=iSCSI Initiator Login Statistics
MSiSCSI_InitiatorLoginStatistics_00003_009_NAME=MSiSCSI_InitiatorLoginStatistics
MSiSCSI_InitiatorLoginStatistics_00003_009_HELP=MSiSCSI_InitiatorLoginStatistics

MSiSCSI_MMIPSECStats_00004_00c_NAME=iSCSI HBA Main Mode IPSEC Statistics
MSiSCSI_MMIPSECStats_00004_00c_HELP=iSCSI HBA main mode IPSEC Statistics
MSiSCSI_MMIPSECStats_00004_009_NAME=MSiSCSI_MMIPSECStats
MSiSCSI_MMIPSECStats_00004_009_HELP=MSiSCSI_MMIPSECStats

MSiSCSI_NICPerformance_00005_00c_NAME=MSiSCSI_NICPerformance
MSiSCSI_NICPerformance_00005_00c_HELP=This is an abstract base class for Hiperf provider
MSiSCSI_NICPerformance_00005_009_NAME=MSiSCSI_NICPerformance
MSiSCSI_NICPerformance_00005_009_HELP=MSiSCSI_NICPerformance

MSiSCSI_QMIPSECStats_00006_00c_NAME=iSCSI HBA Quick Mode IPSEC Statistics
MSiSCSI_QMIPSECStats_00006_00c_HELP=iSCSI HBA quick mode IPSEC Statistics
MSiSCSI_QMIPSECStats_00006_009_NAME=MSiSCSI_QMIPSECStats
MSiSCSI_QMIPSECStats_00006_009_HELP=MSiSCSI_QMIPSECStats

MSiSCSI_RequestTimeStatistics_00007_00c_NAME=iSCSI Request Processing Time
MSiSCSI_RequestTimeStatistics_00007_00c_HELP=iSCSI Request Processing Time
MSiSCSI_RequestTimeStatistics_00007_009_NAME=MSiSCSI_RequestTimeStatistics
MSiSCSI_RequestTimeStatistics_00007_009_HELP=MSiSCSI_RequestTimeStatistics

MSiSCSI_SessionStatistics_00008_00c_NAME=iSCSI Sessions
MSiSCSI_SessionStatistics_00008_00c_HELP=iSCSI Session Statistics
MSiSCSI_SessionStatistics_00008_009_NAME=MSiSCSI_SessionStatistics
MSiSCSI_SessionStatistics_00008_009_HELP=MSiSCSI_SessionStatistics

ProcessorPerformance_00009_00c_NAME=Processor Performance
ProcessorPerformance_00009_00c_HELP=Processor Performance Information
ProcessorPerformance_00009_009_NAME=ProcessorPerformance
ProcessorPerformance_00009_009_HELP=ProcessorPerformance

HiPerf_Classes_00c_NAME=HiPerf Classes
HiPerf_Classes_00c_HELP=Shows High Performance Classes

HiPerf_Validity_00c_NAME=HiPerf Validity
HiPerf_Validity_00c_HELP=Shows if High Performance Classes are valid
HiPerf_Classes_009_NAME=HiPerf Classes
HiPerf_Classes_009_HELP=Shows High Performance Classes

HiPerf_Validity_009_NAME=HiPerf Validity
HiPerf_Validity_009_HELP=Shows if High Performance Classes are valid

ChargeRate_00000_00c_NAME=Charge Rate
ChargeRate_00000_00c_HELP=Charge Rate
ChargeRate_00000_009_NAME=ChargeRate
ChargeRate_00000_009_HELP=ChargeRate

DischargeRate_00000_00c_NAME=Discharge Rate
DischargeRate_00000_00c_HELP=Discharge Rate
DischargeRate_00000_009_NAME=DischargeRate
DischargeRate_00000_009_HELP=DischargeRate

RemainingCapacity_00000_00c_NAME=Remaining Capacity
RemainingCapacity_00000_00c_HELP=Remaining battery capacity
RemainingCapacity_00000_009_NAME=RemainingCapacity
RemainingCapacity_00000_009_HELP=RemainingCapacity

Tag_00000_00c_NAME=Tag
Tag_00000_00c_HELP=Battery Tag
Tag_00000_009_NAME=Tag
Tag_00000_009_HELP=Tag

Voltage_00000_00c_NAME=Voltage
Voltage_00000_00c_HELP=Voltage
Voltage_00000_009_NAME=Voltage
Voltage_00000_009_HELP=Voltage

BytesReceived_00001_00c_NAME=Bytes Received
BytesReceived_00001_00c_HELP=Count of # of bytes received over this connection
BytesReceived_00001_009_NAME=BytesReceived
BytesReceived_00001_009_HELP=BytesReceived

BytesSent_00001_00c_NAME=Bytes Sent
BytesSent_00001_00c_HELP=Count of # of bytes sent over this connection
BytesSent_00001_009_NAME=BytesSent
BytesSent_00001_009_HELP=BytesSent

PDUCommandsSent_00001_00c_NAME=PDUs Sent
PDUCommandsSent_00001_00c_HELP=Count of # of PDU sent over this connection
PDUCommandsSent_00001_009_NAME=PDUCommandsSent
PDUCommandsSent_00001_009_HELP=PDUCommandsSent

PDUResponsesReceived_00001_00c_NAME=PDUs Received
PDUResponsesReceived_00001_00c_HELP=Count of # of PDU received over this connection
PDUResponsesReceived_00001_009_NAME=PDUResponsesReceived
PDUResponsesReceived_00001_009_HELP=PDUResponsesReceived

SessionConnectionTimeoutErrorCount_00002_00c_NAME=Session Cxn Timeout Errors
SessionConnectionTimeoutErrorCount_00002_00c_HELP=Count of Session connection timeout error
SessionConnectionTimeoutErrorCount_00002_009_NAME=SessionConnectionTimeoutErrorCount
SessionConnectionTimeoutErrorCount_00002_009_HELP=SessionConnectionTimeoutErrorCount

SessionDigestErrorCount_00002_00c_NAME=Session Digest Errors
SessionDigestErrorCount_00002_00c_HELP=Count of Session digest errors
SessionDigestErrorCount_00002_009_NAME=SessionDigestErrorCount
SessionDigestErrorCount_00002_009_HELP=SessionDigestErrorCount

SessionFailureCount_00002_00c_NAME=Sessions Failed
SessionFailureCount_00002_00c_HELP=Number of Sessions failed belonging to this instance
SessionFailureCount_00002_009_NAME=SessionFailureCount
SessionFailureCount_00002_009_HELP=SessionFailureCount

SessionFormatErrorCount_00002_00c_NAME=Session Format Errors
SessionFormatErrorCount_00002_00c_HELP=Count of Session format error
SessionFormatErrorCount_00002_009_NAME=SessionFormatErrorCount
SessionFormatErrorCount_00002_009_HELP=SessionFormatErrorCount

LoginAcceptRsps_00003_00c_NAME=Login Accept Responses
LoginAcceptRsps_00003_00c_HELP=Count of Login Accept Responses
LoginAcceptRsps_00003_009_NAME=LoginAcceptRsps
LoginAcceptRsps_00003_009_HELP=LoginAcceptRsps

LoginAuthenticateFails_00003_00c_NAME=Logins Failed
LoginAuthenticateFails_00003_00c_HELP=Count of the number of times a login is aborted due to a target authentication failure
LoginAuthenticateFails_00003_009_NAME=LoginAuthenticateFails
LoginAuthenticateFails_00003_009_HELP=LoginAuthenticateFails

LoginAuthFailRsps_00003_00c_NAME=Login Authentication Failed Responses
LoginAuthFailRsps_00003_00c_HELP=Count of Login Authentication Failed Responses
LoginAuthFailRsps_00003_009_NAME=LoginAuthFailRsps
LoginAuthFailRsps_00003_009_HELP=LoginAuthFailRsps

LoginFailures_00003_00c_NAME=Failed Logins
LoginFailures_00003_00c_HELP=The object counts the number of times a login attempt from this local initiator has failed
LoginFailures_00003_009_NAME=LoginFailures
LoginFailures_00003_009_HELP=LoginFailures

LoginNegotiateFails_00003_00c_NAME=Login Negotiation Failed
LoginNegotiateFails_00003_00c_HELP=Count of the number of times login failed due to negotiation failure with target
LoginNegotiateFails_00003_009_NAME=LoginNegotiateFails
LoginNegotiateFails_00003_009_HELP=LoginNegotiateFails

LoginOtherFailRsps_00003_00c_NAME=Login Other Failed Responses
LoginOtherFailRsps_00003_00c_HELP=Count of Login other failed Responses
LoginOtherFailRsps_00003_009_NAME=LoginOtherFailRsps
LoginOtherFailRsps_00003_009_HELP=LoginOtherFailRsps

LoginRedirectRsps_00003_00c_NAME=Login Redirect Responses
LoginRedirectRsps_00003_00c_HELP=Count of Login Redirect Responses
LoginRedirectRsps_00003_009_NAME=LoginRedirectRsps
LoginRedirectRsps_00003_009_HELP=LoginRedirectRsps

LogoutNormals_00003_00c_NAME=Logout Normal
LogoutNormals_00003_00c_HELP=Count of Logout command PDU with reason code 0
LogoutNormals_00003_009_NAME=LogoutNormals
LogoutNormals_00003_009_HELP=LogoutNormals

LogoutOtherCodes_00003_00c_NAME=Logout Other Codes
LogoutOtherCodes_00003_00c_HELP=Count of Logout command PDUs with status code other than 0
LogoutOtherCodes_00003_009_NAME=LogoutOtherCodes
LogoutOtherCodes_00003_009_HELP=LogoutOtherCodes

AcquireFailures_00004_00c_NAME=AcquireFailures
AcquireFailures_00004_00c_HELP=The number of times that an acquire has failed.
AcquireFailures_00004_009_NAME=AcquireFailures
AcquireFailures_00004_009_HELP=AcquireFailures

AcquireHeapSize_00004_00c_NAME=AcquireHeapSize
AcquireHeapSize_00004_00c_HELP=The number of entries in the acquire heap, which stores active acquires. This number increases under a heavy load and then gradually decreases over time, as the acquire heap is cleared.
AcquireHeapSize_00004_009_NAME=AcquireHeapSize
AcquireHeapSize_00004_009_HELP=AcquireHeapSize

ActiveAcquire_00004_00c_NAME=ActiveAcquire
ActiveAcquire_00004_00c_HELP=An acquire is a request by the IPSEC driver to have IKE perform a task. The active acquire statistic includes the outstanding request and the number of any queued requests. Typically, the number of active acquires is 1. Under a heavy load, the number of active acquires is 1 and the number of requests that are queued by IKE for processing.
ActiveAcquire_00004_009_NAME=ActiveAcquire
ActiveAcquire_00004_009_HELP=ActiveAcquire

ActiveReceive_00004_00c_NAME=ActiveReceive
ActiveReceive_00004_00c_HELP=The number of IKE messages received that are queued for processing.
ActiveReceive_00004_009_NAME=ActiveReceive
ActiveReceive_00004_009_HELP=ActiveReceive

AuthenticationFailures_00004_00c_NAME=AuthenticationFailures
AuthenticationFailures_00004_00c_HELP=The total number of identity authentication failures (Kerberos, certificate, and preshared key) that occurred during main mode negotiation.
AuthenticationFailures_00004_009_NAME=AuthenticationFailures
AuthenticationFailures_00004_009_HELP=AuthenticationFailures

ConnectionListSize_00004_00c_NAME=ConnectionListSize
ConnectionListSize_00004_00c_HELP=The number of quick mode state entries.
ConnectionListSize_00004_009_NAME=ConnectionListSize
ConnectionListSize_00004_009_HELP=ConnectionListSize

GetSPIFailures_00004_00c_NAME=GetSPIFailures
GetSPIFailures_00004_00c_HELP=The total number of requests submitted by IKE to obtain a unique Security Parameters Index (SPI) that failed.
GetSPIFailures_00004_009_NAME=GetSPIFailures
GetSPIFailures_00004_009_HELP=GetSPIFailures

InvalidCookiesReceived_00004_00c_NAME=InvalidCookiesReceived
InvalidCookiesReceived_00004_00c_HELP=A cookie is a value contained in a received IKE message that is used by IKE to find the state of an active main mode. A cookie in a received IKE message that cannot be matched with an active main mode is invalid.
InvalidCookiesReceived_00004_009_NAME=InvalidCookiesReceived
InvalidCookiesReceived_00004_009_HELP=InvalidCookiesReceived

InvalidPackets_00004_00c_NAME=InvalidPackets
InvalidPackets_00004_00c_HELP=The number of received IKE messages that are invalid, including IKE messages with invalid header fields, incorrect payload lengths, and incorrect values for the responder cookie (when it should be set to 0).
InvalidPackets_00004_009_NAME=InvalidPackets
InvalidPackets_00004_009_HELP=InvalidPackets

KeyAdditionFailures_00004_00c_NAME=KeyAdditionFailures
KeyAdditionFailures_00004_00c_HELP=The number of outbound quick mode security associations (SAs) submitted by IKE that failed
KeyAdditionFailures_00004_009_NAME=KeyAdditionFailures
KeyAdditionFailures_00004_009_HELP=KeyAdditionFailures

KeyAdditions_00004_00c_NAME=KeyAdditions
KeyAdditions_00004_00c_HELP=The number of outbound quick mode security associations (SAs) added by IKE
KeyAdditions_00004_009_NAME=KeyAdditions
KeyAdditions_00004_009_HELP=KeyAdditions

KeyUpdateFailures_00004_00c_NAME=KeyUpdateFailures
KeyUpdateFailures_00004_00c_HELP=The number of inbound quick mode security associations (SAs) added by IKE
KeyUpdateFailures_00004_009_NAME=KeyUpdateFailures
KeyUpdateFailures_00004_009_HELP=KeyUpdateFailures

KeyUpdates_00004_00c_NAME=KeyUpdates
KeyUpdates_00004_00c_HELP=The number of inbound quick mode security associations (SAs) added by IKE
KeyUpdates_00004_009_NAME=KeyUpdates
KeyUpdates_00004_009_HELP=KeyUpdates

NegotiationFailures_00004_00c_NAME=NegotiationFailures
NegotiationFailures_00004_00c_HELP=The total number of negotiation failures that occurred during main mode (also known as Phase I) or quick mode (also known as Phase II) negotiation.
NegotiationFailures_00004_009_NAME=NegotiationFailures
NegotiationFailures_00004_009_HELP=NegotiationFailures

OakleyMainMode_00004_00c_NAME=OakleyMainMode
OakleyMainMode_00004_00c_HELP=The total number of successful SAs created during main mode negotiations.
OakleyMainMode_00004_009_NAME=OakleyMainMode
OakleyMainMode_00004_009_HELP=OakleyMainMode

OakleyQuickMode_00004_00c_NAME=OakleyQuickMode
OakleyQuickMode_00004_00c_HELP=The total number of successful SAs created during quick mode negotiations
OakleyQuickMode_00004_009_NAME=OakleyQuickMode
OakleyQuickMode_00004_009_HELP=OakleyQuickMode

ReceiveFailures_00004_00c_NAME=ReceiveFailures
ReceiveFailures_00004_00c_HELP=The number of times that the TCP stack has failed when receiving IKE messages.
ReceiveFailures_00004_009_NAME=ReceiveFailures
ReceiveFailures_00004_009_HELP=ReceiveFailures

ReceiveHeapSize_00004_00c_NAME=ReceiveHeapSize
ReceiveHeapSize_00004_00c_HELP=The number of entries in the IKE receive buffers for incoming IKE messages.
ReceiveHeapSize_00004_009_NAME=ReceiveHeapSize
ReceiveHeapSize_00004_009_HELP=ReceiveHeapSize

SendFailures_00004_00c_NAME=SendFailures
SendFailures_00004_00c_HELP=The number of times that the TCP/IP stack has failed when sending IKE messages.
SendFailures_00004_009_NAME=SendFailures
SendFailures_00004_009_HELP=SendFailures

SoftAssociations_00004_00c_NAME=SoftAssociations
SoftAssociations_00004_00c_HELP=The total number of negotiations that resulted in the use of plaintext (also known as soft SAs). This typically reflects the number of associations formed with computers that did not respond to main mode negotiation attempts. This can include both non-IPSEC-aware computers and IPSEC-aware computers that do not have IPSEC policy to negotiate security with this IPSEC peer.
SoftAssociations_00004_009_NAME=SoftAssociations
SoftAssociations_00004_009_HELP=SoftAssociations

TotalGetSPI_00004_00c_NAME=TotalGetSPI
TotalGetSPI_00004_00c_HELP=The total number of requests submitted by IKE to obtain a unique Security Parameters Index (SPI).
TotalGetSPI_00004_009_NAME=TotalGetSPI
TotalGetSPI_00004_009_HELP=TotalGetSPI

BytesReceived_00005_00c_NAME=BytesReceived
BytesReceived_00005_00c_HELP=Number of bytes received via ethernet port
BytesReceived_00005_009_NAME=BytesReceived
BytesReceived_00005_009_HELP=BytesReceived

BytesTransmitted_00005_00c_NAME=BytesTransmitted
BytesTransmitted_00005_00c_HELP=Number of bytes transmitted via ethernet port
BytesTransmitted_00005_009_NAME=BytesTransmitted
BytesTransmitted_00005_009_HELP=BytesTransmitted

PDUReceived_00005_00c_NAME=PDUReceived
PDUReceived_00005_00c_HELP=Number of PDU received via ethernet port
PDUReceived_00005_009_NAME=PDUReceived
PDUReceived_00005_009_HELP=PDUReceived

PDUTransmitted_00005_00c_NAME=PDUTransmitted
PDUTransmitted_00005_00c_HELP=Number of PDU transmitted via ethernet port
PDUTransmitted_00005_009_NAME=PDUTransmitted
PDUTransmitted_00005_009_HELP=PDUTransmitted

ActiveSA_00006_00c_NAME=ActiveSA
ActiveSA_00006_00c_HELP=The number of active IPSEC SAs
ActiveSA_00006_009_NAME=ActiveSA
ActiveSA_00006_009_HELP=ActiveSA

ActiveTunnels_00006_00c_NAME=ActiveTunnels
ActiveTunnels_00006_00c_HELP=The number of active IPSEC tunnels.
ActiveTunnels_00006_009_NAME=ActiveTunnels
ActiveTunnels_00006_009_HELP=ActiveTunnels

AuthenticatedBytesReceived_00006_00c_NAME=AuthenticatedBytesReceived
AuthenticatedBytesReceived_00006_00c_HELP=The number of bytes received using the AH protocol.
AuthenticatedBytesReceived_00006_009_NAME=AuthenticatedBytesReceived
AuthenticatedBytesReceived_00006_009_HELP=AuthenticatedBytesReceived

AuthenticatedBytesSent_00006_00c_NAME=AuthenticatedBytesSent
AuthenticatedBytesSent_00006_00c_HELP=The number of bytes sent using the AH protocol.
AuthenticatedBytesSent_00006_009_NAME=AuthenticatedBytesSent
AuthenticatedBytesSent_00006_009_HELP=AuthenticatedBytesSent

BadSPIPackets_00006_00c_NAME=BadSPIPackets
BadSPIPackets_00006_00c_HELP=The total number of packets for which the Security Parameters Index (SPI) was incorrect.
BadSPIPackets_00006_009_NAME=BadSPIPackets
BadSPIPackets_00006_009_HELP=BadSPIPackets

ConfidentialBytesReceived_00006_00c_NAME=ConfidentialBytesReceived
ConfidentialBytesReceived_00006_00c_HELP=The number of bytes received using the ESP protocol.
ConfidentialBytesReceived_00006_009_NAME=ConfidentialBytesReceived
ConfidentialBytesReceived_00006_009_HELP=ConfidentialBytesReceived

ConfidentialBytesSent_00006_00c_NAME=ConfidentialBytesSent
ConfidentialBytesSent_00006_00c_HELP=The number of bytes sent using the ESP protocol.
ConfidentialBytesSent_00006_009_NAME=ConfidentialBytesSent
ConfidentialBytesSent_00006_009_HELP=ConfidentialBytesSent

KeyAdditions_00006_00c_NAME=KeyAdditions
KeyAdditions_00006_00c_HELP=The total number of successful IPSEC SA negotiations
KeyAdditions_00006_009_NAME=KeyAdditions
KeyAdditions_00006_009_HELP=KeyAdditions

KeyDeletions_00006_00c_NAME=KeyDeletions
KeyDeletions_00006_00c_HELP=The total number of key deletions for IPSEC SA
KeyDeletions_00006_009_NAME=KeyDeletions
KeyDeletions_00006_009_HELP=KeyDeletions

PacketsNotAuthenticated_00006_00c_NAME=PacketsNotAuthenticated
PacketsNotAuthenticated_00006_00c_HELP=The total number of packets for which data could not be verified.
PacketsNotAuthenticated_00006_009_NAME=PacketsNotAuthenticated
PacketsNotAuthenticated_00006_009_HELP=PacketsNotAuthenticated

PacketsNotDecrypted_00006_00c_NAME=PacketsNotDecrypted
PacketsNotDecrypted_00006_00c_HELP=The total number of packets that failed decryption.
PacketsNotDecrypted_00006_009_NAME=PacketsNotDecrypted
PacketsNotDecrypted_00006_009_HELP=PacketsNotDecrypted

PacketsWithReplayDetection_00006_00c_NAME=PacketsWithReplayDetection
PacketsWithReplayDetection_00006_00c_HELP=The total number of packets that contained a valid Sequence Number field.
PacketsWithReplayDetection_00006_009_NAME=PacketsWithReplayDetection
PacketsWithReplayDetection_00006_009_HELP=PacketsWithReplayDetection

PendingKeyOperations_00006_00c_NAME=PendingKeyOperations
PendingKeyOperations_00006_00c_HELP=The number of IPSEC key operations in progress
PendingKeyOperations_00006_009_NAME=PendingKeyOperations
PendingKeyOperations_00006_009_HELP=PendingKeyOperations

ReKeys_00006_00c_NAME=ReKeys
ReKeys_00006_00c_HELP=The number of rekey operations for IPSEC SAs.
ReKeys_00006_009_NAME=ReKeys
ReKeys_00006_009_HELP=ReKeys

TransportBytesReceived_00006_00c_NAME=TransportBytesReceived
TransportBytesReceived_00006_00c_HELP=The number of bytes received using the IPSEC protocol.
TransportBytesReceived_00006_009_NAME=TransportBytesReceived
TransportBytesReceived_00006_009_HELP=TransportBytesReceived

TransportBytesSent_00006_00c_NAME=TransportBytesSent
TransportBytesSent_00006_00c_HELP=The number of bytes sent using the IPSEC protocol.
TransportBytesSent_00006_009_NAME=TransportBytesSent
TransportBytesSent_00006_009_HELP=TransportBytesSent

TunnelBytesReceived_00006_00c_NAME=TunnelBytesReceived
TunnelBytesReceived_00006_00c_HELP=The number of bytes received using the IPSEC tunnel mode.
TunnelBytesReceived_00006_009_NAME=TunnelBytesReceived
TunnelBytesReceived_00006_009_HELP=TunnelBytesReceived

TunnelBytesSent_00006_00c_NAME=TunnelBytesSent
TunnelBytesSent_00006_00c_HELP=The number of bytes sent using the IPSEC tunnel mode.
TunnelBytesSent_00006_009_NAME=TunnelBytesSent
TunnelBytesSent_00006_009_HELP=TunnelBytesSent

AverageProcessingTime_00007_00c_NAME=Average Request Processing Time
AverageProcessingTime_00007_00c_HELP=Average time taken to process a request over this connection
AverageProcessingTime_00007_009_NAME=AverageProcessingTime
AverageProcessingTime_00007_009_HELP=AverageProcessingTime

MaximumProcessingTime_00007_00c_NAME=Max Request Processing Time
MaximumProcessingTime_00007_00c_HELP=Maximum time taken to process a request over this connection
MaximumProcessingTime_00007_009_NAME=MaximumProcessingTime
MaximumProcessingTime_00007_009_HELP=MaximumProcessingTime

BytesReceived_00008_00c_NAME=Bytes Received
BytesReceived_00008_00c_HELP=Number of bytes received over this session
BytesReceived_00008_009_NAME=BytesReceived
BytesReceived_00008_009_HELP=BytesReceived

BytesSent_00008_00c_NAME=Bytes Sent
BytesSent_00008_00c_HELP=Number of bytes sent over this session
BytesSent_00008_009_NAME=BytesSent
BytesSent_00008_009_HELP=BytesSent

ConnectionTimeoutErrors_00008_00c_NAME=ConnectionTimeout Errors
ConnectionTimeoutErrors_00008_00c_HELP=Count of Number of ConnectionTimeout errors occured in this session
ConnectionTimeoutErrors_00008_009_NAME=ConnectionTimeoutErrors
ConnectionTimeoutErrors_00008_009_HELP=ConnectionTimeoutErrors

DigestErrors_00008_00c_NAME=Digest Errors
DigestErrors_00008_00c_HELP=Count of Number of Digest errors occured in this session
DigestErrors_00008_009_NAME=DigestErrors
DigestErrors_00008_009_HELP=DigestErrors

FormatErrors_00008_00c_NAME=Format Errors
FormatErrors_00008_00c_HELP=Count of Number of Format errors occured in this session
FormatErrors_00008_009_NAME=FormatErrors
FormatErrors_00008_009_HELP=FormatErrors

PDUCommandsSent_00008_00c_NAME=PDUs Sent
PDUCommandsSent_00008_00c_HELP=Number of PDU sent over this session
PDUCommandsSent_00008_009_NAME=PDUCommandsSent
PDUCommandsSent_00008_009_HELP=PDUCommandsSent

PDUResponsesReceived_00008_00c_NAME=PDUs Received
PDUResponsesReceived_00008_00c_HELP=Number of PDU received over this session
PDUResponsesReceived_00008_009_NAME=PDUResponsesReceived
PDUResponsesReceived_00008_009_HELP=PDUResponsesReceived

frequency_00009_00c_NAME=Processor Frequency
frequency_00009_00c_HELP=Current Processor Frequency in megahertz
frequency_00009_009_NAME=frequency
frequency_00009_009_HELP=frequency

percentage_00009_00c_NAME=% of Maximum Frequency
percentage_00009_00c_HELP=Percentage of maximum processor frequency
percentage_00009_009_NAME=percentage
percentage_00009_009_HELP=percentage

power_00009_00c_NAME=Processor State Flags
power_00009_00c_HELP=Processor State Flags
power_00009_009_NAME=power
power_00009_009_HELP=power



I have not been able to paste the one I cannot open it is a Hfile

thankyou
kate

Edited by skgrate, 24 May 2012 - 02:37 AM.

  • 0

#59
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,800 posts
  • MVP
See if you can right click on the file that won't open and Rename. Change the .ini extension to .bad. You will get a warning saying it may not work if you change the extension but that's the idea so OK it.

(If you can't see the extension:

Open the Control Panel menu and click Folder Options.
After the new window appears select the View tab.
Put a checkmark in the checkbox labeled Display the contents of system folders.
Under the Hidden files and folders section select the radio button labeled Show hidden files and folders.
Remove the checkmark from the checkbox labeled Hide file extensions for known file types.
Remove the checkmark from the checkbox labeled Hide protected operating system files.
Press the Apply button and then the OK button and exit My Computer.
Now your computer is configured to show all hidden files.

)

Reboot and then see if you can Attach the .bad file.

There should be a version number with your Kaspersky. If you run it then click on its Help button and then About it should tell you exactly what version it is.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP