Weedvender

I have a coworker who I used to trust my computer to. I've built him computers for, I've helped his family with everything computer related from security cameras to out of warranty repairs because I am a nice guy. And I love calculus.

I have a feeling that my coworker and his father (owners of the office I am at) are browsing through my computer through illegal means. I am self employed, not an employee. My coworker knows about key loggers but other than that, he is computer illiterate. I doubt any scripts are involved as I showed him what keyloggers were.

How can I detect that a keylogger has been installed?
A simple password change wont work as he would most likely go with OPHCrack or something to figure it out.

Second,
Whats the best thing I can do to keep these files safe and away from prying eyes?
*A ghost disk with a strong encryption?
*A VPN to my house via Open SHH?
*Can I change the loggin that it tells me when someone logged in and for how long?
*Should I try to setup an authentication server to my house and then handle everything locally?

What should I do? I dont know how to do anything of what I just describe but I want a effective method, apart from showing up to work with a carbine.

The reason why he might be doing this is because I've had a very good success rate with business for the past few months and some people are naturally asking what I am doing. What sucks the most is that he just goes through the day without feeling bad or anything. Sucks when your supposed friends are like this.

__________________
Want a 50% yearly return on your investment? PM me. (Im serious)

LightsInTheDark

A remote-access seems like a sound idea, password change anyways, you should change it regularly anyway.

Prehaps you could invest in one of those hard-drives...that go in your front bay, and has a key hole on the front. At the end of the day, you slide the key in, unlock it, and just slide the entire hard-drive (in a protective aluminium casing) out of the front bay, effectively removing any access to it.

you can then just throw it in your computer at home every night, and bring it back in the AM.

Even just sliding the HD out, putting it somewhere in your office-space, and just keeping the key, so even if they wanted to, they couldnt access anything on it.

The financial business I work at use them regularly every day, to keep client data safe. All the data of that day gets dumped on the harddrive, then gets removed out of the computers every single night.

__________________
I did error10's Windows Challenge and Windows now runs me!

losttsol

Install an anti-keylogger on the machine.

__________________

HuffPCair

You can also go to msconfig and see if you can you find the program under the startup file

Then find the location and delete all that stuff or show proof of what they are doing kind of thing.

Weedvender

The HDD sounds like a very good idea. But I would prefer sending the info to my nas @ home via VPN/ ssh tunneling. Im going to let the HDD idea grow on me for a bit.

Got any in mind that are good?

I will try this

__________________
Want a 50% yearly return on your investment? PM me. (Im serious)

SniperXX

Use TrueCrypt to create a hidden encrypted volume. No need to wait for stuff to upload or download to/from home.

Or even keep all your stuff on a USB hard drive.

__________________
Want to get ~25,000PPD folding on your i7 running a Virtual Machine?

EVGA 680i FOR SALE

i7 920 @ 4.2Ghz
HT off for now, still testing.

HEATWARE

O o
/¯/___________________________ _\
| BBBBBAHHHHHHHHHHHHHHHHH
\_\¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯ ¯/

scottsee

I used a removable hard drive tray for a couple years, It works great, all you have to do is setup diffrent hardware profiles.. It's kinda bulky though..

You could use a BIOS password.. That will frustrate him, you'll know if he bipasses it by clearing the CMOS. Orphcrack works great aginst the SAM, but it's not that good aginst special key "$$#%" stuff. You could just up the password character size to 12-15 adding in some specal characters. The rainbow tables need for somthing like that is HUGE!!! I doubt he'd use a linux boot utility to overwrite SAM files, that would give him away, besides, If you do enable BIOS password he won't be able to get into the boot options anyway.

A network SSH or VPN is just opening up your home network to an already agressive person with to much time on his hands.. Don't give him anything else to get excited about..

__________________
ATX PSU design standerds (V2.2) recomend psu fans orentation is to draw intake air from the case as an exhaust.

I AM TEH LAW GIVAH

i hate those nosy coworkers

__________________

HARDER STYLEZ OF OCN CLUB

!!~AMD Phenom II X3 700 Series OC Club~!!

GH0

I would concor with the TrueCrypt idea. Having a hidden partition that he can't see would be a great idea.

You can also do an online virus scan every now and then to see if he continuously plants something.

I would suggest changing the administrator password to something extensive like:

")J4WD*9w%@#634#(*y9H&U(&hI#$H3onefa98)nawd90W @#0-9#ERPj8cj3akj3e9"

This would take an extremely long time to crack using OphCrack, and your password could be changed to something of an equal yet less constrictive value. This will allow him to get frustrated and hopefully give up.

You could also check the process list using Process Explorer to see if anything in paticular is being run like Syncroneyes. This program is not going to pop up as a flagged program, but it is a monitoring program that allows the host to watch the clients. Or if he is running a VNC program of any type.

__________________
Diligite Iustitiam Qui Iudicatis Terra | Love righteousness, ye that are judges of the earth! "We're not God. Not only are our powers limited, we sometimes are driven to become the devil himself." "Gather at the Archeron, prisoners of Charon."
"While the mother holds her child, watches them die, Hands to the sky crying, "Why, oh why?" Cause I need to watch things die...from a distance, Vicariously I live while the whole world dies, You all need it too, don't lie."
Please, help me out!

Weedvender

Nah. No VNC what so ever. Strictly keylogger. Thats all he knows. We are talking about a kid who listens to rap & reaggueaton and burns a windows xp cd now and then.

I will give TrueCrypt a try. On the VPN part, he wouldn't know what it was if it hit him slap on the face. I come to you guys because I have a lot of ideas but there might be an easier implementation with a guided hand.

__________________
Want a 50% yearly return on your investment? PM me. (Im serious)