TS: Windows 7, Configuring
Question No: 171 – (Topic 2)
You have a computer that runs windows 7. You have a system image of the computer.
You need to restore a single file from the system image. You must achieve the goal using minimum administrative effort.
What should you do?
From Disk Management, select Attach VHD.
From the Backup and Restore, select restore my files.
Restart the computer and run system restore.
Restart the computer and run system image recovery.
Answer: A Explanation:
Attaching a VHD activates the VHD so that it appears on the host computer as a local hard disk drive. This is sometimes called quot;surfacing a VHDquot; because the VHD is now visible to users. If the VHD already has a disk partition and file system volume when you attach it, the volume inside the VHD is assigned a drive letter. The assigned drive letter is then available for use, similar to when you insert a USB flash drive into a USB connector. All users (not just the current user) can use the attached VHD in the same way they use other volumes on local physical hard disk drives (depending on security permissions).
Furthermore, because you can attach a VHD that is located on a remote server message block (SMB), you can manage your images remotely. Once attached the single file can be restored. The other answers are overkill or replace all files not just the one required.
http://technet.microsoft.com/en-us/library/dd440865(WS.10).aspx What is system protection?
System protection is a feature that regularly creates and saves information about your computer’s system files and settings. System protection also saves previous versions of files that you’ve modified. It saves these files in restore points, which are created just before significant system events, such as the installation of a program or device driver. They’re also created automatically once every seven days if no other restore points were created in the previous seven days, but you can create restore points manually at any time.
System protection is automatically on for the drive that Windows is installed on. System protection can only be turned on for drives that are formatted using the NTFS file system.
There are two ways that you can take advantage of system protection:
If your computer is running slowly or isn’t working properly, you can use System Restore to return your computer’s system files and settings to an earlier point in time using a restore point.
If you accidentally modify or delete a file or folder, you can restore it to a previous version that’s saved as part of a restore point.
Question No: 172 – (Topic 2)
You have a computer that runs Windows 7. Multiple users share the computer. The computer is joined to a domain.
You need to prevent the users from using more than 2 GB of disk space on drive C. What should you do?
From a Group Policy object (GPO), enable the Limit profile size setting.
Enable System Protection for Local Disk (C) and set the disk space usage.
Enable disk quota management on Computer1 and configure a default quota limit.
From a Group Policy object (GPO), enable the Limit the size of the entire roaming user profile cache setting.
Answer: C Explanation:
Disk quotas provide administrators with a way to limit each user#39;s utilization of disk space on a volume. In order to set quotas, you must have Administrator rights, and the volume must be formatted with the NTFS file system. Disk quotas are based on file ownership and are independent of the folder location of the user#39;s files within the volume. For example, if users move their files from one folder to another on the same volume, their volume space usage does not change. However, if users copy their files to a different folder on the same volume, their volume space usage doubles. If one user creates a 200 kilobyte (KB) file, and another user takes ownership of that file, the first user#39;s disk use decreases by 200 KB and the second user#39;s disk use increases by 200 KB.
Question No: 173 – (Topic 2)
You have a computer that runs Windows 7. The network connection details are shown in the exhibit. (Click the Exhibit button.)
You need to manually assign an IP address of 192.168.1.50 to the computer. What should you do first?
Run Ipconfig and specify the /renew parameter.
Run Netsh and specify the Interface ipv4 add address command.
Answer: A Explanation:
IPv4 is not currently enabled and 192.168.1.50 is an IPv4 address.Therefore IPv4 is required so ENABLE it.
Question No: 174 – (Topic 2)
You are testing unsigned device drivers on a computer on an isolated test network. You install a display driver and find that the computer boots to a blank screen.
You restart the computer and press F8.
What Advanced Boot Options could you choose to help remedy the situation? (Choose all that apply.)
Enable Boot Logging
Enable Low Resolution Video
Last Known Good Configuration (Advanced)
Disable Driver Signal Enforcement
Question No: 175 – (Topic 2)
You have a computer that runs Windows 7.
You create an application shim for a third-party application by using the Microsoft Application Compatibility Toolkit (ACT).
You need to ensure that the application shim is applied the next time you run the application.
What should you do first?
Right-click the application executable file and modify the compatibility settings.
Right-click the application executable file and modify the advanced security settings.
Answer: A Explanation:
Deploying a custom shim database to users requires the following two actions:
Placing the custom shim database (*.sdb file) in a location to which the user’s computer has access (either- locally or on the network)- Calling the sdbinst.exe command-line utility to install the custom shim database locally
Demystifying Shims – or – Using the Application Compatibility Toolkit to make your old stuff work with your new stuff
What is a Shim?
A shim is one of the very few four-letter words in use by Microsoft that isn’t an acronym of some sort. It’s a metaphor based on the English language word shim, which is an engineering term used to describe a piece of wood or metal that is inserted between two objects to make them fit together better. In computer programming, a shim is a small library which transparently intercepts an API, changes the parameters passed, handles the operation itself, or redirects the operation elsewhere. Shims can also be used for running programs on different software platforms than they were developed for.
How Shims work
The Shim Infrastructure implements a form of Application Programming Interface (API) hooking. The Windows API is implemented using a collection of DLLs. Each application built for Windows imports these DLLs, and maintains a table of the address of each of these functions in memory. Because the address of the Windows functionality is sitting in a table, it is straightforward for the shim engine to replace this address with the address of the shim DLL instead. The application is generally unaware that the request is going to a shim DLL instead of to Windows itself, and Windows is unaware that the request is coming from a source other than the application (because the shim DLL is just another DLL inside the application’s process).
In this particular case, the two objects are the application program and Windows, and the shim is additional code that causes the two to behave better together, as shown below:
Figure 1 Before the shim is applied, the application interacts directly with Windows.
Figure 2 After the shim is applied, the application interacts with Windows indirectly; the shim code is injected and can modify the request to Windows, the response from Windows, or both.
Specifically, it leverages the nature of linking to redirect API calls from Windows to alternative code-the Shim. Calls to external binary files take place through the Import Address Table (IAT). Consequently, a call into Windows looks like:
Application calling into Windows through the IAT
Specifically, you can modify the address of the Windows function resolved in the import table, and then replace it with a pointer to a function in the alternate shim code, as shown in
This redirection happens for statically linked .dll files when the application is loaded. You can also shim dynamically linked .dll files by hooking the GetProcAddress API.
Why Should we be using Shims This is the cost-saving route-help the application by modifying calls to the operating system before they get there. You can fix applications without access to the source code, or without changing them at all. You incur a minimal amount of additional management overhead (for the shim database), and you can fix a reasonable number of applications this way. The downside is support as most vendors don#39;t support shimmed applications. You can#39;t fix every application using shims. Most people typically consider shims for applications where the vendor is out of business, the software isn#39;t strategic enough to necessitate support, or they just want to buy some time. For example, a very commonly used shim is a version-lie shim. To implement this shim, we intercept several APIs that are used to determine which version of Windows the application is running on. Normally, this information is passed on to Windows itself, and it answers truthfully. With the shim applied, however, these APIs are intercepted. Instead of passing on the request to Windows, a different version of Windows is returned (for example, Windows XP instead of Windows 7). If the application is programmed to run only on Windows XP, this is a way to trick the application into believing it’s running on the correct OS. (Frequently this is all that is necessary to resolve an application compatibility problem!) There are a huge number of tricks you can play with shims. For example:
The ForceAdminAccess shim tries to trick the application into believing that the current user is a member of the local Administrator group, even if he is not. (Many applications outright fail if you are not a local administrator, though you may be able to use other tricks, such as UAC File and Registry Virtualization, to resolve the issues that caused the check in the first place.) How it implements this check can be fairly straightforward. For example, this shim intercepts the API IsUserAnAdmin from shell32.dll. The complete source code of the shimmed function (which has wonderful performance characteristics compared to the actual API) is simply return TRUE.
The WrpMitigation shim tricks application installers into believing they can write to files that are protected by Windows Resource Protection (WRP). If you try to write to a file that’s protected, the shim first creates a new temporary file, marks it to be deleted once the handle is closed, and then returns the handle to the temporary file as if it were the actual protected file. The application installs the crusty old version of kernel32.dll or shell32.dll (or whichever other file it picked up while it was being packaged) into a temp file, but then that temp file goes away and the matching, patched, up-to-date version of the protected file remains on the file system. So, WRP can still ensure that you don’t end up with an ancient copy of shell32.dll from Windows 95 on your computer, but the installer won’t fail with ACCESS_DENIED when you use this shim.
The CorrectFilePaths shim can redirect files from one location to another. So, if you have an application that is trying to write to c:\myprogramdir (which isn’t automatically fixed using UAC File and Registry Virtualization), you can redirect the files that are modified at runtime to a per-user location. This allows you to run as a standard user without having to loosen access control lists (ACLs), because you know your security folks hate it when you loosen
NOTE: As shims run as user-mode code inside a user-mode application process, you cannot use a shim to fix kernel-mode code. For example, you cannot use shims to resolve compatibility issues with device drivers or with other kernel-mode code. (For example, some antivirus, firewall, and antispyware code runs in kernel mode.)
When can we use a Shim:
You acquired the application from a vendor that is no longer in business. Several applications are from vendors that have since gone out of business; so clearly, support is no longer a concern. However, because the source code is not available, shimming is the only option for compatibility mitigation.
You developed the application internally. While most customers would prefer to fix all their applications to be natively compatible, there are some scenarios in which the timing does not allow for this. The team may not be able to fix all of them prior to the planned deployment of new version of Windows, so they may choose to shim the applications that can be shimmed and modify the code on the ones where shims are insufficient to resolve the compatibility issue.
You acquired the application from a vendor that will eventually be releasing a compatible version, but support is not critical. When an off-the-shelf application is neither business critical nor important, some customers use shims as a stopgap solution.
Users could theoretically wait until a compatible version is available, and its absence would not block the deployment, but being able to provide users with a shimmed and functional version can bridge that gap until a compatible version is available.
Creating an Application Compatibility Shim
If you are trying to run an application that was created for 2000 or XP and had problems running in Windows 7, you could always turn on compatibility mode for the executable on your machine. However if you are trying to create a shim that could be used on other machines as well, you could use the following instructions to create the shim and send it. It is a very small size and once executed, will always be associated with that executable on that machine.
ACT is the Application Compatibility Toolkit. Download it from here: http://www.microsoft.com/downloads/details.aspx?familyid=24da89e9-b581-47b0-b45e- 492dd6da2971amp;displaylang=en
Once we launch the Compatibility Administrator Tool, from Start Menu – Microsoft Application Compatibility Toolkit:
Right-click on New Database:
Choose Application Fix here. In this below dialog, give the application details and the executable you would want to fix:
Type the name of the program to fix
Type the vendor name
Browse to location of executable
When you press the next button, you will get to see the list of the compatibility modes listed by default. If you have an issue with just version incompatibility then choose the version in which the application was working earlier.
At this point I have already determined that Windows 2000 compatibility mode will work for this program.
In the list box, scroll down and select “Windows 2000”.
In the next window (when you have combination of shims to be chosen). As shown below, you have lots of shims to choose from. Select all the shims which would fix your application.
Click on Finish. This will give you the complete summary of the application and the fixes applied.
Now you need to save this shim database file (A small database including the shim information is created), and install it. You can either install it by right-clicking on the shim and pressing the install button, or by using a command-line option, sdbinst.exe lt;database. sdbgt;.
NOTE: “sdbinst.exe” is already located by default in c:\windows\system32
Once the Application Compatibility Database is installed, we can run the program from the location specified earlier (in the first window). Now the program should be running in the Compatibility mode that you specified during the process.
Question No: 176 – (Topic 2)
You have a computer that runs Windows 7. IPv6 is disabled on the computer. The computer has the following IPv4 settings:
->IP address: 10.1.1.193
->Subnet mask: 25S.255.0.0
->Default gateway: 10.1.1.194
->Preferred DNS server: 10.1.1.195
You need to ensure that the computer can only communicate with computers on the local subnet.
What should you do?
Delete the default gateway address.
Delete the preferred DNS server IP address
Configure the subnet mask to use 255.255.255.0
Configure the subnet mask to use 255.255.255.192
Answer: A Explanation:
Why gateways work
Default gateways are important to make IP routing work efficiently. In most cases, the router that acts as the default gateway for TCP/IP hosts-either a dedicated router or a computer that connects two or more network segments-maintains knowledge of other networks in the larger network and how to reach them. TCP/IP hosts rely on default gateways for most of their communication needs with hosts on remote network segments. In this way, individual hosts are freed of the burden of having to maintain extensive and continuously updated knowledge about individual remote IP network segments. Only the router that acts as the default gateway needs to maintain this level of routing knowledge to reach other remote network segments in the larger internetwork. If the default gateway fails, communication beyond the local network segment may be impaired. To prevent this, you can use the Advanced TCP/IP Settings dialog box (in Network Connections) for each connection to specify multiple default gateways. You can also use the route command to manually add routes to the routing table for heavily used hosts or networks.
Question No: 177 – (Topic 2)
You have a computer that runs Windows 7.
You need to provide standard users the ability to update the drivers for display adapters. What should you modify from the Local Group Policy?
driver installation settings for the user
device installation settings for the computer
driver installation settings for the computer
display settings for the user
Answer: C Explanation:
To Update the Drivers you need permissions to install drivers. Apply this to the computer for all local users, as opposed to only one user.
Question No: 178 – (Topic 2)
You have two computers named Computer1 and Computer2 that run Windows 7. Computer1 is used to remotely manage Computer2. From Computer1, you need to verify that the Windows Remote Management (WinRM) service started on Computer2.
What should you do?
At the command prompt, run Winrs -r:computer2 query.
At the command prompt, run Winrm id -remote:computer2
From Windows Powershell, run Get -PSSession Computer2
From Windows Powershell, run Get -PSSessionConfiguration Computer2
Question No: 179 – (Topic 2)
You have a computer that runs windows 7. The computer has corporate intranet web site.
Your Windows Internet Explorer as shown in the exhibit.
You need to ensure that you can access web pages on both Internet and Intranet. What should you do?
From the tools menu, click Work Offline.
From the Safety menu, click InPrivate Blocking.
From the Safety menu, click Inprivate Browsing.
From the Security tab, add the intranet web site to the Trusted sites zone.
Answer: A Explanation:
Working Offline is activated
On Internet Explorer#39;s File menu is a quot;Work Offlinequot; item that toggles Internet Explorer between online and offline modes of operation. (The question originally stated the Tools menu, maybe in a different version of IE this is the case, but for me and in the TechNet documentation it was under Files, so I#39;m choosing to believe Tools was a mistake and it should be Files, this has been amended in the question).
InPrivate is turned on (does not prevent browsing the internet)InPrivate Browsing helps prevent Internet Explorer from storing data about your browsing session. This includes cookies, temporary Internet files, history, and other data. Toolbars and extensions are disabled by default.
Question No: 180 – (Topic 2)
Your computer running Windows 7 Enterprise has two internal hard disks.
System protection is configured by default on the C: drive, which holds the operating system and installed applications.
The D: drive is a 500-GB hard disk formatted with the NTFS filing system, and you use it to store your personal files.
You want to store previous versions going back several months and therefore intend to reserve 200 GB of this disk for system protection.
You are not using either of your internal disks for backup; instead, you store your backups on a 1-TB external USB hard disk.
How do you configure system protection on your D: drive? (Choose all that apply; each answer forms part of the complete solution.)
Select Restore System Settings And Previous Versions Of Files
Select Only Restore Previous Versions Of Files
Set the Max Usage slider control to 40 percent
Set the Max Usage slider control to 4 percent
100% Ensurepass Free Download!
–Download Free Demo:70-680 Demo PDF
100% Ensurepass Free Guaranteed!
–Download 2018 EnsurePass 70-680 Full Exam PDF and VCE
|Lowest Price Guarantee||Yes||No||No|
|Free VCE Simulator||Yes||No||No|