-
June 16th, 2007, 01:52 AM
#1
Junior Member
Protect my private infomation form administrator
I work from home, and the administrator of the network 5 computers in total plus one server, happens to be going into my private details like my bank my email boxes. It seems he has found a way to collect all my private data like pin codes for my bank for my hotmail, and my yahoo boxes.
MEANING NOTHING IS confidential.
I have no idea if this is the right place to be posting this complaint but I read hacker somewhere so this means You might be able to advise me to stop this intruder to my private infomation.
Please dont tell me to unplug from the net work I would not have a clue how to do that.
If anybody has a suggestion please do so in layman terms. My computer knowledge is only very basic.
And no I am not asking anybody to commit an illegal transaction.
Just some advice and info.
Thanks Odette
-
June 16th, 2007, 06:51 AM
#2
How do you know your admin is harvesting all this data?
If you're on a company PC, stay off of personal sites, such as the bank
sites. Any company has a right to track their users on their equipment.
But that doesn't mean they can necessarily do what they want with
harvested data though. In my experience, it's often difficult to tell
precisely what admins (or hackers) are doing on any given PC.
Use your own PC for online transactions. When you're done, run an app
like Ccleaner, which will delete any temp files, such as passwords and
cookies, storing sensitive data. You might also run netstat, or a similar
app, listing any current connections a computer might be making with
other computers. You'll need an app like Sam Spade to run "whois" on
the ip addresses netstat turns up. If you're a newbie, that might be a
bit much.
FYI.
Last edited by brokencrow; June 16th, 2007 at 06:54 AM.
“Everybody is ignorant, only on different subjects.” — Will Rogers
-
June 16th, 2007, 12:11 PM
#3
I'd agree there - step 1 is to avoid doing things like banking on a work network.
I'd also agree that it should be rather difficult to intercept PINs and passwords with anything other than a keylogger. Heck, the latest (non-viral) keylogger I used actually doesn't log passwords. I watched someone log on, got their username but not the password. I presume it doesn't log any field marked as password.
If the world doesn't stop annoying me I will name my kids ";DROP DATABASE;" and get revenge.
-
June 16th, 2007, 12:33 PM
#4
Junior Member
The Administrator is my Partner, He is my partner in Business and Home. And this is why I am so Mad it is my private computer. So you suggest I look on the net for a cleaner and Sam Spade to run "whois".
Yes I am a newbie at getting intricate stuff off the net but heck Newbies have to start somewhere.
Thanks guys for your Help.
Much appreciatated.
Odette
-
June 16th, 2007, 01:17 PM
#5
Hello Odette,
We are not a marriage guidance councellery or anything like. You are obviously in a failed relationship.......... all you can do is get out or put up.
I am married to my third wife........... I know
OK, just look at this logically?.................. you install my super "antisniper" software and your partner cannot spy on you anymore?
1. You didn't talk about it?
2. Neither of you trust eachother?
TIME TO MOVE ON
Ask yourself a few questions please?
If this is really "your partner"; why are you worried about your "personal information"?
Hell, you must still get snail mail?.............. do you lock that away?
If the answer is yes, then dump your craptop for serious stuff and get a desktop with a removable HDD caddy (all of $15) and lock that away as well.
If you haven't figured, I believe that just as a dog can be guilty, so can a bitch.
-
June 16th, 2007, 06:06 PM
#6
It sounds like your admin is either "sniffing" network traffic at
some point, or running a keylogger. That's just my gut reaction
anyway.
Ccleaner's a good app for cleaning up your 'trail' if they're reverse
engineering temp files like cookies.
http://www.ccleaner.com
For keylogger activity, you might try scanning the PC with an
online scanner such as:
http://housecall.trendmicro.com
http://www.pandasoftware.com
Bear in mind the online scanners generate some false positives
and also portray cookies as infected files (they aren't).
Tracking your ip connections and doing whois on those is a
strictly analytical approach requiring some networking skills.
On second thought, I don't know how well that will really serve
you in this case.
Another option you have that would be to run TOR, a proxy
service, or VPN-like app such as JanusVM. Both these off-the-shelf
products would mask your internet activity to some degree from
prying eyes. JanusVM will probably create network issues if
you've got shared applications and folders on that PC, so it's
not something you'd want to run all the time. Janus would foil
a sniffer on the network. TOR, I'm not so sure.
You might also have a look at "User Accounts" in the "Control Panel".
I'd be leary of making changes though as it could affect your network
setup (again, shared folders). It might be a good idea to make sure
the "Administrator" account has a password. You'll need to boot
into Safe Mode probably to easily get to that one though.
Bear in mind, technological issues often create adverse, paranoid
reactions in people, even myself. I have quite a few stories of how
misconstrued one can be in certain circumstances. As Nihil suggests,
it might be wise to step back here and take stock of your relationship.
Whatever changes you make on that PC, make sure you document
them so you can back them out if they create problems.
p.s. -- google stuff like TOR and Janus. I don't have time to go into more detail here.
Last edited by brokencrow; June 16th, 2007 at 06:09 PM.
“Everybody is ignorant, only on different subjects.” — Will Rogers
-
June 16th, 2007, 11:10 PM
#7
Hey, brokencrow, don't you actually read other people's posts?
She said:
The Administrator is my Partner, He is my partner in Business and Home. And this is why I am so Mad it is my private computer.
Yet she has the effrontery to spout bullcrap about "private computer"
The magic 8 ball says "NO"
-
June 20th, 2007, 02:20 PM
#8
It boils down to the fact that if he is an admin - either of the local machine or the network, then there is nothing he can't do.
Apart from the usual virus, adware, spyware scan's etc then there is not much you can do to prevent him doing these things.
You could use an internet cafe if you have some sensitive stuff to do, but then there are no guarantees that this will be safe either - or if you are able to log on as an admin, 'demote' his account so he is a bog standard user, run the tools that Brokencrow mentions and if there are any nasties, after you remove them he won't be able to install them again.
Any banking details are sent over the network encrypted so if he is getting these he must have something on the computer that is reading your keystrokes - likewise when you go to hotmail make sure you go to https://hotmail.com (put an 's' after http) and this will encrypt the traffic, in case he is sniffing it over the local network instead.
-
June 20th, 2007, 02:38 PM
#9
It boils down to the fact that if he is an admin - either of the local machine or the network, then there is nothing he can't do.
Exactly! and this is compounded by what sounds to be a physically insecure environment.
If someone has unrestricted physical access to your machine they can easily own it.
All I can suggest in that situation is to use a removable hard drive and watch out for physical keyloggers.
Any banking details are sent over the network encrypted so if he is getting these he must have something on the computer that is reading your keystrokes - likewise when you go to hotmail make sure you go to https://hotmail.com (put an 's' after http) and this will encrypt the traffic, in case he is sniffing it over the local network instead.
That as well. Also remember that all current accounts have been compromised, so the passwords will need to be changed. Otherwise all the attacker has to do is log in as the legitimate owner?
-
June 20th, 2007, 02:59 PM
#10
I'm with Nihil on this one.. If you cannot trust your partner in a relationship you've got bigger problems. I myself couldn't trust my partner anymore, instead of going through all this crap to "hide" my stuff I did the only thing you should do in that case. I kicked her out. Exit. History. Gone. See ya!
Oliver's Law:
Experience is something you don't get until just after you need it.
Similar Threads
-
By DrewDodson89 in forum General Programming Questions
Replies: 1
Last Post: November 7th, 2006, 02:12 AM
-
By gore in forum Newbie Security Questions
Replies: 11
Last Post: December 29th, 2003, 08:01 AM
-
By ntsa in forum Other Tutorials Forum
Replies: 13
Last Post: July 11th, 2002, 08:18 PM
-
By Tyax in forum Microsoft Security Discussions
Replies: 5
Last Post: April 8th, 2002, 12:47 PM
-
By Noble Hamlet in forum AntiOnline's General Chit Chat
Replies: 1100
Last Post: March 17th, 2002, 09:38 AM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|