archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/base/ntos/wmi/sample/wmifilt/readme.htm

192 lines
8.4 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. <html xmlns:o="urn:schemas-microsoft-com:office:office"
  2. xmlns:w="urn:schemas-microsoft-com:office:word"
  3. xmlns="http://www.w3.org/TR/REC-html40">
  5. <head>
  6. <meta http-equiv=Content-Type content="text/html; charset=windows-1252">
  7. <meta name=ProgId content=Word.Document>
  8. <meta name=Generator content="Microsoft Word 9">
  9. <meta name=Originator content="Microsoft Word 9">
  10. <link rel=File-List href="./readme_files/filelist.xml">
  11. <title>WMI Sample Filter Driver</title>
  12. <!--[if gte mso 9]><xml>
  13. <o:DocumentProperties>
  14. <o:LastAuthor>Alan Warwick</o:LastAuthor>
  15. <o:Revision>5</o:Revision>
  16. <o:TotalTime>3</o:TotalTime>
  17. <o:Created>2001-02-09T22:28:00Z</o:Created>
  18. <o:LastSaved>2001-04-28T20:19:00Z</o:LastSaved>
  19. <o:Pages>1</o:Pages>
  20. <o:Words>212</o:Words>
  21. <o:Characters>1210</o:Characters>
  22. <o:Company>Microsoft Internal</o:Company>
  23. <o:Lines>10</o:Lines>
  24. <o:Paragraphs>2</o:Paragraphs>
  25. <o:CharactersWithSpaces>1485</o:CharactersWithSpaces>
  26. <o:Version>9.4119</o:Version>
  27. </o:DocumentProperties>
  28. </xml><![endif]-->
  29. <style>
  30. <!--
  31. /* Font Definitions */
  32. @font-face
  33. {font-family:"MS Mincho";
  34. panose-1:2 2 6 9 4 2 5 8 3 4;
  35. mso-font-alt:"\FF2D\FF33 \660E\671D";
  36. mso-font-charset:128;
  37. mso-generic-font-family:modern;
  38. mso-font-pitch:fixed;
  39. mso-font-signature:-1610612033 1757936891 16 0 131231 0;}
  40. @font-face
  41. {font-family:"\@MS Mincho";
  42. panose-1:2 2 6 9 4 2 5 8 3 4;
  43. mso-font-charset:128;
  44. mso-generic-font-family:modern;
  45. mso-font-pitch:fixed;
  46. mso-font-signature:-1610612033 1757936891 16 0 131231 0;}
  47. /* Style Definitions */
  48. p.MsoNormal, li.MsoNormal, div.MsoNormal
  49. {mso-style-parent:"";
  50. margin:0in;
  51. margin-bottom:.0001pt;
  52. mso-pagination:widow-orphan;
  53. font-size:12.0pt;
  54. font-family:"Times New Roman";
  55. mso-fareast-font-family:"Times New Roman";}
  56. p.MsoPlainText, li.MsoPlainText, div.MsoPlainText
  57. {margin:0in;
  58. margin-bottom:.0001pt;
  59. mso-pagination:widow-orphan;
  60. font-size:10.0pt;
  61. font-family:"Courier New";
  62. mso-fareast-font-family:"Times New Roman";}
  63. @page Section1
  64. {size:8.5in 11.0in;
  65. margin:1.0in 65.95pt 1.0in 65.95pt;
  66. mso-header-margin:.5in;
  67. mso-footer-margin:.5in;
  68. mso-paper-source:0;}
  69. div.Section1
  70. {page:Section1;}
  71. -->
  72. </style>
  73. </head>
  75. <body lang=EN-US style='tab-interval:.5in'>
  77. <div class=Section1>
  79. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>This
  80. sample does not have a dedicated .inf file. The file inf.txt has information <o:p></o:p></span></p>
  82. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>about
  83. the inf sections that need to be modified to the inf to which this filter
  84. driver <o:p></o:p></span></p>
  86. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>is
  87. attached.<o:p></o:p></span></p>
  89. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><![if !supportEmptyParas]>&nbsp;<![endif]><o:p></o:p></span></p>
  91. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>If you
  92. have trouble getting the perfmon counters to show up within sysmon<o:p></o:p></span></p>
  94. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>then
  95. check the following<o:p></o:p></span></p>
  97. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><![if !supportEmptyParas]>&nbsp;<![endif]><o:p></o:p></span></p>
  99. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>1. Use
  100. Wbemtest.exe or generated vbs test scripts to query the class <o:p></o:p></span></p>
  102. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><span
  103. style="mso-spacerun: yes">�� </span>and obtain instances with valid data.<o:p></o:p></span></p>
  105. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><![if !supportEmptyParas]>&nbsp;<![endif]><o:p></o:p></span></p>
  107. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>2. The class
  108. has the HiPerf and PerfDetail qualifiers <o:p></o:p></span></p>
  110. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><![if !supportEmptyParas]>&nbsp;<![endif]><o:p></o:p></span></p>
  112. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>3. Each
  113. property is a uint32, uint64, sint32 or sint64. Each property has <o:p></o:p></span></p>
  115. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><span
  116. style="mso-spacerun: yes">�� </span>a PerfDetail, DefaultScale and CounterType
  117. qualifier.<o:p></o:p></span></p>
  119. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><![if !supportEmptyParas]>&nbsp;<![endif]><o:p></o:p></span></p>
  121. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><![if !supportEmptyParas]>&nbsp;<![endif]><o:p></o:p></span></p>
  123. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><![if !supportEmptyParas]>&nbsp;<![endif]><o:p></o:p></span></p>
  125. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>If the
  126. above steps do not help you may need to do the following:<o:p></o:p></span></p>
  128. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><![if !supportEmptyParas]>&nbsp;<![endif]><o:p></o:p></span></p>
  130. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>1. Exit
  131. sysmon and stop the wmiapsrv service by typing &quot;net stop wmiapsrv&quot;<o:p></o:p></span></p>
  133. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><![if !supportEmptyParas]>&nbsp;<![endif]><o:p></o:p></span></p>
  135. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>2. Go
  136. into the registry and delete the value <o:p></o:p></span></p>
  138. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><span
  139. style="mso-spacerun: yes">��
  140. </span>HKEY_LOCAL_MACHINE\Software\Microsoft\WBEM\Providers\Performance\Performance
  141. Data<o:p></o:p></span></p>
  143. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><![if !supportEmptyParas]>&nbsp;<![endif]><o:p></o:p></span></p>
  145. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>3.
  146. Restart the wmiapsrv service by typing &quot;net start wmiapsrv&quot;<o:p></o:p></span></p>
  148. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><![if !supportEmptyParas]>&nbsp;<![endif]><o:p></o:p></span></p>
  150. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>4. The
  151. above registry value should be repopulated with data that includes<o:p></o:p></span></p>
  153. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><span
  154. style="mso-spacerun: yes">�� </span>the text of you class name and properties.<o:p></o:p></span></p>
  156. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><![if !supportEmptyParas]>&nbsp;<![endif]><o:p></o:p></span></p>
  158. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>The
  159. first time you click the add counters button in sysmon you will not see <o:p></o:p></span></p>
  161. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>the WMI
  162. counters in the list. At this point you should open task manager<o:p></o:p></span></p>
  164. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>(by
  165. running taskmgr.exe) and wait until the winmgmt.exe process returns to<o:p></o:p></span></p>
  167. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>0% cpu
  168. utilization. Now click the add counters button again and you will<o:p></o:p></span></p>
  170. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>see the
  171. WMI counters in the list.<o:p></o:p></span></p>
  173. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><![if !supportEmptyParas]>&nbsp;<![endif]><o:p></o:p></span></p>
  175. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>Also be
  176. aware that you should not start any drivers containing binary mofs<o:p></o:p></span></p>
  178. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>or use
  179. mofcomp.exe to compile in any mofs with WMI perfcounters while<o:p></o:p></span></p>
  181. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'>sysmon
  182. is running.<o:p></o:p></span></p>
  184. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><![if !supportEmptyParas]>&nbsp;<![endif]><o:p></o:p></span></p>
  186. <p class=MsoPlainText><span style='mso-fareast-font-family:"MS Mincho"'><![if !supportEmptyParas]>&nbsp;<![endif]><o:p></o:p></span></p>
  188. </div>
  190. </body>
  192. </html>