[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 267
  • Last Modified:

Looking Usefull Registry Queries for Domain Admins

I am looking for a list various registry queries that might be usefull information for network admins.  Any suggestions are appreciated.
0
verpit
Asked:
verpit
1 Solution
 
kadadi_vCommented:
Registry queries you mean to say like how to find the virus infected enteries or how to block the USB ports using registry editor.....?

If you installed/configured the dameware NT utilities so you can trace the registery editor of each desktop on network.



Regards,

v.k.
0
 
KromptonCommented:
There are so many areas of the Registry that are important or not depending on what you are doing.
I don't know about queries per-se.  But here is a nice little batch utility I put together.

Cheers

::Save below text into a file using the .bat extension.
@Echo Off
CLS
Echo This Batch File Is Intended To Open Regedit At Specific Key.
Echo You Can Copy The Key Path, Start This Batch File And Then
Echo Paste The Copied Key Name When Prompted Or Just Type It In.
Echo.

:GetKey
Echo.
Echo Type or paste below the key path where you want Regedit to open:
Echo EXAMPLE: HKEY_CURRENT_USER\Software\Microsoft\Windows
Echo (Enter "Quit" to exit)
Set /P MYKEY=
If "%MYKEY%" EQU "" GoTo NoKey
If /I "%MYKEY%" EQU "quit" GoTo Done
GoTo SetOpen

:Done
Exit

:SetOpen
Reg Add "HKCU\Software\Microsoft\Windows\CurrentVersion\Applets\Regedit" /v LastKey /t REG_SZ /d "My Computer\%MYKEY%" /f
Start /Wait "Regedit" Regedit.exe
REM ~ Clear LastKey
Reg Add "HKCU\Software\Microsoft\Windows\CurrentVersion\Applets\Regedit" /v LastKey /t REG_SZ /d "" /f
CLS
GoTo GetKey

:NoKey
Echo.
Echo.
Echo What was that? I didn't get the key.
Echo.
GoTo GetKey
0
 
ParaleptropyCommented:
A few keys that I find usefull as an admin:

[STARTUP]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

[Environment]
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Environment
HKEY_CURRENT_USER\Environment

[Paths]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders

[Database]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ODBC
HKEY_LOCAL_MACHINE\SOFTWARE\ODBC

[Windows Installer]
HKEY_CLASSES_ROOT\Installer
HKEY_CLASSES_ROOT\Installer\Products

If you're a little more specific, I can help you out more.

Regards
0

Featured Post

Vote for the Most Valuable Expert

It’s time to recognize experts that go above and beyond with helpful solutions and engagement on site. Choose from the top experts in the Hall of Fame or on the right rail of your favorite topic page. Look for the blue “Nominate” button on their profile to vote.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now