A+ Chapter 11 & 12 – Flashcards
Unlock all answers in this set
Unlock answersquestion
What is the shell?
answer
A portion of an OS that relates to the user and to applications.
question
What is the kernel?
answer
The kernel is responsible for interacting with hardware.
question
What are the three components of an OS?
answer
The kernel, the shell, and the configuration data
question
Where is the configuration data primarily contained?
answer
The configuration data is primarily contained in the registry.
question
The shell provides tools such as _____ and ____ as a way for a user to interact with the system (ex. launch an application)
answer
Windows Explorer and the Windows desktop
question
For applications, the shell provides _____ and ____ that applications can call on to do things like print, read from storage, etc.
answer
Commands and procedures
question
The shell is made up of several subsystems that all operate in ____
answer
User mode
question
User mode
answer
A mode in which the subsystems have only limited access to system information, and can access hardware only through other OS services.
question
All applications relate to Windows by way of the ____ subsystem
answer
Win32
question
What does the Win32 security subsystem do?
answer
Provides login to the system and other security functions, including privileges for file access
question
Because the kernel operates in ____ mode, it has more power to communicate with hardware devices than the shell has.
answer
Kernel
question
Applications operating under the OS cannot get to hardware devices without ...
answer
the shell passing those requests to the kernel.
question
The two main benefits of the separation of tasks (for kernel and shell)
answer
•A more stable system •Helps to prevent a wayward application from destabilizing the system.
question
The kernel has two main components:
answer
•The HAL (hardware abstraction layer) which is the layer closest to the hardware •The executive services interface, which is a group of services that operate in kernel mode between the user mode subsystem and the HAL.
question
The layers of the OS from Hardware to Applications
answer
Hardware --> HAL --> Executive Services interface --> The shell (aka the user mode subsystems) --> Application
question
The layers of the OS from hardware to user
answer
Hardware --> HAL --> Executive Services interface --> The shell (aka the user mode subsystems) --> user interface tools --> User
question
When Windows is first installed, it builds the HAL based on the type of ____ installed.
answer
CPU
question
Why can you not move a Windows installation from one computer to another?
answer
The HAL cannot be moved from one computer to another.
question
What is a process?
answer
A program that is running under the authority of the shell.
question
When an application is launched, the program is copied from the ___ into ___ and there it is called a ___
answer
hard drive, memory, process
question
What is a thread?
answer
When a process makes a request for resources, this is called a thread. A thread is a single task, ex. printing a file
question
When a process makes a request for resources, where is this request send?
answer
the Win32 subsystem.
question
What is multithreading?
answer
A process with more than one thread
question
Sometimes a process is called
answer
An instance
question
What is the command to start Task manager?
answer
Taskmgr.exe
question
Task manager allows you to view..
answer
Applications and processes running on your computer, information about process and memory performance, network activity, and user activity.
question
Some ways to access Task Manager?
answer
•Right click a blank area on the Taskbar, and select Start Task Manager •Press Ctrl+Alt+Del •Press Ctrl+Shift+Esc Click start, enter taskmgr.exe into the search box
question
What are the 6 tabs in Windows 7/Vista task manager?
answer
•Applications •Processes •Services •Performance •Networking •Users
question
In the Applications tab in Task Manager, an application can have two states:
answer
Running or Not Responding
question
How do you end a task that is not responding?
answer
In task manager, select it and click the End Task button
question
The processes tab in Task Manager lists ...
answer
System services and other processes associated with applications, and how much CPU time and memory the process uses.
question
To see all processes running click..
answer
Show processes from all users
question
A service running under the ___ account has more core privileges than a service running under another account
answer
System
question
If an Application is hung, why should you try to end it using the Applications tab rather than the Process tab?
answer
Ending the application in the Applications tab will end the application by attempting a normal shutdown, and if data has not been saved you are given the opportunity to save it. If you try to end an application by ending it's underlying process, the application will be ended abruptly and you will lose any unsaved information.
question
If you want to end the process + all related processes, right click the process and select End Process Tree
answer
...
question
Why should you be careful not to end critical Windows Processes?
answer
Ending these could crash your system.
question
How can you refresh your desktop using task manager? (In case your desktop locks up)
answer
Click the process tab, select explorer.exe, and click end process. Then click the applications tab, click new task, and enter explorer.exe. Any previously running applications will still be running.
question
What is the purpose or the services tab in task manager
answer
This tab lists the services currently installed along with the status of each service
question
A service is...
answer
A program that runs in the background and is called on by other programs to perform a background task.
question
To manage a service in task manager..
answer
click the services tab, click the services button at the bottom of the window to go to the services console.
question
The performance monitor tab in task manager can..
answer
give you a quick look at how system resources are being used.
question
The CPU usage graph shows...
answer
the percentage of time that the CPU is being used.
question
What is the purpose of the networking tab in task manager?
answer
This tab let you monitor network activity and bandwidth used. You can use it to see how heavily the network is being used by this computer.
question
What is the purpose of the users tab in task manager?
answer
This tab shows all users currently logged on to the system.
question
Where can you find Windows administrative tools?
answer
You can find administrative tools in command prompt.
question
Which administrative tools does the Windows 7 Home Edition not include?
answer
Local security policy and print management.
question
Which command is used to enter system configuration?
answer
msconfig.exe
question
What is the purpose of the System Configuration utility?
answer
To find out what processes are launched at start up and to temporarily disable a process from loading
question
What are some ways to permanently remove a process from Windows startup?
answer
Uninstall the program , remove it from startup folder, or use the Services console to disable a service
question
What does the disable all button do in the services tab in the system Configuration utility?
answer
This disables all non-essential Windows Services as well as third-party services such as virus scan programs.
question
Why should you only use the disable all button on the services tab in the system Configuration utility for the most difficult Windows for the most difficult Windows problems?
answer
You will disable some services that you may really want such as Windows task scheduler automatic updates and the system restore service
question
What is the purpose of the startup tab in the system Configuration utility?
answer
Use the startup tab to see a list of programs that launch at startup.
question
The programs under the startup tab in the system Configuration utility launch by way of?
answer
Startup folder or a registry key entry
question
What is the command to enter the services console?
answer
services.msc
question
What is the purpose of the Services console?
answer
To control the windows and third-party services installed on the system.
question
The start of tapes for services within the services console include...
answer
•Automatic (Delayed start). This starts shortly after startup, after the user logs on, so it does not slow down the startup process •Automatic. Starts when Windows loads. •Manual. Starts as needed. •Disabled. Cannot be started.
question
What is the command to enter the computer Management console?
answer
compmgmt.msc
question
What is the purpose of the computer Management console?
answer
This console contains several tools that can be used to manage the local PC or other computers on the network
question
Why is the computer management window called a console?
answer
Because it consolidates several Windows administrative tools.
question
What are some ways to answer the computer Management console?
answer
•Click start, enter compmgmt.msc or Computer management into the search box •Click start, right click computer, and select manage. •Open Control Panel and look in the Administrative tools group.
question
what are some tools you can access using the computer management console?
answer
You can access task scheduler , Event Viewer Event Viewer , performance monitor device manager Disk Management and the services console.
question
What is the command to open Microsoft Management console?
answer
mmc.exe
question
What is the purpose of Microsoft Management console?
answer
This is a Windows utility that can be used to build your own customized console windows.
question
What is a snap in?
answer
In a console the individual tools are called snap-ins.
question
A console is saved in a file with a dot a _____ file extension.
answer
.msc
question
True or false: A snap-in in a console can itself be a console?
answer
True
question
To use all the functions of MMC, you must ..?
answer
Be logged on with admin privileges.
question
What is the command to enter Event Viewer?
answer
Eventvwr.msc
question
What is the purpose of Event Viewer?
answer
Within Event Viewer, you can find logs of just about anything that has happened in Windows, logged by Windows.
question
What are some ways to open Event Viewer?
answer
•Enter Event Viewer or eventvwr.msc in the search box •Open it using the computer management console (it is a snap-in) •Use the administrative tools group on control panel
question
What are the three main types of events in event viewer?
answer
Error, Warning, and information.
question
What do the Error and warning events in Event Viewer mean?
answer
Error indicates something went wrong with the system, warning indicates failure may occur in the future.
question
What is included in the Administrative Events Log in event viewer?
answer
This log shows only Warning and Error events intended for the administrator.
question
What is included in the application log in event viewer?
answer
Events recorded by an application.
question
What is included in the Security log in event viewer?
answer
These events are called audits and include successful and unsuccessful logins to a user account + attempts from another computer on the network to access shard resources on this computer.
question
What is included in the setup log in event viewer?
answer
This log includes events recorded when applications are installed.
question
What is included in the system log in event viewer?
answer
Events triggered by Windows components, ex. device driver failing to load or problem with hardware
question
What is included in the forwarded events log in event viewer?
answer
This log received events that were recorded on other computers and sent to this computer.
question
log files are assigned a ____ file extension.
answer
.evtx
question
What is the purpose of Windows task scheduler?
answer
Task scheduler can be set to launch a task or program at a future time, including at startup.
question
Task scheduler stores tasks in a file stored in the _____ folder
answer
C:WindowsSystem32Tasks
question
What are two ways to open task scheduler?
answer
•Click Task Scheduler from the Administrative tools group in control panel. •Click start, All programs, Accessories, System Tools, and Task Scheduler.
question
What is the command to open the Registry editor?
answer
regedit.exe
question
What is the Windows registry?
answer
The windows registry is the most important windows component that holds information for Windows.
question
The registry is a _____ designed with a ______ structure (also called a ______)
answer
database, treelike, hierarchical database
question
What does the registry contain?
answer
The registry contains configuration information for Windows, users, software applications, and installed hardware devices.
question
How is the registry built?
answer
During startup, Windows builds the registry and stores it in memory until Windows shuts down. During startup, after the registry is built, Windows reads from it to obtain information to complete the startup process. After Windows is loaded, it is continuously reading from many of the sub keys in the registry.
question
What does Windows build the registry from?
answer
the current hardware configuration and from information stored in the hives (5 of them) , and the Ntuser.dat file (holds preferences + settings of the user)
question
What are the names of the 5 hives and where are they stored?
answer
The hives are found in C:WindowsSystem32config, they are named SAM (security Accounts manager) Security, Software, System, and Default hives
question
After the registry is build in memory, it is organized into...
answer
five high-level keys
question
Each key can have ____
answer
subkeys
question
subkeys can be assigned more of more
answer
values
question
What are the 5 keys?
answer
•HKEY_LOCAL_MACHINE •HKRY_CURRENT_CONFIG •HKEY_CLASSES_ROOT •HKEY_USERS •HKEY_CURRENT_USER
question
What is the purpose of HKEY_LOCAL_MACHINE and where does it's data come from?
answer
Local Machine is the most important key. It contains hardware, software, and security data. Contains info from SAM, security, software, and system hive.
question
What is the purpose of HKEY_CURRENT_CONFIG and where does the data come from?
answer
current config key contains info that identifies each hardware device installed on the computer. The data comes from the current hardware configuration loaded into memory, and the HKLM key (which got its data primarily from the system hive)
question
What is the purpose of HKEY_CLASSES_ROOT and where does it pull it's information from?
answer
this key stores information that determines which application is opened when a user double clicks a file. This process relies on file extensions (to determine which program to load) . Data for this key is pulled from the Local Machine + Current User hives.
question
What is the purpose of HKEY_USERS and where is the data pulled from?
answer
This key contains data about all users and is pulled from the default hive
question
What is the purpose of HKEY_CURRENT_USER and where does it pull it's information from?
answer
this key contains data about the current user. This key is build when the user logs on using data from the HKEY_USERS key and data kept in the Ntuser.dat file of the current user.
question
What is the Performance Information and Tools window used for?
answer
this window gives information to evaluate the performance of a system and to adjust Windows for best performance.
question
What are two methods to open the performance information and tools window?
answer
•Click start, right click computer, select properties. In the system window, click performance information and tools •In the action center, click view performance information
question
What is the command to open Resource Monitor?
answer
resmon.exe
question
What is the purpose of resource monitor?
answer
monitors the performance of the processor, memory, hard drive, and network.
question
What are some methods to open resource monitor?
answer
• In Task Manager, open Resource Monitor in the performance tab. • In the performance Information and tools window, click Advanced tools, and then Open Resource Monitor •In the Computer Management console, click System tools, Performance group, click Monitoring tools, more actions, and resource monitor.
question
What is the purpose of Windows Reliability Monitor?
answer
this gives information about problems and errors that happen over time.
question
What is Performance Monitor and what is it's purpose?
answer
Performance Monitor is a Microsoft Management Console snap-in that can track activity by hardware and software to measure performance.
question
What is the command to enter performance monitor?
answer
perfmon.msc or perfmon.exe
question
What is the difference between Resource Monitor and Performance Monitor?
answer
Resource monitor monitors activities in real time, while Performance monitor can monitor in real time and can save collected data in logs for future use.
question
What is a data collector set?
answer
A data collector set is a set of counters within performance monitor that you can use to collect data about the system and save this data in a report/log file for future use.
question
What are the 6 steps to troubleshooting hardware and software problems?
answer
1. Interview the User and Back up data. 2. Establish a Theory. (Best guess of problem source) 3. Test your theory 4. Plan the fix and resolve the problem (Get the user to test as well) 5. Verify and prevent 6. Document
question
How can you load Windows memory diagnostic tool?
answer
• In command prompt, enter mdsched.exe • Press space bar during boot, the Windows boot manager appears, select Windows memory disgnostic •Boot the computer from the Windows setup DVD, click Repair computer, and click Windows memory diagnostic
question
What is the purpose of system file checker?
answer
System file checker protects system files and keeps a cache of current system files in case it needs to refresh a damages file.
question
How do you run system file checker?
answer
Close all applications and enter the command sfc /scannow in an elevated command prompt window Use /scanonce to scan files after the next reboot.
question
What is Tasklist and Taskkill?
answer
The Tasklist command returns the PID, and the Taskkill command uses the PID to kill the process. Tasklist | more taskkill /f /pid:2212
question
A program associated with a file extension is called
answer
it's default program
question
Which tool can be used to register a component
answer
Component Services (aka COM+)g 8