cmd cheat sheet ( revised )

::cmd cheat sheet ( revised )
:: FOLLOW THE SYNTAX TO MAKE COPY PASTE EASIER , USE CAPITAL LETTERS FOR COMMENTS

RUNAS /profile /user:luser0007 " shutdown.exe -r -f -m \\4FID04341"

:: execute command remotely not working
LSrunas /user:luser0007 /password:company007 /domain:%computername% /command:"reboot -r -f -m \\1USD007072" /runpath:"C:\Temp\FOLDER\bin"


psexec -u user0007 -p pass "shutdown.exe -r -f -m \\1US007070 "
psexec -u user0007 -p pass "shutdown.exe -r -f -m \\I88007374"


LSrunas /user:luser0007 /password:company007 /domain:%computername% /command:" updateTRN.bat \\1USD0070071" /runpath:"C:\Temp\Folder\bin"

:: ADDING USER WITH PASS
net user luser0007 company007 /ADD

:: ADDING USER TO THE LOCALGROUP ADMINISTRATORS
net localgroup "Administrators" luser0007 /add

:: ADDING VANTAGE USER IDENTIFIED BY company007 TO THE LOCALGROUP ADMINISTRATORS
net user vantage company007 /add

:: ADDING USER TO THE LOCALGROUP ADMINISTRATORS
net localgroup "Administrators" vantage /add

:: RESTART THE COMPUTER AND FORCE RUNNING APPLICATIONS TO CLOSE WITHOUT
shutdown -r -f -t 00
:: OPENS THE EXPLORER IN THE C:\TEMP FOLDER MAXIMIZED - USE THE /MIN OPTION TO GET

:: THE WINDOWS STARTED MINIMIZED
cmd /c start /max Explorer /e , "C:\Temp"

:: GET A NICE PROMPT
set prompt=$P$S$S$t$_$_$S$S

:: RUN THE REGEDIT AS A SPECIFIC USER
RUNAS /profile /user:luser0007 regedit | sanur /i C:\utils\psts.txt

:: REBOOT AGENT REMOTELY USING THE RUNAS COMMAND - WORKS !!!!
:: START A CMD PROMPT UNDER THE luser0007 user

RUNAS /profile /user:luser0007 cmd.exe | sanur /i C:\utils\psts.txt
RUNAS /profile /user:luser0007 " shutdown.exe -f -r -t 00 -m \\ID88007374"

::WORKS ALSO NEEDS SANUR http://www.commandline.co.uk/sanur_unsupported/index.html
RUNAS /profile /user:luser0007 " shutdown.exe /f /r /t 00 /m \\2SGD00070" | sanur /i C:\utils\psts.txt

runas /u:domain\username program.exe | sanur /i C:\utils\psts.txt
:: GET ALL THE INFORMATION RELATED TO NETWORKING ON A WINDDOWS STATION
ipconfig /all

:: USE OF FOR /F
FOR /F "usebackq delims=\" %i IN (`DIR /AD /B`) DO FIND /I "TEMP"
:: LIST THE RUNNING APPLICATIONS
tasklist /v

:: FIND SOMETHING IN A COMMAND
ipconfig /all | find /i "Ip Address"

:: EXPORT AND PARSE VALUE FROM THE REGISTRY
setlocal
if exist tmp.reg del /q tmp.reg
reg export "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon" tmp.reg
for /f "tokens=2 delims==" %%a in ('find /i "username" tmp.reg') do set line=%%a&call :strip
endlocal
goto :EOF
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
:strip
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
set usr=%line:"=%
echo/the user is %usr%>>%computername%.txt
del /q tmp.reg
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::

:: ANOTHER WAY OF EXPORTING KEYS FROM THE REGISTRY
regedit /e c:\zzz\reg.reg "HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer"

:: COUNT THE NUMBER OF SPECIFIC TYPE OF FILES ARE THEY IN A SPECIFIED DIRECTORY
for /f "tokens=* delims=" %%i in ('dir C:\Temp\Folder4.2\scripts\*.* /b /a-d ^| find /i /c "mdb"') do @echo num of scripts is %%i>>"%cd%\%computername%.txt"

:: LABEL EACH FILE IN A DIRECTORY
for /f "tokens=* delims=" %%i in ('dir /b C:\temp\Folder4.2\scripts\*.mdb') do @echo installed script %%i >>"%cd%\%computername%.txt"

:: START EXPLORER
for /f "tokens=* delims=" %%i in ('type DrillDownAllNames.txt') do (
)
:: CHANGE DRIVE AND DIRECTORY AT THE SAME TIME.
cd /d %ProgramFiles%
:: COMMAND SEPERATOR. EXECUTES TWO (OR MORE) COMMANDS ON ONE LINE.
dir & path
SAME, BUT THE ECHO COMMAND WILL ONLY BE EXECUTED WHEN THE COPY WAS SUCCESFUL.
copy a b && echo
SAME, ONLY IF UNSUCCESFUL.
copy a b || goto error

GOTO THE ERRORLABEL, IF THE PREVIOUS COMMAND EXITTED WITH AN ERRORLEVEL BIGGER THAN ZERO.
)


:: HOW TO IMPORT SILENTLY A REGISTRY FROM A FILE
reg import /s C:\temp\the_name_of_the_file.reg
reg import /s C:\temp\Folder\bin\PcAnyStealth.reg
:: ANOTHERWAYS TROUGH the regedit.exe
cmd /c %SystemRoot%\Regedit.exe /s thePaht\TheFile.reg

:: HOW TO EXPORT VALUES FROM THE REGISTRY INTO A FILE

:: HOW TO BACK UP THE WHOLE REGISTRY THROUGH THE GUI IN WINDOWS XP
http://support.microsoft.com/?kbid=322756


:: DELETING KEYS OR VALUES USING A REG FILE
:: IT IS ALSO POSSIBLE TO DELETE KEYS AND VALUES USING REG FILES. TO DELETE A KEY START BY :: USING THE SAME FORMAT AS THE THE REG FILE ABOVE, BUT PLACE A "-" SYMBOL IN FRONT OF THE :: :: KEY NAME YOU WANT TO DELETE. FOR EXAMPLE TO DELETE THE :: :: [HKEY_LOCAL_MACHINE\SYSTEM\SETUP] KEY THE REG FILE WOULD LOOK LIKE THIS:


REGEDIT4

[-HKEY_LOCAL_MACHINE\SYSTEM\SETUP]


regedit.exe [options] [filename] [regpath]
[filename] Import .reg file into the registry
/s [filename] Silent import, i.e. hide confirmation box when importing files
/e [filename] [regpath] Export the registry to [filename] starting at [regpath]
e.g. regedit /e file.reg HKEY_USERS\.DEFAULT
/L:system Specify the location of the system.dat to use
/R:user Specify the location of the user.dat to use



:: TO EXPORT A KNOW REGISTRY KEY FROM THE REGISTRY
reg export "HKEY_LOCAL_MACHINE\SYSTEM\SETUP" filename.reg


:: IF A FILE OR FOLDER EXISTS (SPELLED WITHOUT THE LETTER S ON THE END). THE PARENTHESES
:: GROUP THE COMMANDS OVER THE LINEBREAK (¶ DENOTES A LINEBREAK).

if errorlevel 1 goto error
if exist "file.log"
echo Log exists
goto end
:: ESCAPE CHARACTER TO USE REDIRECT/PIPE CHARACTERS IS THE CARET (^)
echo a -^> b
:: REDIRECTS OUTPUT (INCLUDING ERROR MESSAGES) TO FILE.LOG
command > file.log 2>&1
:: COMMAND SAME THING (BUT IT APPENDS). IN THIS WAY, YOUR BATCH FILES LOOK CLEANER.
>> file.log 2>&1
PUT MESSAGES IN STDIN.LOG AND ERROR MESSAGES IN STDERR.LOG.
command 1> stdin.log 2> stderr.log

start /wait regedit /s file.reg
:: Will ensure when the batch-file continues, the merge operation has completed.
:: regsvr32 /s file.dll Registers a COM DLL without dialog boxes (no report via %errorlevel% of
:: success/failure). Use /s /u for unregistering. :: QUIT'S THE CURRENT BATCH-FILE
:: (ONLY WORKS UNDER NT4 WHEN COMMAND EXTENTIONS ARE ENABLED, WHICH IS NOT THE DEFAULT).
goto :EOF
THE BATCH FILE'S VERSION OF GOSUB. END THE "SUBROUTINE" WITH GOTO :EOF INSTEAD OF RETURN.
ECHO LOG >> %~N0.LOG IN A BATCH FILE: TRICK TO APPEND A MESSAGE TO A LOG WITH THE SAME NAME AS THE BATCH-FILE, BUT WITH AN OTHER EXTENSION.
call :subroutine
notepad %* In a batch file: replaced by all the arguments in a batch file.

:: UPDATES FOR
http://sysman.Company.com/wsu


C:\winnt\system32\drivers\etc\
147.243.4.137 saeperfp0007


:: SEE THE CURRENT STATUS OF THE ACCOUNTS
net accounts


:: SET THE PASSWORDS TO NEVER EXPIRE ON THE LOCAL COMPUTER
net accounts /maxpwage:unlimited /%computername%
http://server/cvshare/fxwin.ini
:: ADDS LOCAL USER NO PASSWORD NOTHING DO NOT USE
net user luser0007 password /ADD /%computername%

NET USER luser0007 company007 /ADD /expires: never /times: all /%computername%


:: ADDS THE USERS TO THE ADMINISTRATOR GROUP
net localgroup "Administrators" luser0007 /add
net localgroup "Administrators" user0007 /add
net localgroup "Administrators" user /add

RUNAS /profile /user:user0007 REGEDIT
RUNAS /profile /user:luser0007 REGEDIT
RUNAS /profile /user:user REGEDIT
RUNAS /profile /user:WKS_Admin REGEDIT


:: RUN CONSOLE ROOT
RUNAS /profile /user:luser0007 mmc
psexec -u luser0007 -p company007 cmd /c regedit.exe
psexec -u user0007 -p perfor2mance3 cmd /c regedit.exe
psexec -u vantage -p company007 cmd /c regedit.exe

:: FIND AND REPLACE STRING IN TEXT FILE USING GSAR
gsar "-sIMMIDIATERUN:0611" "-rIMMIDIATERUN:0610" -o "C:\Temp\Folder4.2\settings.txt"

:: ACCESS EACH ROW FROM THE FILE
for /f "tokens=* delims=" %%a in ('more/e +0 ^<"%cd%\%computername%.txt"') do :: COMPARING STRINGS @echo off set VAR=before if "%VAR%" == "before" ( echo %var% set VAR=after echo %var% pause if "!VAR!" == "after" @echo If you see this, it worked ) echo %var% pause :: OPEN THE SERVICES FROM THE COMMAND PROMPT %SystemRoot%\system32\services.msc /s :: THE USE OF THE SET COMMAND set agent = something :: WRONG !!!! AVOID SPACES BEFORE = AFTER IT AND AFTER THE RVALUE IT TAKES THOSE ALSO !!!!!! ::ALWAYS USE THE NET USE COMMAND IF YOU WANT TO USE NETWORK RESOURCES FROM CMD net use "\\esdfs0007\dfs\ESGROUPS026\perfect\Maintainence\Documents\deployment\Temporary_Agent_Logs" ::USE REDIRECTING OF ERRORS THIS WAYS copy file1 file2 2>errors.txt
errors.txt

:: CHANGE THE SETTINGS IMMIDIATERUN FROM THE COMMAND LINE
gsar "-sIMMIDIATERUN:0611" "-rIMMIDIATERUN:0610" -o "C:\Temp\Folder4.2\settings.txt"
:: CHANGE THE REBOOOTEVERYCYCLE FROM 1 TO 0
gsar "-sREBOOTEVERYCYCLE:0611" "-rREBOOTEVERYCYCLE:0610" -o "C:\Temp\Folder4.2\settings.txt"
:: CHANGE THE TIMEOUT FROM 30 TO 20
gsar "-sQARUN_TIMEOUT:06130" "-rQARUN_TIMEOUT06120" -o "C:\Temp\Folder4.2\settings.txt"

:: WE DO NOT WANT TO MESS WITH SCRIPTS
IF NOT DEFINED CMDWindow Set CMDWindow=1&Start "GetAndSendInfo" /MIN %0&Goto :EOF
:: PUT THE CODE HERE
exit
:: append a new folder to the path of a
AddPath -s -n -v Path "C:\Program Files\BEA Systems\TUXEDO"

:: DLL LINKING using the regsvr32 command SILENTLY
regsvr32 /s DIV_ExtMESClient.dll

:: runthe registry as a different user


:: using runas command
LSrunas /user:luser0007 /password:company007 /domain:%computername% /command:"REGEDIT" /runpath:"%cd%"
:: normal
RUNAS /profile /user:luser0007 REGEDIT

:: PSEXEC
:: In order to get the psexec working the following commands should succeed
net use \\target\Admin$ /user:Administrator
dir \\target\Admin$
net use \\target\Admin$ /delete
:: (only disconnects, does not delete anything.)

:: reboot fast station with the shutdown utility
C:\Temp\Folder\bin\shutdown.exe -s reboot -f -m "The station will reboot in 3 seconds" -l 3 -c
shutdown -f -r -t 00



::=========================================================
:: using bmail
::=========================================================
:: SETTING TO THE E-MAIL TO WHOM WE ARE GOING TO SEND THE E-MAIL
::=========================================================
set mailadd= ext-yordan.georgiev^@Company.com



::CONTCATENATE ANY ERRORS TO THE END OF THE LOG
echo errors in the logging process are listed bellow: >>"%cd%\%computername%.txt"
for /f "delims=" %%a in ('more/e +0 ^<"%cd%\error_log_%computername%.txt"') do echo/%%a>>"%cd%\%computername%.txt"


:: WE USE THE BMAIL.EXE UTILITY TO SEND OURSELF AN E-MAIL CONTAINING THE TEXT FILE
:: ALTERNATIVE SMTP MIGHT BE esebe107.NOE.Company.com, UNCOMMENT THE NEXT LINE FOR ALTERN
:: cmd /c bmail -s esebe107.NOE.Company.com -m %computername%.txt -t %mailadd% -a %computername% -h
bmail -s smtp.Company.com -m %computername%.txt -t ext-yordan.georgiev@Company.com -a %computername% -h

:: eof using bmail
::=========================================================
::=========================================================
+358 xx YYYYYY @ smsgateway.Company.com
::=========================================================
::HOW TO SEND SMS IN Company WITH BMAL
::=========================================================


::=========================================================
:: edit the hosts file
::=========================================================
echo 147.243.4.137 serverName >> C:\winnt\system32\drivers\etc\hosts
::=========================================================


::=========================================================
::=======================================================
:: START A MINIMIZED BATCH WINDOW
::=======================================================
@echo off
IF NOT DEFINED CVRestart Set CVRestart=1&Start "Minimized" /MIN %0&Goto :EOF

exit
::=======================================================


::=======================================================
:: USAGE OF THE WHERE COMMAND ::WHERE [/R dir] [/Q] [/F] [/T] pattern...
::=======================================================
WHERE /R "\\SERVER\SHAREFOLDER" *stringFoFind*
::=======================================================
::get the mac address of an workstatioin
getMac



RUNAS /profile /user:user0007 "COMPMGMT.MSC " | sanur /i C:\utils\psts.txt
RUNAS /profile /user:luser0007 "regedit " | sanur company007
:: STOP A SERVICE
net stop "PCAnywhere Host Service"

:: STOP AN WINDOWS SERVICE IN MICROSOFTS WAY
sc \\servername stop schedule
:: WITH PSINTERNALS
psservice \\computername -u UserName-p Password stop "PCAnywhere Host Service"
psservice \\1USD007070 -u luser0007 -p Password company007 stop "PCAnywhere Host Service"


::CERTIFICATE MANAGER
certmgr.msc

::command-line that reverses the whole file by lines
perl -e 'print reverse ' file1 file2 file3 ….


:: How do I concatenate files into one file overwriting previous existing one?

copy /b /y *.txt APMDeployment.html

:: If you want separations between the files,
:: try something like this...

@echo off
if .%1==.Loop goto process
> output.fil rem
for %%a in (*.txt) do call %0 Loop %%a
goto end
:process
>>output.fil echo.
>>output.fil echo ----------- File %2 -----------
>>output.fil type %2
:end

net use \\4FIN04806\Temp\tmp "0026plapla" /USER: " yogeorgi@NOE.Company.com"
NET USE W: \\4FIN04806\Temp /Persistent:No


:: COPY FILES RECURSIVELY TO THE CURRENT DIRECTORY
:: USES exec.bat by Fred Stluka
exec /s *pdrs*jpg do xcopy /s /m /f

:: SETTING TITLE AND COLOR AND FOR CMD
cmd.exe /k cd c:\Temp && color fc && title ***** Admin console *****

:: DELETE FILES CONTAINING STRING ON REMOTE COMPUTER
:: uses srp.exe see start remote process
cmd /c srp workstation cmd /c del /q C:\Temp\Folder\Logs\pics\*20060*

:: Fast search the directory for filename

::Windows fast directory search from WinLogo + R
cmd /c "dir C:\temp\Company\Product\THEORY\*toFind* /s /b>list.txt&list.txt "

:: open all textpad files in a directory
for /f "tokens=* delims=" %%i in ('dir /b /s c:\TEMP\Company\*.txt') do cmd /c start /max textpad %%i

:: START NERO START SMART AS THE ROOT USER
RUNAS /profile /user:root "C:\Program Files\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe"

::how to view the history in cmd
doskey /history

:: FIND A FILE BY PATH - START - RUN - CMD.EXE , D:\ , CD D:\LIBS
for /f "tokens=*" %i in ('dir *Utils*.dll /s /b') do @echo off&echo "%i" >>list.
txt&list.txt