How to Manage Windows Operation System from command line

Display Windows version from command line

H:\>ver /?
Displays the Windows XP version.

VER

Search Files from command line

H:\>where /?

WHERE [/R dir] [/Q] [/F] [/T] pattern...

Description:
Displays the location of files that match the search pattern.
By default, the search is done along the current directory and
in the paths specified by the PATH environment variable.

Parameter List:
/R Recursively searches and displays the files that match the
given pattern starting from the specified directory.

/Q Returns only the exit code, without displaying the list
of matched files. (quite mode)

/F Displays the matched filename in double quotes.

/T Displays the file size, last modified date and time for all
matched files.

pattern Specifies the search pattern for the files to match.
Wildcards * and ? can be used in the pattern. The
"$env:pattern" and "path:pattern" formats can also be
specified, where "env" is an environment variable and
the search is done in the specified paths of the "env"
environment variable. These formats should not be used
with /R. The search is also done by appending the
extensions of the PATHEXT variable to the pattern.

/? Displays this help message.

NOTE: The tool returns an error level of 0 if the search is
successful, of 1 if the search is unsuccessful and
of 2 for failures or errors.

Examples:
WHERE /?
WHERE myfilename1 myfile????.*
WHERE $windir:*.*
WHERE /R c:\windows *.exe *.dll *.bat
WHERE /Q ??.???
WHERE "c:\windows;c:\windows\system32:*.dll"
WHERE /F /T *.dll

View date from command line

H:\>date /?
Displays or sets the date.

DATE [/T | date]

Type DATE without parameters to display the current date setting and
a prompt for a new one. Press ENTER to keep the same date.

If Command Extensions are enabled the DATE command supports
the /T switch which tells the command to just output the
current date, without prompting for a new date.

Change system time from command line

H:\>time /?
Displays or sets the system time.

TIME [/T | time]

Type TIME with no parameters to display the current time setting and a prompt
for a new one. Press ENTER to keep the same time.

If Command Extensions are enabled the TIME command supports
the /T switch which tells the command to just output the
current time, without prompting for a new time.

Display current logged-on user information from command line

H:\>whoami /?

WHOAMI [/option] [/option] ...

Where /option is one of the following:

/ALL = Display all information in the current access token.
/NOVERBOSE = Display minimal information. *
/USER = Display user.
/GROUPS = Display groups.
/PRIV = Display privileges.
/LOGONID = Display Logon ID.
/SID = Display SIDs. *
/HELP = Display help.

* Must be used with option /USER, /GROUPS, /PRIV or/LOGONID

Samples are as follows:

WHOAMI
WHOAMI /ALL
WHOAMI /USER /SID
WHOAMI /GROUPS
WHOAMI /GROUPS /NOVERBOSE
WHOAMI /USER /GROUPS /SID
WHOAMI /PRIV /NOVERBOSE
WHOAMI /USER /GROUPS /PRIV

View basic system configuration from command line

H:\>systeminfo /?

SYSTEMINFO [/S system [/U username [/P [password]]]] [/FO format] [/NH]

Description:
This command line tool enables an administrator to query for basic
system configuration information.

Parameter List:
/S system Specifies the remote system to connect to.

/U [domain\]user Specifies the user context under which
the command should execute.

/P [password] Specifies the password for the given
user context. Prompts for input if omitted.

/FO format Specifies the format in which the output
is to be displayed.
Valid values: "TABLE", "LIST", "CSV".

/NH Specifies that the "Column Header" should
not be displayed in the output.
Valid only for "TABLE" and "CSV" formats.

/? Displays this help/usage.

Examples:
SYSTEMINFO
SYSTEMINFO /?
SYSTEMINFO /S system
SYSTEMINFO /S system /U user
SYSTEMINFO /S system /U domain\user /P password /FO TABLE
SYSTEMINFO /S system /FO LIST
SYSTEMINFO /S system /FO CSV /NH

Shutdown and restart from command line

H:\>shutdown /?
Usage: shutdown [-i | -l | -s | -r | -a] [-f] [-m \\computername] [-t xx] [-c "c
omment"] [-d up:xx:yy]

No args Display this message (same as -?)
-i Display GUI interface, must be the first option
-l Log off (cannot be used with -m option)
-s Shutdown the computer
-r Shutdown and restart the computer
-a Abort a system shutdown
-m \\computername Remote computer to shutdown/restart/abort
-t xx Set timeout for shutdown to xx seconds
-c "comment" Shutdown comment (maximum of 127 characters)
-f Forces running applications to close without war
ning
-d [u][p]:xx:yy The reason code for the shutdown
u is the user code
p is a planned shutdown code
xx is the major reason code (positive integer le
ss than 256)
yy is the minor reason code (positive integer le
ss than 65536)

Manage Services from the command line

H:\>sc /?
*** Unrecognized Command ***
DESCRIPTION:
SC is a command line program used for communicating with the
NT Service Controller and services.
USAGE:
sc <server> [command] [service name] <option1> <option2>...

The option <server> has the form "\\ServerName"
Further help on commands can be obtained by typing: "sc [command]"
Commands:
query-----------Queries the status for a service, or
enumerates the status for types of services.
queryex---------Queries the extended status for a service, or
enumerates the status for types of services.
start-----------Starts a service.
pause-----------Sends a PAUSE control request to a service.
interrogate-----Sends an INTERROGATE control request to a service.
continue--------Sends a CONTINUE control request to a service.
stop------------Sends a STOP request to a service.
config----------Changes the configuration of a service (persistant).
description-----Changes the description of a service.
failure---------Changes the actions taken by a service upon failure.
qc--------------Queries the configuration information for a service.
qdescription----Queries the description for a service.
qfailure--------Queries the actions taken by a service upon failure.
delete----------Deletes a service (from the registry).
create----------Creates a service. (adds it to the registry).
control---------Sends a control to a service.
sdshow----------Displays a service's security descriptor.
sdset-----------Sets a service's security descriptor.
GetDisplayName--Gets the DisplayName for a service.
GetKeyName------Gets the ServiceKeyName for a service.
EnumDepend------Enumerates Service Dependencies.

The following commands don't require a service name:
sc <server> <command> <option>
boot------------(ok | bad) Indicates whether the last boot should
be saved as the last-known-good boot configuration
Lock------------Locks the Service Database
QueryLock-------Queries the LockStatus for the SCManager Database
EXAMPLE:
sc start MyService

Display list of device drivers from the command line

H:\>driverquery /?

DRIVERQUERY [/S system [/U username [/P [password]]]]
[/FO format] [/NH] [/SI] [/V]
Description:
Enables an administrator to enumerate and display the list of
installed device drivers as well as their properties.

Parameter List:
/S system Specifies the remote system to connect to.

/U [domain\]user Specifies the user context
under which the command should execute.

/P [password] Specify the Password for the given
user context. Prompts for input if omitted.

/FO format Specifies the type of output to display.
Valid values to be passed with the
switch are "TABLE", "LIST", "CSV".

/NH Specifies that the "Column Header"
should not be displayed in the
screen output. Valid for "TABLE"
and "CSV" format only.

/V Displays detailed information. Not valid
for signed drivers.

/SI Provides information about signed drivers.

/? Displays this Help/Usage.

Examples:
DRIVERQUERY
DRIVERQUERY /FO CSV /SI
DRIVERQUERY /NH
DRIVERQUERY /S ipaddress /U user /V
DRIVERQUERY /S system /U domain\user /P password /FO LIST

Manage registry from command line

H:\>reg /?

Console Registry Tool for Windows - version 3.0
Copyright (C) Microsoft Corp. 1981-2001. All rights

REG Operation [Parameter List]

Operation [ QUERY | ADD | DELETE | COPY
SAVE | LOAD | UNLOAD | RESTORE
COMPARE | EXPORT | IMPORT ]

Return Code: (Except of REG COMPARE)

0 - Succussful
1 - Failed

For help on a specific operation type:

REG Operation /?

Examples:

REG QUERY /?
REG ADD /?
REG DELETE /?
REG COPY /?
REG SAVE /?
REG RESTORE /?
REG LOAD /?
REG UNLOAD /?
REG COMPARE /?
REG EXPORT /?
REG IMPORT /?

End Process (End Task) from comand line

H:\>taskkill /?
TASKKILL [/S system [/U username [/P [password]]]]
{ [/FI filter] [/PID processid | /IM imagename] } [/F] [/T]
Description:
This command line tool can be used to end one or more processes.
Processes can be killed by the process id or image name.
Parameter List:
/S system Specifies the remote system to connect to.
/U [domain\]user Specifies the user context under which
the command should execute.
/P [password] Specifies the password for the given
user context. Prompts for input if omitted.
/F Specifies to forcefully terminate
process(es).
/FI filter Displays a set of tasks that match a
given criteria specified by the filter.
/PID process id Specifies the PID of the process that
has to be terminated.
/IM image name Specifies the image name of the process
that has to be terminated. Wildcard '*'
can be used to specify all image names.
/T Tree kill: terminates the specified process
and any child processes which were started by it.
/? Displays this help/usage.
Filters:
Filter Name Valid Operators Valid Value(s)
----------- --------------- --------------
STATUS eq, ne RUNNING | NOT RESPONDING
IMAGENAME eq, ne Image name
PID eq, ne, gt, lt, ge, le PID value
SESSION eq, ne, gt, lt, ge, le Session number.
CPUTIME eq, ne, gt, lt, ge, le CPU time in the format
of hh:mm:ss.
hh - hours,
mm - minutes, ss - seconds
MEMUSAGE eq, ne, gt, lt, ge, le Memory usage in KB
USERNAME eq, ne User name in [domain\]user
format
MODULES eq, ne DLL name
SERVICES eq, ne Service name
WINDOWTITLE eq, ne Window title
NOTE: Wildcard '*' for the /IM switch is accepted only with filters.
NOTE: Termination of remote processes will always be done forcefully
irrespective of whether /F option is specified or not.
Examples:
TASKKILL /S system /F /IM notepad.exe /T
TASKKILL /PID 1230 /PID 1241 /PID 1253 /T
TASKKILL /F /IM notepad.exe /IM mspaint.exe
TASKKILL /F /FI "PID ge 1000" /FI "WINDOWTITLE ne untitle*"
TASKKILL /F /FI "USERNAME eq NT AUTHORITY\SYSTEM" /IM notepad.exe
TASKKILL /S system /U domain\username /FI "USERNAME ne NT*" /IM *
TASKKILL /S system /U username /P password /FI "IMAGENAME eq note*"

Manage Power Settings from command line

H:\>powercfg /?

POWERCFG [/LIST | /QUERY [name] | /CREATE name | /DELETE name |
/SETACTIVE name | /CHANGE name settings |
/HIBERNATE {ON|OFF} | /EXPORT name [/FILE filename] |
/IMPORT name [/FILE filename] | /GLOBALPOWERFLAG {ON|OFF} /OPTION flag |
/BATTERYALARM {LOW|CRITICAL} [settings] |
/DEVICEQUERY queryflags | /DEVICEENABLEWAKE devicename |
/DEVICEDISABLEWAKE devicename | /?]

Description:
This command line tool enables an administrator to control
the power settings on a system.

Parameter List:
/LIST, /L Lists the names of existing power schemes.
/QUERY, /Q Displays the configuration of the specified power scheme.
If no name is specified, the configuration of the currently
active power scheme is displayed.
/CREATE, /C Creates a power scheme with the specified name. The new
scheme is created with the properties of the currently
active scheme.
/DELETE, /D Deletes the power scheme with the specified name.
/SETACTIVE, /S Makes the power scheme with the specified name active.
/CHANGE, /X Changes settings of the specified power scheme. Additional
switches specify the changes as follows:
/monitor-timeout-ac <minutes>
/monitor-timeout-dc <minutes>
/disk-timeout-ac <minutes>
/disk-timeout-dc <minutes>
/standby-timeout-ac <minutes>
/standby-timeout-dc <minutes>
/hibernate-timeout-ac <minutes>
/hibernate-timeout-dc <minutes>
/processor-throttle-ac <throttle>
/processor-throttle-dc <throttle>
AC settings are used when the system is on AC power.
DC settings are used when the system is on battery power.
Setting a timeout to zero will disable the corresponding
timeout feature. Supported throttle settings are NONE
CONSTANT, DEGRADE, and ADAPTIVE.
/EXPORT, /E Exports the power scheme with the specified name to a
file. If no filename is specified, the default is
SCHEME.POW. This additional parameter is supported:
/FILE <filename>
/IMPORT, /I Imports the power scheme from a file under the specified
name. If no filename is specified, the default is
SCHEME.POW. If a scheme with that name already exists, it
is replaced with the new one. This additional parameter
is supported:
/FILE <filename>
/HIBERNATE, /H {ON|OFF} Enables/Disables the hibernate feature. Hibernate
timeout is not supported on all systems.
/NUMERICAL, /N Allows the power scheme to be operated upon to be specified
using a numerical identifier. When using this switch, in
place of the name of the power scheme on the command line,
specify its numerical identifier. This switch may be used
in combination with the /QUERY, /DELETE, /SETACTIVE,
/CHANGE, /EXPORT, and /IMPORT commands.
/GLOBALPOWERFLAG, /G {ON|OFF} Turns one of the global power flags on/off.
Valid flags (to be used after "/OPTION ") are:
BATTERYICON: Turns the battery meter icon in the
system tray on/off.
MULTIBATTERY: Turns on/off multiple battery display
in system Power Meter.
RESUMEPASSWORD: Prompt for password on resuming the
system.
WAKEONRING: Turn on/off wake on ring support.
VIDEODIM: Turn on/off support for dimming video
display on battery power.
/AVAILABLESLEEPSTATES, /A Reports the sleep states available on the
system. Attempts to report reasons why sleep states are
unavailable.
/BATTERYALARM, /B {LOW|CRITICAL} Configures the battery alarm. The
following switches can be specified:
/activate <on|off>
Enables or disables the alarm.
/level <percentage (0 - 100)>
The alarm will be activated when the power level
reaches this percentage.
/text <on|off>
Turns the text notification on or off.
/sound <on|off>
Turns the audible notification on or off.
/action <none|shutdown|hibernate|standby>
Specifies the action to take when this alarm goes
off. Not all actions are always available.
/forceaction <on|off>
Force stand by or shutdown even if a program stops
responding.
/program <on|off>
Specifies a program to run. schtasks.exe /change
may be used to configure the program.
/DEVICEQUERY <queryflags> will return a list of devices that meet the
criteria specified in <queryflags>. Possible values
for <queryflags> are:
wake_from_S1_supported - return all devices that support
waking the system from a light sleep state.
wake_from_S2_supported - return all devices that support
waking the system from a deeper sleep state.
wake_from_S3_supported - return all devices that support
waking from the deepest sleep state.
wake_from_any - return all devices that support waking
from any sleep state.
S1_supported - list devices supporting light sleep states.
S2_supported - list devices supporting deeper sleep.
S3_supported - list devices supporting deepest sleep.
S4_supported - list devices supporting system hibernation.
wake_programmable - list devices that are user-configurable
to wake the system from a sleep state.
wake_armed - list devices that are currently configured to
wake the system from any sleep state.
all_devices - return all devices present in the system.
all_devices_verbose - return verbose list of devices.
/DEVICEENABLEWAKE <devicename> enable the device to wake the system from a
sleep state. <devicename> is a device retrieved using
the '/DEVICEQUERY wake_programmable' parameter.
/DEVICEDISABLEWAKE <devicename> disable the device from waking the system
from a sleep state. <devicename> is a device retrieved
using the '/DEVICEQUERY wake_armed' parameter.
/HELP, /? Displays information on command-line parameters.

Examples:
POWERCFG /LIST
POWERCFG /QUERY scheme
POWERCFG /QUERY
POWERCFG /CREATE scheme
POWERCFG /DELETE scheme
POWERCFG /SETACTIVE scheme
POWERCFG /CHANGE scheme /monitor-timeout-dc 15
POWERCFG /CHANGE scheme /monitor-timeout-dc 0
POWERCFG /HIBERNATE on
POWERCFG /EXPORT scheme /file file
POWERCFG /QUERY number /NUMERICAL
POWERCFG /GLOBALPOWERFLAG on /OPTION BATTERYICON
POWERCFG /AVAILABLESLEEPSTATES
POWERCFG /BATTERYALARM low
POWERCFG /BATTERYALARM critical /ACTIVATE on /LEVEL 6 /ACTION hibernate
POWERCFG /DEVICEQUERY wake_armed

How to terminate a session from command line

H:\>logoff /?
Terminates a session.

LOGOFF [sessionname | sessionid] [/SERVER:servername] [/V]

sessionname         The name of the session.
sessionid           The ID of the session.
/SERVER:servername Specifies the Terminal server containing the user
session to log off (default is current).
/V                  Displays information about the actions performed.

How to manage Boot Configuration from command line ( Server 2008 and Windows Vista)

C:\Users\Administrator>bcdedit /?

BCDEDIT - Boot Configuration Data Store Editor

The Bcdedit.exe command-line tool modifies the boot configuration data store.
The boot configuration data store contains boot configuration parameters and
controls how the operating system is booted. These parameters were previously
in the Boot.ini file (in BIOS-based operating systems) or in the nonvolatile
RAM entries (in Extensible Firmware Interface-based operating systems). You c
use Bcdedit.exe to add, delete, edit, and append entries in the boot
configuration data store.

For detailed command and option information, type bcdedit.exe /? <command>. F
example, to display detailed information about the /createstore command, type

bcdedit.exe /? /createstore

For an alphabetical list of topics in this help file, run "bcdedit /? TOPICS"

Commands that operate on a store
================================
/createstore Creates a new and empty boot configuration data store.
/export Exports the contents of the system store to a file. This file
can be used later to restore the state of the system store.
/import Restores the state of the system store using a backup file
created with the /export command.
/sysstore Sets the system store device (only affects EFI systems, does
not persist across reboots, and is only used in cases where
the system store device is ambiguous).

Commands that operate on entries in a store
===========================================
/copy Makes copies of entries in the store.
/create Creates new entries in the store.
/delete Deletes entries from the store.

Run bcdedit /? ID for information about identifiers used by these commands.

Commands that operate on entry options
======================================
/deletevalue Deletes entry options from the store.
/set Sets entry option values in the store.

Run bcdedit /? TYPES for a list of datatypes used by these commands.
Run bcdedit /? FORMATS for a list of valid data formats.

Commands that control output
============================
/enum Lists entries in the store.
/v Command-line option that displays entry identifiers in full,
rather than using names for well-known identifiers.
Use /v by itself as a command to display entry identifiers
in full for the ACTIVE type.

Running "bcdedit" by itself is equivalent to running "bcdedit /enum ACTIVE".

Commands that control the boot manager
======================================
/bootsequence Sets the one-time boot sequence for the boot manager.
/default Sets the default entry that the boot manager will use.
/displayorder Sets the order in which the boot manager displays the
multiboot menu.
/timeout Sets the boot manager time-out value.
/toolsdisplayorder Sets the order in which the boot manager displays
the tools menu.

Commands that control Emergency Management Services for a boot application
==========================================================================
/bootems Enables or disables Emergency Management Services
for a boot application.
/ems Enables or disables Emergency Management Services for an
operating system entry.
/emssettings Sets the global Emergency Management Services parameters.

Command that control debugging
==============================
/bootdebug Enables or disables boot debugging for a boot application.
/dbgsettings Sets the global debugger parameters.
/debug Enables or disables kernel debugging for an operating system
entry.
/hypervisorsettings Sets the hypervisor parameters.

:: infotechGuyz.com ::
> For IT community by IT community

InfotechGuyz.com Blog