psftp.exe

PuTTY psftp Command-line SFTP Client

CPU Usage

N/A

Memory

N/A

Location

N/A

Publisher

N/A

Best Practices

To safely use psftp.exe, keep PuTTY updated from the official site, manage SSH keys securely with passphrases, and limit script execution to trusted environments. Log transfers, validate server host keys, and configure firewalls to permit only necessary SSH traffic. Regularly audit automated tasks to prevent unauthorized use.

What is psftp.exe?

psftp.exe is the command-line SFTP client bundled with PuTTY. It enables secure file upload, download, and remote directory listing over SSH to servers and network devices. Commonly used in automated deployment scripts, remote maintenance tasks, and environments without a graphical SFTP client, psftp.exe relies on an SSH server for authentication and data transfer.

psftp.exe implements the SSH2-based SFTP protocol, authenticating with passwords or private/public key pairs, and supports batch mode, recursive directory transfers, and proxy configuration. It operates as a terminal-based tool suitable for scripting and remote file management during server administration.

Is psftp-exe Safe?

psftp.exe is a legitimate PuTTY component used for secure file transfers via SFTP over SSH. When installed from PuTTY's official distribution or via a trusted Windows OpenSSH package, it is a safe utility designed for authenticated, encrypted file operations. Typical safety considerations include ensuring the executable path matches a known PuTTY installation, keeping the software up to date, and using strong SSH keys. Like any network tool, it should be run with appropriate permissions and within a monitored environment to prevent misuse in automated scripts. If you encounter psftp.exe unexpectedly, verify the file location, digital signature, and publisher to confirm authenticity, and scan for malware if the origin is uncertain.

Is psftp-exe a Virus?

Although psftp.exe is normally legitimate, malware can masquerade as legitimate executables by adopting familiar names. If psftp.exe appears in an unusual folder, lacks a valid digital signature, or is accompanied by unusual network activity, treat it as suspicious. Always verify the file path against a known PuTTY installation, check the digital signature, compare hashes with the official release, and run a current malware scan. If any doubt remains, quarantine or remove the file and reinstall PuTTY from the official site.

How to Verify Legitimacy

Check File Location: Look for psftp.exe in a standard PuTTY installation path such as C:\Program Files\PuTTY\psftp.exe or C:\PuTTY\psftp.exe; avoid running if found in temporary or user-writable folders.
Verify Digital Signature: Open file properties and confirm a valid PuTTY digital signature from the PuTTY project; a missing or invalid signature indicates potential tampering.
Check File Hash: Compute the SHA-256 hash (e.g., certutil -hashfile C:\Program Files\PuTTY\psftp.exe SHA256) and compare it to the official hash published by PuTTY for your version.
Scan for Malware: Run a full system malware scan with up-to-date signatures using Windows Defender or a reputable antivirus to detect any related threats.

Red Flags: Suspicious file location (e.g., Temp, AppData), unsigned or mis-signed binaries, anomalous file size, unexpected network activity from psftp.exe, or multiple copies with identical names in different folders.

Why is it Running?

Reasons it's running:

Administrative file transfers: System admins use psftp.exe to securely upload or retrieve configuration files, backups, or logs to Linux or network devices over SSH, often through scripted automation.
Automation and scripting: psftp.exe is frequently invoked in batch files, PowerShell scripts, or CI/CD pipelines to move files as part of deployment or maintenance tasks.
PuTTY suite dependency: If PuTTY or a related SSH tool is installed, psftp.exe may be present to support SFTP operations without a GUI, mirroring PuTTY’s other command-line utilities.
OpenSSH compatibility: Windows environments that install OpenSSH may place psftp.exe alongside ssh.exe for compatibility with legacy PuTTY workflows.
User-installed tooling: Developers or IT staff may install PuTTY/psftp for secure file transfers during project setup, test environments, or remote server administration.

Can psftp.exe be disabled?

Common Problems

Common Causes & Solutions

: Verify PuTTY installation path and ensure the directory containing psftp.exe is in your PATH or reference the full path in scripts. Reinstall PuTTY from the official source if the executable is missing.
: Run as administrator if required by the environment, or adjust file permissions to allow execution by the intended user. Ensure the user has read/execute rights on the PuTTY installation directory.
: Confirm the target SSH server is reachable, the firewall allows SSH (port 22 by default), and you are using the correct host key. Clear old host keys from known_hosts if the server fingerprint has changed.
: Check the provided username and authentication method (password or SSH key). If using keys, ensure the private key is accessible and the corresponding public key is authorized on the server.
: Monitor network activity to ensure the transfers are not blocked by a slow link. Verify there are no runaway scripts looping psftp.exe and check for antivirus scans that might slow down the executable.
: Update the known_hosts entry for the server, accepting the new fingerprint after confirming server identity, or remove the old entry to allow a fresh verification.

Frequently Asked Questions

What is psftp.exe and where does it come from?

psftp.exe is PuTTY's command-line SFTP client. It ships with the PuTTY suite and, on some Windows systems, with OpenSSH distributions. It is used for secure file transfers over SSH, typically in automated scripts and remote administration tasks.

Is psftp.exe safe to run on Windows?

Yes, psftp.exe is safe when obtained from official PuTTY releases or trusted OpenSSH packages. Always verify the file path, digital signature, and hash against official sources to prevent counterfeit binaries.

How do I use psftp.exe with SSH keys?

You can configure psftp.exe to use SSH private keys by specifying a key with the -i option (e.g., psftp -i C:\keys\id_rsa user@host). The corresponding public key must be added to the server's authorized_keys file, and the server must permit key-based authentication.

Why is psftp.exe running without me launching it?

This can occur if a script or scheduled task invokes psftp.exe automatically. Inspect Task Scheduler, startup folders, and deployment scripts to locate and disable automated calls, ensuring legitimate automation remains intact.

Can I replace psftp.exe with another SFTP client?

Yes, you can substitute with WinSCP, OpenSSH sftp, or another SFTP client. However, update scripts to reflect the new path and syntax, verify key handling and host verification processes, and test transfers to avoid failures.

How can I verify the integrity of psftp.exe?

Compare the file's digital signature and SHA-256 hash against the official PuTTY release for your version. If signatures or hashes don’t match, reinstall from the official site and run a malware scan.