• 0

Go to solution Solved by Jim K,

Question

marveloz

To target Windows 7 VM:

C:\Users\Marv>psexec \\10.1.1.20 
-u Marv -p oops cmd
PsExec v2.11 - Execute processes remotelyCopyright (C) 2001-2014 Mark 
RussinovichSysinternals - www.sysinternals.com
Microsoft Windows [Version 6.1.7601]Copyright (c) 2009 Microsoft 
Corporation.  All rights reserved.
C:\Windows\system32>
C:\Users\Marv>psexec \\10.1.1.20 
-u Marv -p oops -i -s -d calc
PsExec v2.11 - Execute processes remotelyCopyright (C) 2001-2014 Mark 
RussinovichSysinternals - www.sysinternals.com
calc started on 10.1.1.20 with process ID 3296.
C:\Users\Marv>

Success, yay! :D

 

 

To target Windows XP VM:

C:\Users\Marv>psexec \\10.1.1.21 
-u Administrator -p oops cmd
PsExec v2.11 - Execute processes remotelyCopyright (C) 2001-2014 Mark 
RussinovichSysinternals - www.sysinternals.com
Couldn't access 10.1.1.21:Access is denied.
C:\Users\Marv>psexec \\10.1.1.21 
-u Administrator -p oops -s cmd
PsExec v2.11 - Execute processes remotelyCopyright (C) 2001-2014 Mark 
RussinovichSysinternals - www.sysinternals.com
Couldn't access 10.1.1.21:Access is denied.
C:\Users\Marv>
C:\Users\Marv>psexec \\10.1.1.21 
-u Administrator -p oops -i -s -d calc
PsExec v2.11 - Execute processes remotelyCopyright (C) 2001-2014 Mark 
RussinovichSysinternals - www.sysinternals.com
Couldn't access 10.1.1.21:Access is denied.
C:\Users\Marv>

Failed , nay! :(

 

PS: I've manually disabled any protections(firewall, etc) and enabled all sharing/remote access options I could find on each target but stil no luck.

 

 

Will someone point out where I'm wrong please? /:

Link to post
Share on other sites

8 answers to this question

Recommended Posts

  • 0
Raa

Doesn't the remote registry service need to be enabled, or am I on the wrong track...

  • Like 1
Link to post
Share on other sites
  • 0
marveloz

Windows 7 target:

 

remserv_zpsrasppkbv.jpg

lsp7_zpsjwb4bav6.jpg

 

 

Windows XP target:

 

remservxp_zpsokktxw8y.jpg

lsp_zpswpz6qkr5.jpg

 

 

Had to use photobucket to provide pictures, I haven't had PowerShell installed yet but I'll find out more about it.

Link to post
Share on other sites
  • 0
binaryzero

What do you think psexec is? All it's doing is using powerhsell on the target machine to execute a command. 

  • Like 1
Link to post
Share on other sites
  • 0
marveloz

What do you think psexec is? All it's doing is using powerhsell on the target machine to execute a command. 

My bad, I stand corrected :)

Link to post
Share on other sites
  • 0
+BudMan

"All it's doing is using powerhsell on the target machine to execute a command."

 

Where did you get that? That is not the case at all

 

http://windowsitpro.com/systems-management/psexec

 

ps in psexec does not stand for powershell ;)  It gots its name from the ps command in unix.  Read the above article for some history and insight on the command.

 

powershell came out in what 2006, that article on psexec was written in 2004 well before powershell was even avaiable as an oddon.

  • Like 4
Link to post
Share on other sites
This topic is now closed to further replies.
  • Recently Browsing   0 members

    No registered users viewing this page.

  • Similar Content

    • By Abhay V
      Microsoft's second event for June 24 is aimed at Windows developers
      by Abhay Venkatesh



      Microsoft is slated to hold a “What’s next for Windows” event at 11 AM ET on June 24 to unveil Windows 11, a name that has recently been confirmed thanks to the leaked build that made it to the web. However, it turns out that the Windows 11 event might not be the only one to be taking place next Thursday, as the Redmond firm is holding an event for 3 PM ET, which it announced via Twitter today.

      As is the case with these event invites, not much in the way of information is being provided. However, the company is rumored to be working on a brand new Microsoft Store with new policies that expand the types of apps that can be distributed through the store. It is possible that that announcement, along with more information on the specifics for developers, will be provided during the event.

      During the firm’s Build conference last month, CEO Satya Nadella said that the company will “create more opportunities for every Windows developer” and that it will “welcome every creator who is looking for the most innovative, new, open platform to build[,] distribute[,] and monetize applications”. It is possible that the developer-focused event dives into new app development and monetization capabilities brought by the revamped Microsoft Store policies. It is anybody’s guess if there are any surprise announcements.

      The developer event is scheduled for 3 PM ET on June 24, four hours after the live stream for the Windows 11 event begins. The firm will stream the developer event on YouTube here.

    • By Copernic
      Groupy 1.49.1
      by Razvan Serea



      Groupy is a powerful organizational tool for Windows that will keep information tabbed and organized. You can drag and drop multiple applications and documents together to group them into a tabbed interface for easy access and reference.

      Key Features:

      Drag and drop applications together to group them under a common tabbed interface Organize multiple applications and documents together for convenient access Group related tabs together for optimal workflow Save groups of applications together for future usage Manage tabs in quick and natural ways with the browser-like interface Add new tabs to existing groups quickly and easily Mouseover tabs to preview the window contents Copy files between Explorer tabs. Drag files to the target tab, pause to switch, and then into the target window. Automatically group instances of the same application together Groupy 1.49.1 changelog:

      Fixed a Groupy titlebar grab \ drag \ lag issue introduced in 1.49 Fixes an issue with auto-grouping ignoring the locked status Fixes bars showing on other virtual desktops when you switch to them briefly Potentially resolves an issue with auto grouping and virtual desktops grouping multiple windows from different groups Groupy is only $4.99. For more information about Groupy, please visit https://www.stardock.com.

      Disclaimer: Neowin's relationship to Stardock.

      Get alerted to all of our Software updates on Twitter at @NeowinSoftware

    • By Usama Jawad96
      How to install new fonts in Windows 10 for apps like Office
      by Usama Jawad

      Fancy! While Microsoft already ships a decent set of fonts with Windows 10 which Office apps also utilize, there may come a time in your life when they may not be enough and you may feel the need to install a custom font downloaded from the internet. Such a moment came recently in my professional life when a client wanted my team to develop a dashboard in Microsoft Power BI using a custom font. Although we thought there would be a straightforward solution for this requirement, we learned that we would need to specify the font in a JSON theme file, but it would only work if said font is installed on your Windows machine.

      Much to our disappointment, we learned that the font the customer wants us to utilize is not available in Windows 10, which means that we have to install it first. Thankfully, the process to install new fonts on Windows 10 is easier than I anticipated, and today, I will walk you through what you need to do in order to enable the same, should you ever be faced by a similar requirement - or if you just want to try new fonts. This approach will also work for apps installed on Windows 10, like Microsoft Office.

      Step 1: Download a custom font
      First up, you obviously need to have the custom font downloaded on your machine. There are multiple ways to do this. Starting with the built-in options on Windows 10, you need to head over to Settings > Personalization > Fonts and click on "Get more fonts in Microsoft Store", as can be seen in the screenshot above.

      This will open a dedicated section in the Microsoft Store listing some custom fonts. Choose any font that tickles your fancy, and click on the "Get" button from the store listing. For the sake of this guide, I clicked on the "Ink Journal" font, as can be seen above.

      Once the font is installed, it will be visible to you in Office apps from the fonts drop down. As you can see in the screenshot above, I selected the "Ink Journal" font which I just installed, and I can use it without any issue.

      But wait, what if a font you want is not available in the Microsoft Store? That is a completely valid scenario considering the Microsoft Store just contains a couple dozen custom fonts, and it's very likely that if you're looking for a specific obscure font, it won't be there. Or maybe you just like the fonts available there.

      In this case, we would want to download something from the web. Good news is that this is fairly simple too. Supported font file format types in Windows 10 are .ttf and .otf, which stand for TrueType and OpenType respectively. If you're interested in knowing the difference between them, there are multiple guides available on the web which tell you exactly that, however, this is out of the scope of this article.

      In our case, we are only interested in downloading .ttf or .otf font files and install them on Windows 10. Luckily, there are lots of dedicated websites which offer exactly that, such as Font Squirrel and DaFont, among others. Most downloads will contain a .zip file which you would need to extract using WinRar, 7Zip, or some other compression tool. In our case, I downloaded "Cassandra", just because it looks fancy, sue me. As you can see in the screenshot above, there is font file named "CassandraPersonalUseRegular-3BjG.ttf", which is what I'll be installing in the next step. This concludes our first step in terms of your options for downloading fonts not available on the Microsoft Store. For the sake of simplicity and brevity, I'll refer to whatever font you downloaded as the ".ttf file" in the next parts of this guide.

      Step 2: Install a custom font
      Now that you have downloaded a .ttf file from the web, your next step would be to install it on your machine. There are multiple ways to do this but you may require administrative privileges on your operating system because fonts on Windows 10 are installed in the C:\Windows\Fonts directory by default.

      One way to install the custom font would be to once again open the Settings > Personalization > Fonts configuration in Windows 10, and at the top, you'll notice an option called "Drag and drop to install". Do exactly that with the .ttf file you downloaded, and that's it. After you do this, it will also be visible in the fonts list on the same page. A screenshot of this option is attached above.

      Another way to install a font is via the context menu. Simply right click on your .ttf file which will open the context menu containing two options called "Install" and "Install for all users". The first will install it just for the current user, the second will install it for all users and is something to consider if you are using a shared machine. Click on either of these options depending on your preference as shown in the screenshot shown above, and you're done.

      Yet another option to accomplish the same as the two alternatives described above in this step is to simply double-click on the .ttf file which will automatically open it in a dedicated editor. Click on the "Install" option at the top, and that's pretty much it.

      Once you're done with either of the options explained in the step above, the font will be visible in the list on the Settings > Personalization > Fonts page as well as the C:\Windows\Fonts directory. A screenshot of the former is above. You could copy-paste the font file to the C:\Windows\Fonts directory directly and while that may be the fastest option, it's not the most user-friendly if you're not familiar with the Windows directory structure.

      Step 3 (optional): Uninstall a custom font
      If you viewed this article just to find out how to install a custom font, you don't need to read further. That said, there may come a day where you would like to uninstall a custom font just to clear the bloat on your machine as well as the options available to you in Office apps on Windows 10.

      In this case, simply head over to the same Settings > Personalization > Fonts page, locate the font you want to uninstall and click on it. This will open a dedicated page for the font, where you'll see a button called "Uninstall" as shown in the screenshot above. Click on it, and the font will be uninstalled. This concludes our guide as well!

      Did you find this guide useful? Have you ever come across this use-case before? What other tutorials would you like to see on Neowin next? Sound off in the comments section below!

    • By Abhay V
      Nvidia to drop Game Ready Driver updates for Windows 7, 8, and 8.1 starting this October
      by Abhay Venkatesh



      Nvidia today detailed its plans for Game Ready Drivers upgrade support for Windows 7, Windows 8, and Windows 8.1. The company posted a support article that states that it will cease to provide Game Ready Driver updates for its graphic cards for the mentioned versions starting October 2021. However, it does note that it will continue to serve “critical security updates” for systems running those operating systems until September 2024.

      Microsoft ended support for Windows 7 in January 2020, while Windows 8 lost its support in January 2016 – a short life span for the OS thanks to Windows 8.1 and the debacle that Windows 8 was. However, while Windows 8.1 reached the end of mainstream support back in 2018, the OS is still being serviced with security updates and will be till January 2023.

      Nvidia, says that a “vast majority” of its GeForce customers have migrated to Windows 10 and that it aims to provide the “best possible security, support, and functionality” for those users, which is why it is focusing on Windows 10 alone. In the FAQ section, it adds that it will ship the last Game Ready Driver that supports the three operating system on August 31, with the first drivers to drop support for the versions completely expected to ship in October.

      The change might not be a major one considering that most users are running the latest offering from the Redmond giant. However, for those that are still on older versions, they can rest assured that their GPUs will be served with updates to address any critical vulnerabilities. However, they will lose out on upgrades with performance enhancements, new features, and bug fixes, Nvidia says.

    • By Abhay V
      Windows 7 and 8.1 Patch Tuesday updates are now out, here's the complete changelog
      by Abhay Venkatesh



      As is the case every month, Microsoft is releasing cumulative updates for all supported Windows versions. These include the three most recent Windows 10 versions for consumers and a few versions that are supported for specific channels and select SKUs. Windows 8.1 and Windows 7 too are receiving updates, with the latter being reserved for those who have opted to pay for extended updates.

      As usual, the updates are split into two parts – monthly rollup and security-only updates. Monthly rollup packages are automatically served through Windows Update and security-only updates can be manually downloaded through the update catalog.

      Starting with Windows 8.1 and Windows Server 2012 R2, the monthly rollup is KB5003671 and can be downloaded manually from the Update Catalog here. The changelog for this patch includes:

      As for the security-only update, that is labeled as KB5003681 and can be manually downloaded from here. The list of fixes is similar to that of the monthly rollup. Here's the changelog posted by the firm:

      Both updates share the same known issue that users must be aware of. Here are the problems documented by the firm:

      Symptom

      Workaround

      Certain operations, such as rename, that you perform on files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”. This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege.

      Do one of the following:

      Perform the operation from a process that has administrator privilege. Perform the operation from a node that doesn’t have CSV ownership. Microsoft is working on a resolution and will provide an update in an upcoming release.



      Moving on to Windows 7 and Windows Server 2008 R2 SP1, the monthly rollup is KB5003667 and can be downloaded from here manually. It comes with the following fixes and improvements detailed in the knowledge base changelog:

      The security-only update is labeled KB5003694 and can be downloaded manually from the Update Catalog here. The fixes listed in this patch are as follows:

      Both these updates share the same set of known issues, with the renaming issue now being there on the list for a long time.

      Symptom

      Workaround

      After installing this update or later updates, connections to SQL Server 2005 might fail. You might receive an error, "Cannot connect to , Additional information: A network-related or instance-specific error occurred while establishing a connection to SQL Server. The server was not found or was not accessible. Verify that the instance name is correct and that SQL Server is configured to allow remote connections. (provider: Named Pipes Provider, error: 40 - Could not open a connection to SQL Server) (.Net SqlClient Data Provider)"

      This is expected behavior due to a security hardening change in this update. To resolve this issue, you will need to update to a supported version of SQL Server.

      After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer,” and the update might show as Failed in Update History.

      This is expected in the following circumstances:

      If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have purchased an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, please see this blog post. For information on the prerequisites, see the "How to get this update" section of this article.



      Certain operations, such as rename, that you perform on files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”. This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege.

      Do one of the following:

      Perform the operation from a process that has administrator privilege. Perform the operation from a node that doesn’t have CSV ownership. Microsoft is working on a resolution and will provide an update in an upcoming release.



      As is always the case, you can head to Windows Update and check for updates to pull the monthly rollup patches. You can also head to the individual download links for the security-only updates which can only be manually installed.