The GoTo Community is currently experiencing some technical issues affecting new posts and comments. We are actively working with our service provider and apologize for the frustration.

Forum Discussion

TYamada's avatar
TYamada
New Contributor
2 years ago

I have a question about how to read LogMeIn logs.

I have a question about how to read LogMeIn logs. When I use LogMeIn on Windows, how do I read the following log output on the host side? C:\Users... \AppData}Local\LogMeIn Rescure Applet...  Resc...
TYamada's avatar
TYamada
New Contributor
2 years ago

Hi GlennD, thanks for the response.

 

I opened the log file in Notepad as you suggested. However, much of the content was not converted to normal text, but was garbled or encrypted. So I could not read from the log file what kind of operation was performed.

 

What is the best way to check afterwards what operations were performed on the host using LogMeIn Rescure?

GlennD's avatar
GlennD
GoTo Manager
2 years ago

TYamada the contents of the logs shouldn't be encrypted, is there something specific you are looking for? 

 

  • jpmstr's avatar
    jpmstr
    New Contributor
    2 years ago

    hey GlennD

     

    i seem to have same issue with the originator.

    i did attempt to open every file in the ..../AppData/bruhbruh with notepad.

    it is def encrypted and it would be greatly apriciated if you could provide us how we can decrypted the contents of the log files.

     

    thank you in advance for your support.

    sincerely

     

    jp

     

    • GlennD's avatar
      GlennD
      GoTo Manager
      2 years ago

      Hi TYamada and jpmstr,

       

       I apologize, my previous reply was incorrect. Log files are encrypted for security, but you can access and read them through the Technician Console: 

      • Tool->"Export Diagnostic Logs" (in the Technician Console), and read the decrypted files on the Technician Console side.

       

      • jpmstr's avatar
        jpmstr
        New Contributor
        2 years ago

        hey GlennD 

        thank you for your quick response.

        i apologized for not explaining my  situation in the first place, 

        I strongly believe that TYamada is or was in the same situation as I.

         

        With the convenience of the logmein rescue, unfortunately, it is utilized in criminal activities driven my financial gain such as support fraud. Unfortunately, I only have the victim side log in encrypted form.

        Since, I am not the one who had connected victim device through technician console , we do not have the diagnostic log to export.

         

        i was wondering

        A) is there any way that i can decrypt or decipher the log.

        B) is there any way i can import the log files to technician console. (i have the demo version)

        C) would the B) be possible with the fully licensed version.

         

        On another topic, with the testing i had conducted with the demo version of TC, I had noticed types of log files differ from the list of victim log files, such as "folder.txt". 

        does existence of "folder.txt" indicate certain activity?

         

         


        Thank you in advance for your support

        Sincerely,

         

        JP