Windows tools/ Administrative tools

Question 1

Task manager

Answer 1

-allows to close a non-responsive application in windows
- displays information on programs, processes and services that are currently running on the computer
- provide access to user applications that can be enabled disabled during system boot
- allows system admins to manage currently logged in users
- provides real time reports on how a windows based computer s using system resources

Question 2

processes tab of task manager

Answer 2

provides real time information about system resources used by running applications and background processes

Question 3

Performance tab of task manager

Answer 3

provides access to real time graphs showing total cpu memory,disk, network and GPU usage.

Question 4

App history tab of task manager

Answer 4

shows list of all applications and what the usage was since the BEGINNING of the system

Question 5

Startup apps tab of task manager

Answer 5

allows to disable/enable applications that are launched automatically when signing in

Question 6

User tab of task manager

Answer 6

lists all signed in user accounts along with further details on applications and system resources used by each account. Also allows system admins to disconnect the user (invoke a windows lock screen) or to sign them off (force user to log off)

Question 7

Details tab of task manager

Answer 7

• shows every single process, its PID, the status and username of who started that process/application. Also has CPU utilization, memory usage and UAC virtualization

Question 8

services tab of task manager

Answer 8

any application that runs in the background, not user facing applications

Question 9

MMC (Microsoft Management Console)

Answer 9

customizable framework providing access to a collection of system utilites (snapins) designed to manage networks, computers, services and other system components

Question 10

Event viewer

Answer 10

monitors system health and trouble shooting problems with applications, OS, and hardware. allows for viewing and managing event logs

Question 11

4 main types of event logs

Answer 11

Application
Security
System
Setup

Question 12

Application Event logs

Answer 12

contain information about any of the applications on our system, non core processes and utilities, and third party applications that are installed

Question 13

System event logs

Answer 13

contain all the logs that affect the core operating system of windows

Question 14

Application and system logs

Answer 14

display events that fall into 5 categories:
information
warning
error
critical
verbose

Question 15

information

Answer 15

doesnt require action, just information, least serious issue

Question 16

warning

Answer 16

could lead to an error or critical issue if not remediated, doesnt need to be addressed or investigated immediately

Question 17

Error

Answer 17

should be investigated and addressed

Question 18

critical

Answer 18

fix ASAP

Question 19

verbose

Answer 19

provides more details about what is happening

Question 20

Security logs

Answer 20

hold all audit data for the system, any time someone tries to log into the system or log out of the system it will be in the security log

Question 21

Disk Management (diskmgmt.msc)

Answer 21

launches a GUI utility for managing storage media (computer drives, partitions etc) in windows

Question 22

Task scheduler (taskschd.msc)

Answer 22

provides capability to schedule the launch of programs or scripts at the predefined times or after specified time intervals, on right side allows you to create a basic task, run task, import task, view task history

Question 23

General tab of task scheduler

Answer 23

has name, location of what tool is, and a description of what its going to do,
has security options to run at highest priviledges, see which account is going to be used to run it, see what version of windows the task is configured for

Question 24

Triggers tab of task scheduler

Answer 24

what is going to cause this task to occur? could be date and time based or other actions.

Question 25

actions tab of task scheduler

Answer 25

what happens after the trigger occurs

Question 26

conditions tab of task scheduler

Answer 26

what conditions are we going to have along with the trigger
-idle- start task if computer is idle, stop if computer ceases to be idle, restart when idle state continues
Power- start if computer is on AC power, stop if computer on battery power, wake computer to run task
network- only start task if connected to network or not

Question 27

Setting

Answer 27

• run task on demand
  -run task as soon as possible after scheduled start is missed
• customize if task fails can restart
• if you want task to stop if it runs for a certain amount of time
• force task to stop if doesnt end when requested

Question 28

Device manager (devmmgmt.msc)

Answer 28

view and manage installed hardware components and drivers

Question 29

cert manager (certmgr.msc)

Answer 29

allow to view, export, import and delete digital certificates

Question 30

personal folder of digital certificates

Answer 30

store certificates that have been issued to user account. can be used for authentication, encrypting data or digitally signing documents and messages

Question 31

trusted root certificate authorities

Answer 31

set of certificates that all issuers are going to trust including microsofts own certificate authority

Question 32

third party root certificate authorities

Answer 32

contain trusted issuers from providers outside of your local enterprise or microsoft

Question 33

Performance monitor (perfmon.exe)

Answer 33

examine (in real time and by collecting log data for later analysis) how programs that are run affect a computers performance

Question 34

gpedit (gpedit.msc)

Answer 34

allows admins to modify settings that are applied to both users and computers , can configure different windows settings across all machines in the network such as account policies and passsword policies

Question 35

System info (msinfo32.exe)

Answer 35

displays details about computers hardware resources, computer components, and software environment

Question 36

System configuration (msconfig.exe)

Answer 36

troubleshoots system startup problems

Question 37

General tab of System configuration

Answer 37

• allows for startup selection
• normal startup- load all device drivers and services
• diagnostic startup- load basic devices and services only
• selective startup- load system services, load startup items, use original boot configuration

Question 38

boot tab of system configuration

Answer 38

manages:
- default OS to load in a multiboot environment
- safe boot options
- boot logging
- amount of hardware resources

Question 39

services tab of system configuration

Answer 39

contains list of background applications/services that can be enabled/disabled during windows system startup

Question 40

tools tab of system configuration

Answer 40

provides acces to MMC snapins (other windows tools)

Question 41

disk clean up (cleanmgr.exe)

Answer 41

can be used for freeing up disk space

Question 42

disk defragmenter (dfrgui.exe)

Answer 42

allows to optimize disk performance

Question 43

Registry editor (regedit.exe)

Answer 43

provides access to a database containing system configuration information, uses a series of keys

Question 44

HKEY_CLASSES_ROOT

Answer 44

contains the keys with file name extension associations and COMM class registration information that you have for your system, intended for older 16 bit version of windows

Question 45

HKEY_CURRENT_USER

Answer 45

subset of the larger HKEY USER SETTINGS for that particular logged in user

Question 46

HKEY_LOCAL_MACHINE

Answer 46

govern system wide settings for this particular computer, not any other systems across the network

Question 47

HKEY_USERS

Answer 47

folder for each user on the system

Question 48

HKEY_CURRENT_CONFIG

Answer 48

• shortcut back to the HKEY local machine