If you need to execute commands on a remote computer under a different user account, keep in mind, that the password is sent over the network to the remote system in plain text. If you did not specify the user name and password, then the remote process starts on the remote computer under your current credentials, which are used to start the PsExec process on your computer. The syntax for PsExec is as follow: psexec \\RemotePCName ] command Using PsExec to Run Command on Remote Computer When the work is completed, PsExec stops the service and automatically removes it from the remote computer. After running PSEXESVC, a connection is established for data transfer between this service, and the PsExec process on your computer. Then PsExec installs and starts the PSEXESVC service using the Windows API functions for managing services. The SMB port (TCP/445) and UDP/137 ports should be opened on the firewalls between source and target computers. In order for PsExec to connect to a remote computer, the LanmanServer and LanmanWorkstation services must be running on a computer. When establishing a connection to a remote computer, the PsExec utility copies this file to the hidden administrative folder Admin$ of the remote computer (C:\Windows\System32\psexesvc.exe). ![]() In the resources of the executable file PsExec.exe, there is another executable file – PSEXESVC, which is a Windows service file. In order to use the PsExec tool, simply copy it to the folder on your computer (it is convenient to copy it to the default executable folder C:\Windows\System32), and run it from the command prompt or PowerShell console.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |