What is the best program to montior what users are connected to my computer?
I am interested in this for this reason. I have been running norton systemworks, and have the "users connected" monitor on. Occationally there will be a user connected (i've seen up to 3) and honestly i do not what this means. Would certain programs normally be connecting and registering as a user? I am behind a router with 2 other PCs on the network, although i do not have file sharing enabled. I am curious what to make of this.
Thanks for any help
How To Monitor Users Connected to my PC
Connected users =
1. other users on the network
2. file sharing programs (winmx, kazaa, etc
3. messanger apps like aim, yahoo im, etc
4. trojans, backdoor viruses
5. remote access apps like pc anywhere etc
1. other users on the network
2. file sharing programs (winmx, kazaa, etc
3. messanger apps like aim, yahoo im, etc
4. trojans, backdoor viruses
5. remote access apps like pc anywhere etc
No one has any right to force data on you
and command you to believe it or else.
If it is not true for you, it isn't true.
LRH
and command you to believe it or else.
If it is not true for you, it isn't true.
LRH
TCP View (all free utilities)
http://www.sysinternals.com/ntw2k/utilities.shtml
http://www.sysinternals.com/ntw2k/utilities.shtml
No one has any right to force data on you
and command you to believe it or else.
If it is not true for you, it isn't true.
LRH
and command you to believe it or else.
If it is not true for you, it isn't true.
LRH
-
dreadlocke
TonyT, very good choice in tools, however anything sysinternals develops can instantly overwhelm even a network adept.
hjm, I'm going to assume you run WinXP. Please post if otherwise.
In order for another PC to connect to your PC, LSASS must authenticate the user via NTLM. The server service must also be running ... (since you dont want anyone connecting, disable it.) Check the Users and Groups mmc and verify that you don't have funky accounts.
Second, enable auditing. This is one of the simplest ways to discover any monkey business happening with accounts/services. And enable full auditing accross the board except process tracking.
Also, get yourself a good port monitor such as Port Explorer, which will display all TCP/IP sockets and remote connections.
Alas, just fire up a good 'ol command prompt and type netstat -a ... or use the free fport from foundstone. Quick and easy.
As far as I know (and couold be wrong) no one has a non-server tool that simply states (you have X people connected and this is who they are) Norton is most likely ennumerating something local, not remote users.
Lastly, only Windows Server products can maintain more than 1 concurrent remote access connection.
Good Luck,
DreadLocke
hjm, I'm going to assume you run WinXP. Please post if otherwise.
In order for another PC to connect to your PC, LSASS must authenticate the user via NTLM. The server service must also be running ... (since you dont want anyone connecting, disable it.) Check the Users and Groups mmc and verify that you don't have funky accounts.
Second, enable auditing. This is one of the simplest ways to discover any monkey business happening with accounts/services. And enable full auditing accross the board except process tracking.
Also, get yourself a good port monitor such as Port Explorer, which will display all TCP/IP sockets and remote connections.
Alas, just fire up a good 'ol command prompt and type netstat -a ... or use the free fport from foundstone. Quick and easy.
As far as I know (and couold be wrong) no one has a non-server tool that simply states (you have X people connected and this is who they are) Norton is most likely ennumerating something local, not remote users.
Lastly, only Windows Server products can maintain more than 1 concurrent remote access connection.
Good Luck,
DreadLocke