On Fri, Apr 03, 2020 at 23:26:46 +0200, Gert Doering wrote:
> Hi,
>
> On Fri, Apr 03, 2020 at 05:04:51PM -0400, Nathan Stratton Treadway wrote:
> > Just to wrap up some a few loose ends: the 10,042-byte tap0901.cat file
> > from the DriverStore... directory _does_ seem to have the unwanted
> > "OpenVPN, Inc." signature:
>
> Now things are starting to get interesting... just this minute, I
> get a question on IRC (#openvpn-devel)
>
> 23:06 < kitsune1> Anyone knows why Kaspersky anti virus includes tapwindows
> driver (looks like 9.23.x). I'm running into a conflict
> with
> it and OpenVPN 2.4.8 install on a Windows machine. No tap
> adapter shows up (except the one Kaspersky installed) and
> services dont start etc.. Struggling with this for a user
> over a remote line.. sigh..
>
> any chance that you have Kaspersky on the problematic Win10 machines?
I am not sure if this relates in any way to the Kaspersky situation...
but I did just track down a little bit of hint as to the origin of the
incorrect driver files on our failing box.
Specifically, I discoverd that there was a file
C:\Windows\INF\setupapi.offline.log which is dated 03/26/2020 04:04 PM,
so righin sync iwth the 03/26/2020 04:03 PM timestamp for the bizarre
oem43.inf file.
Sure enough, tap0901 is mentioned in that file:
====
>>> [Import Driver Package -
>>> C:\Windows\System32\DriverStore\FileRepository\oem
vista.inf_amd64_6d4bec28a2ef0cdf\oemvista.inf]
>>> Section start 2020/03/26 12:03:38.780
os: Version = 10.0.18362, Service Pack = 0.0, Suite = 0x0100,
ProductType = 1, Architecture = amd64
cmd:C:\$WINDOWS.~BT\Work\8281DF86-CE40-4716-9BC0-D8633386BCF0\dismhost.exe
{7EE7940C-F55C-48C2-BD75-FFE81BDC58C9}
sto: Driver Store = C:\$WINDOWS.~BT\NewOS\Windows\System32\DriverStore
(10.0.18362)
sto: Driver Package =
C:\Windows\System32\DriverStore\FileRepository\oemvista.inf_amd64_6d4bec28a2ef0cdf\oemvista.inf
sto: Architecture = amd64
sto: Flags = 0x00000040
inf: Provider = TAP-Windows Provider V9
inf: Class GUID = {4d36e972-e325-11ce-bfc1-08002be10318}
inf: Driver Version = 09/27/2019,9.24.2.601
inf: Catalog File = tap0901.cat
[...]
====
(I guess the timestamps in the log are 4 hours earlier than the file
timestamps, for some reason...)
Based on a quick glance, it looks this log file shows a bunch of drivers
getting installed from this c:\$WINDOWS.~BT\ directory into the
C:\windows directory. Does this ring a bell with anyone?
Nathan
----------------------------------------------------------------------------
Nathan Stratton Treadway - natha...@ontko.com - Mid-Atlantic region
Ray Ontko & Co. - Software consulting services - http://www.ontko.com/
GPG Key: http://www.ontko.com/~nathanst/gpg_key.txt ID: 1023D/ECFB6239
Key fingerprint = 6AD8 485E 20B9 5C71 231C 0C32 15F3 ADCD ECFB 6239
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
