When an exploit is run the run metsvc command gives an error stating that it cannot open the service manager... Any way around it?... I have tried persistence as well. That too says ERROR in script: operation failed: Access denied?... Any help would be grateful..
You must be trying to install a backdoor on a windows 8/8.1/10 machine. You will always get access denied , since after windows 7 they have made patch around it, only administrator can get this access. And as far as I know there is no simple way to get the admin access on a windows 8 and afterwards machine with metasploit.
just got mine to work. run the payload first used to access the target maching as administrator
Related
Docker trust is throwing an error for the following command, when in fact the image exists and I can even pull it with no issues:
docker trust inspect ourcompanydtr.com/dev/tool:april12
And the error I am getting is this one:
No signatures or cannot access ourcompanydtr.com/dev/tool:april12
Notice that I did not have this issue when I was running it on windows, but recently I moved to MAC and since then, that is the only command not working for me.
All my coworkers with windows machines are able to get the correct results back. I also put all the certificates inside the keychain but no luck. Any ideas?
I am trying to install GoCD Server 19.1.0 64 bit on my Windows 10 64 bit machine. Installation went through without any issue, however, I am getting the following error on starting Go Server service.
I tried to run service under Local System Account as well as specific admin account but not luck so far.
I also tried setting NoInteractiveServices registry from 1 to 0 (at \HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Windows) but still getting the same error.
Please let me know if any of you have faced this error and know the solution.
Services
The Go Server service on Local Computer started and then stopped. Some services stop automatically if they are not in use by other services or programs.
OK
Thanks in advance,
ND
You should look at GoCD's Log files to find out what happened, and why GoCD stopped.
Thanks #moritz for the info. I did not find any files under logs folder as it was failing with Access Denied error while writing to logs files. Not sure what was the reason behind that but this is how I fixed it.
I re installed the Go Server, this time I have selected C:\Program Files (instead of default C:\Program Files (x86)) and selected Open Java instead of providing path of JRE installed locally.
This worked in my case, however, feel free to let me know if you see any problem in this approach.
ND
I have a legacy VB6 application that we are attempting to run on an RDP connection to a Windows 2008 Server. All of my other legacy applications seem to run fine, but this one fails. I've tried reinstalling the application from the Setup file, but it fails when it tries to register the file RESEDIT.DLL. I've attempted to register the file manually using regsvr32, but that just gives me the following error:
The module "C:\Windows\SysWOW64\RESEDIT.DLL" was loaded but the call to DllRegisterServer failed with error code 0x80004005.
As I've researched this, I've found discussions about possible file dependency issues, but I've gone through every associated DLL in the setup package and they all register successfully. I've made certain that I'm running the regsvr32 from an elevated command prompt, but it always comes up with the same error.
We installed the application on a Windows 7 VM, and it installed without error. The RESEDIT.DLL file apparently registered successfully, and the application comes up without error. However, running the application from the Windows Server 2008 system continues to throw errors. It started with an error that says "Out of Memory" (Error #7), but now I'm getting one that says "ActiveX component can't create object" (Error #429), probably due to the different troubleshooting steps we've followed so far.
Does anyone know how to get RESEDIT.DLL to install and correctly register on Windows Server 2008?
I am using psexec to start an executable in a remote system. The remote system is 64 bit while the exe pushed using psexec is 32 bit.
While running "psexec", I am providing the admin credentials of the remote system and the remote process is created using those credentials itself.
The 32 bit exe , when run on the remote system , does some operations and then spawns another executable using ShellExecute.
I am finding that on windows 7 , ShellExecute returns error code 5 (i.e. SE_ERR_ACCESSDENIED). The entire process runs fine and ShellExecute succeeds when the target machine is XP.
Any ideas or workaround for the same? I tried initializing COM , but with no benefits.
Please let me know if any further details/code is required.
I figured out the problem , actually ShellExecute was trying to execute the program which was in a share location. My guess is it was not able to access the share thus giving access denied. I used CreateProcess() instead and made sure that the share connection is made before trying to execute the process. This worked!
I'm having a lot of problems trying to start an application as administrator on an application I'm writing when running it on XP Embedded.
The application runs as the shell for a limited user account and is touch-screen and keyboard-less with one user command being to run the touch screen vendor's calibration tool. This must be run as administrator.
No problem I thought, add user and password information to the ProcessStartInfo and all should be fine. No. The error I get is:
System.ComponentMode.Win32Exception: The specified service does not exist as an installed service.
From some investigation, I've found that:
My Process starting code is correct:
any application can be started successfully on XP Embedded when run as the limited user
any application can be run as Administrator on my own laptop
on XP Embedded, any application is regarded as being a service in the same way, including notepad
if I attempt to start a program from within process explorer, I simply get "Unable to execute process: Access is Denied"
I'm not an XP Embedded expert in anyways so I'd very much appreciate some help. I suspect that there's a configuration setting that has been set when building the XP image that specifically denies access to process creation and that the errors I'm being reported are actually mis-reports from software that's not assuming XP Embedded error codes.
Unfortunately, the people who make the base image aren't around right now so I can't get the current settings.
Thanks in advance if anyone's ever seen this before!
Kev
For the record, it turned out that the "Secondary Logon" service wasn't installed in the image.
The code I had reached down eventually into either CreateProcessWithLogonW or CreateProcessAsUser which ultimately depend on this service running. The "specified service" error was spot on, but not about what I thought it was about. No idea why I got that particular error from Process Explorer.