General Tech
|
MapInfo / GIS
|
Oracle / Database
|
Misc / Useless
|
Windows NT Information
Information on extra utilities/files provided
- Windows NT Resource Kit Supplement 2 utilities
- run ASSOC - to see file associations, pipe to file assoc > assoc.txt
or run ASSOC <.file extension> to see what a specific file extension is associated to - it can also set file associations
- run WINMSD - to see WinNT diagnostics
- run Microsoft System Information tool (msinfo32.exe) if you have Microsoft Office 97 or 2000 installed to get information on your system. This utility provides more information than you get with WinMSD.
- run NET VIEW \\computername | Find "string" to see who's on your network
- run NET SEND {computername | * | DOMAIN[:domainname] /USERS} message to send a message to users on your network, example:
NET SEND fsscny-ceo "Hello"
NET SEND /DOMAIN:fsscny "Hello"
- to find out what IP address information the machine is currently using - type IPCONFIG from the command prompt
- run NBTSTAT from Command Prompt - (NBT Stats) to see protocol statistics for TCP/IP connections
to see if someone is logged in type NBTSTAT -A <IP address>, i.e. 138.2.240.149
- to see if something is using a port on the machine - type NETSTAT -AN from the command prompt
- run TRACERT <web address> (or PING <web address>) from a command prompt to show routing and delay times to site - 3 numbers will be displayed for tracert - each is for a separate packet sent to various routers - an asterick means the data was lost en route (try members.aol.com for really slow one)
- run FINGER <email id> - to get information about a particular user, i.e. finder kmahoney@us.oracle.com
- run Support\Deptools\<system>\rollback.exe on CD to remove all registry settings on a system
- run dir /x - to see long file names and their 8.3 equivalent
- run rdisk /s - to back up the registry
- to see all tasks that are running on you server and be able to kill them - run TLIST (in the Windows NT 4.0 Resource Kit) at a command prompt, from there you can use the KILL command to get rid of the task - for example, KILL 204, where 204 is the task number - sometimes the task won't die so then use TLIST again but with the -T extension - this will show you the child or children of each task
Customization Steps
- open the registry editor and find a certain key:
HKLM\System\ControlSet\Control\Session Manager\Memory Management\DisablePagingExecutive
Make sure this is set to 1 (default is 0) - only if you have more than 64 MB of RAM
this will allow drivers and the kernel code to be kept in memory
- to turn off those speaker beeps create file called soundoff.reg
REGEDIT4
BLANK LINE GOES HERE
[HKEY_CURRENT_USER\Control Panel\Sound}
"Beep"="No"
BLANK LINE GOES HERE
- to add Notepad option to right-click menu for every file and set Notepad as the default application for any extensions that are not associated with another application
- run REGEDIT
- navigate to HKEY_CLASSES_ROOT\* (This should be the very first subtree)
- a key called "shellex" should already be here - add a new key called
"Shell" at the same tree level as "shellex."
- under the "Shell" key, create another key called "Edit In Notepad"
- create another key under the "Edit In Notepad" key called "Command"
- you'll see a string value named Default when you highlight the "Command" key. Double-click Default and enter "NOTEPAD %1" (without the quotes) - Click OK
- to list which DLLs contain icons run (any DLL file that displays an icon other than the default contains at least one icon you can use):
REGEDIT4
BLANK LINE GOES HERE
[HKEY_CLASSES_ROOT\dllfile\DefaultIcon]
@="%1"
BLANK LINE GOES HERE
- to change the default installation path for Windows NT run regedit and navigate to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion and then double-click SourcePath and enter <drive>:\i386 and then navigate to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup and double-click SourcePath and enter <drive>:
- to eliminate the 'Shortcut To' prefix when creating shortcuts:
REGEDIT4
BLANK LINE GOES HERE
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer]
"link"=hex:00,00,00,00
BLANK LINE GOES HERE
- To automatically enable login without entering username/password go to the HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon key and create/edit the following string values:
- DefaultUserName="Oracle"
- AutoAdminLogon="1" (set back to "0" to disable)
- DefaultPassword="oracle"
- create batch file to start dial-up connection, start netscape, and when close netscape, close dial-up connection
- "c:\winnt\system32\RasPhone - d Insert your ISP as listed in Dial-Up"
- "c:\Program Files\Plus!\Microsoft Internet\IEXPLORE.EXE"
- "c:\winnt\system32\rasdial Your ISP server as listed in Dial-Up /disconnect"
- to get a new choice to Create a New Folder when you right-click on the parent folder select View->Options and then the File Types tab in explorer, then edit the Folder file type - then click the New button and the Action is: New Folder and the application used to perform action is: c:\winnt\system32\cmd.exe /c md """%1\NewFolder"""
- in the command prompt type 'mode con lines=50' and 'mode con cols=90' to change the window's appearance
- map U: to the Personal folder stored in each user's profile:
add the following command to the login script for each user: SUBST U: %userprofile%\Personal or SUBST U: "C:\My Documents" or if home directory has been set to a network directory using NT's User manager use NET USE U: /HOME /YES
- turn off cdrom autorun feature:
REGEDIT4
BLANK LINE GOES HERE
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"Autorun"=dword:00000000
BLANK LINE GOES HERE
- go to Control Panel-->System-->Advanced tab and then click Environment
Variables - look for 'dircmd' in the 'User variables' list (if not add it) - then click Edit - in the 'Variable value' entry box type in: /a/o (see all files and sort)
- The optimal paging file size is equivalent to the amount of RAM plus 11
- disable remote access autodial manager service:
HKEY_CURRENT_USER\Software\Microsoft\RAS Autodial\Addresses
- disable Windows NT startup screen:
open Windows NT Explorer and locate the Winnt folder. Now find the winnt.bmp and winnt256.bmp files and rename them or put your own pictures there (if your system is running at 256 or more colors, then you don't need to worry about winnt.bmp)
- create shortcut for screen saver (can be password protected) on desktop:
drag *.scr file from explorer to desktop
- change default view to 2-pane explorer view when open a folder like 'My Computer':
run explorer and go to View->Options and then click on the 'File Types' tab and then select the 'Folder' type and click on the 'Edit' button - choose explore and click on the 'Set Default' button
- change directory where Internet Explorer looks for favorites folder:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders
- change background/foreground colors in command line processor:
run RegEdit and change the value of HKEY_CURRENT_USER\Software\Microsoft\Command Processor\DefaultColor to xy where x is background color and y is foreground color - possible colors are: (1E would be yellow on blue). Also can enter as color BF - where B is the background color and F is the foreground (for a non-permanent change)
Color Codes
| 0 |
black |
8 |
gray/dark gray |
| 1 |
blue |
9 |
light/bright blue |
| 2 |
green |
A |
light/bright green |
| 3 |
aqua/cyan |
B |
light/bright aqua/cyan |
| 4 |
red |
C |
light/bright red |
| 5 |
purple/magenta |
D |
light/bright purple/magenta |
| 6 |
yellow/brown |
E |
light yellow |
| 7 |
white/light gray |
F |
bright white |
- to change the background color that you see when Windows NT 4.0 Workstation starts:
REGEDIT4
BLANK LINE GOES HERE
[HKEY_USERS\.DEFAULT\Control Panel\Colors]
"Background"="255 255 255"
BLANK LINE GOES HERE
Other Information
- to create a Windows NT boot floppy:
- format a floppy disk using the Windows NT format utility
- copy NTLDR from the Windows NT Setup CD-ROM, Windows NT Setup floppy disk, or from a computer running the same version of Windows NT as the computer you want to access with the boot floppy (in c:\). You may need to expand this file from NTLDR._ to NTLDR by using the following command line: EXPAND NTLDR._ NTLDR
- copy c:\NTDETECT.COM file to the disk.
- create a BOOT.INI file or copy one from a running Windows NT computer and modify it to match the computer you are trying to access. Below is an example file:
[boot loader]
timeout=30
Default= multi(0)disk(0)rdisk(0)partition(1)\winnt
[operating systems]
multi(0)disk(0)rdisk(0)partition(1)\winnt="Windows NT"
- start using the floppy disk, and then log on to Windows NT.
- to expand the entire contents of the i386 folder on the Windows NT Workstation 4.0 installation disc to a local hard disk type 'd:\i386\winnt32 /t:c /x' at command prompt
- to select association for a file extension - in explorer select file with extension and then hold down [Shift] key while right-click on the file ... select 'open with' (also check always use this program to open this file)
- to create NT startup/setup disks you must run the Winnt.exe /ox command to regenerate the disks.
- to create an Emergency Repair Disk - run 'rdisk /s' - if you type 'rdisk /s-' it won't prompt to put in floppy drive
- to make a new set of the 3 Windows NT install diskettes from the Windows NT CD type 'd:\i386\winnt32 /ox' if your on an NT box or 'd:\i386\winnt /ox' if your on a 95 box
- to see statistics like when was the ladst time the machine was booted type 'net statistics workstation | more' at command prompt
- The MAXMEM switch in the BOOT.INI file will force the computer to use the specified amount of RAM, i.e. edit BOOT.INI and add /MAXMEM: 12
- to create explorer shortcuts:
%SystemRoot%\explorer.exe /n, /e, <directory> - new 2-paned explorer window opened to specified directory
%SystemRoot%\explorer.exe /n, /e, /root, <directory> - new 2-paned explorer window rooted to specified directory
%SystemRoot%\explorer.exe /n, /e, /select, <directory> - new 2-paned explorer window with specified directory selected in right window
- when working in Windows NT Explorer and you'd like to expand all the subfolders - click a folder to select it and then press the asterisk (*) key
on the numerical keypad - this will expand all the folders
- to copy full path name for a particular file from explorer - open run dialog from the start menu and drag and drop the file into the dialog
- to automatically resize list view columns - double click in any list view (like explorer file listings) to automatically resize column to fit largest entry
- to print file from command line - copy "sdo.ps" "//ny-dcnt-1/nyprt3" /b
- to see if an executable is 16 or 32-bit - right click on EXE in explorer and choose Quick View - if the Signature is 454e it's a 16-bit program, if it's 4550 it's 32-bit
- to find CD-ROM key if forgot - go to Control Panel--->System and then select the General tab - on the last line of the Registered to: section there will be a numeric string of 5,3,7, and 5 digits separated by dashes - the CD-ROM key are the 3 and 7 digit groups
Hotkeys
- [Ctrl]+[Esc] or [Win] - open the Start menu
- [Ctrl]+[Shift]+[Esc] - opens the Task Manager
- [Shift]+[F10] - brings up context (right-click) menu
- bring up desktop - press [Ctrl]+[Esc] and then press [Alt]+M
- [Win]+[D] - jump to the desktop (minimize all open windows) - repeat to restore
- [Win]+[M] - minimize all open windows
- [Shift]+[Win]+[M] - restores minimized windows
- [Win]+[R] - open Run dialog box
- [Win]+[E] - open Windows Explorer
- [Win]+[F] - open Find
- [Win]+[Break] - open the System Properties dialog box
- [Ctrl]+[Win]+[F] - finds computers
- [Win]+[L] - log off Windows
- [Win]+[Tab] - cycles through Taskbar buttons
- [Win]+[F1] - open Help
Security Precautions
- protect all admin and general user accounts with password that is at
least 7 characters long and a combination of characters and numeral
(try using acronym for common phrase, i.e. I Love Leave It To Beaver =
ILLITB) - also have maximum password age
- delete dead accounts and passwords
- assign user names yourself - should be unique across NT domain and entire network - then assign users to groups and then assign group permissions
- rename administrator user account and change password - also create account called Admin and give it no permissions (to confuse hackers)
- set lockout limits - 3 attempts then locked out for 24 hours unless admin reactivates the account
- activate account logging - go to User manager for Domains and then the Policy menu - check the Event log regularly to look for account lockouts since the system won't notify you automatically
- always use NTFS over FAT since it has built-in security options
- after formatting NTFS volume change default file permissions from Everyone to something else
- make sure of physical security - lock up hardware
- install Service Pack 3 and pay attention to Microsoft security-hole fixes on their web site
- secure the NT registry to certain groups only
Interrupts Windows NT uses
- IRQ/Device
- 0/Timer
- 1/Keyboard
- 2/Cascade (handles interrupts above 8)
- 3/COM2, COM4
- 4/COM1, COM3
- 5/LPT2
- 6/Floppy Disk Controller
- 7/LPT1
- 8/Clock
- 12/PS/2 Mouse
- 13/Coprocessor
- 14/IDE Controller
- IRQ 10, 11, 12, and 15 are the ones most commonly available for add-on devices
