How to find username on remote computer?

11

4

I have the IP addresses of some computers on my network. Is there any command line tool like PsExec, which can take the IP Address as input and find out the username of the currently logged in user? I can install stuff on my workstation, but not the others. I can also run Metasploit / NMap / any other such program on my workstation.

Neil

Posted 2010-05-24T14:55:00.597

Reputation: 649

Answers

6

For Windows boxes get psLoggedOn. It tells you who is currently signed into the box via console/rdp and who is connected via network shares.

If you don't want to install an app, there is also the commands qwinsta and query session that you can run from the command line like this:

qwinsta /server:name_of_host or query session /server:name_of_host

MikeJ

Posted 2010-05-24T14:55:00.597

Reputation: 706

Oh awesome, theres a PsTool for it. I feel stupid. Anyhow, do these PsTools work on the default Windows XP configuration, without requiring anything to be installed on the remote computer? – Neil – 2010-05-26T11:41:17.963

Correct. Firewall or disabling WMI will get in the way but often the windows firewall even when on contains an exception for WMI. – MikeJ – 2010-06-11T18:02:27.440

9

Try this:

wmic.exe /node:"IP-or-HostName" ComputerSystem Get UserName

Example:

wmic.exe /node:"172.28.1.100" ComputerSystem Get UserName

Output:

UserName
DOMAIN\User

(Yes, /node value must be quoted)

George Chakhidze

Posted 2010-05-24T14:55:00.597

Reputation: 191

2Worked for me. I needed to run cmd as domain Administrator or else I got an error "Access is denied". – Otiel – 2015-01-22T16:01:23.187

Apparently you have two accounts: account one and account two. You might wish to utilise this Help Center tutorial and ask the Super User staff to merge the accounts.

– robinCTS – 2018-08-03T13:38:15.100

1

Check out MetaLAN

Sathyajith Bhat

Posted 2010-05-24T14:55:00.597

Reputation: 58 436

0

You can do this with the following commands. This works because any logged in user would run explorer.exe automatically after signing in:

for /f "TOKENS=1,2,*" %%a in ('tasklist /s %PCNAME% /FI "IMAGENAME eq explorer.exe" /FO LIST /V') do if /i "%%a %%b"=="User Name:" (set domain_user=%%c)    
for /f "TOKENS=1,2 DELIMS=\" %%a in ("%domain_user%") do set domain=%%a && set user=%%b

Minor

Posted 2010-05-24T14:55:00.597

Reputation: 1

Asked: 2010-05-24T14:55:00.597

Viewed: 135 100 times

Active: 2018-08-03T13:04:09.500