Scribd Logo
Upload

Welcome to Scribd!

  • Win Service Story

    Uploaded by

    liuyl
    35 views16 pages
    Win Service Story

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Win Service Story

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    35 views16 pages

    Win Service Story

    Uploaded by

    liuyl
    Win Service Story

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 16

    Service

    Smallfrogs
    [smallfrogs@gmail.com, http://www.KZTechs.com]
    1.012005/4/19


    1. Service
    2.

    3.
    4.

    Service

    Smallfrogs ( http://www.KZTechs.com )

    Service NT
    services.msc service
    Windows MMC1 snap-in services.msc

    Service Service

    Service
    Service 2 service applicationdriver
    service
    Service Control Manager2

    Service Service

    Microsoft Management Console MMC


    mmc.exe MMC
    2
    Service Control ManagerWindows
    1

    - 3-

    Service

    Smallfrogs ( http://www.KZTechs.com )

    Service
    2.1

    %systemroot%\system32\config\system Windows Windows


    regedit.exe
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services

    ControlSetNNN CurrentControlSet
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSetNNNNNN 001002
    Windows
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSetNNN Windows
    001 002

    HKEY_LOCAL_MACHINE\SYSTEM\ControlSetNNN

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSetNNN
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSetNNN
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSetNNN
    / HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet /
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSetNNN
    ControlSetNNN

    HKEY_LOCAL_MACHINE\SYSTEM\ControlSetNNN

    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001

    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSetNNN
    Hive NNN NNN
    HKEY_LOCAL_MACHINE\SYSTEM\Select\Current 1
    001 2 002 HKEY_LOCAL_MACHINE\SYSTEM\Select\ Failed
    Windows NNN 1
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001
    HKEY_LOCAL_MACHINE\SYSTEM\Select LastKnownGood
    NNN F8 Windows

    - 4-

    Service

    Smallfrogs ( http://www.KZTechs.com )

    LastKnownGood
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSetNNN LastKnownGood
    2 HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services

    ErrorControl
    REG_DWORD
    /

    Windows

    ImagePath

    REG_SZ

    2 Windows
    %systemroot%\system32\drivers
    - 5-

    Service

    Smallfrogs ( http://www.KZTechs.com )

    Path

    DisplayName

    REG_SZ

    Description

    REG_SZ

    Start

    REG_DWORD

    Type

    REG_DWORD

    Windows /

    RpcSS Remote Procedure Call


    (RPC)

    MMC Snap-in (Service.msc)

    /
    5

    0
    Boot Start
    Ntldr OSLoader

    System Start

    1
    System Start

    2
    Auto Start
    SCM services.exe

    MMC Snap-in

    3
    Demand Start

    SCM
    MMC Snap-in

    Windows

    4
    Disabled
    MMC
    Snap-in

    1 2

    - 6-

    Service

    Smallfrogs ( http://www.KZTechs.com )

    DependOnService REG_MULTI_SZ MMC Snap-in Services.msc

    ObjectName

    REG_SZ

    LocalSystem

    2.2
    Windows XP/Server 2003
    Local SystemNetwork Service Local Service
    Administrator Local System
    Network Service Local Service
    Local System
    Network Service
    Local Service

    SYSTEM
    NETWORK SERVICE
    LOCAL SERVICE

    z Local System
    Administrators Administrators
    NTFS
    Local
    System
    Local System null session
    Windows
    system32\Smss.exe
    - 7-

    Service

    Smallfrogs ( http://www.KZTechs.com )

    HKEY_USERS\.Default
    Network Service
    Local System

    HKEY_USERS\S-1-5-20

    Documents
    and
    Settings\NetworkService
    Local Service Network Service
    Local Service
    Local Service HKU\S-1-5-19 Documents and
    Settings\LocalService

    3 Microsoft Windows Internals 4th


    Local System
    Network Service
    Local Service
    Everyone
    Everyone
    Everyone
    Authenticated Users
    Authenticated Users
    Authenticated Users
    Administrators
    User
    User
    Local
    Local
    Network Service
    Local Service
    Service
    Service

    2.3
    svchost.exe
    2 DLL
    DLL

    Svchost.exe WIndows Svchost.exe


    2 DLL
    Svchost.exe %systemroot%\system32 DllCache
    %systemroot%\system32\dllcache Windows
    Service Pack %systemroot%\ServicePack
    svchost.exe svchost.exe

    Svchost.exe
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
    NT\CurrentVersion\SvcHost REG_MULTI_SZ
    Svchost.exe
    REG_MULTI_SZ svchost.exe netsvcs
    svchost.exe netsvcs
    netsvcs svchost.exe
    svchost.exe netsvcs
    svchost.exe
    Windows
    svchost.exe
    svchost.exe Windows Server 2003 RpcSs
    - 8-

    Service

    Smallfrogs ( http://www.KZTechs.com )

    svchost.exe svchost.exe
    svchost.exe 2
    A A BB
    B B B
    svchost.exe A svchost.exe
    svchost.exe
    svchost.exe
    svchost.exe tasklist /svc
    (Windows XP/Server2003)

    tasklist /svc svchost.exe

    - 9-

    Service

    Smallfrogs ( http://www.KZTechs.com )

    Troubleshooting Service
    3.1 Troubleshooting
    Troubleshooting

    MMC Snap-in Service.msc 3


    troubleshooting
    z SC.EXE
    SC.EXE /SC.EXE
    Windows XP/Server 2003
    %systemroot%\system32 Windows 2000 Windows
    2000 Resource Kit Windows XP/Server 2003

    SC.EXE
    SC.EXE

    sc delete <service name>

    sc create <service name> binpath= <2 >

    sc stop <service name>

    sc start <service name>

    - 10-

    Service

    Smallfrogs ( http://www.KZTechs.com )

    sc.exe sc create
    sc create /?
    sc.exe /
    / sc.exe /

    sc.exe
    //

    SC.EXE /

    Services/Drivers Configure Tool


    SC.EXE
    /
    Services/Drivers Configure ToolServices/Drivers Configure Tool
    http://www.KZTechs.com

    Services/Drivers Configure Tool

    Services/Drivers Configure Tool

    Services/Drivers Configure Tool Microsoft

    Services/Drivers Configure Tool

    Services/Drivers Configure Tool


    - 11-

    Service

    Smallfrogs ( http://www.KZTechs.com )

    Services/Drivers Configure Tool

    troubleshooting troubleshooting

    set devmgr_show_nonpresent_devices=1

    devmgmt.msc

    PnP PnP
    PnP

    Non-Plug and Play Drivers


    PnP

    PnP
    Outpost

    - 12-

    Service

    Smallfrogs ( http://www.KZTechs.com )

    3.2 /

    Telnet Telnet

    BUG

    BUG
    BUG
    BUG PnP

    - 13-

    Service

    Smallfrogs ( http://www.KZTechs.com )

    Service

    Service

    Service

    IO IO

    Service /
    2 Windows 2
    %systemroot%\system32
    MsConfig.EXE Services/Drivers Configure Tool /

    regedit.exe

    Windows

    Load Hive

    - 14-

    Service

    Smallfrogs ( http://www.KZTechs.com )


    Service 10
    Service Service

    Email smallfrogs@gmail.com

    Smallfrogs
    2005/4/19

    - 15-

    Service

    Smallfrogs ( http://www.KZTechs.com )

    Microsoft Corporation, Microsoft MSDN Library, http://msdn.microsoft.com/library/


    Microsoft Corporation, Microsoft Technet, http://technet.microsoft.com/
    Mark E.Russinovich & David A.Solomon, Microsoft Windows Internals 4th, Microsoft Press
    Microsoft Corporation, Windows Server 2003 System Services Reference,
    http://www.microsoft.com/downloads/details.aspx?FamilyID=b38a0682-2997-4678-9d9ea07cc66a3bba&displaylang=en
    Microsoft Corporation, Windows XP Professional Resource Kit Documentation, Microsoft
    Press

    - 16-

    You might also like