|  | 
| 
 Am I being watched? Hello, I hope everyone is well. Question: Am I being watched? It has been hinted that I may be working on a computer that has some sort of key logger or monitoring program on it. Norton AV with all options checked and Ewido both report a clean machine, but I wanted the opinion of the experts here. I have included the hijack this log run on that computer below. Code: Logfile of Trend Micro HijackThis v2.0.2Thank you. | 
| 
 I'd suggest you check out all running processes. You could try sites like <a href="http://www.neuber.com/taskmanager/process/index.html">http://www.neuber.com/taskmanager/process/index.html</a> or <a href= "http://www.liutilities.com/products/wintaskspro/processlibrary/">http://www.liutilities.com/products/wintaskspro/processlibrary/</a> | 
| 
 first glance doesn't look like anything, but the question to me is what makes you "think" you are being watched? A good watcher could easily spoof the name and path of one of the normal expected applications. | 
| 
 download a linux livecd... problem solved, or there are ways to put linux or windows onto a thumb drive. | 
| 
 Hello, Unfortunately a Linux Live CD would raise more flags -- why is he using this OS instead of the standard? He must be hiding something, etc. In regards to Cynthetiq's question -- the concern arose because a member of IT was able to pinpoint a text file deep within My Documents that had some information in it that I forgot about. So I'm wondering, if they were able to scan there, what else is going on? | 
| 
 Quote: 
 then hell yes you are being monitored... Many places have monitoring equipment to monitor inbound and outbound traffic. Your PC/Mac is probably remotely managed in some capacity wherein drivers, OS updates, configuration scans, and other "Big Brother" type things are being done. Is it nefarious? Maybe, but more than likely not. | 
| 
 Is this a PC at work, or school that does not belong to you?  Is it joined to a domain? Someone with Domain Admin rights will have the ability to look at any and all files on any PC joined to his domain. They might have a program setup to scan. It might also just be a bored network admin perusing the files on various computers on the network (I used to constantly have to tell a VP of a company I worked for that keeping certain information in a Word document was not safe and secure. If it is not a domain joined PC, then you need a better firewall application installed. If it's a work PC you are using, then you just need to be more careful what you have on that PC since it's not your property and the company has every right to do what they want with that PC. | 
| 
 There are two machines in question. One is a work-owned domain-joined PC. The other is my personal laptop that I sometimes connect to the network to get online. I don't have a problem with them scanning the entire work pc of course -- it is not mine and it is being used only for work. It makes me a little uncomfortable about the laptop on the network, since there is info about my finances, etc on it. But the alternative of transferring many files back and forth is tedious. Usually I connect to things like gmail using their secure interface which uses encryption. I assume that I am protected from peeking eyes that way. I am not sure what to do about something like the laptop's C$ admin share, since you cannot really disable it. Am I just being paranoid? | 
| 
 Here's my thoughts (seeing as how I run network security at my workplace): * If it's my hardware, I own it - no matter what. SSL, encryption software, whatever - doesn't matter. If I want to monitor your activities on it, I will find a way. * If it's on my network, I own it - no matter what. Man-in-the-middle to break SSL sites, regular packet captures to watch for suspicious activity, thorough logging of our web proxy, etc. If there's anything that you don't want your workplace to see, don't do it on their hardware and don't do it on their network. That's my view of the situation - compromising on that at all and you're (worst case) giving them all of your information. (Yes, I realize this sounds very harsh and authoritative, but as Scott McNealy said so well "You have no privacy anyway. Get over it." | 
| 
 Quote: 
 | 
| 
 Quote: 
 | 
| 
 Quote: 
 Then I read about a guy who was using Ettercap or Airpwn. He wasn't being mailcious, but he was picking up e-mail addresses and passwords like mad. Do the gurus here agree that you are at great risk by logging onto, for example, your bank, even with your own laptop, at a wireless internet cafe? (Sorry for the borderline threadjack.) | 
| 
 Quote: 
 | 
| 
 Quote: 
 Uhhh, what? | 
| 
 Quote: 
 Quote: 
 Obvious answer. | 
| 
 Quote: 
 and there was not a uniform consensus. Quote: 
 Quote: 
 Which apparently makes me an idiot. | 
| 
 Quote: 
 The question is if you are "great risk" people manage risk in various ways in many different situations. What is acceptable risk for me, is not necessarily acceptable risk for you. That thread easily illustrates that because there are people who are explaining how they are willing to manage the acceptability of the risk. I will not use my personal machine in a public wifi spot for private banking because the risk to me is unacceptable. There is no need to expose myself to the risk since I can generally wait until another time. If I really must do some "emergency" banking via internet, well there are other ways to manage my risk. People can tell you all ways to worry about and fear things in life. It's up to you to dispell it in whatever fashion you choose, either by simple acceptance like shrugging your shoulders, or vigorous protections like installing multiple encryptions and firewalls. | 
| 
 I agree with Cythentiq on this - acceptable risk is a very personal issue.  For me, acceptable risk means that I won't risk doing my banking transactions on someone else's machine or on someone else's internet connection.  I know perfectly well that my home connection is just as vulnerable to someone upstream deciding to watch my traffic, but I'm trying to limit the risk I have to deal with.  If it's something hugely sensitive, I'll just go to a physical location (and then deal with the risk of a possibly malicious bank teller, etc.) For someone else, they may be willing to accept more risk and so they'd use internet cafe wireless networks and do all of their finances from that point. Quote: 
 | 
| All times are GMT -8. The time now is 07:49 PM. | 
	Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
	
Search Engine Optimization by vBSEO 3.6.0 PL2
	© 2002-2012 Tilted Forum Project