Protect my private infomation form administrator
Page 1 of 3 123 LastLast
Results 1 to 10 of 25

Thread: Protect my private infomation form administrator

  1. #1
    Junior Member
    Join Date
    Jun 2007
    Posts
    2

    Protect my private infomation form administrator

    I work from home, and the administrator of the network 5 computers in total plus one server, happens to be going into my private details like my bank my email boxes. It seems he has found a way to collect all my private data like pin codes for my bank for my hotmail, and my yahoo boxes.

    MEANING NOTHING IS confidential.

    I have no idea if this is the right place to be posting this complaint but I read hacker somewhere so this means You might be able to advise me to stop this intruder to my private infomation.

    Please dont tell me to unplug from the net work I would not have a clue how to do that.

    If anybody has a suggestion please do so in layman terms. My computer knowledge is only very basic.

    And no I am not asking anybody to commit an illegal transaction.

    Just some advice and info.

    Thanks Odette

  2. #2
    Dissident 4dm1n brokencrow's Avatar
    Join Date
    Feb 2004
    Location
    Shawnee country
    Posts
    1,242
    How do you know your admin is harvesting all this data?

    If you're on a company PC, stay off of personal sites, such as the bank
    sites. Any company has a right to track their users on their equipment.
    But that doesn't mean they can necessarily do what they want with
    harvested data though. In my experience, it's often difficult to tell
    precisely what admins (or hackers) are doing on any given PC.

    Use your own PC for online transactions. When you're done, run an app
    like Ccleaner, which will delete any temp files, such as passwords and
    cookies, storing sensitive data. You might also run netstat, or a similar
    app, listing any current connections a computer might be making with
    other computers. You'll need an app like Sam Spade to run "whois" on
    the ip addresses netstat turns up. If you're a newbie, that might be a
    bit much.

    FYI.
    Last edited by brokencrow; June 16th, 2007 at 06:54 AM.
    “Everybody is ignorant, only on different subjects.” — Will Rogers

  3. #3
    Senior Member Aardpsymon's Avatar
    Join Date
    Feb 2007
    Location
    St Annes (aaaa!)
    Posts
    434
    I'd agree there - step 1 is to avoid doing things like banking on a work network.

    I'd also agree that it should be rather difficult to intercept PINs and passwords with anything other than a keylogger. Heck, the latest (non-viral) keylogger I used actually doesn't log passwords. I watched someone log on, got their username but not the password. I presume it doesn't log any field marked as password.
    If the world doesn't stop annoying me I will name my kids ";DROP DATABASE;" and get revenge.

  4. #4
    Junior Member
    Join Date
    Jun 2007
    Posts
    2
    The Administrator is my Partner, He is my partner in Business and Home. And this is why I am so Mad it is my private computer. So you suggest I look on the net for a cleaner and Sam Spade to run "whois".

    Yes I am a newbie at getting intricate stuff off the net but heck Newbies have to start somewhere.

    Thanks guys for your Help.

    Much appreciatated.
    Odette

  5. #5
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,192
    Hello Odette,

    We are not a marriage guidance councellery or anything like. You are obviously in a failed relationship.......... all you can do is get out or put up.

    I am married to my third wife........... I know

    OK, just look at this logically?.................. you install my super "antisniper" software and your partner cannot spy on you anymore?

    1. You didn't talk about it?
    2. Neither of you trust eachother?

    TIME TO MOVE ON

    Ask yourself a few questions please?

    If this is really "your partner"; why are you worried about your "personal information"?

    Hell, you must still get snail mail?.............. do you lock that away?

    If the answer is yes, then dump your craptop for serious stuff and get a desktop with a removable HDD caddy (all of $15) and lock that away as well.

    If you haven't figured, I believe that just as a dog can be guilty, so can a bitch.

    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  6. #6
    Dissident 4dm1n brokencrow's Avatar
    Join Date
    Feb 2004
    Location
    Shawnee country
    Posts
    1,242
    It sounds like your admin is either "sniffing" network traffic at
    some point, or running a keylogger. That's just my gut reaction
    anyway.

    Ccleaner's a good app for cleaning up your 'trail' if they're reverse
    engineering temp files like cookies.

    http://www.ccleaner.com

    For keylogger activity, you might try scanning the PC with an
    online scanner such as:

    http://housecall.trendmicro.com
    http://www.pandasoftware.com

    Bear in mind the online scanners generate some false positives
    and also portray cookies as infected files (they aren't).

    Tracking your ip connections and doing whois on those is a
    strictly analytical approach requiring some networking skills.
    On second thought, I don't know how well that will really serve
    you in this case.

    Another option you have that would be to run TOR, a proxy
    service, or VPN-like app such as JanusVM. Both these off-the-shelf
    products would mask your internet activity to some degree from
    prying eyes. JanusVM will probably create network issues if
    you've got shared applications and folders on that PC, so it's
    not something you'd want to run all the time. Janus would foil
    a sniffer on the network. TOR, I'm not so sure.

    You might also have a look at "User Accounts" in the "Control Panel".
    I'd be leary of making changes though as it could affect your network
    setup (again, shared folders). It might be a good idea to make sure
    the "Administrator" account has a password. You'll need to boot
    into Safe Mode probably to easily get to that one though.

    Bear in mind, technological issues often create adverse, paranoid
    reactions in people, even myself. I have quite a few stories of how
    misconstrued one can be in certain circumstances. As Nihil suggests,
    it might be wise to step back here and take stock of your relationship.
    Whatever changes you make on that PC, make sure you document
    them so you can back them out if they create problems.

    p.s. -- google stuff like TOR and Janus. I don't have time to go into more detail here.
    Last edited by brokencrow; June 16th, 2007 at 06:09 PM.
    “Everybody is ignorant, only on different subjects.” — Will Rogers

  7. #7
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,192
    Hey, brokencrow, don't you actually read other people's posts?

    She said:

    The Administrator is my Partner, He is my partner in Business and Home. And this is why I am so Mad it is my private computer.
    Yet she has the effrontery to spout bullcrap about "private computer"

    The magic 8 ball says "NO"


    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  8. #8
    Right turn Clyde Nokia's Avatar
    Join Date
    Aug 2003
    Location
    Button Moon
    Posts
    1,696
    It boils down to the fact that if he is an admin - either of the local machine or the network, then there is nothing he can't do.

    Apart from the usual virus, adware, spyware scan's etc then there is not much you can do to prevent him doing these things.

    You could use an internet cafe if you have some sensitive stuff to do, but then there are no guarantees that this will be safe either - or if you are able to log on as an admin, 'demote' his account so he is a bog standard user, run the tools that Brokencrow mentions and if there are any nasties, after you remove them he won't be able to install them again.

    Any banking details are sent over the network encrypted so if he is getting these he must have something on the computer that is reading your keystrokes - likewise when you go to hotmail make sure you go to https://hotmail.com (put an 's' after http) and this will encrypt the traffic, in case he is sniffing it over the local network instead.
    Drugs have taught an entire generation of kids the metric system.

    http://tazforum.**********.com/

  9. #9
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,192
    It boils down to the fact that if he is an admin - either of the local machine or the network, then there is nothing he can't do.
    Exactly! and this is compounded by what sounds to be a physically insecure environment.

    If someone has unrestricted physical access to your machine they can easily own it.

    All I can suggest in that situation is to use a removable hard drive and watch out for physical keyloggers.

    Any banking details are sent over the network encrypted so if he is getting these he must have something on the computer that is reading your keystrokes - likewise when you go to hotmail make sure you go to https://hotmail.com (put an 's' after http) and this will encrypt the traffic, in case he is sniffing it over the local network instead.
    That as well. Also remember that all current accounts have been compromised, so the passwords will need to be changed. Otherwise all the attacker has to do is log in as the legitimate owner?
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  10. #10
    Just Another Geek
    Join Date
    Jul 2002
    Location
    Rotterdam, Netherlands
    Posts
    3,403
    I'm with Nihil on this one.. If you cannot trust your partner in a relationship you've got bigger problems. I myself couldn't trust my partner anymore, instead of going through all this crap to "hide" my stuff I did the only thing you should do in that case. I kicked her out. Exit. History. Gone. See ya!
    Oliver's Law:
    Experience is something you don't get until just after you need it.

Similar Threads

  1. Java Help Please - JPANELS!!!
    By DrewDodson89 in forum General Programming Questions
    Replies: 1
    Last Post: November 7th, 2006, 01:12 AM
  2. Tcp/ip
    By gore in forum Newbie Security Questions
    Replies: 11
    Last Post: December 29th, 2003, 07:01 AM
  3. Forced shutdown of a remote nt/2k server
    By ntsa in forum Other Tutorials Forum
    Replies: 13
    Last Post: July 11th, 2002, 08:18 PM
  4. CTRL ALT & DEL in win NT/2K/XP
    By Tyax in forum Microsoft Security Discussions
    Replies: 5
    Last Post: April 8th, 2002, 12:47 PM
  5. The Worlds Longest Thread!
    By Noble Hamlet in forum AntiOnline's General Chit Chat
    Replies: 1100
    Last Post: March 17th, 2002, 08:38 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides