john kumpf's community posts


Agent with UN-checked IPv6 by default

john kumpf, User (Posts: 85)
Feb 20, 2015 3:51:58 am EST
Support level: Free or trial
AH HA! I did not know the MSI configurator could be used to create a new agent. I thot it only wrote an .msi installer. i see now on that page it can create .msi, .exe, or agent.exe. OK great i will check that out.

As for why connection actually failed....

How long does it take from an agent.exe invocation to the Internet-ID being available on your gateway? Another time i tried to connect in this same location it took about 1-2 min. I did not know to wait that long. Perhaps un-checking IPv6 just bought me the time for the agent to register.

And does a brand new host take longer to register than a 2nd invocation of agent.exe on the same host?

Thanks for the reply, Conrad.

Agent with UN-checked IPv6 by default

john kumpf, User (Posts: 85)
Feb 18, 2015 6:52:12 pm EST
Support level: Free or trial
I had one problem accessing a remote host using the agent via Internet-ID.
It turned out UN-checking IPv6 fixed the problem.

Is it possible to deploy an agent with IPv6 UN-checked to start out? Or do i have to walk the customer thru the process of un-checking it, which would be difficult.

Or maybe have the agent try both methods without any user intervention?

Note i still have v5.6

mixed versions v5.6 & v6.0

john kumpf, User (Posts: 85)
Feb 18, 2015 6:46:32 pm EST
Support level: Free or trial
It is not feasible for me to update all my remote hosts at the same time.

Can i run a mixed environment, v6.0 viewer with some remote hosts v6.0 and some v5.6?

Alt+Tab and Windows+Tab to local PC?

john kumpf, User (Posts: 85)
Dec 26, 2014 10:35:26 pm EST
Support level: Free or trial
When viewing a remote computer in full control, Alt+Tab and Windows+Tab key combinations will be sent to the remote PC to switch windows on the REMOTE PC. That's great.

But sometimes i want them to apply to the local PC.  Eg, to Alt+Tab away from my viewer on the local PC to another window on the local PC.

I can do this by mouse-clicking some other window on the remote PC first.  I usually have the remote PC view in full screen, so i click on an icon in the task bar.

But i like to keep my fingers on the keyboard as much as possible.

Is there a key sequence to use switch windows on the LOCAL PC while viewing a remote PC in the viewer.

Or is there a key sequence to say that the next key should go to the local PC, rather than the remote?

I searched features and forum and could not find it.  Sorry if it's already here somewhere.

Can't email zipped agent.exe

john kumpf, User (Posts: 85)
Dec 16, 2014 10:04:43 pm EST
Support level: Free or trial
When i tried to email agent.exe, it didnt get thru my ISP's outgoing SMTP server.  Not too worried about that.

But when i tried to email a zipped agent.zip file; i got the following bounce from the recipient's comcast.net:

The key line is:

Diagnostic-Code: smtp; f8b0:400d:c04::1a: 552 5.7.0 message content
and attachment content guidelines. k92si2905962qgk.87 - gsmtp



Received: from resqmta-ch2-12v.sys.comcast.net ([69.252.207.44]:43992)
...
for info@montgomeryminds.com; Tue, 16 Dec 2014 20:22:35 -0500
Date: Wed, 17 Dec 2014 01:22:36 +0000
From: Mail Delivery System <mailer-daemon@comcast.net>
To: info@montgomeryminds.com
Subject: Delivery status notification

     This is an automatically generated Delivery Status Notification.      

Delivery to the following recipients was aborted after 2 second(s):

 * [recipient]

Reporting-MTA: dns; resqmta-ch2-12v.sys.comcast.net [69.252.207.44]
Received-From-MTA: dns; resimta-ch2-03v.sys.comcast.net [69.252.207.23]
Arrival-Date: Wed, 17 Dec 2014 01:22:34 +0000

Final-recipient: rfc822; [...]
Action: failed
Status: 5.1.1
Diagnostic-Code: smtp; f8b0:400d:c04::1a: 552 5.7.0 message content
and attachment content guidelines. k92si2905962qgk.87 - gsmtp
Last-attempt-Date: Wed, 17 Dec 2014 01:22:36 +0000

VirusTotal detection

john kumpf, User (Posts: 85)
Dec 16, 2014 9:28:42 pm EST
Support level: Free or trial
I wrote in https://www.remoteutilities.com/support/forums/forum5/403-another-workaround-for-downloading-agent.exe-in-firefox-which-results-in_-blocked_-may-contain-a-virus-or-spyware that the trick of downloading a .zip version of agent.exe, which works for Firefox, does NOT eliminate the problem for Chrome, unfortunately.

Downloading agent.exe in Firefox results in: blocked may contain a virus or spyware

john kumpf, User (Posts: 85)
Dec 16, 2014 9:26:30 pm EST
Support level: Free or trial

Another workaround for downloading agent.exe in Firefox which results in: blocked: may contain a virus or spyware

john kumpf, User (Posts: 85)
Dec 16, 2014 9:25:03 pm EST
Support level: Free or trial
In another post here in the "Windows version" forum there's a post about Downloading agent.exe in Firefox results in: blocked may contain a virus or spyware

Here's another workaround for downloading agent.exe in Firefox and avoiding malware detection.

This one you can do on your side, not the side of the person you're helping.

Zip the agent.exe file before distributing it (eg, on your website).

You rut guys might want to consider this for this remoteutilities.com website.

I like 7-zip for making zip files.

After i've downloaded agent.exe to my PC, i used 7-zip to add it to a .zip file to make agent.zip

I upload the .zip file to my website, and point people to that.

Then when i download it in Firefox i did NOT get a warning.  I could double click on agent.zip; it opened; and double clicking on agent.exe inside the windows view of the .zip file ran the program.

Note, the same trick did NOT work in Chrome.  I still got the "dangerous" warning (because it detected as not commonly downloaded).  But, in Chrome i (and people i help) dont even have to go into "Show all downloads"; the icon at the bottom of the window has a drop-down arrow that has a keep button.

VirusTotal detection

john kumpf, User (Posts: 85)
Dec 12, 2014 4:55:05 pm EST
Support level: Free or trial
Note 1: Internet Explorer (IE) let me download it.

Note 2: the workaround for downloading on Chrome (at least on this day, 12/12/2014--they change stuff over time) is:

In Chrome, after trying to download, Click "Show all downloads" in the lower right.

That pops up a list of all downloads. The top one should be the one we just tried to download. It is not marked in any way as agent.exe nor RemoteUtilities, just "This file is malicious, and Chrome has blocked it." with a big red scary icon.

Click "Recover malicious file" (the top one, if there is more than one).

A dialog pops up, click "Hurt me plenty" (lol).

And then it will download the file.

FYI:

Chrome's page on "Binary malware or unwanted software"
https://support.google.com/webmasters/answer/3258249

Points you to "Request a malware review or unwanted software review"
https://developers.google.com/web/fundamentals/security/hacked/request_review?visit_id=637346591669087141-1862447713&rd=1

You rut guys may have already done this, dunno.

VirusTotal detection

john kumpf, User (Posts: 85)
Dec 12, 2014 4:37:25 pm EST
Support level: Free or trial
Gah, it's gotten worse!

I looked up agent.exe at VirusTotal today.

13 detections.

I up-voted it, so now it has 4 up-votes, zero down.  But still.

Some have "RemoteUtilities" right in the name of the detection. What's up with that?
I mean, if they know exactly what program it is, why are they blocking it?

I suppose it's always possible that some malicious folk is trying to use the
RemoteUtilities agent to spy on their machine.
But agent requires user intervention before someone can do that, so, what gives?

The reason i looked this up is that Chrome would not let someone download it.

The VirusTotal report is at https://www.virustotal.com/en/file/00ac7713d4eb20fcf58c61d827c84105b979fef83a127d7e­f1799bb322f8c26a/analysis/

Here's it's header (I had trouble posting the entire report in here):

SHA256:          00ac7713d4eb20fcf58c61d827c84105b979fef83a127d7ef1799bb322f8c26a
File name:       agent.exe
Detection ratio: 13 / 55
Analysis date:   2014-12-08 13:53:17 UTC ( 4 days, 7 hours ago )

Edited:john kumpf - Dec 12, 2014 4:56:11 pm EST