Wednesday, January 20, 2021

Granting access to another user in Log me in

Here is the scenario, we run LogMeIn Central and we manage a host of customers. One of customers wanted remote access. Here is what I did.

Under our logmein account I went to users >> Add Users. I put in their email address. Selected the group. Then in the “Group/Computer Permission” I hit the radio button for “Specify the groups and computers the selected user can access”. I selected the machine I wanted to give access to. Hit “Send Invitation”.

The next step was to go on the clients machine and grant access so they won’t have to have admin rights. Once on their machine go to the start menu. Right-click on “Log Me In Control Panel” and select “Run as administrator”.  Go to “Options” >> “Security” >> “Show details…”. Hit the “Browse…” >> Choose domain.  After you select the right Domain hit the “List users of selected domain” button. Find your user and click “OK”.

Two important parts are next. Under “Master settings” select “Full Control”. You must hit the “Add” button. When you hit add the user will show up in the users panel. Make sure it shows “full control” next to their name. Click “OK” and you should be done.

Hope this helps someone else….

Finding out MX record issues with MXtoolBox.com

We had to figure out why a customers emails stopped. They have three domains aliased. They wouldn’t get emails with Domain name #1, but they would get them from Domain names #2 and #3.

We went to the website “http://mxtoolbox.com“, put in their domain name and found that domain name got black listed.  One of the issues that will trigger this is Unsolicited Bulk Email (UBE). This can cause entire ranges can be reported as blacklisted.

Haven’t figured out at resolution the problem, but wanted to share the information about this service.

Another site that I found helpful with figuring out email issues is http://mailtester.com/.

I hope this helps someone else out there…

Internet Explorer won’t open – How do I reinstall internet explorer 11.

Add and remove programs >> View updates >> Scroll down to find Explorer 11 >> Right-click and uninstall.

When finished you may have to restart. When you restart hit the start button >> right-click on “Computer” and go to “Properties”. Select “Windows Update”.  Then hit “Check for updates”. Install the updates.

There is an issue with EMIT 5.0 that will prevent IE from opening. Download and install EMIT 5.1.

I hope this helps someone else out….

Setting up iPad with Exchange.

Had to help a couple of folks out with this last week. First time I used apples tutorial, but this didn’t work. The second time I used Rackspace’s instructions and it worked. The difference was using full email address in the user field. Below is a link that got it working for me.

http://www.rackspace.com/knowledge_center/article/set-up-exchange-2013-on-ios-devices

or

http://www.rackspace.com/knowledge_center/article/setting-up-your-iphone-ipad-ipod-with-microsoft-exchange-2010-e-mail

Make sure your Wifi is turned off.

 

 

Mount a drive from a Fedora Live CD

I had to scan a Windows drive for a Virus and needed to use a Linux Fedora live CD to prevent the virus from migrating to the machine I was using to scan it.

The first thing I needed to do was mount the drive. Click on Activities in the upper left. Open Files to browse the drives. Then click on Show Applications at the bottom of the menu. Click All at the bottom or use the search and look for Disks and Terminal. Disks will show you the location of the drive connected to the motherboard, but it may need to be mounted.

In terminal type “mount /dev/sda1” if “/dev/sda1” is the path to the drive you want to mount. Mine got mounted to the path “run/media/liveuser”.

I hope this helps someone else out there…..

Installing ClamAV on Fedora live machine to scan for viruses

In learning to clean infected computer I am learning about ClamAV using a Fedora 18 liveCD

I used this link to get Clam installed.

http://ittechnikt3.wordpress.com/2011/04/23/how-to-installuse-clamav-on-fedora-14/

First I updated my Fedora LiveCD.

yum update -y

Then I installed ClamAV.

yum install clamav clamav-update

I used VI to edit the Clam config file .

vi /etc/freshclam.conf

Edit these lines.

1-add a # in front of “Example” (to comment/disable it)

2-uncomment (remove the # in front of) the line “DNSDatabaseInfo current.cvd.clamav.net

3-Localized the virus database source to the nearest one by adding a new line “DatabaseMirror db.XY.clamav.net”, and changing XY by your 2 characters country code.

4-be sure that the following line is uncomment

DatabaseMirror database.clamav.net

Shift ZZ to save and close the file and return back to the terminal window.

Then run “freshclam” in terminal. This will take about 20 minutes.

I used the program “Files” to locate where the hard drive mounted to. In this case it was “/run/media/liveuser/OS”. “OS” was the label on the hard drive. I used Terminal to navigate to the that drive and started my clamscan.

In terminal type “clamscan -r” to scan recursively(all files and directories) and hit enter.

There are more options that just scanning. Here is link that gives some fine examples.

http://askubuntu.com/questions/250290/how-do-i-scan-for-viruses-with-clamav

sudo freshclam

Then you can scan for viruses.

 clamscan OPTIONS File/Folder 

Examples:

  • To check all files on the computer, displaying the name of each file:
    clamscan -r /
    
  • To check all files on the computer, but only display infected files and ring a bell when found:
    clamscan -r --bell -i /
    
  • To check files in the all users home directories:
    clamscan -r /home
    
  • To check files in the USER home directory and move infected files to another folder:
    clamscan -r --move=/home/USER/VIRUS /home/USER
    
  • To check files in the USER home directory and remove infected files (WARNING: Files are gone.):
    clamscan -r --remove /home/USER
    
  • To see more options:
    clamscan --help
    

 

netfilter64 or netfilter64.sys has been labeled as Malware

Had a client with a machine behaving poorly. I found a bunch of programs in the add and remove programs that were installed all on the same day and they weren’t installed by the client.

This “netfilter” showed up as an extension in one of her browsers. In doing a quick search I found the following article.

There were other adware issues on  this machine. Instead of spending hours trying to remove all the adware we choose to reload the Operating System.

http://www.herdprotect.com/netfilter64.sys-9ca71c727934861e9351af97cc28cea38811b07c.aspx