List Handles of a Process using Handle on Windows 8

Q

How to List Handles of a Process using Handle on Windows 8? I want to know what files, registry keys and other resources are used by the running Firefox process.

✍: FYIcenter.com

A

If you want to see what files, registry keys and other resources are used by the running Firefox process on Windows 8, you can use the Windows Sysinternals Handle as shown below:

1. Run Firefox first.

2. Start a command line window by run "Command Prompt" as administrator.

3. Type in the following Handle command:

C:\fyicenter\Handle\Handle -a firefox.exe
------------------------------------------------------------------------------
firefox.exe pid: 5484 fyicenter\fyi
    4: Directory     \KnownDlls
    8: Directory     \KnownDlls32
    C: File  (RW-)   C:\Windows
   14: File  (RW-)   C:\Program Files (x86)\Mozilla Firefox
   18: Key           HKLM\SYSTEM\ControlSet001\Control\Nls\Sorting\Versions
   1C: Thread        
   20: ALPC Port     
   24: Semaphore     
   28: Key           HKLM
   2C: EtwRegistration 
   30: Event         
   34: WindowStation \Sessions\2\Windows\WindowStations\WinSta0
   38: Desktop       \Default
   40: Key           HKLM\SYSTEM\ControlSet001\Control\Nls\CustomLocale
   4C: File  (---)   \Device\CNG
   54: File  (---)   \Device\DeviceApi
   A4: Directory     \Sessions\2\BaseNamedObjects
...
  148: Key           HKLM\SYSTEM\ControlSet001\Control\Nls\Sorting\Ids
  150: Key           HKLM\SYSTEM\ControlSet001\Services\WinSock2\Parameters\Protocol_Catalog9
  158: Key           HKLM\SYSTEM\ControlSet001\Services\WinSock2\Parameters\NameSpace_Catalog5
...
  1F8: File  (---)   C:\Users\fyi\AppData\Roaming\Mozilla\Firefox\Profiles\b1fkgg87.default\parent.lock
  264: File  (RWD)   C:\Windows\Fonts\seguisym.ttf
  530: File  (RW-)   C:\Users\fyi\AppData\Roaming\Mozilla\Firefox\Profiles\b1fkgg87.default\permissions.sqlite
  534: File  (RW-)   C:\Users\fyi\AppData\Roaming\Mozilla\Firefox\Profiles\B1FKGG~1.DEF\cert8.db
  55C: File  (RW-)   C:\Users\fyi\AppData\Roaming\Mozilla\Firefox\Profiles\b1fkgg87.default\places.sqlite
  560: File  (RW-)   C:\Users\fyi\AppData\Roaming\Mozilla\Firefox\Profiles\b1fkgg87.default\places.sqlite-wal
  564: File  (RW-)   C:\Users\fyi\AppData\Roaming\Mozilla\Firefox\Profiles\b1fkgg87.default\places.sqlite-shm
...

⇒__chapteMrTitle__

⇒⇒Windows 8 Processes Tutorials

2016-12-30, ∼2421🔥, 0💬

"Lenovo Communications Utility - TPKNRRES.exe" Startup Program on Windows 7
What is the startup program "Lenovo Communications Utility - TPKNRRES.exe" on my Windows 7 computer? "Lenovo Communications Utility - TPKNRRES.exe" is installed as part of the computer system. You will see the "TPKNRRES.exe" listed on the Startup tab of msconfig.exe screen as: Startup item: Lenovo C... 2017-06-15, ∼8431🔥, 2💬

💬 2017-06-15 FYIcenter.com: @PaulQ, TPKNRRES.exe is not the Bluetooth program and not related to wired headset. It is just a quick way to access settings fo...

💬 2017-06-14 PaulQ: Is this simply a Bluetooth program and not needed with a wired headset?

"McTray.exe" Process on Windows 7
What is the "McTray.exe" process on windows 7? Is the "McTray.exe" process a virus? Can I terminate the "McTray.exe" process? "McTray.exe" process represents "McTray Application" program. "McTray.exe" process is created by the startup program: "McAfee Agent". "McTray.exe" process is normally running... 2016-12-19, ∼6301🔥, 0💬

"McUICnt.exe" Process on Windows 7
What is the "McUICnt.exe" process on windows 7? Is the "McUICnt.exe" process a virus? Can I terminate the "McUICnt.exe" process? "McUICnt.exe" process represents "McAfee" program. "McUICnt.exe" process is normally running under the parent process "Boot" as shown in the process tree below: Boot McUIC... 2016-12-19, ∼5712🔥, 0💬

"UdaterUI.exe" Process on Windows 7
What is the "UdaterUI.exe" process on windows 7? Is the "UdaterUI.exe" process a virus? Can I terminate the "UdaterUI.exe" process? "UdaterUI.exe" process represents "Common User Interface" program. "UdaterUI.exe" process is created by the startup program: "McAfee Agent". "UdaterUI.exe" process is n... 2017-02-25, ∼5531🔥, 0💬

"mcupdate.exe" Process on Windows 7
What is the "mcupdate.exe" process on windows 7? Is the "mcupdate.exe" process a virus? Can I terminate the "mcupdate.exe" process? "mcupdate.exe" process represents "McAfee Update Launcher" program. "mcupdate.exe" process is normally running under the parent process "McSvHost" as shown in the proce... 2016-12-24, ∼4457🔥, 0💬

"taskhost.exe" Process on Windows 8
What is the "taskhost.exe" process on Windows 8? Is the "taskhost.exe" process a virus? Can I terminate the "taskhost.exe" process? "taskhost.exe - Host Process for Windows Tasks" process acts the host for all DLL based services that are run. "taskhost.exe" process is very similar to "svchost.exe" i... 2026-03-22, ∼3473🔥, 0💬

"lsass.exe" Process on Windows 8
What is the "lsass.exe" process on Windows 8? Is the "lsass.exe" process a virus? Can I terminate the "lsass.exe" process? "lsass.exe - Local Security Authority Process" process is service hosting process on Windows 8 to host multiple security related services. On the Processes tab of "Task Manager"... 2026-03-22, ∼3385🔥, 0💬

"stacsv64.exe" Process on Windows 8
What is the "stacsv64.exe" process on Windows 8? Is the "stacsv64.exe" process a virus? Can I terminate the "stacsv64.exe" process? "stacsv64.exe" process represents "IDT PC Audio" program. "stacsv64.exe" process is normally running under the parent process "Boot" as shown in the process tree below:... 2026-04-13, ∼3224🔥, 0💬

"services.exe" Process on Windows 8
What is the "services.exe" process on Windows 8? Is the "services.exe" process a virus? Can I terminate the "services.exe" process? "services.exe - Services and Controller app" process is the Service Control Manager (SCM), which starts, stops and interacts with Windows service processes. On the Proc... 2026-03-22, ∼3155🔥, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.