Chris Amori
Checks to see if named service is started. If not started, tries to restart. Waits 5 min, then checks 2nd time. If not started, sends email to admin who scheduled it. This is best used by an alert created when a service stops running. Update the service name in Line 2 and then use the…
Read MoreChecks to see if prompted service is started. If not started, tries to restart. Waits 5 min, then checks 2nd time. If not started, sends email to admin who scheduled it. If you are trying to use this with an alert, you will need to use our other script "Services Check (Fixed)". You have no…
Read MoreRemoves the REG keys installed using the “Take Ownership – Install” script. Report on success or failure using tag $TakeOwn$ or just failure using $OOD$
Read MoreInstalls a REG file that will allow you to right-click on a file or folder and give the administrator permission. Report on success or failure using tag $TakeOwn$ or just failure using $OOD$
Read MoreScript will calculate the difference between a constant (default 7 days) and the first check-in time in Kaseya. It will then write to Agent Procedure log. For reporting you can use the tag “$IsRecent” to report on everything, or $IsRecentYES$ to report on only those that are less than desired timespan. NOTE: This script also…
Read MoreScript first prompts for an name for the agent. Script changes the Description and DisplayName for the Kaseya agend and endpoint on the system. Requires restart to take effect.
Read MoreProcedure to check the endpoints for the mining exploit. Created by Douglas Sanchez (douglas.sanchez@kaseya.com) You MUST create a custom field called “XMR” as documented in Kaseya’s article 1-29-18 Modified by Chris A – Virtual Administrator to add Tags, and reduce un-needed entries Review the following video to build a report off the tags. The tag…
Read MoreRuns PS command Get-NetAdapter and filters it to only physical adapters and includes driver info. Can report using $NIC$.
Read MorePerforms an install of Skykick Outlook Assistant by downloading the installer directly from their site. Will need to authenticate manually once the application is installed.
Read MoreMS17-10 Audit script will check Windows Vista on up for the MS17-10 patch which re-mediates a vulnerability that is being used by ransomware. Writes to agent procedure log using $MS17$ and $OOD$ tags. Limited testing has been done, please test in your environment 5-14-17 – Updated script to remove duplicate KB check. 5-15-17 – Updated…
Read More