Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

any way to find history after deleted

0 views
Skip to first unread message

erica

unread,
Jul 28, 2003, 7:27:10 AM7/28/03
to
I have reason to suspect some one getting on child
pornography web sites on my computer; I have no proof
because the person suspected denies all accusations and
also makes sure he deletes all history, internet cookies,
etc. Is there anything I can do? I've tried changing the
content setting on the control panel but some how he got
around the password. I would like to have some kind of
proof one way or the other, please help. I don't know too
much about computers.

Lanwench [MVP - Exchange]

unread,
Jul 28, 2003, 10:23:07 AM7/28/03
to
Not much you can do, really, unless you want to get crazy with keystroke
logging software, etc...I wouldn't bother. Why not simply prevent the person
from using your computer in the first place? Control physical access to it
if possible, and use a secure OS like NT/2k/XP that won't allow anyone in
the world to walk up and use it.

Gunilla

unread,
Jul 28, 2003, 1:24:27 PM7/28/03
to
Hi Erica,

I feel for you, have been in the same situation. The bad thing about this is
that you can be accused to have child porn on your PC because it's yours. If
you know the persons credit card numbers and email address you can go in on
www.ccbill.com or www.billingsupport.com or www.ibillcs.com or
www.paypal.com or similar to check if he has subscribed to any of those
websites. It might be wrong and maybe illegal to do...so think twice before
you do it. Otherwise, make contact with your local police force or FBI
because it is illegal with child-porn. If you are interested I have found
something that might help you if nothing above is in your taste
http://www.file-recovery.net/ . Try this....you can always install it to a
place where it doesn't shows so easy. Don't forget to erase/delete every
track of installing this.

Kind regards / Gunilla.

"erica" <e_ech...@yahoo.com> skrev i meddelandet
news:05df01c354fb$2f2defd0$a401...@phx.gbl...

Karl Levinson [x y] mvp

unread,
Jul 29, 2003, 9:54:42 AM7/29/03
to
If you're using Windows 9x / ME, there's no great way to know who changed
it. If you're using Windows 2000 / XP / NT, you could use auditing as one
way to see who deleted files when:

http://securityadmin.info/faq.htm#auditing

... though if you want to see who deleted a file, you'd need to set up
separate login IDs for each user and make sure no one shares passwords or
walks up to a computer that's logged in as someone else. That starts to get
tricky.

Better yet, use a firewall or content filtering software that can log which
URLs a computer surfs to. Most of these solutions would only tell you when
the site was accessed and not by who, that part woudl be up to you to figure
out.

http://securityadmin.info/faq.htm#contentfilter
http://securityadmin.info/faq.htm#firewall

Most any firewall device out there can be set up to use Syslog to send the
logs of what was accessed to the local computer [where the log could be
deleted by someone] or to another computer on the network. www.netgear.com
and www.linksys.com both do this for around $75 US. www.netgear.com also
makes firewall devices around $100 US or so that log and block internet
usage. Last time I checked, the content filtering on these cheaper devices
expired after 6 months and was not renewable.

www.sygate.com software firewall for free can log this information, but
again someone could possibly clear that information, I'm not sure.

There's a free software called URLSnarf [which is part of Dsniff] that can
capture URLs visited, though again someone that knows that it's there could
possibly delete the log, unless you've got multiple computers networked
together and use yours to monitor the other computers. Get the windows
version from here: http://www.datanerds.net/~mike/dsniff.html


"erica" <e_ech...@yahoo.com> wrote in message
news:05df01c354fb$2f2defd0$a401...@phx.gbl...

0 new messages