Hi GlennD, thanks for the response.
I opened the log file in Notepad as you suggested. However, much of the content was not converted to normal text, but was garbled or encrypted. So I could not read from the log file what kind of operation was performed.
What is the best way to check afterwards what operations were performed on the host using LogMeIn Rescure?
TYamada the contents of the logs shouldn't be encrypted, is there something specific you are looking for?
hey GlennD
i seem to have same issue with the originator.
i did attempt to open every file in the ..../AppData/bruhbruh with notepad.
it is def encrypted and it would be greatly apriciated if you could provide us how we can decrypted the contents of the log files.
thank you in advance for your support.
sincerely
jp
hey GlennD
thank you for your quick response.
i apologized for not explaining my situation in the first place,
I strongly believe that TYamada is or was in the same situation as I.
With the convenience of the logmein rescue, unfortunately, it is utilized in criminal activities driven my financial gain such as support fraud. Unfortunately, I only have the victim side log in encrypted form.
Since, I am not the one who had connected victim device through technician console , we do not have the diagnostic log to export.
i was wondering
A) is there any way that i can decrypt or decipher the log.
B) is there any way i can import the log files to technician console. (i have the demo version)
C) would the B) be possible with the fully licensed version.
On another topic, with the testing i had conducted with the demo version of TC, I had noticed types of log files differ from the list of victim log files, such as "folder.txt".
does existence of "folder.txt" indicate certain activity?
Thank you in advance for your support
Sincerely,
JP
