Browse by Tags

All Tags » troubleshooting (RSS)
Thursday, October 09, 2008 3:46 PM

SMB traffic not captured in TDI filter driver

Recently I met a problem in one of my TDI filters when filtering SMB traffic. The filter driver was able to see outgoing TDI_CONNECT requests to 137 and 445 ports, but during the heavy file upload there was no TDI_SEND requests issued. Please read the...
Posted by Volodymyr Shcherbyna | with no comments
Filed under: ,
Wednesday, August 27, 2008 10:33 AM

Undeletable bug in VS2008?

I see this bug for a quite a long time, starting from VS2005. To illustrate the problem: 1. Go to project properties, open some tab 2. Do not close the property dialog windows simply change the focus by clicking in code editor [...] Please read the post...
Posted by Volodymyr Shcherbyna | with no comments
Filed under: ,
Thursday, January 17, 2008 7:03 PM

Bug in MSDN: TDI_EVENT_RECEIVE_DATAGRAM & it's handler

If you ever wanted to handle TDI_EVENT_RECEIVE_DATAGRAM ( http://msdn2.microsoft.com/en-us/library/ms801156.aspx ) event handler in TDI, you would notice that it's declaration is a bit strange( http://msdn2.microsoft.com/en-us/library/ms801622.aspx...
Posted by Volodymyr Shcherbyna | 1 comment(s)
Filed under: ,
Wednesday, January 16, 2008 9:39 PM

DRIVER_VERIFIER_IOMANAGER_VIOLATION in Windows Server 2003 SP2 with latest updates ON

Recently, I've received following error when trying to test my TDI filter driver on Server 2003 SP2 with latest updates ON: DRIVER_VERIFIER_IOMANAGER_VIOLATION (c9) Arguments: Arg1: 00000208, (Fatal error) This IRP is about to run out of stack locations...
Posted by Volodymyr Shcherbyna | with no comments
Filed under: ,
Thursday, December 27, 2007 8:41 PM

explorer.exe is in danger :)

Kaspersky ( http://www.kaspersky.com/ ) recently released a signature update that treats explore.exe as a virus. This false signature may affect those people who set the option 'delete virus' ON - it let's anvtivirus delete the suspicious...
Posted by Volodymyr Shcherbyna | with no comments
Filed under: ,
Thursday, December 20, 2007 10:42 PM

The case of Task Manager that does not kill

Quite long time ago, my friend Vadym Stetsiak described a bug of Task Manager , which allows to disallow (!) the killing of a process, if it's name is lsass.exe. In order to test this bug, you can rename any executable file into lsass.exe, run it...
Posted by Volodymyr Shcherbyna | 2 comment(s)
Filed under: , ,
Thursday, August 23, 2007 9:34 PM

A shame on Kaspersky ...

As one of the stages in my work, I do tests of different antiviruses with components I develop. This allows me to handle incompatibility issues, profiling BSODS and other critical errors that might appear during software lifecycle ;) These days I was...
Posted by Volodymyr Shcherbyna | 3 comment(s)
Filed under: ,
Sunday, July 15, 2007 1:01 AM

Undefeatable files & folders in Windows XP SP2 - a bug in SHFileOperationW

Recently I was surprised with one interesting behavior of my Windows XP box. I was playing with long name files and noticed that major part of my shell extensions do not work with files, whose path is longer then 260 symbols. I also noticed, that Windows...
Posted by Volodymyr Shcherbyna | 6 comment(s)
Filed under: ,
Friday, May 11, 2007 11:32 AM

Bug in wininet: RETR command is not supported since IE7 release

If your FTP client relies on Wininet and supports resuming of downloads then it fail to work under IE7 because RETR command is not working properly when you invoke it using FtpCommand(…) function. The function fails with access violation, outputting the...
Posted by Volodymyr Shcherbyna | 3 comment(s)
Filed under:
Sunday, December 17, 2006 1:51 PM

IE7 release still beats us

I participate in wininet NG from time to time. Since IE7 release, the major part of issues that I read there is connected with the changes introduced by IE7. Fortunatly for us, WNDP team is ready to investigate any bug you'll find. Of course, you can...
Posted by Volodymyr Shcherbyna | with no comments
Filed under: ,
Saturday, December 02, 2006 2:27 AM

The case of IE7 that would not run

Yesterday I met an interesting behavior of IE7. On one of my computer which runs Windows Server 2003 SP1 I was trying to publish a post to my blog ('the power of IDA'). But I failed to do that. IE7 was crashing when I tried to write something in the editor...
Posted by Volodymyr Shcherbyna | 4 comment(s)
Filed under: ,
Friday, November 17, 2006 2:01 AM

Why does Windows do not provide more flexible API for Shell Context Menu Handlers?

Recently, I came across an interesting situation. My PC (XP SP2) was making some calculations. CPU activity was high. I was surfing through my folders and clicked on one of them using right button of the mouse. The context menu appeared after 10-20 seconds...
Posted by Volodymyr Shcherbyna | 5 comment(s)
Filed under: ,