Hello I’m a new member and I need help. A larger corporation has recently acquired my company. (Both should remain nameless but they are big name companies, trust me). Computer use policies have been pretty lax, until now! I’ve recently discovered that there have been subtle changes in our network (installation of firewalls and proxies; changes in IP addresses and shares <It’s NT/2000 network.. Ugh, ufff, achhh>) and heard in the office gossip echoes that computer use is being monitored very closely. One of our cleaning people, Hispanic boy of 19, has been fired because apparently the IT department discovered that someone has been accessing XXX sites at around 9pm. Now, my problem! Throughout my work on a computer I switch among many windows and access hacking, freaking, security, Unix, Linux, BSD sites as well as IRC on openprojects. (Please save any morality lectures) Because I switch machines I did this on 2 different machines. (NT4 w/service pack6 & 2000 vanilla install) The problem is that i don’t really know NT/2000 logging and caching capabilities. What I want to do is flush all the logs and any traces of my activities on local machines. I know I won’t be able to crack the domain servers and clean the traces there, but at least locally. I have been logged in under different accounts, (l0pht crack) so I will need to reboot the machines under ntfs capable *nix (Trinux) and erase all the appropriate folders. Help me to identify which ones they are. I have no clue and Microsoft is notorious for changing all their **** around to confuse and profit. Any advice appreciated. New York can be a cruel place for 22 year old who got fired ‘cause the IT department felt threatened because he was looking at www.astalavista.com

sorry for miss-spellings = Microsoft Word 97