Scribd Logo
Upload

Welcome to Scribd!

  • Document 1

    Uploaded by

    vinayakgupta8356
    8 views3 pages
    The document discusses various registry keys on a computer that provide information about system components and settings. Some of the keys mentioned include: - The BAM key which stores settings for the background activity manager. - The VSS key which coordinates actions for creating consistent volume shadow copies. - The environment key which stores environment variables for paths in the registry. - The RDP-Tcp key which stores settings for the remote desktop protocol to enable remote access and administration.

    Original Description:

    Original Title

    Document1

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document discusses various registry keys on a computer that provide information about system components and settings. Some of the keys mentioned include: - The BAM key which stores settings for the background activity manager. - The VSS key which coordinates actions for creating consistent volume shadow copies. - The environment key which stores environment variables for paths in the registry. - The RDP-Tcp key which stores settings for the remote desktop protocol to enable remote access and administration.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    8 views3 pages

    Document 1

    Uploaded by

    vinayakgupta8356
    The document discusses various registry keys on a computer that provide information about system components and settings. Some of the keys mentioned include: - The BAM key which stores settings for the background activity manager. - The VSS key which coordinates actions for creating consistent volume shadow copies. - The environment key which stores environment variables for paths in the registry. - The RDP-Tcp key which stores settings for the remote desktop protocol to enable remote access and administration.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 3

    2.

    BAM(background activity manager)


    The BamUserSettingsInitialize function is used to create or to open
    the “ UserSettings ” key under the registry key specified
    (“returned”) by the IoOpenDriverRegistryKey () routine (this routine
    “returns a handle to a driver-specific registry key for a particular
    driver”).
    Computer\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\
    Services\bam

    3.Vss(volume shadow copy service)


    VSS coordinates the actions that are required to create a consistent
    shadow copy (also known as a snapshot or a point-in-time copy) of
    the data that is to be backed up.
    Computer\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\
    Services\VSS

    4.enviorment(os)
    you can use environment variables for paths that are stored in the
    registry.
    These entries require special formatting in order to be recognized by
    the operating system as environment variables.
    Computer\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\
    Control\Session Manager\Environment

    5.rdp-tcp
    What is remote desktop protocol (RDP)? Remote desktop protocol
    (RDP) is a secure network communications protocol developed by
    Microsoft.
    It enables network administrators to remotely diagnose problems
    that individual users encounter and gives users remote access to
    their physical work desktop computer
    Computer\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\
    Control\Terminal Server\WinStations\RDP-Tcp

    6.bthport(connection port)
    Shows previously connected devices through bluetooth
    Computer\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\
    Services\BTHPORT\Parameters

    7. eventlog
    Windows event log is an in-depth record of events related to the
    system, security, and application stored on a Windows operating
    system. Event logs can be used to track system and some application
    issues and forecast future problems.
    Computer\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\
    Services\EventLog

    8. interfaces
    It keeps record of dhcp network and network plugins and settings
    Computer\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\
    Services\Tcpip\Parameters\Interfaces

    9. memory management
    the process of controlling and coordinating a computer's
    main memory. It ensures that blocks of memory space are
    properly managed and allocated so the operating system (OS),
    Computer\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\
    Control\Session Manager\Memory Management

    10.additional removable storage info


    It keeps record of exeternal removable devices such as pendrive etc
    Computer\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\
    Control\DeviceClasses\{10497b1b-ba51-44e5-8318-
    a65c837b6661}

    11.channels(windows event log)


    Sink that collects events.events can be written to event log
    channels ,event log file, or both a channel is basically sink that
    collects events.
    Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\
    CurrentVersion\WINEVT\Channels

    You might also like