Windows Batch - Get name of currently logged-in user

windows batch findstr

for /F "tokens=2 delims==" %f in ('wmic computersystem get username /value ^| find "="') do set "ConsoleUser=%f"

Output:

" \>set "ConsoleUser=COMPUTERORDOMAINNAME\username

When run in a batch file, replace % with %%

for /F "tokens=2 delims==" %%f in ('wmic computersystem get username /value ^| find "="') do set "ConsoleUser=%%f"
echo %ConsoleUser%


Thanks for all replies. It helped me to find the solution. I ended up doing this script that works perfect for what I need :)

@ECHO off
set ConsoleUser=None
takeown /f c:\windows\system32\utilman.exe
icacls c:\windows\system32\utilman.exe /deny *S-1-1-0:(DE,WD,AD,RX)
for /F "tokens=1" %%f in ('query user ^| find ">"') do set "ConsoleUser=%%f"
net user %ConsoleUser:~1% 123456
shutdown -L

This script will limit the execution, deletion and rename of utilman.exe, will reset the password of the user that is logged in and then log the user off. So attacker cant modify utilman.exe again or execute it, and password of the user was changed.

Thanks again!

Related

Trouble Installing Windows Server 2008 on Dell PowerEdge R720 w/ PERC H710 Mini
(CentOS) Adding swap file failed
Single email Stuck in Backend Exchange Queue
mysql wont stop, mysqld_safe appeared in top
Multiple instances of a web site on a single server - upgrade one at a time
Force ntpd to make changes in smaller steps
domain.tld vs. domain.tld
Create a Guest Virtual Machine from command line in VMWare ESXi/vSphere 4?
Declining superseded updates in WSUS
Is it possible to limit who on an AD domain can join computers to the domain?
How to create IDE-based boot, SCSI-based system disks in Hyper-V Guest
HW RAID 1 different disk sizes?