ound It dont nnow why I mised it I had seen it before and did not stop to think how it would relate to skining
Thaks for the pointer
Panic
and
Sammo
OD
I see Kerio HIPS Driver, could this be the problem?
Dimmed entries should not be active. Anyway you can look at Kerio HIPS Driver properties and take note of that filename to search it on your hd.
Also please confirm that Firewall driver is from Microsoft.
Did you install Kaspersky AV along with Kerio or after it?
Did you disable Kaspersky firewall component?
Please let us know if emule works without CFP at your next reboot.
Anty
If this is any use to you I have looked on my partner’s computer which still has Kerio running.
DEVICE MANAGER
Firewall Driver:- C:\WINDOWS\System32\Drivers\Fwdrv.sys
Kerio Hips Driver:- C:\WINDOWS\System32\Drivers\Khips.sys
KERIO Info
KERIO PERSONAL FIREWALL 4
Componet Versions
System Service: 4.2.1
User Interface: 4.2.1
Driver: 4.1.6002
Kfe Api: 4.1.2745
Hips Driver: 1.0.1796
Dennis
I cannot find Khips.sys on my hd, but I found firewall driver (not sure if it’s microsoft or not) in C:\WINDOWS\system32\drivers, and it appears as fwdrv.err.
I didn’t install Kaspersky AV with Kerio, though I did have kaspersky many months ago (everything was working then).
Unfortunately eMule still doesnt work 
Cheers again Dennis for your help ;D
If you look at those file properties you can see the maker of these files. If you look at the properties in device manager there is a driver tab where you can see the path of these drivers.
Anyway it seem that this issue is not caused by CFP. Did you make any configuration changes from the last time your p2p apps were working?
Is seems that there are Kaspersky leftovers under device manager (KL1) please confirm this
also there is also another unknown driver K56. Is this a software based 56k modem?
BTW do you have a Gigabyte graphic driver?
As this issue seem unrelated to CFP please install another copy of emule in another dir and configure that without ani firewall running.
http://img181.imageshack.us/img181/4476/driverol8.th.png
Hmm, the only config change I remember doing was an antispy patch to change number of connections. It was already patched and I accidentally clicked reset, then I patched it back to 50.
There is an active driver called Kl1.
I’ve got a Dell pc and I remember seeing 56k modem before, but I don’t think I’ve got it on my computer anymore.
http://img509.imageshack.us/img509/8932/k56ms3.th.png
I’ve got a nvidia geforce mx420 graphic card, and I think I’ve got driver from nvidia itself.
Got another copy of emule and it’s still showing low id.
Anty
Fwdrv.err should be a text file which is generated when there is a problem with Kerio Firewall driver Fwdrv.sys I am sorry I can’t help you anymore than that.
I hope gibran can sort out the problem for you as his knowledge is far greater than mine.
Dennis
Please look at that driver there should be te option to look at the file info. If it is from KAV you need to remove that (maybe reinstall Kaspersky an uninstall it from safe mode)
you have a GVCPLDRV in device manager please confirm the maker of that file.
lowid is not indicative you need to test that with the test port button.
If emule doesn’t work with CFP uninstalled there is not much we can do here…
That KL1 file is Kaspersky anti-hacker control driver.Since it is apparently still active it can’t just be deleted I suggest that you install a utility called Unlocker,available from:
http://ccollomb.free.fr/unlocker/
Once installed you can simply right click on this file and select delete,you will get a pop up stating that it is running and the required action,just select delete at next reboot,job done! (:WIN)
Sorry for the late reply :-[
The driver can be deleted and it’s not running more.
http://img230.imageshack.us/img230/3883/gvcpldrveq5.th.png
Aye did test port, still nothing :(
And andyman35 cheers! That’s a cracking software! (:CLP)
Did you remove KL1 Kaspersky anti-hacker control driver?
please try to restore the original tcpip.sys then launch sigverif.exe and let it scan for unsigned drivers.
Please check your firewall forwarding rules or test it in DMZ mode (only use this mode for few minutes as your pc will become directly accessible from the net)
Setting Up A Default DMZ Server
The Default DMZ Server feature is helpful when using some online games and videoconferencing
applications that are incompatible with NAT. The router is programmed to recognize some of these
applications and to work properly with them, but there are other applications that may not function
well. In some cases, one local computer can run the application properly if that computer’s IP
address is entered as the Default DMZ Server.
Incoming traffic from the Internet is normally discarded by the router unless the traffic is a
response to one of your local computers or a service that you have configured in the Ports menu.
Instead of discarding this traffic, you can have it forwarded to one computer on your network. This
computer is called the Default DMZ Server.
How to Configure a Default DMZ Server
To assign a computer or server to be a Default DMZ server, follow these steps:
- Log in to the router at its default LAN address of http://192.168.0.1/ with its default User Name
of admin, default password of password, or using whatever Password and LAN address you
have chosen for the router. - From the Main Menu, under Advanced, click the WAN Setup link
- Select the Default DMZ Server check box.
- Type the IP address for that server (your PC fixed LAN IP).
- Click Apply to save your changes.
Yes, I removed it and it’s not under device manager anymore.
I have restored tcpip.sys and sigverif.exe found it.
Tried DMZ server, still getting
Starting TCP connection test…
TCP test failed! UDP test will not be performed.
Connection test finished.
sigverif list only unsigned drivers. This mean that tcpip.sys is corrupted or patched. :o
is your windows firewall enabled? is emule in your WF allowed list?
what other security software you run (AV, antispiwares…)?
did you test using a clean emule install?
:o
http://img156.imageshack.us/img156/8841/tcpipyn1.th.png
Looks like I need a new copy of tcpip.sys then :o
According to antispy, it’s not patched atm.
I run nod32 AV, AVG anti-spyware, and WF is disabled.
Yeah tried clean emule install, still gettint tcp test failed
You can edit this file to remove the imposed limit on the number of connections,by using the info on here:
Alternatively you can download the file from here:
http://www.zeropaid.com/bbs/showthread.php?t=24715
Apparently there have been some issues with malware hijacking tcpip.sys
This may well help your P2P situation.
I wonder if the beta firewall is comaptible with this AV ?? Present I always get a warning from Kaspersky that it is incompatible with the Comodo Firewall 2.4 … has this issue been adressed? ???
Try to rename tcpip.original to tcpip.sys try also tcpip.flg
Melih told me some time back that they were working to make sure that v3 would not be “vulnerable” to this problem. I do not know anything more than that, but I think I recall seeing some report some KAV compatibility problems; perhaps on an earlier version of the Beta? Not sure…
LM
Does version 3 have any way toprotect it from 3rd party programs trying to kill it? I can kill both processes via task manager easily, which doesn’t happen with NIS or ZA Pro.