M
M
Modif2016-04-26 21:20:48
Active Directory
Modif, 2016-04-26 21:20:48

Prevention of monitoring a computer in a domain?

At me such problem: my working computer is connected to the domain. And I suspect that from time to time someone connects to it and watches my monitor (maybe other information is available). There are many signs, as I understand it, but one is very annoying - my mouse arrow runs either to the left or to the upper right corner. I suspect it's the admins, but I'm not sure. I still don’t understand how they do it, like there are no obvious signs of remote monitoring / control programs (RAdmin, TeamViewer). I don't know, but maybe Windows Servers have some kind of built-in AD "function for monitoring remote computers in the domain" or something similar.
Explain how my computer is monitored and how to prevent it.

Answer the question

In order to leave comments, you need to log in

8 answer(s)
L
landergate, 2016-04-27
@Modif

It is possible that your enterprise network has security problems (incompetence or an error in setting access rights), due to which not only the IT department has the possibility of unauthorized connection to other employees.

A
Artem @Jump, 2016-04-26
Tag

I still don’t understand how they do it, like there are no obvious signs of remote monitoring / control programs
Should there be signs?
Explain how my computer is monitored and how to prevent it.
We connect and look, the software for this is a wagon and a small cart.
how to prevent it.
Quit this organization if you don't like it.
I do not understand what is the problem if someone sees your monitor with working information? This is not a third-party person, this is an administrator or a security officer of the office.

C
CityCat4, 2016-04-27
@CityCat4

I will upset you to the point of impossibility.
Firstly, you do not have and cannot have any personal space in the workplace. A work computer is a tool allocated to you by your employer and he has every right to control how you use it.
And this right is laid down in the Labor Code.
Secondly, there is such a tool. It's through the browser. Come in, choose a computer. You can discreetly watch the screen - you can directly see what the person is doing. Or get an instant screenshot. Or a list of processes. Or a bunch of other reports. At the same time, the agent can be recognized on the computer - well, our admins cannot do this :)
The key word is Stakhanovite

S
Sergey Kovalev, 2016-04-27
@Sergey-S-Kovalev

And I suspect that from time to time someone connects to it and watches my monitor (maybe other information is available).
If you were not warned under the signature that your actions on the PC can be observed, then ask the security service or your boss, perhaps an insider or a fact of abuse will be revealed.
There are many signs, as I understand it, but one is very annoying - my mouse arrow runs either to the left or to the upper right corner.
Change the mouse or put a mat with a rag base under it. The glare on which LED mice move often causes the cursor to fly into the corners of the screen. Observers usually connect in view mode, not control mode.
I suspect it's the admins
Ask a question to the security service and that's it.

I
Ivan, 2016-04-26
@LiguidCool

Windows has "Remote Desktop", but it knocks out the user. There is a "remote assistant" but in my opinion it does not work hidden.

D
Decker, 2016-04-27
@Decker

If your PC is connected to a domain, then in any case, all information on your PC that is stored in the clear (I don’t think that you use crypto containers in your daily work, keep all documents exclusively in password-protected archives, etc.) is available to the department’s employees IT. As for remote control / monitoring, etc. - then there are a lot of means and ways to organize both. Starting from Radmin with NTI (No Tray Icon), DameWare NT Utilities, RMS and more. If you suspect that someone is connecting to your PC without permission, contact your organization's IT specialist.

M
Modif, 2016-04-27
@Modif

I already turned to the admins and they say that - no, we do not use third-party software and without warning we do nothing. I believe them.
In fact, I don’t do anything like that at work and there’s nothing to hide)). I am interested in this question for the purpose of self-education (interested in networks, administration, etc.). Well, there is, of course, I would not want someone outsider to violate my personal space (read personal correspondence, photos, social networks, etc.), there were just cases)) Of course, not everything is so neglected for me, and I relying on my experience and knowledge, I monitor my system and control security in general, but because I am a non-practicing specialist, I still don’t know much, so I’m asking you for advice (maybe I’m not quite right in putting the question).
Yes, another question, is there such a tool for remote monitoring via a web interface? Well, like the observer would go through the browser to the server - maybe a domain server, maybe a machine on the network with special software is allocated for monitoring - through a web interface, you select a machine and observe?
Thank you in advance.

L
Lelepaul, 2019-06-21
@Lelepaul

If you have suspicions. that you are being watched means you are being watched :) You
can detect a program only if you have admin rights. Some programs like Kickidler have a silent mod installer, ie. you will not find them in processes, but there are Services for this :)
Some can be found in processes, but without admin rights - it's all useless.
Now they are being watched in most organizations, it's kind of a trend. If you want to sometimes check social networks at work - do it. like me - bring a personal laptop to work, under the guise that you can’t do without it.
no one will put a tracker on your laptop without your consent. and if he does, then he will go to court.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question