How to definitely determine if unauthorized remote access is happening

Ex-spouse had set-up remote access initially to access work info from home and vice-versa, also to link up our then 2 other notebooks being used by out-state college children via I believe a home group system setting. Windows 10 is in use and i see the screen is saying the notebook is part of a work group. How can I definitively check if he is remoting in to this HP via his windows program, or the Xfinity modem with the Windows key where he may be able to override the security settings/my administrator status, or possibly override what looks to be a work group configuration?? Also,How do I find the IP address/physical location of a remote printer that still shows up on the network, or get specific info on devices that I dont recognize that certainly appear to have access to files? Since he has the windows key-nothing odd ever comes up or is recognized as the windows program doesnt recognize the remoting is as odd since he set it up for that.

And then-implement what measures to ensure theres no future remoting in happening-via Windows,via the router, any unknown devices, the ethernet, the LAN or anytbing else??

Answered! View the answer I have this problem too

Is this a good question?

Score 0

Comments:

Thank you...i shouldve mentioned that had been done but wasnt sure if that was the "end all solution"....

by

Add a comment
Black Friday
Broken doesn't stand a chance.

2 Answers

Chosen Solution

There are quite a few different ways someone on the inside could have setup to gain access later so you might want to find a local person who can help you review your home & network security.

Not to scare you... one issue people often forget is not just access to their local systems but the resources outside of the home or their office, like your social media accounts (i.e. Facebook &Twitter) storage sites like DropBox & iCloud. So even if you have taken care of your systems someone with the skills could infect you with a trojan to allow them access later.

Was this answer helpful?

Score 1

Comments:

Thank you so much! I see your self employed and work per contract; would that be company related only or does that possibly include residential? For you as well-if I could somehow award more than 1 point I would!

by

Add a comment
Most Helpful Answer

Hi @mensa2014,

Just my two cents advice, those routers, and stuffs, change the passwords, beware on some backdoor or other "administrator" account.

It actually depends on how the remote connection is being configured, it could be connected thru a ddns hostname or through vpn to the home, and ports, you need to login to the router / modem to check the port forwarding rules, and VPN.

All PC account password has to be changed, as again, there could be another administrator account which can also gain access to.

Check for some remote softwares that was installed on the pc, like VNC can have alot in the family, e.g. (realvnc, tightvnc, ultravnc, etc)

teamviewer, etc. when the user start the remote session to the pc, the desktop normally will become black.

For microsoft RDP session, the current user session will be logged out.

if still unsure or paranoid, i would suggest to format and reconfigure all devices, modem, router, as some nasty could leave more backdoor and keylogger and monitoring stuffs in the pc.

get antivirus also, and maybe try zonealarm software, and monitor the network traffic

Was this answer helpful?

Score 1

Comments:

Wow! Extremely grateful for all the guidance and direction! Ill get informed on zonealarm software and find education on monitoring network traffic and several other rec's as well! If I could give you more points I would!

by

Add a comment

Add your answer

Christy will be eternally grateful.
View Statistics:

Past 24 Hours: 0

Past 7 Days: 0

Past 30 Days: 3

All Time: 40