Windows sysinternals
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
<strong>Windows</strong> 7<br />
461<br />
VMMap (continued)<br />
View A Running Process tab,<br />
213<br />
VMs, attaching to VHDs, 336<br />
volume clusters, graphical view<br />
of, 342<br />
volume management utilities,<br />
335–350<br />
volume permissions, 340<br />
Volume Properties dialog box,<br />
343<br />
Volume Snapshot, 335<br />
VolumeID, 350<br />
changing, 350<br />
Write permissions for, 350<br />
volumes<br />
effective permissions on, 269<br />
flushing to disk, 339–340<br />
graphical display of, 341–344<br />
W<br />
wait time of services, 198<br />
wallpaper, system information<br />
displayed as, 309–318<br />
Web, running utilities from, 10<br />
WebClient service, starting, 10<br />
Whois, 353<br />
Whois lookups, 352<br />
WinDbg.exe, 421<br />
dump files, viewing in,<br />
236–237<br />
locations of, 251<br />
WinDiff, 399<br />
window manager, 35<br />
window messages, 34–36<br />
window messaging architecture,<br />
35<br />
window stations, 32–33<br />
desktops, 33–34<br />
identifying, 34<br />
relationship with sessions and<br />
desktops, 30–31<br />
window submenu, 51<br />
windows<br />
desktops, connection<br />
between, 318<br />
ownership, determining,<br />
66–67<br />
<strong>Windows</strong> Attachment Execution<br />
Service, alternate data<br />
stream, 8–9<br />
<strong>Windows</strong> desktop objects,<br />
318–319<br />
<strong>Windows</strong> event logs, displaying<br />
records, 192–196<br />
<strong>Windows</strong> Explorer, autostart<br />
entries, 155–157<br />
<strong>Windows</strong> Firewall, DebugView<br />
exception in, 248<br />
<strong>Windows</strong> Hardware Abstraction<br />
Layer (HAL), compatibility<br />
issues, 336<br />
<strong>Windows</strong> Internals: Including<br />
<strong>Windows</strong> Server 2008 and<br />
<strong>Windows</strong> Vista, Fifth Edition<br />
(Russinovich and Solomon),<br />
15, 43, 360, 370, 374<br />
<strong>Windows</strong> Management<br />
Instrumentation (WMI) job<br />
object, 21<br />
<strong>Windows</strong> native-mode<br />
executables, autostarting,<br />
160<br />
<strong>Windows</strong> Object Manager, 370<br />
<strong>Windows</strong> operating system<br />
administrative rights, 15–20<br />
Autostart Extensibility Points,<br />
145<br />
call stacks, 24–30<br />
core concepts, 15–36<br />
desktops, 33–34<br />
fake system components,<br />
431–433<br />
jobs, 21<br />
kernel-mode core, 23<br />
Last Known Good option, 128<br />
load order of drivers and<br />
services, 373–374<br />
object types, 23–24<br />
offline instances, ASEPs of, 152<br />
processes, 21–22<br />
processor access modes,<br />
22–23<br />
Safe Mode with Command<br />
Prompt, starting in, 430<br />
signature catalog database,<br />
264<br />
64-bit versions, 155<br />
terminal services sessions,<br />
31–32<br />
threads, 21–22<br />
utilities for, 3. See<br />
also Sysinternals utilities<br />
window messages, 34–36<br />
window stations, 32–33<br />
<strong>Windows</strong> Powercfg.exe tool, 375<br />
<strong>Windows</strong> PowerShell, redirected<br />
console output and, 178<br />
<strong>Windows</strong> Preinstallation<br />
Environment (WinPE), 385<br />
<strong>Windows</strong> process, components<br />
of, 21<br />
<strong>Windows</strong> Server 2003<br />
administrative rights, running<br />
programs with, 16–18<br />
GINA DLL interface, 163<br />
Run As command, 278<br />
Run As dialog box, 149<br />
VHDs, creating on, 336<br />
<strong>Windows</strong> Server 2008, process<br />
reflection feature, 233<br />
<strong>Windows</strong> services. See<br />
also services<br />
autostarting, 158–159<br />
dependencies of, 159<br />
description of, 158<br />
disabling or deleting, 158–159<br />
effective permissions on, 270<br />
listing, 197–202<br />
monitoring, 296<br />
multiple services, hosting, 158<br />
Parameters key, 159<br />
path to, 158–159<br />
in processes, 86–87<br />
processes containing, 44<br />
startup of, 158–159<br />
<strong>Windows</strong> 7<br />
administrative rights, running<br />
programs with, 18–20<br />
AppLocker feature, 410<br />
compatibility issues,<br />
troubleshooting, 410–415<br />
Desktop Gadgets, 165<br />
IT Pro–oriented<br />
enhancements, 410<br />
Logical Prefetcher, 404<br />
process reflection feature, 233<br />
ReadyBoost, 408<br />
www.it-ebooks.info