New Posts  All Forums:Forum Nav:

Security question: changed os

post #1 of 5
6/10/10 at 9:59am
Thread Starter 
Security question

Hi

Imagine situation, you borrowed notebook to friend. He used in some unknown place. And problem:

Somebody installs some remote control tool (f.e. ultravnc), changes netstat command,hides service.

How to catch then , what is going on?

I know, that it is possible to scan from another computer, using some port scanner nmap or another scanner to view real situation.



But how to see from local computer , what commands and services where changed?

Is it possibble to hide service, that administrative tools -services does'nt show and tasklist doesnt show? How to see then?



Best regards
Reply
Reply
post #2 of 5
6/10/10 at 1:59pm
Are you thinking in the line of a key mapping software? Best way as I see it:

1 - don't loan out your systems to anyone else

2- if you do, create another user profile for the person and be done with it after creating an admin password that you alone know about it. Still this is not a sure safe solution since within Windows you can always reset the password from some official tool of Microsoft.

cheers ...
Reply
Reply
post #3 of 5
6/10/10 at 4:14pm
Group Policy Editor allows some functions for hiding services and things
Reply
Reply
post #4 of 5
6/14/10 at 10:36am
Thread Starter 
Quote:
Originally Posted by qhn View Post
Are you thinking in the line of a key mapping software? Best way as I see it:

1 - don't loan out your systems to anyone else

2- if you do, create another user profile for the person and be done with it after creating an admin password that you alone know about it. Still this is not a sure safe solution since within Windows you can always reset the password from some official tool of Microsoft.

cheers ...
it was sysadmin of company. He tried to spy.
Reply
Reply
post #5 of 5
6/14/10 at 2:11pm


cheers ...
Reply
Reply
New Posts  All Forums:Forum Nav:
  Return Home