- Run cmd as different user (Admin)
- Type wmic ⏎
- Product get name ⏎ (show appwiz names)

4. Find the program

5. Type: product where name=”Gadwin PrintScreen (64-Bit)” call uninstall ⏎ y

#get-qadgroup -searchroot “OU=groups,DC=domain,DC=local” | where {$_.name -like ’00_*’} | % { Rename-qadobject -Identity $_ -NewName ($_.Name -Replace “^00_”, “00_test”) }
Download a .vmdk of Zabbix appliance. Create the new virtual machine. (For me was necessary to change SCSI type to LSI Logic Parallel instead SAS) 😦
1. Login as a root: appliance/zabbix
2. set static IP:
* sudo /etc/init.d/networking restart
Check IP:
* ifconfig -a
login: Admin/zabbix
A. create host = server, PC etc. (item = service etc.)
B. add some template (ICMP Ping etc.)
C. create trriger to host or item
D. create an Action (alert e-mail or sms)
Anyway follow the offical Zabbix Documentation 4.4.
https://kb.vmware.com/s/article/1022525
PS C:\> Get-ADGroupMember -Identity “groupe” -server “another.domain.local”
Get-ADGroupMember -identity “group” | get-aduser | Where {$_.Enabled -eq $false} | FT samAccountName
step1:
Get-ADGroup -Filter ‘GroupCategory -eq “Security” -and GroupScope -eq “Global”‘ -SearchBase ‘OU=groups,Ou=domain,DC=domain,DC=local’ | Set-ADGroup -GroupScope Universal
Enter
step2:
Get-ADGroup -Filter ‘GroupCategory -eq “Security” -and GroupScope -eq “Universal”‘ -SearchBase ‘OU=groups,OU=domain,DC=domain,DC=local’ | Set-ADGroup -GroupScope Domainlocal
Enter
$body = Get-ADComputer -Filter “Name -like ‘minint*'” -SearchBase ‘OU=Desktop,OU=Computers,OU=company,DC=company,DC=local’
If ($body -ne $Null) {
$emailFrom = “alert@mail.com”
$emailTo = “somebody@company.com”
$subject = “Wrong name PC in Active Directory”
$body = $body
$smtpServer = “webmail.com”
$smtp = new-object Net.Mail.SmtpClient($smtpServer)
$smtp.Send($emailFrom, $emailTo, $subject, $body)
}
Microsft Windows May 2015 update problem Enovia Catia | remove update
After 2015/5/12 Windows update is not possible to run Catia or Enovia.
More: http://www.intrinsys.com/blog
script cmd to GP or psexec:
$filteracl = {$_.IdentityReference -match “domain user” -and ($_.FileSystemRights -band 131241 -or $_.FileSystemRights -band 278)}
$objects = Get-ChildItem \\domain.local\dfs\department -Recurse -Force | Export-Csv c:\user.txt
foreach ($i in $objects)
{
$i.GetAccessControl().Access | Where $filteracl | Select `
@{n=”Path”;e={$i.fullname}},
@{n=”User”;e={$_.IdentityReference}},
@{n=”Permission”;e={$_.FileSystemRights}}
}
This trojan infects pc from phishing mail attachment sent from some bank institute etc.
Fully updated Microsoft Windows 7 SP1 with real time scanning msft essential security antivirus is disarmed by this trojan!
Safety scanner detects this tojan but not purges it!
Reinstalled msft security essential tries to clean it, but unsuccessful!
Try better antvirus or completely reinstall/recover system.
Don’t open phishing mail!!!
Dalši hrozby zasazují rány systému Sophos Endpoint Security and Control.
Patrně ohlášená “automatická” (tomu snad nikdo nevěří) aktualizace Sophosu na v. 10.3. v avizovaném termínu 2.-9.10. má patrně spasit tento “děravý” systém?
Během poslední doby jsem zaregistroval, že plně aktualizovaný systém byl kompletně “odzbroje” hrozbou ve formě phisingu na Českou poštu a to konkrétně malwarem: Win32/Hesperbot.A.
Dále díru na lochnu (J) rozšířil “přiblblý” trojan, který v profilu nakaženého “vytapetuje na bílo”!
Kdo spoléhá na sophos, nechť radši skenuje ještě něčím jiným.
Another threat beating the Sophos Endpoint Security and Control. Probably announced “automatic” (no one believes) update of Sophos to v. 10.3 in term 2nd-9th Oct. should heal the “leaky” system? During the last time I noticed that a fully updated system was completely “disarmed” by threat in the form of phishing e-mail to Cze Mail corp. – malware: Win32/Hesperbot.A. Furthermore biger “hole” (J) expanded the “dumb” trojan that infects user profile with white screen (user can’t work)! WWho rely on the Sophos, rather scan with something else.
$computers = Get-Content c:\Users\name\Desktop\notebooks.csv
$computers | Foreach{Get-QADComputer $_ | Move-QADObject -NewParentContainer “ou=ntb,ou=computers,ou=domain,dc=domain,dc=local”}
PXE-T01: File not found
PXE:E3B: TFTP Error- File not found
PXE-MOF : Exiting Intel Boot Agent
1. Remove the SMS PXE role. Look at the PXESetup.log file to verify that the uninstall is complete and successful.
2. Uninstall the WDS server.
3. Reboot the machine.
4. Reboot again.
5. Rename the folder “RemoteInstall”.
6. Rename c:\windows\temp to c:\windows\temp.old
7. Re-install the WDS server, but “do not configure it”. Do nothing at all other than installing WDS.
8. Add the SMS PXE role. Look at the PXESetup.log file to verify that the installation is complete and successful.
9. Add the boot images to the SMS PXE DP share. Look at the distmgr.log file to verify that the replication of the boot image to the DP is complete and successful.
10. Try booting a PXE client.
-=BTW: Maybe only the step 6 can solve the problem=-
Lenovo ThinkCentre M72 PCI express bug.
There is a general problem with desktop PC Lenovo ThinkCentra M72 and PCI express adapter Edimax EN-9260TX-E. The system doesn’t detect PCI-e adapter.